Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20080121_WIRESHARK_ON_SL3_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : wireshark on SL3.x, SL4.x, SL5.x i386/x86_64

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
JSON

Several flaws were found in Wireshark. Wireshark could crash or possibly execute arbitrary code as the user running Wireshark if it read a malformed packet off the network. (CVE-2007-6112, CVE-2007-6114, CVE-2007-6115, CVE-2007-6117)

Several denial of service bugs were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off the network. (CVE-2007-3389, CVE-2007-3390, CVE-2007-3391, CVE-2007-3392, CVE-2007-3392, CVE-2007-3393, CVE-2007-6111, CVE-2007-6113, CVE-2007-6116, CVE-2007-6118, CVE-2007-6119, CVE-2007-6120, CVE-2007-6121, CVE-2007-6438, CVE-2007-6439, CVE-2007-6441, CVE-2007-6450, CVE-2007-6451)

As well, Wireshark switched from using net-snmp to libsmi, which is included in this errata.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60350);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-3389", "CVE-2007-3390", "CVE-2007-3391", "CVE-2007-3392", "CVE-2007-3393", "CVE-2007-6111", "CVE-2007-6112", "CVE-2007-6113", "CVE-2007-6114", "CVE-2007-6115", "CVE-2007-6116", "CVE-2007-6117", "CVE-2007-6118", "CVE-2007-6119", "CVE-2007-6120", "CVE-2007-6121", "CVE-2007-6438", "CVE-2007-6439", "CVE-2007-6441", "CVE-2007-6450", "CVE-2007-6451");

  script_name(english:"Scientific Linux Security Update : wireshark on SL3.x, SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several flaws were found in Wireshark. Wireshark could crash or
possibly execute arbitrary code as the user running Wireshark if it
read a malformed packet off the network. (CVE-2007-6112,
CVE-2007-6114, CVE-2007-6115, CVE-2007-6117)

Several denial of service bugs were found in Wireshark. Wireshark
could crash or stop responding if it read a malformed packet off the
network. (CVE-2007-3389, CVE-2007-3390, CVE-2007-3391, CVE-2007-3392,
CVE-2007-3392, CVE-2007-3393, CVE-2007-6111, CVE-2007-6113,
CVE-2007-6116, CVE-2007-6118, CVE-2007-6119, CVE-2007-6120,
CVE-2007-6121, CVE-2007-6438, CVE-2007-6439, CVE-2007-6441,
CVE-2007-6450, CVE-2007-6451)

As well, Wireshark switched from using net-snmp to libsmi, which is
included in this errata."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0801&L=scientific-linux-errata&T=0&P=1833
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?9a57f048"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(20, 119, 189, 264, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/06/25");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/01/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL3", reference:"libsmi-0.4.5-3.el3")) flag++;
if (rpm_check(release:"SL3", reference:"libsmi-devel-0.4.5-3.el3")) flag++;
if (rpm_check(release:"SL3", reference:"wireshark-0.99.7-EL3.1")) flag++;
if (rpm_check(release:"SL3", reference:"wireshark-gnome-0.99.7-EL3.1")) flag++;

if (rpm_check(release:"SL4", cpu:"i386", reference:"libsmi-0.4.5-2.el4_6")) flag++;
if (rpm_check(release:"SL4", cpu:"x86_64", reference:"libsmi-0.4.5-2")) flag++;
if (rpm_check(release:"SL4", cpu:"i386", reference:"libsmi-devel-0.4.5-2.el4_6")) flag++;
if (rpm_check(release:"SL4", cpu:"x86_64", reference:"libsmi-devel-0.4.5-2")) flag++;
if (rpm_check(release:"SL4", cpu:"i386", reference:"wireshark-0.99.7-1.el4_6")) flag++;
if (rpm_check(release:"SL4", cpu:"x86_64", reference:"wireshark-0.99.7-1")) flag++;
if (rpm_check(release:"SL4", cpu:"i386", reference:"wireshark-gnome-0.99.7-1.el4_6")) flag++;
if (rpm_check(release:"SL4", cpu:"x86_64", reference:"wireshark-gnome-0.99.7-1")) flag++;

if (rpm_check(release:"SL5", reference:"libsmi-0.4.5-2.el5")) flag++;
if (rpm_check(release:"SL5", reference:"libsmi-devel-0.4.5-2.el5")) flag++;
if (rpm_check(release:"SL5", reference:"wireshark-0.99.7-1.el5")) flag++;
if (rpm_check(release:"SL5", reference:"wireshark-gnome-0.99.7-1.el5")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

