Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRIVA_MDVSA-2009-043.NASL
HistoryApr 23, 2009 - 12:00 a.m.

Mandriva Linux Security Advisory : gnumeric (MDVSA-2009:043)

2009-04-2300:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current Gnumeric working directory (CVE-2009-0318).

This update provides fix for that vulnerability.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2009:043. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(37244);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2009-0318");
  script_bugtraq_id(33438);
  script_xref(name:"MDVSA", value:"2009:043");

  script_name(english:"Mandriva Linux Security Advisory : gnumeric (MDVSA-2009:043)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Python has a variable called sys.path that contains all paths where
Python loads modules by using import scripting procedure. A wrong
handling of that variable enables local attackers to execute arbitrary
code via Python scripting in the current Gnumeric working directory
(CVE-2009-0318).

This update provides fix for that vulnerability."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:ND");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:gnumeric");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64spreadsheet-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64spreadsheet1.8.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64spreadsheet1.9.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libspreadsheet-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libspreadsheet1.8.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libspreadsheet1.9.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2008.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2009.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/02/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2008.1", reference:"gnumeric-1.8.2-1.1mdv2008.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2008.1", cpu:"x86_64", reference:"lib64spreadsheet-devel-1.8.2-1.1mdv2008.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2008.1", cpu:"x86_64", reference:"lib64spreadsheet1.8.2-1.8.2-1.1mdv2008.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2008.1", cpu:"i386", reference:"libspreadsheet-devel-1.8.2-1.1mdv2008.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2008.1", cpu:"i386", reference:"libspreadsheet1.8.2-1.8.2-1.1mdv2008.1", yank:"mdv")) flag++;

if (rpm_check(release:"MDK2009.0", reference:"gnumeric-1.9.2-1.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", cpu:"x86_64", reference:"lib64spreadsheet-devel-1.9.2-1.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", cpu:"x86_64", reference:"lib64spreadsheet1.9.2-1.9.2-1.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", cpu:"i386", reference:"libspreadsheet-devel-1.9.2-1.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", cpu:"i386", reference:"libspreadsheet1.9.2-1.9.2-1.1mdv2009.0", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxlib64spreadsheet1.9.2p-cpe:/a:mandriva:linux:lib64spreadsheet1.9.2
mandrivalinuxlibspreadsheet-develp-cpe:/a:mandriva:linux:libspreadsheet-devel
mandrivalinuxlibspreadsheet1.8.2p-cpe:/a:mandriva:linux:libspreadsheet1.8.2
mandrivalinuxlibspreadsheet1.9.2p-cpe:/a:mandriva:linux:libspreadsheet1.9.2
mandrivalinux2008.1cpe:/o:mandriva:linux:2008.1
mandrivalinux2009.0cpe:/o:mandriva:linux:2009.0
mandrivalinuxgnumericp-cpe:/a:mandriva:linux:gnumeric
mandrivalinuxlib64spreadsheet-develp-cpe:/a:mandriva:linux:lib64spreadsheet-devel
mandrivalinuxlib64spreadsheet1.8.2p-cpe:/a:mandriva:linux:lib64spreadsheet1.8.2

Related

openvas 11
securityvulns 2
nessus 3
gentoo 1
fedora 2
debiancve 1
prion 1
ubuntucve 1
cve 1
openvas
openvas
Gentoo Security Advisory GLSA 200904-03 (gnumeric)
2009-04-06 00:00:00
Mandrake Security Advisory MDVSA-2009:043 (gnumeric)
2009-02-23 00:00:00
Fedora Core 12 FEDORA-2009-12950 (gtk2)
2009-12-30 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:043 ] gnumeric
2009-02-20 00:00:00
blender / gedit / gnumeric / vim / eog python scripts code execution
2009-04-07 00:00:00
nessus
nessus
GLSA-200904-03 : Gnumeric: Untrusted search path
2009-04-06 00:00:00
Fedora 10 : gnumeric-1.8.2-6.fc10 (2009-1289)
2009-04-23 00:00:00
Fedora 9 : gnumeric-1.8.2-4.fc9 (2009-1295)
2009-02-05 00:00:00
gentoo
gentoo
Gnumeric: Untrusted search path
2009-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: gnumeric-1.8.2-4.fc9
2009-02-05 02:15:47
[SECURITY] Fedora 10 Update: gnumeric-1.8.2-6.fc10
2009-02-05 02:15:12
debiancve
debiancve
CVE-2009-0318
2009-01-28 11:30:00
prion
prion
Design/Logic Flaw
2009-01-28 11:30:00
ubuntucve
ubuntucve
CVE-2009-0318
2009-01-28 00:00:00
cve
cve
CVE-2009-0318
2009-01-28 11:30:00
JSON
Related for MANDRIVA_MDVSA-2009-043.NASL
openvas11securityvulns2nessus3gentoo1fedora2debiancve1prion1ubuntucve1cve1