ID REDHAT-RHSA-2004-005.NASL Type nessus Reporter Tenable Modified 2018-08-13T00:00:00
Description
Updated kdepim packages are now available that fix a local buffer overflow vulnerability.
The K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.
The KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.
Users of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2004:005. The text
# itself is copyright (C) Red Hat, Inc.
#
include("compat.inc");
if (description)
{
script_id(12447);
script_version ("1.20");
script_cvs_date("Date: 2018/08/13 14:32:37");
script_cve_id("CVE-2003-0988");
script_xref(name:"RHSA", value:"2004:005");
script_name(english:"RHEL 3 : kdepim (RHSA-2004:005)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated kdepim packages are now available that fix a local buffer
overflow vulnerability.
The K Desktop Environment (KDE) is a graphical desktop for the X
Window System. The KDE Personal Information Management (kdepim) suite
helps you to organize your mail, tasks, appointments, and contacts.
The KDE team found a buffer overflow in the file information reader of
VCF files. An attacker could construct a VCF file so that when it was
opened by a victim it would execute arbitrary commands. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name CVE-2003-0988 to this issue.
Users of kdepim are advised to upgrade to these erratum packages which
contain a backported security patch that corrects this issue."
);
script_set_attribute(
attribute:"see_also",
value:"https://www.redhat.com/security/data/cve/CVE-2003-0988.html"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kde.org/info/security/advisory-20040114-1.txt"
);
script_set_attribute(
attribute:"see_also",
value:"http://rhn.redhat.com/errata/RHSA-2004-005.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected kdepim and / or kdepim-devel packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdepim");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdepim-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:3");
script_set_attribute(attribute:"patch_publication_date", value:"2004/01/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/06");
script_set_attribute(attribute:"vuln_publication_date", value:"2004/01/14");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = eregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! ereg(pattern:"^3([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 3.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2004:005";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL3", reference:"kdepim-3.1.3-3.3")) flag++;
if (rpm_check(release:"RHEL3", reference:"kdepim-devel-3.1.3-3.3")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kdepim / kdepim-devel");
}
}
{"id": "REDHAT-RHSA-2004-005.NASL", "bulletinFamily": "scanner", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "published": "2004-07-06T00:00:00", "modified": "2018-08-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "reporter": "Tenable", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "cvelist": ["CVE-2003-0988"], "type": "nessus", "lastseen": "2018-09-02T00:04:09", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2003-0988"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "edition": 2, "enchantments": {}, "hash": "4ea38f1b3900f073f52c85f6eb449a39c1a06f2806b5f78ca41a4146071764fa", "hashmap": [{"hash": "8550aa08ba4c57b259ff26174bc76c67", "key": "description"}, {"hash": "165fdc9623e63b94742e6dd07b81e45b", "key": "pluginID"}, {"hash": "35a80432737ef527fe4541f45ee299f5", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "676bcfbb0d4c9f5ff270385a479d6ed1", "key": "modified"}, {"hash": "50c06d765882c156f5981f559cb85cb2", "key": "references"}, {"hash": "b8fc7b99d19eb72cb75e807430c912dc", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "474949ab6fbff659080be277e7c5ac16", "key": "published"}, {"hash": "023fc9f40e56c0627fd4da4f68eacf23", "key": "cvelist"}, {"hash": "b46559ea68ec9a13474c3a7776817cfd", "key": "naslFamily"}, {"hash": "eea83d2320c997fb468e3776d31d1f90", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "id": "REDHAT-RHSA-2004-005.NASL", "lastseen": "2016-12-29T02:17:02", "modified": "2016-12-28T00:00:00", "naslFamily": "Red Hat Local Security Checks", "objectVersion": "1.2", "pluginID": "12447", "published": "2004-07-06T00:00:00", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"$Revision: 1.19 $\");\n script_cvs_date(\"$Date: 2016/12/28 17:44:44 $\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_osvdb_id(3472);\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:005\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n }\n}\n", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "type": "nessus", "viewCount": 2}, "differentElements": ["cpe"], "edition": 2, "lastseen": "2016-12-29T02:17:02"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:kdepim", "p-cpe:/a:redhat:enterprise_linux:kdepim-devel"], "cvelist": ["CVE-2003-0988"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "edition": 4, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "be417d9d3ac1e92fb3ed24954fce7b0e0afba27a92e3473a198d58c85aa7a95d", "hashmap": [{"hash": "8550aa08ba4c57b259ff26174bc76c67", "key": "description"}, {"hash": "165fdc9623e63b94742e6dd07b81e45b", "key": "pluginID"}, {"hash": "35a80432737ef527fe4541f45ee299f5", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "50c06d765882c156f5981f559cb85cb2", "key": "references"}, {"hash": "579b8655e66c7eb20c0a14333bcca887", "key": "cpe"}, {"hash": "038d55fac87d0867bdd07f13e69018b1", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "474949ab6fbff659080be277e7c5ac16", "key": "published"}, {"hash": "1865261413c3db59730e6f4c15d45b87", "key": "modified"}, {"hash": "023fc9f40e56c0627fd4da4f68eacf23", "key": "cvelist"}, {"hash": "b46559ea68ec9a13474c3a7776817cfd", "key": "naslFamily"}, {"hash": "eea83d2320c997fb468e3776d31d1f90", "key": "href"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "id": "REDHAT-RHSA-2004-005.NASL", "lastseen": "2018-08-15T15:39:28", "modified": "2018-08-13T00:00:00", "naslFamily": "Red Hat Local Security Checks", "objectVersion": "1.3", "pluginID": "12447", "published": "2004-07-06T00:00:00", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:005\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n }\n}\n", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "type": "nessus", "viewCount": 