Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 Tenable Network Security, Inc.OPENSUSE-2011-19.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : proftpd (openSUSE-2011-19)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.
www.tenable.com
19
JSON

Vulnerabilities were discovered for the proftpd packages in openSUSE version 12.1.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2011-19.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74521);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-4130");

  script_name(english:"openSUSE Security Update : proftpd (openSUSE-2011-19)");
  script_summary(english:"Check for the openSUSE-2011-19 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Vulnerabilities were discovered for the proftpd packages in openSUSE
version 12.1."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=729830"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=731347"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected proftpd packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-ldap-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-mysql-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-pgsql-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-radius");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-radius-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-sqlite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:proftpd-sqlite-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/11/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE12.1", reference:"proftpd-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-debuginfo-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-debugsource-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-devel-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-ldap-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-ldap-debuginfo-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-mysql-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-mysql-debuginfo-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-pgsql-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-pgsql-debuginfo-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-radius-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-radius-debuginfo-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-sqlite-1.3.3g-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"proftpd-sqlite-debuginfo-1.3.3g-2.3.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "proftpd / proftpd-debuginfo / proftpd-debugsource / proftpd-devel / etc");
}
VendorProductVersionCPE
novellopensuseproftpd-mysql-debuginfop-cpe:/a:novell:opensuse:proftpd-mysql-debuginfo
novellopensuseproftpd-pgsql-debuginfop-cpe:/a:novell:opensuse:proftpd-pgsql-debuginfo
novellopensuseproftpd-debuginfop-cpe:/a:novell:opensuse:proftpd-debuginfo
novellopensuseproftpd-sqlite-debuginfop-cpe:/a:novell:opensuse:proftpd-sqlite-debuginfo
novellopensuseproftpd-debugsourcep-cpe:/a:novell:opensuse:proftpd-debugsource
novellopensuseproftpd-ldapp-cpe:/a:novell:opensuse:proftpd-ldap
novellopensuse12.1cpe:/o:novell:opensuse:12.1
novellopensuseproftpdp-cpe:/a:novell:opensuse:proftpd
novellopensuseproftpd-pgsqlp-cpe:/a:novell:opensuse:proftpd-pgsql
novellopensuseproftpd-mysqlp-cpe:/a:novell:opensuse:proftpd-mysql
Rows per page:
1-10 of 151

Related

openvas 18
nessus 9
seebug 2
securityvulns 2
slackware 1
ubuntucve 1
cve 1
fedora 4
prion 1
debiancve 1
debian 1
osv 2
gentoo 1
openvas
openvas
Mandriva Update for proftpd MDVSA-2011:181 (proftpd)
2011-12-09 00:00:00
Debian Security Advisory DSA 2346-2 (proftpd-dfsg)
2012-02-11 00:00:00
Fedora Update for proftpd FEDORA-2011-15740
2011-11-21 00:00:00
nessus
nessus
ProFTPD < 1.3.3g / 1.3.4 Response Pool Use-After-Free Code Execution
2011-11-28 00:00:00
Oracle Solaris Third-Party Patch Update : proftpd (cve_2011_4130_use_after)
2015-01-19 00:00:00
Mandriva Linux Security Advisory : proftpd (MDVSA-2011:181)
2011-12-08 00:00:00
seebug
seebug
ProFTPD Prior To 1.3.3g Use-After-Free θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2011-12-02 00:00:00
ProFTPDε“εΊ”ζ± ι‡Šζ”ΎεŽι‡η”¨δ»£η ζ‰§θ‘ŒζΌζ΄ž
2011-12-07 00:00:00
securityvulns
securityvulns
ProFTPD memory corruption
2011-11-21 00:00:00
[SECURITY] [DSA 2346-1] proftpd-dfsg security update
2011-11-21 00:00:00
slackware
slackware
[slackware-security] proftpd
2012-02-10 17:44:44
ubuntucve
ubuntucve
CVE-2011-4130
2011-12-06 00:00:00
cve
cve
CVE-2011-4130
2011-12-06 11:55:00
fedora
fedora
[SECURITY] Fedora 16 Update: proftpd-1.3.4-1.fc16
2011-11-19 05:59:54
[SECURITY] Fedora 15 Update: proftpd-1.3.4-1.fc15
2011-11-19 06:08:44
[SECURITY] Fedora 16 Update: proftpd-1.3.4b-5.fc16
2013-01-30 00:31:45
prion
prion
Design/Logic Flaw
2011-12-06 11:55:00
debiancve
debiancve
CVE-2011-4130
2011-12-06 11:55:00
debian
debian
[SECURITY] [DSA 2346-1] proftpd-dfsg security update
2011-11-15 20:39:09
osv
osv
proftpd-dfsg - several
2011-11-16 00:00:00
proftpd-dfsg - several
2011-11-16 00:00:00
gentoo
gentoo
ProFTPD: Multiple vulnerabilities
2013-09-24 00:00:00
JSON
Related for OPENSUSE-2011-19.NASL
openvas18nessus9seebug2securityvulns2slackware1ubuntucve1cve1fedora4prion1debiancve1debian1osv2gentoo1