Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 Tenable Network Security, Inc.MANDRIVA_MDVSA-2013-067.NASL
HistoryApr 20, 2013 - 12:00 a.m.

Mandriva Linux Security Advisory : couchdb (MDVSA-2013:067)

2013-04-2000:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
17
JSON

Updated couchdb packages fix security vulnerabilities :

A security flaw was found in the way Apache CouchDB, a distributed,fault- tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API, processed certain JSON callback. A remote attacker could provide a specially crafted JSON callback that, when processed could lead to arbitrary JSON code execution via Adobe Flash (CVE-2012-5649).

A DOM based cross-site scripting (XSS) flaw was found in the way browser- based test suite of Apache CouchDB, a distributed, fault-tolerant and schema-free document-oriented database accessible via a RESTful HTTP/JSON API, processed certain query parameters. A remote attacker could provide a specially crafted web page that, when accessed could lead to arbitrary web script or HTML execution in the context of a CouchDB user session (CVE-2012-5650).

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2013:067. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(66081);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2012-5649", "CVE-2012-5650");
  script_bugtraq_id(57314, 57321);
  script_xref(name:"MDVSA", value:"2013:067");
  script_xref(name:"MGASA", value:"2013-0040");

  script_name(english:"Mandriva Linux Security Advisory : couchdb (MDVSA-2013:067)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated couchdb packages fix security vulnerabilities :

A security flaw was found in the way Apache CouchDB, a
distributed,fault- tolerant and schema-free document-oriented database
accessible via a RESTful HTTP/JSON API, processed certain JSON
callback. A remote attacker could provide a specially crafted JSON
callback that, when processed could lead to arbitrary JSON code
execution via Adobe Flash (CVE-2012-5649).

A DOM based cross-site scripting (XSS) flaw was found in the way
browser- based test suite of Apache CouchDB, a distributed,
fault-tolerant and schema-free document-oriented database accessible
via a RESTful HTTP/JSON API, processed certain query parameters. A
remote attacker could provide a specially crafted web page that, when
accessed could lead to arbitrary web script or HTML execution in the
context of a CouchDB user session (CVE-2012-5650)."
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected couchdb and / or couchdb-bin packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:couchdb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:couchdb-bin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/04/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/04/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"couchdb-1.2.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"couchdb-bin-1.2.1-1.mbs1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxcouchdbp-cpe:/a:mandriva:linux:couchdb
mandrivalinuxcouchdb-binp-cpe:/a:mandriva:linux:couchdb-bin
mandrivabusiness_server1cpe:/o:mandriva:business_server:1

Related

openvas 4
nessus 6
fedora 2
securityvulns 3
prion 2
cve 2
cvelist 2
ubuntucve 2
freebsd 1
openvas
openvas
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1387
2013-02-04 00:00:00
nessus
nessus
Fedora 18 : couchdb-1.2.1-2.fc18 (2013-1375)
2013-02-04 00:00:00
Fedora 17 : couchdb-1.2.1-2.fc17 (2013-1387)
2013-02-04 00:00:00
Apache CouchDB < 1.0.4 / 1.1.2 / 1.2.1 Multiple Vulnerabilities
2013-05-08 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: couchdb-1.2.1-2.fc17
2013-02-02 04:27:53
[SECURITY] Fedora 18 Update: couchdb-1.2.1-2.fc18
2013-02-02 04:25:54
securityvulns
securityvulns
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2013-01-14 00:00:00
CVE-2012-5650 Apache CouchDB DOM based Cross-Site Scripting via Futon UI
2013-01-14 00:00:00
CVE-2012-5649 Apache CouchDB JSONP arbitrary code execution with Adobe Flash
2013-01-14 00:00:00
prion
prion
Design/Logic Flaw
2014-05-23 14:55:00
Cross site scripting
2014-03-18 17:02:00
cve
cve
CVE-2012-5649
2014-05-23 14:55:00
CVE-2012-5650
2014-03-18 17:02:00
cvelist
cvelist
CVE-2012-5649
2014-05-23 14:00:00
CVE-2012-5650
2014-03-18 14:00:00
ubuntucve
ubuntucve
CVE-2012-5649
2014-05-23 00:00:00
CVE-2012-5650
2014-03-18 00:00:00
freebsd
freebsd
couchdb -- DOM based Cross-Site Scripting via Futon UI
2012-01-14 00:00:00
JSON
Related for MANDRIVA_MDVSA-2013-067.NASL
openvas4nessus6fedora2securityvulns3prion2cve2cvelist2ubuntucve2freebsd1