2}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-15T15:39:28"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:kdepim", "p-cpe:/a:redhat:enterprise_linux:kdepim-devel"], "cvelist": ["CVE-2003-0988"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "edition": 5, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "744393324ad52ed788a224b371b858c54e3deb9e5a5dc7b0d16a593c670b5e8d", "hashmap": [{"hash": "8550aa08ba4c57b259ff26174bc76c67", "key": "description"}, {"hash": "165fdc9623e63b94742e6dd07b81e45b", "key": "pluginID"}, {"hash": "35a80432737ef527fe4541f45ee299f5", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "50c06d765882c156f5981f559cb85cb2", "key": "references"}, {"hash": "579b8655e66c7eb20c0a14333bcca887", "key": "cpe"}, {"hash": "038d55fac87d0867bdd07f13e69018b1", "key": "sourceData"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "474949ab6fbff659080be277e7c5ac16", "key": "published"}, {"hash": "1865261413c3db59730e6f4c15d45b87", "key": "modified"}, {"hash": "023fc9f40e56c0627fd4da4f68eacf23", "key": "cvelist"}, {"hash": "b46559ea68ec9a13474c3a7776817cfd", "key": "naslFamily"}, {"hash": "eea83d2320c997fb468e3776d31d1f90", "key": "href"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "id": "REDHAT-RHSA-2004-005.NASL", "lastseen": "2018-08-30T19:54:03", "modified": "2018-08-13T00:00:00", "naslFamily": "Red Hat Local Security Checks", "objectVersion": "1.3", "pluginID": "12447", "published": "2004-07-06T00:00:00", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:005\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n }\n}\n", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "type": "nessus", "viewCount": 2}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2018-08-30T19:54:03"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:kdepim", "p-cpe:/a:redhat:enterprise_linux:kdepim-devel"], "cvelist": ["CVE-2003-0988"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "edition": 3, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "53b9cb70b4577bde71659e10766d5dca09b0ebbb63d5fc9abeee7ee301251efe", "hashmap": [{"hash": "8550aa08ba4c57b259ff26174bc76c67", "key": "description"}, {"hash": "165fdc9623e63b94742e6dd07b81e45b", "key": "pluginID"}, {"hash": "35a80432737ef527fe4541f45ee299f5", "key": "title"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "676bcfbb0d4c9f5ff270385a479d6ed1", "key": "modified"}, {"hash": "50c06d765882c156f5981f559cb85cb2", "key": "references"}, {"hash": "579b8655e66c7eb20c0a14333bcca887", "key": "cpe"}, {"hash": "b8fc7b99d19eb72cb75e807430c912dc", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "474949ab6fbff659080be277e7c5ac16", "key": "published"}, {"hash": "023fc9f40e56c0627fd4da4f68eacf23", "key": "cvelist"}, {"hash": "b46559ea68ec9a13474c3a7776817cfd", "key": "naslFamily"}, {"hash": "eea83d2320c997fb468e3776d31d1f90", "key": "href"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "id": "REDHAT-RHSA-2004-005.NASL", "lastseen": "2017-10-29T13:43:42", "modified": "2016-12-28T00:00:00", "naslFamily": "Red Hat Local Security Checks", "objectVersion": "1.3", "pluginID": "12447", "published": "2004-07-06T00:00:00", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"$Revision: 1.19 $\");\n script_cvs_date(\"$Date: 2016/12/28 17:44:44 $\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_osvdb_id(3472);\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:005\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n }\n}\n", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "type": "nessus", "viewCount": 2}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2017-10-29T13:43:42"}, {"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2003-0988"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Updated kdepim packages are now available that fix a local buffer overflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X Window System. The KDE Personal Information Management (kdepim) suite helps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which contain a backported security patch that corrects this issue.", "edition": 1, "hash": "11502140eed8ffcfb1e1558b75ac4563eee8d374da1d84329ca2d72cc33d9099", "hashmap": [{"hash": "8550aa08ba4c57b259ff26174bc76c67", "key": "description"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "165fdc9623e63b94742e6dd07b81e45b", "key": "pluginID"}, {"hash": "35a80432737ef527fe4541f45ee299f5", "key": "title"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "6701ece2bc7e0e825d798cf4cbce2590", "key": "sourceData"}, {"hash": "50c06d765882c156f5981f559cb85cb2", "key": "references"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "474949ab6fbff659080be277e7c5ac16", "key": "published"}, {"hash": "023fc9f40e56c0627fd4da4f68eacf23", "key": "cvelist"}, {"hash": "98f00858001a0dd10fbd90da55b4ee8c", "key": "modified"}, {"hash": "b46559ea68ec9a13474c3a7776817cfd", "key": "naslFamily"}, {"hash": "eea83d2320c997fb468e3776d31d1f90", "key": "href"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=12447", "id": "REDHAT-RHSA-2004-005.NASL", "lastseen": "2016-09-26T17:26:08", "modified": "2014-11-08T00:00:00", "naslFamily": "Red Hat Local Security Checks", "objectVersion": "1.2", "pluginID": "12447", "published": "2004-07-06T00:00:00", "references": ["https://www.redhat.com/security/data/cve/CVE-2003-0988.html", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://rhn.redhat.com/errata/RHSA-2004-005.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"$Revision: 1.18 $\");\n script_cvs_date(\"$Date: 2014/11/08 01:13:16 $\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_osvdb_id(3472);\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\nif (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n}\n", "title": "RHEL 3 : kdepim (RHSA-2004:005)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2016-09-26T17:26:08"}], "edition": 6, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "579b8655e66c7eb20c0a14333bcca887"}, {"key": "cvelist", "hash": "023fc9f40e56c0627fd4da4f68eacf23"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "8550aa08ba4c57b259ff26174bc76c67"}, {"key": "href", "hash": "eea83d2320c997fb468e3776d31d1f90"}, {"key": "modified", "hash": "1865261413c3db59730e6f4c15d45b87"}, {"key": "naslFamily", "hash": "b46559ea68ec9a13474c3a7776817cfd"}, {"key": "pluginID", "hash": "165fdc9623e63b94742e6dd07b81e45b"}, {"key": "published", "hash": "474949ab6fbff659080be277e7c5ac16"}, {"key": "references", "hash": "50c06d765882c156f5981f559cb85cb2"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "038d55fac87d0867bdd07f13e69018b1"}, {"key": "title", "hash": "35a80432737ef527fe4541f45ee299f5"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "be417d9d3ac1e92fb3ed24954fce7b0e0afba27a92e3473a198d58c85aa7a95d", "viewCount": 2, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}, "vulnersScore": 7.2}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:005. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12447);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"RHSA\", value:\"2004:005\");\n\n script_name(english:\"RHEL 3 : kdepim (RHSA-2004:005)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated kdepim packages are now available that fix a local buffer\noverflow vulnerability.\n\nThe K Desktop Environment (KDE) is a graphical desktop for the X\nWindow System. The KDE Personal Information Management (kdepim) suite\nhelps you to organize your mail, tasks, appointments, and contacts.\n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0988.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-005.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected kdepim and / or kdepim-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:005\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-3.1.3-3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"kdepim-devel-3.1.3-3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-devel\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "pluginID": "12447", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:kdepim", "p-cpe:/a:redhat:enterprise_linux:kdepim-devel"]}
{"cve": [{"lastseen": "2017-10-10T10:34:57", "references": ["http://marc.info/?l=bugtraq&m=107412130407906&w=2", "http://www.kb.cert.org/vuls/id/820798", "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000810", "http://www.redhat.com/support/errata/RHSA-2004-005.html", "http://www.redhat.com/support/errata/RHSA-2004-006.html", "http://security.gentoo.org/glsa/glsa-200404-02.xml", "https://exchange.xforce.ibmcloud.com/vulnerabilities/14833", "http://www.securityfocus.com/bid/9419", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:003"], "description": "Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.", "edition": 3, "reporter": "NVD", "published": "2004-02-17T00:00:00", "title": "CVE-2003-0988", "type": "cve", "enchantments": {"score": {"modified": "2017-10-10T10:34:57", "vector": "NONE", "value": 6.8}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:858", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A858"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2003-0988"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10498", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10498"}], "modified": "2017-10-09T21:30:15", "cpe": ["cpe:/o:kde:kde:3.1.1", "cpe:/o:kde:kde:3.1.2", "cpe:/o:kde:kde:3.1.0", "cpe:/o:kde:kde:3.1.3"], "id": "CVE-2003-0988", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0988", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cert": [{"lastseen": "2018-08-31T02:37:39", "references": ["http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0988", "http://www.secunia.com/advisories/10625/", "http://download.kde.org/download.php?url=stable/3.1.5/", "https://rhn.redhat.com/errata/RHSA-2004-006.html", "http://www.kde.org/info/security/advisory-20040114-1.txt"], "description": "### Overview\n\nKDE Personal Information Management suite \"kdepim\" contains a buffer overflow vulnerability. Exploitation of this vulnerability could lead to the arbitrary execution of commands.\n\n### Description\n\nKDE Personal Information Management suite shipped with KDE versions 3.1.0 through 3.1.4 contains a buffer overflow vulnerability in the processing of VCF files. \n\nIf an attacker can trick a victim into opening a specially crafted .VCF file, the attacker may be able to gain information about a victim's data or execute arbitrary commands \nwith the victim's privileges. This vulnerability may also be remotely exploited if the victim has previews for remote files enabled, however this feature is disabled by default. \n \n--- \n \n### Impact\n\nAn attacker may be able to gain information about a victim's data or execute arbitrary commands with the victim's privileges. \n \n--- \n \n### Solution\n\nUpgrade to KDE version [3.1.5](<http://download.kde.org/download.php?url=stable/3.1.5/>) or apply the [patch](<ftp://ftp.kde.org/pub/kde/security_patches/post-3.1.4-kdepim-kfile-plugins.diff>) to version 3.1.4. \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nConectiva| | -| 27 Jan 2004 \nKDE Desktop Environment Project| | -| 27 Jan 2004 \nMandrakeSoft| | -| 27 Jan 2004 \nRed Hat Inc.| | -| 27 Jan 2004 \nSlackware| | -| 27 Jan 2004 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23820798 Vendor Status Inquiry>).\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://www.kde.org/info/security/advisory-20040114-1.txt>\n * <https://rhn.redhat.com/errata/RHSA-2004-006.html>\n * <http://www.secunia.com/advisories/10625/>\n\n### Credit\n\nThis vulnerability was discovered by Dirk Mueller of KDE and reported in their advisory.\n\nThis document was written by Stacey Stewart.\n\n### Other Information\n\n * CVE IDs: [CAN-2003-0988](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2003-0988>)\n * Date Public: 14 Jan 2004\n * Date First Published: 27 Jan 2004\n * Date Last Updated: 27 Jan 2004\n * Severity Metric: 8.10\n * Document Revision: 11\n\n", "edition": 3, "reporter": "CERT", "published": "2004-01-27T00:00:00", "title": "KDE Personal Information Management suite \"kdepim\" contains a buffer overflow vulnerability in VCF information reader ", "type": "cert", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "info", "cvelist": ["CVE-2003-0988", "CVE-2003-0988"], "modified": "2004-01-27T00:00:00", "id": "VU:820798", "href": "https://www.kb.cert.org/vuls/id/820798", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2017-07-24T12:50:43", "references": [], "pluginID": "53949", "description": "The remote host is missing an update as announced\nvia advisory SSA:2004-014-01.", "edition": 2, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-09-11T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Slackware Advisory SSA:2004-014-01 kdepim security update", "type": "openvas", "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=53949", "id": "OPENVAS:53949", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2004_014_01.nasl 6598 2017-07-07 09:36:44Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"New kdepim packages are available for Slackware 9.0 and 9.1 to\nfix a security issue with .VCF file handling. For Slackware -current,\na complete upgrade to kde-3.1.5 is available.