References

Related

nessus 27
openvas 31
centos 3
oraclelinux 3
redhat 4
altlinux 2
gentoo 2
fedora 2
freebsd 2
osv 3
securityvulns 5
debian 3
seebug 1
prion 24
debiancve 21
ubuntucve 21
cve 24
veracode 21
nessus
nessus
Mandriva Linux Security Advisory : wireshark (MDVSA-2008:001-1)
2009-04-23 00:00:00
Oracle Linux 4 / 5 : wireshark (ELSA-2008-0058)
2013-07-12 00:00:00
Debian DSA-1446-1 : wireshark - several vulnerabilities
2008-01-04 00:00:00
openvas
openvas
Mandriva Update for wireshark MDVSA-2008:001-1 (wireshark)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200712-23 (wireshark)
2008-09-24 00:00:00
RedHat Update for wireshark RHSA-2008:0058-01
2009-03-06 00:00:00
centos
centos
libsmi, wireshark security update
2008-01-21 17:15:49
libsmi, wireshark security update
2008-01-21 15:05:11
wireshark security update
2007-11-15 17:20:39
oraclelinux
oraclelinux
Moderate: wireshark security update
2008-01-22 00:00:00
wireshark security and bug fix update
2007-11-27 00:00:00
wireshark security update
2007-11-19 00:00:00
redhat
redhat
(RHSA-2008:0058) Moderate: wireshark security update
2008-01-21 00:00:00
(RHSA-2008:0059) Moderate: wireshark security update
2008-01-21 00:00:00
(RHSA-2007:0709) Low: wireshark security and bug fix update
2007-11-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package wireshark version 0.99.7-alt1
2007-12-23 00:00:00
Security fix for the ALT Linux 9 package wireshark version 0.99.6-alt1
2007-07-06 00:00:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2007-12-30 00:00:00
Wireshark: Multiple vulnerabilities
2007-08-16 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: wireshark-0.99.7-1.fc7
2007-12-21 21:09:16
[SECURITY] Fedora 8 Update: wireshark-0.99.7-2.fc8
2007-12-20 19:51:33
freebsd
freebsd
wireshark -- multiple vulnerabilities
2007-12-19 00:00:00
wireshark -- Multiple problems
2007-06-29 00:00:00
osv
osv
wireshark - several vulnerabilities
2007-11-27 00:00:00
wireshark
2007-06-27 00:00:00
wireshark denial of service
2008-01-03 00:00:00
securityvulns
securityvulns
WireShark sniffer multiple security vulnerabilities
2007-11-29 00:00:00
[SECURITY] [DSA 1414-1] New wireshark packages fix several vulnerabilities
2007-11-29 00:00:00
Wireshark DoS
2007-08-17 00:00:00
debian
debian
[SECURITY] [DSA 1414-1] New wireshark packages fix several vulnerabilities
2007-11-27 00:39:25
[SECURITY] [DSA 1322-1] New wireshark packages fix denial of service
2007-06-27 20:57:25
[SECURITY] [DSA 1446-1] New wireshark packages fix denial of service
2008-01-03 21:31:39
seebug
seebug
Wiresharkๅคšไธชๅ่ฎฎๅค„็†ๆจกๅ—่ฟœ็จ‹ๆ‹’็ปๆœๅŠกๆผๆดž
2007-06-29 00:00:00
prion
prion
Code injection
2007-12-19 22:46:00
Code injection
2007-12-19 22:46:00
Code injection
2007-11-23 20:46:00
debiancve
debiancve
CVE-2007-6439
2007-12-19 22:46:00
CVE-2007-6438
2007-12-19 22:46:00
CVE-2007-6118
2007-11-23 20:46:00
ubuntucve
ubuntucve
CVE-2007-6439
2007-12-19 00:00:00
CVE-2007-6438
2007-12-19 00:00:00
CVE-2007-6115
2007-11-23 00:00:00
cve
cve
CVE-2007-6439
2007-12-19 22:46:00
CVE-2007-6438
2007-12-19 22:46:00
CVE-2007-6119
2007-11-23 20:46:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:23:14
Denial Of Service (DoS)
2020-04-10 00:23:12
Denial Of Service (DoS)
2020-04-10 00:23:13
JSON
Related for SL_20080121_WIRESHARK_ON_SL3_X.NASL
nessus27openvas31centos3oraclelinux3redhat4altlinux2gentoo2fedora2freebsd2osv3securityvulns5debian3seebug1prion24debiancve21ubuntucve21cve24veracode21