Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20090923_CYRUS_IMAPD_ON_SL4_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : cyrus-imapd on SL4.x, SL5.x i386/x86_64

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

CVE-2009-2632 cyrus-imapd: buffer overflow in cyrus sieve

CVE-2009-3235 cyrus-impad: CMU sieve buffer overflows

Multiple buffer overflow flaws were found in the Cyrus IMAP Sieve implementation. An authenticated user able to create Sieve mail filtering rules could use these flaws to execute arbitrary code with the privileges of the Cyrus IMAP server user. (CVE-2009-2632, CVE-2009-3235)

After installing the update, cyrus-imapd will be restarted automatically.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60669);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-2632", "CVE-2009-3235");

  script_name(english:"Scientific Linux Security Update : cyrus-imapd on SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"CVE-2009-2632 cyrus-imapd: buffer overflow in cyrus sieve

CVE-2009-3235 cyrus-impad: CMU sieve buffer overflows

Multiple buffer overflow flaws were found in the Cyrus IMAP Sieve
implementation. An authenticated user able to create Sieve mail
filtering rules could use these flaws to execute arbitrary code with
the privileges of the Cyrus IMAP server user. (CVE-2009-2632,
CVE-2009-3235)

After installing the update, cyrus-imapd will be restarted
automatically."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0909&L=scientific-linux-errata&T=0&P=2321
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f9014592"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/09/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL4", reference:"cyrus-imapd-2.2.12-10.el4_8.4")) flag++;
if (rpm_check(release:"SL4", reference:"cyrus-imapd-devel-2.2.12-10.el4_8.4")) flag++;
if (rpm_check(release:"SL4", reference:"cyrus-imapd-murder-2.2.12-10.el4_8.4")) flag++;
if (rpm_check(release:"SL4", reference:"cyrus-imapd-nntp-2.2.12-10.el4_8.4")) flag++;
if (rpm_check(release:"SL4", reference:"cyrus-imapd-utils-2.2.12-10.el4_8.4")) flag++;
if (rpm_check(release:"SL4", reference:"perl-Cyrus-2.2.12-10.el4_8.4")) flag++;

if (rpm_check(release:"SL5", reference:"cyrus-imapd-2.3.7-7.el5_4.3")) flag++;
if (rpm_check(release:"SL5", reference:"cyrus-imapd-devel-2.3.7-7.el5_4.3")) flag++;
if (rpm_check(release:"SL5", reference:"cyrus-imapd-perl-2.3.7-7.el5_4.3")) flag++;
if (rpm_check(release:"SL5", reference:"cyrus-imapd-utils-2.3.7-7.el5_4.3")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

debian 5
nessus 31
openvas 58
prion 2
cve 2
ubuntucve 2
osv 1
redhat 1
oraclelinux 1
debiancve 2
centos 1
ubuntu 1
fedora 3
cert 1
veracode 2
freebsd 1
gentoo 2
threatpost 1
debian
debian
[Backports-security-announce] Security update for dovecot
2009-10-01 18:15:41
[SECURITY] [DSA 1893-1] New cyrus-imapd-2.2/kolab-cyrus-imapd packages fix arbitrary code execution
2009-09-23 16:36:12
[Backports-security-announce] Security update for dovecot
2009-10-01 18:22:42
nessus
nessus
Oracle Linux 4 / 5 : cyrus-imapd (ELSA-2009-1459)
2013-07-12 00:00:00
openSUSE Security Update : dovecot (dovecot-1366)
2009-10-13 00:00:00
Fedora 10 : dovecot-1.1.18-2.fc10 (2009-9559)
2009-09-16 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2009-1459)
2015-10-08 00:00:00
Debian Security Advisory DSA 1892-1 (dovecot)
2009-09-28 00:00:00
Mandrake Security Advisory MDVSA-2009:242 (dovecot)
2009-09-28 00:00:00
prion
prion
Stack overflow
2009-09-17 10:30:00
Integer overflow
2009-09-08 23:30:00
cve
cve
CVE-2009-3235
2009-09-17 10:30:00
CVE-2009-2632
2009-09-08 23:30:00
ubuntucve
ubuntucve
CVE-2009-3235
2009-09-17 00:00:00
CVE-2009-2632
2009-09-08 00:00:00
osv
osv
dovecot - arbitrary code execution
2009-09-23 00:00:00
redhat
redhat
(RHSA-2009:1459) Important: cyrus-imapd security update
2009-09-23 00:00:00
oraclelinux
oraclelinux
cyrus-imapd security update
2009-09-23 00:00:00
debiancve
debiancve
CVE-2009-3235
2009-09-17 10:30:00
CVE-2009-2632
2009-09-08 23:30:00
centos
centos
cyrus, perl security update
2009-09-26 00:34:20
ubuntu
ubuntu
Dovecot vulnerabilities
2009-09-28 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: dovecot-1.1.18-2.fc10
2009-09-15 07:41:57
[SECURITY] Fedora 10 Update: cyrus-imapd-2.3.15-1.fc10
2009-09-24 05:17:25
[SECURITY] Fedora 11 Update: cyrus-imapd-2.3.15-1.fc11
2009-09-24 05:23:00
cert
cert
Cyrus IMAPd buffer overflow vulnerability
2009-09-09 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:38:24
Arbitrary Code Execution
2020-04-10 00:38:24
freebsd
freebsd
cyrus-imapd -- Potential buffer overflow in Sieve
2009-09-02 00:00:00
gentoo
gentoo
Cyrus IMAP Server: Multiple vulnerabilities
2011-10-22 00:00:00
Dovecot: Multiple vulnerabilities
2011-10-10 00:00:00
threatpost
threatpost
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44
JSON
Related for SL_20090923_CYRUS_IMAPD_ON_SL4_X.NASL
debian5nessus31openvas58prion2cve2ubuntucve2osv1redhat1oraclelinux1debiancve2centos1ubuntu1fedora3cert1veracode2freebsd1gentoo2threatpost1