\";\ntag_summary = \"The remote host is missing an update as announced\nvia advisory SSA:2004-014-01.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-014-01\";\n \nif(description)\n{\n script_id(53949);\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:36:44 +0200 (Fri, 07 Jul 2017) $\");\n script_bugtraq_id(9419);\n script_cve_id(\"CVE-2003-0988\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_version(\"$Revision: 6598 $\");\n name = \"Slackware Advisory SSA:2004-014-01 kdepim security update \";\n script_name(name);\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-slack.inc\");\nvuln = 0;\nif(isslkpkgvuln(pkg:\"kde\", ver:\"3.1.3-i386-2\", rls:\"SLK9.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"kde\", ver:\"3.1.3-i386-2\", rls:\"SLK9.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"kdepim\", ver:\"3.1.4-i486-2\", rls:\"SLK9.1\")) {\n vuln = 1;\n}\n\nif(vuln) {\n security_message(0);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:59:03", "references": [], "pluginID": "136141256231053949", "description": "The remote host is missing an update as announced\nvia advisory SSA:2004-014-01.", "edition": 3, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-09-11T00:00:00", "title": "Slackware Advisory SSA:2004-014-01 kdepim security update", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231053949", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231053949", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2004_014_01.nasl 9352 2018-04-06 07:13:02Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"New kdepim packages are available for Slackware 9.0 and 9.1 to\nfix a security issue with .VCF file handling. For Slackware -current,\na complete upgrade to kde-3.1.5 is available.\";\ntag_summary = \"The remote host is missing an update as announced\nvia advisory SSA:2004-014-01.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-014-01\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.53949\");\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_bugtraq_id(9419);\n script_cve_id(\"CVE-2003-0988\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_version(\"$Revision: 9352 $\");\n name = \"Slackware Advisory SSA:2004-014-01 kdepim security update \";\n script_name(name);\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-slack.inc\");\nvuln = 0;\nif(isslkpkgvuln(pkg:\"kde\", ver:\"3.1.3-i386-2\", rls:\"SLK9.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"kde\", ver:\"3.1.3-i386-2\", rls:\"SLK9.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"kdepim\", ver:\"3.1.4-i486-2\", rls:\"SLK9.1\")) {\n vuln = 1;\n}\n\nif(vuln) {\n security_message(0);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-02T21:10:24", "references": [], "pluginID": "52480", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-04T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "FreeBSD Ports: kdepim", "type": "openvas", "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2016-09-21T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=52480", "id": "OPENVAS:52480", "sourceData": "#\n#VID da6f265b-8f3d-11d8-8b29-0020ed76ef5a\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from vuxml or freebsd advisories\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following package is affected: kdepim\n\nCVE-2003-0988\nBuffer overflow in the VCF file information reader for KDE Personal\nInformation Management (kdepim) suite in KDE 3.1.0 through 3.1.4\nallows attackers to execute arbitrary code via a VCF file.\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://www.kde.org/info/security/advisory-20040114-1.txt\nhttp://www.vuxml.org/freebsd/da6f265b-8f3d-11d8-8b29-0020ed76ef5a.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\nif(description)\n{\n script_id(52480);\n script_version(\"$Revision: 4125 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-21 07:39:51 +0200 (Wed, 21 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)\");\n script_bugtraq_id(9419);\n script_cve_id(\"CVE-2003-0988\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"FreeBSD Ports: kdepim\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"kdepim\");\nif(!isnull(bver) && revcomp(a:bver, b:\"3.1.0\")>=0 && revcomp(a:bver, b:\"3.1.4_1\")<0) {\n txt += 'Package kdepim version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:50:23", "references": [], "pluginID": "54541", "description": "The remote host is missing updates announced in\nadvisory GLSA 200404-02.", "edition": 2, "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-24T00:00:00", "title": "Gentoo Security Advisory GLSA 200404-02 (kde-base/kde)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=54541", "id": "OPENVAS:54541", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"KDE-PIM may be vulnerable to a remote buffer overflow attack that may allow\nunauthorized access to an affected system.\";\ntag_solution = \"KDE users should upgrade to version 3.1.5 or later:\n\n # emerge sync\n \n # emerge -pv '>=kde-base/kde-3.1.5'\n # emerge '>=kde-base/kde-3.1.5'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200404-02\nhttp://bugs.gentoo.org/show_bug.cgi?id=38256\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200404-02.\";\n\n \n\nif(description)\n{\n script_id(54541);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_bugtraq_id(9419);\n script_cve_id(\"CVE-2003-0988\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200404-02 (kde-base/kde)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"kde-base/kde\", unaffected: make_list(\"ge 3.1.5\"), vulnerable: make_list(\"le 3.1.4\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:16:13", "references": ["http://www.kde.org/info/security/advisory-20040114-1.txt"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "3.1.0", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "kdepim", "operator": "eq"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "3.1.4_1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "kdepim", "operator": "lt"}], "description": "\nA buffer overflow is present in some versions of the KDE\n\t personal information manager (kdepim) which may be triggered\n\t when processing a specially crafted VCF file.\n", "edition": 3, "reporter": "FreeBSD", "published": "2004-01-14T00:00:00", "title": "kdepim exploitable buffer overflow in VCF reader", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2003-0988"], "modified": "2004-01-14T00:00:00", "id": "DA6F265B-8F3D-11D8-8B29-0020ED76EF5A", "href": "https://vuxml.freebsd.org/freebsd/da6f265b-8f3d-11d8-8b29-0020ed76ef5a.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:46:11", "references": ["https://security.gentoo.org/glsa/200404-02"], "pluginID": "14467", "description": "The remote host is affected by the vulnerability described in GLSA-200404-02 (KDE Personal Information Management Suite Remote Buffer Overflow Vulnerability)\n\n A buffer overflow may occur in KDE-PIM's VCF file reader when a maliciously crafted VCF file is opened by a user on a vulnerable system.\n Impact :\n\n A remote attacker may unauthorized access to a user's personal data or execute commands with the user's privileges.\n Workaround :\n\n A workaround is not currently known for this issue. All users are advised to upgrade to the latest version of the affected package.", "edition": 4, "reporter": "Tenable", "published": "2004-08-30T00:00:00", "title": "GLSA-200404-02 : KDE Personal Information Management Suite Remote Buffer Overflow Vulnerability", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2015-04-13T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:kde"], "id": "GENTOO_GLSA-200404-02.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14467", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200404-02.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14467);\n script_version(\"$Revision: 1.12 $\");\n script_cvs_date(\"$Date: 2015/04/13 13:34:21 $\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"GLSA\", value:\"200404-02\");\n\n script_name(english:\"GLSA-200404-02 : KDE Personal Information Management Suite Remote Buffer Overflow Vulnerability\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200404-02\n(KDE Personal Information Management Suite Remote Buffer Overflow Vulnerability)\n\n A buffer overflow may occur in KDE-PIM's VCF file reader when a maliciously\n crafted VCF file is opened by a user on a vulnerable system.\n \nImpact :\n\n A remote attacker may unauthorized access to a user's personal data or\n execute commands with the user's privileges.\n \nWorkaround :\n\n A workaround is not currently known for this issue. All users are advised\n to upgrade to the latest version of the affected package.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200404-02\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"KDE users should upgrade to version 3.1.5 or later:\n # emerge sync\n # emerge -pv '>=kde-base/kde-3.1.5'\n # emerge '>=kde-base/kde-3.1.5'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:kde\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/04/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/08/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"kde-base/kde\", unaffected:make_list(\"ge 3.1.5\"), vulnerable:make_list(\"le 3.1.4\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kde-base/kde\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:56:53", "references": [], "pluginID": "14103", "description": "A vulnerability was discovered in all versions of kdepim as distributed with KDE versions 3.1.0 through 3.1.4. This vulnerability allows for a carefully crafted .VCF file to potentially enable a local attacker to compromise the privacy of a victim's data or execute arbitrary commands with the victim's privileges. This can also be used by remote attackers if the victim enables previews for remote files;\nhowever this is disabled by default.\n\nThe provided packages contain a patch from the KDE team to correct this problem.", "edition": 5, "reporter": "Tenable", "published": "2004-07-31T00:00:00", "title": "Mandrake Linux Security Advisory : kdepim (MDKSA-2004:003)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:kdepim-karm", "cpe:/o:mandrakesoft:mandrake_linux:9.1", "p-cpe:/a:mandriva:linux:libkdepim2-kpilot", "p-cpe:/a:mandriva:linux:libkdepim2-common", "p-cpe:/a:mandriva:linux:lib64kdepim2-common", "p-cpe:/a:mandriva:linux:lib64kdepim2-korganizer-devel", "p-cpe:/a:mandriva:linux:kdepim-kpilot", "cpe:/o:mandrakesoft:mandrake_linux:9.2", "p-cpe:/a:mandriva:linux:kdepim-knotes", "p-cpe:/a:mandriva:linux:libkdepim2-korganizer-devel", "p-cpe:/a:mandriva:linux:kdepim-devel", "p-cpe:/a:mandriva:linux:libkdepim2-korganizer", "p-cpe:/a:mandriva:linux:lib64kdepim2-korganizer", "p-cpe:/a:mandriva:linux:lib64kdepim2-kpilot-devel", "p-cpe:/a:mandriva:linux:kdepim-korganizer", "p-cpe:/a:mandriva:linux:kdepim-kaddressbook", "p-cpe:/a:mandriva:linux:lib64kdepim2-kpilot", "p-cpe:/a:mandriva:linux:libkdepim2-kpilot-devel", "p-cpe:/a:mandriva:linux:kdepim", "p-cpe:/a:mandriva:linux:lib64kdepim2-common-devel", "p-cpe:/a:mandriva:linux:kdepim-common", "p-cpe:/a:mandriva:linux:libkdepim2-common-devel"], "id": "MANDRAKE_MDKSA-2004-003.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14103", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2004:003. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14103);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/07/19 20:59:13\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"MDKSA\", value:\"2004:003\");\n\n script_name(english:\"Mandrake Linux Security Advisory : kdepim (MDKSA-2004:003)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A vulnerability was discovered in all versions of kdepim as\ndistributed with KDE versions 3.1.0 through 3.1.4. This vulnerability\nallows for a carefully crafted .VCF file to potentially enable a local\nattacker to compromise the privacy of a victim's data or execute\narbitrary commands with the victim's privileges. This can also be used\nby remote attackers if the victim enables previews for remote files;\nhowever this is disabled by default.\n\nThe provided packages contain a patch from the KDE team to correct\nthis problem.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-kaddressbook\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-karm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-knotes\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-korganizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kdepim-kpilot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-common-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-korganizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-korganizer-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-kpilot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64kdepim2-kpilot-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-common-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-korganizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-korganizer-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-kpilot\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libkdepim2-kpilot-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK9.1\", cpu:\"i386\", reference:\"kdepim-3.1-17.1.91mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.1\", cpu:\"i386\", reference:\"kdepim-devel-3.1-17.1.91mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-common-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-kaddressbook-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-karm-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-knotes-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-korganizer-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"kdepim-kpilot-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-common-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-common-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-korganizer-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-korganizer-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-kpilot-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64kdepim2-kpilot-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-common-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-common-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-korganizer-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-korganizer-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-kpilot-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libkdepim2-kpilot-devel-3.1.3-22.1.92mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-26T17:24:10", "references": ["http://security.e-matters.de/advisories/092004.html", "http://www.osvdb.org/6833", "http://www.mozilla.org/security/announce/2006/mfsa2006-13.html", "https://ccvs.cvshome.org/source/browse/ccvs/NEWS?rev=1.116.2.104", "http://www.mozilla.org/security/announce/2006/mfsa2006-09.html", "http://secunia.com/advisories/25383/", "https://sourceforge.net/forum/forum.php?forum_id=566199", "http://www.osvdb.org/6832", "http://secunia.com/advisories/12309", "http://secunia.com/advisories/11817", "http://www.mozilla.org/security/announce/2006/mfsa2006-14.html", "http://www.mozilla.org/security/announce/2006/mfsa2006-15.html", "http://www.idefense.com/application/poi/display?id=130&type=vulnerabilities&flashstatus=false", "http://www.kde.org/info/security/advisory-20040114-1.txt", "http://www.mozilla.org/security/announce/2006/mfsa2006-10.html", "http://www.FreeBSD.org/ports/portaudit/da6f265b-8f3d-11d8-8b29-0020ed76ef5a.html", "http://www.mozilla.org/security/announce/2006/mfsa2006-11.html", "http://www.mozilla.org/security/announce/2006/mfsa2006-12.html", "http://www.osvdb.org/6831", "http://www.osvdb.org/6830"], "pluginID": "12557", "edition": 1, "description": "The following package needs to be updated: kdepim", "reporter": "Tenable", "published": "2004-07-06T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "nessus", "title": "FreeBSD : kdepim exploitable buffer overflow in VCF reader (84)", "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2004-07-06T00:00:00", "id": "FREEBSD_KDEPIM_314_1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=12557", "sourceData": "# @DEPRECATED@\n#\n# This script has been deprecated by freebsd_pkg_da6f265b8f3d11d88b290020ed76ef5a.nasl.\n#\n# Disabled on 2011/10/02.\n#\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# This script contains information extracted from VuXML :\n#\n# Copyright 2003-2006 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n#\n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n#\n#\n\ninclude('compat.inc');\n\nif ( description )\n{\n script_id(12557);\n script_version(\"$Revision: 1.8 $\");\n script_cve_id(\"CVE-2003-0988\");\n\n script_name(english:\"FreeBSD : kdepim exploitable buffer overflow in VCF reader (84)\");\n\nscript_set_attribute(attribute:'synopsis', value: 'The remote host is missing a security update');\nscript_set_attribute(attribute:'description', value:'The following package needs to be updated: kdepim');\nscript_set_attribute(attribute: 'cvss_vector', value: 'CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P');\nscript_set_attribute(attribute:'solution', value: 'Update the package on the remote host');\nscript_set_attribute(attribute: 'see_also', value: 'http://secunia.com/advisories/11817\nhttp://secunia.com/advisories/12309\nhttp://secunia.com/advisories/25383/\nhttp://security.e-matters.de/advisories/092004.html\nhttp://www.idefense.com/application/poi/display?id=130&type=vulnerabilities&flashstatus=false\nhttp://www.kde.org/info/security/advisory-20040114-1.txt\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-09.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-10.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-11.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-12.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-13.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-14.html\nhttp://www.mozilla.org/security/announce/2006/mfsa2006-15.html\nhttp://www.osvdb.org/6830\nhttp://www.osvdb.org/6831\nhttp://www.osvdb.org/6832\nhttp://www.osvdb.org/6833\nhttps://ccvs.cvshome.org/source/browse/ccvs/NEWS?rev=1.116.2.104\nhttps://sourceforge.net/forum/forum.php?forum_id=566199');\nscript_set_attribute(attribute:'see_also', value: 'http://www.FreeBSD.org/ports/portaudit/da6f265b-8f3d-11d8-8b29-0020ed76ef5a.html');\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/06\");\n script_end_attributes();\n script_summary(english:\"Check for kdepim\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2010 Tenable Network Security, Inc.\");\n family[\"english\"] = \"FreeBSD Local Security Checks\";\n script_family(english:family[\"english\"]);\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/FreeBSD/pkg_info\");\n exit(0);\n}\n\n# Deprecated.\nexit(0, \"This plugin has been deprecated. Refer to plugin #36298 (freebsd_pkg_da6f265b8f3d11d88b290020ed76ef5a.nasl) instead.\");\n\nglobal_var cvss_score;\ncvss_score=7;\ninclude('freebsd_package.inc');\n\n\npkg_test(pkg:\"kdepim>=3.1.0<3.1.4_1\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:58:06", "references": ["http://www.nessus.org/u?1b64c3de", "http://www.kde.org/info/security/advisory-20040114-1.txt"], "pluginID": "36298", "description": "A buffer overflow is present in some versions of the KDE personal information manager (kdepim) which may be triggered when processing a specially crafted VCF file.", "edition": 4, "reporter": "Tenable", "published": "2009-04-23T00:00:00", "title": "FreeBSD : kdepim exploitable buffer overflow in VCF reader (da6f265b-8f3d-11d8-8b29-0020ed76ef5a)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2013-06-22T00:00:00", "cpe": ["p-cpe:/a:freebsd:freebsd:kdepim", "cpe:/o:freebsd:freebsd"], "id": "FREEBSD_PKG_DA6F265B8F3D11D88B290020ED76EF5A.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=36298", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2013 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(36298);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2013/06/22 00:10:43 $\");\n\n script_cve_id(\"CVE-2003-0988\");\n\n script_name(english:\"FreeBSD : kdepim exploitable buffer overflow in VCF reader (da6f265b-8f3d-11d8-8b29-0020ed76ef5a)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A buffer overflow is present in some versions of the KDE personal\ninformation manager (kdepim) which may be triggered when processing a\nspecially crafted VCF file.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.kde.org/info/security/advisory-20040114-1.txt\"\n );\n # http://www.freebsd.org/ports/portaudit/da6f265b-8f3d-11d8-8b29-0020ed76ef5a.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?1b64c3de\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/01/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"kdepim>=3.1.0<3.1.4_1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:35:44", "references": ["http://www.nessus.org/u?e8e5646f"], "pluginID": "13708", "description": "The KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2003-0988 to this issue.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2004-07-23T00:00:00", "title": "Fedora Core 1 : kdepim-3.1.4-2 (2004-133)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2003-0988"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:kdepim-devel", "cpe:/o:fedoraproject:fedora_core:1", "p-cpe:/a:fedoraproject:fedora:kdepim", "p-cpe:/a:fedoraproject:fedora:kdepim-debuginfo"], "id": "FEDORA_2004-133.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=13708", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-133.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13708);\n script_version (\"1.14\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2003-0988\");\n script_xref(name:\"FEDORA\", value:\"2004-133\");\n\n script_name(english:\"Fedora Core 1 : kdepim-3.1.4-2 (2004-133)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the\nname CVE-2003-0988 to this issue.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-May/000134.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e8e5646f\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected kdepim, kdepim-debuginfo and / or kdepim-devel\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kdepim\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kdepim-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:kdepim-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/05/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 1.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC1\", reference:\"kdepim-3.1.4-2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"kdepim-debuginfo-3.1.4-2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"kdepim-devel-3.1.4-2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kdepim / kdepim-debuginfo / kdepim-devel\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:09", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n\r\n\r\nKDE Security Advisory: VCF file information reader vulnerability\r\nOriginal Release Date: 2004-01-14\r\nURL: http://www.kde.org/info/security/advisory-20040114-1.txt\r\n\r\n0. References\r\n\r\n\r\n1. Systems affected:\r\n\r\n All versions of kdepim as distributed with KDE versions 3.1.0\r\n through 3.1.4 inclusive. \r\n\r\n\r\n2. Overview:\r\n\r\n The KDE team has found a buffer overflow in the file \r\n information reader of VCF files. \r\n\r\n The Common Vulnerabilities and Exposures project (cve.mitre.org)\r\n has assigned the name CAN-2003-0988 to this issue.\r\n\r\n\r\n3. Impact:\r\n\r\n A carefully crafted .VCF file potentially enables local attackers\r\n to compromise the privacy of a victim's data or execute\r\n arbitrary commands with the victim's privileges. \r\n\r\n By default, file information reading is disabled for remote files.\r\n However, if previews are enabled for remote files, remote\r\n attackers may be able to compromise the victim's account.\r\n\r\n\r\n4. Solution:\r\n\r\n As a workaround, remove the kfile_vcf.desktop file.\r\n\r\n Users of KDE 3.1.x are advised to upgrade to KDE 3.1.5. A patch for\r\n KDE 3.1.4 is available for users who are unable to upgrade to \r\n KDE 3.1.5.\r\n\r\n\r\n5. Patch:\r\n\r\n A patch for KDE 3.1.4 is available from\r\n ftp://ftp.kde.org/pub/kde/security_patches : \r\n\r\n 26469366cc393e50ff80d6dca8c74c58 post-3.1.4-kdepim-kfile-plugins.diff\r\n\r\n\r\n6. Time line and credits:\r\n\r\n 15/12/2003 KDE developer Dirk Mueller discovers vulnerability.\r\n 15/12/2003 Patches for the vulnerability are applied to CVS and\r\n release preparations for KDE 3.1.5 are started.\r\n\r\n 14/01/2004 Public advisory.\r\n\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.2.3 (GNU/Linux)\r\n\r\niD8DBQFABUiwvsXr+iuy1UoRAmf2AKC4JiwDwfDXGME6SZkTF8sVqginEgCgisjC\r\nMLH9/a8f1cFs0iJ2ebdiShM=\r\n=Uoit\r\n-----END PGP SIGNATURE-----", "edition": 1, "reporter": "Securityvulns", "published": "2004-01-16T00:00:00", "title": "KDE Security Advisory: VCF file information reader vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:09", "vector": "NONE", "value": 9.3}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2003-0988"], "modified": "2004-01-16T00:00:00", "id": "SECURITYVULNS:DOC:5638", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:5638", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "slackware": [{"lastseen": "2018-08-31T02:37:05", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "9.1", "packageVersion": "3.1.4", "arch": "i486", "packageFilename": "kdepim-3.1.4-i486-2.tgz", "packageName": "kdepim", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "9.0", "packageVersion": "3.1.3", "arch": "i386", "packageFilename": "kdepim-3.1.3-i386-2.tgz", "packageName": "kdepim", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "9.0", "packageVersion": "3.1.3", "arch": "i386", "packageFilename": "kdebase-3.1.3-i386-2.tgz", "packageName": "kdebase", "operator": "lt"}], "description": "New kdepim packages are available for Slackware 9.0 and 9.1 to\nfix a security issue with .VCF file handling. For Slackware -current,\na complete upgrade to kde-3.1.5 is available.\n\n\nHere are the details from the Slackware 9.1 ChangeLog:\n\nWed Jan 14 11:58:58 PST 2004\npatches/packages/kdepim-3.1.4-i486-2.tgz: Recompiled with security patch\n post-3.1.4-kdepim-kfile-plugins.diff. From the KDE advisory:\n\n The KDE team has found a buffer overflow in the file information reader\n of VCF files. A carefully crafted .VCF file potentially enables local\n attackers to compromise the privacy of a victim's data or execute\n arbitrary commands with the victim's privileges.\n By default, file information reading is disabled for remote files.\n However, if previews are enabled for remote files, remote attackers may\n be able to compromise the victim's account.\n\n For more details, see:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0988\n (* Security fix *)\n\nWHERE TO FIND THE NEW PACKAGES:\n\nUpdated packages for Slackware 9.0:\nftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/kde/kdepim-3.1.3-i386-2.tgz\nftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/kde/kdebase-3.1.3-i386-2.tgz\n\nUpdated package for Slackware 9.1:\nftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/kdepim-3.1.4-i486-2.tgz\n\nUpdated packages for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/kde/*.tgz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/kdei/*.tgz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/arts-1.1.5-i486-1.tgz\n\n\nMD5 SIGNATURES:\n\nMD5 signatures may be downloaded from our FTP server:\n\nSlackware 9.0 packages:\nftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/CHECKSUMS.md5\n\nTo verify authenticity, this file has been signed with the Slackware\nGPG key (use 'gpg --verify'):\n\nftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/CHECKSUMS.md5.asc\n\nSlackware 9.1 packages:\nftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/CHECKSUMS.md5\nftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/CHECKSUMS.md5.asc\n\nSlackware -current packages:\nftp://ftp.slackware.com/pub/slackware/slackware-current/CHECKSUMS.md5\nftp://ftp.slackware.com/pub/slackware/slackware-current/CHECKSUMS.md5.asc\n\n\nINSTALLATION INSTRUCTIONS:\n\nAs root, upgrade the package(s) using upgradepkg:\n > upgradepkg *.tgz", "edition": 3, "reporter": "Slackware Linux Project", "published": "2004-01-14T21:43:35", "title": "kdepim security update", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2003-0988"], "modified": "2004-01-14T21:43:35", "id": "SSA-2004-014-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.442811", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2017-08-02T22:58:08", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "3.1.3-3.3", "packageFilename": "kdepim-3.1.3-3.3.ia64.rpm", "packageName": "kdepim", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "3.1.3-3.3", "packageFilename": "kdepim-devel-3.1.3-3.3.ia64.rpm", "packageName": "kdepim-devel", "arch": "ia64", "operator": "lt"}], "description": "The K Desktop Environment (KDE) is a graphical desktop for the X Window\nSystem. The KDE Personal Information Management (kdepim) suite helps you to\norganize your mail, tasks, appointments, and contacts. \n\nThe KDE team found a buffer overflow in the file information reader of\nVCF files. An attacker could construct a VCF file so that when it was\nopened by a victim it would execute arbitrary commands. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2003-0988 to this issue.\n\nUsers of kdepim are advised to upgrade to these erratum packages which\ncontain a backported security patch that corrects this issue.", "reporter": "RedHat", "published": "2004-01-14T05:00:00", "type": "redhat", "title": "(RHSA-2004:005) kdepim security update", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2003-0988"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-07-29T20:34:15", "id": "RHSA-2004:005", "href": "https://access.redhat.com/errata/RHSA-2004:005", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:19:58", "references": [], "edition": 1, "description": "# No description provided by the source\n\n## References:\n[Secunia Advisory ID:10625](https://secuniaresearch.flexerasoftware.com/advisories/10625/)\n[Secunia Advisory ID:11666](https://secuniaresearch.flexerasoftware.com/advisories/11666/)\nRedHat RHSA: RHSA-2004:005\nRedHat RHSA: RHSA-2004:006\n[CVE-2003-0988](https://vulners.com/cve/CVE-2003-0988)\n", "reporter": "OSVDB", "published": "2004-01-14T13:48:15", "title": "KDE kdepim VCF File handling Overflow", "type": "osvdb", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2003-0988"], "modified": "2004-01-14T13:48:15", "href": "https://vulners.com/osvdb/OSVDB:3472", "id": "OSVDB:3472", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:31", "references": ["http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0988", "https://bugs.gentoo.org/show_bug.cgi?id=38256"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "3.1.4", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "kde-base/kde", "operator": "le"}], "edition": 1, "description": "### Background\n\nKDE-PIM is an application suite designed to manage mail, addresses, appointments, and contacts. \n\n### Description\n\nA buffer overflow may occur in KDE-PIM's VCF file reader when a maliciously crafted VCF file is opened by a user on a vulnerable system. \n\n### Impact\n\nA remote attacker may unauthorized access to a user's personal data or execute commands with the user's privileges. \n\n### Workaround\n\nA workaround is not currently known for this issue. All users are advised to upgrade to the latest version of the affected package. \n\n### Resolution\n\nKDE users should upgrade to version 3.1.5 or later: \n \n \n # emerge sync\n \n # emerge -pv \">=kde-base/kde-3.1.5\"\n # emerge \">=kde-base/kde-3.1.5\"", "reporter": "Gentoo Foundation", "published": "2004-04-06T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "gentoo", "title": "KDE Personal Information Management Suite Remote Buffer Overflow Vulnerability", "bulletinFamily": "unix", "cvelist": ["CVE-2003-0988"], "modified": "2004-04-06T00:00:00", "id": "GLSA-200404-02", "href": "https://security.gentoo.org/glsa/200404-02", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
