Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20100617_CUPS_ON_SL3_X.NASLHistoryAug 01, 2012 - 12:00 a.m.
Scientific Linux Security Update : cups on SL3.x, SL4.x, SL5.x i386/x86_64
2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
A missing memory allocation failure check flaw, leading to a NULL pointer dereference, was found in the CUPS βtexttopsβ filter. An attacker could create a malicious text file that would cause βtexttopsβ to crash or, potentially, execute arbitrary code as the βlpβ user if the file was printed. (CVE-2010-0542)
A Cross-Site Request Forgery (CSRF) issue was found in the CUPS web interface. If a remote attacker could trick a user, who is logged into the CUPS web interface as an administrator, into visiting a specially crafted website, the attacker could reconfigure and disable CUPS, and gain access to print jobs and system files. (CVE-2010-0540)
Note: As a result of the fix for CVE-2010-0540, cookies must now be enabled in your web browser to use the CUPS web interface.
An uninitialized memory read issue was found in the CUPS web interface. If an attacker had access to the CUPS web interface, they could use a specially crafted URL to leverage this flaw to read a limited amount of memory from the cupsd process, possibly obtaining sensitive information. (CVE-2010-1748)
After installing this update, the cupsd daemon will be restarted automatically.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(60806);
script_version("1.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2010-0540", "CVE-2010-0542", "CVE-2010-1748");
script_name(english:"Scientific Linux Security Update : cups on SL3.x, SL4.x, SL5.x i386/x86_64");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"A missing memory allocation failure check flaw, leading to a NULL
pointer dereference, was found in the CUPS 'texttops' filter. An
attacker could create a malicious text file that would cause
'texttops' to crash or, potentially, execute arbitrary code as the
'lp' user if the file was printed. (CVE-2010-0542)
A Cross-Site Request Forgery (CSRF) issue was found in the CUPS web
interface. If a remote attacker could trick a user, who is logged into
the CUPS web interface as an administrator, into visiting a specially
crafted website, the attacker could reconfigure and disable CUPS, and
gain access to print jobs and system files. (CVE-2010-0540)
Note: As a result of the fix for CVE-2010-0540, cookies must now be
enabled in your web browser to use the CUPS web interface.
An uninitialized memory read issue was found in the CUPS web
interface. If an attacker had access to the CUPS web interface, they
could use a specially crafted URL to leverage this flaw to read a
limited amount of memory from the cupsd process, possibly obtaining
sensitive information. (CVE-2010-1748)
After installing this update, the cupsd daemon will be restarted
automatically."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1006&L=scientific-linux-errata&T=0&P=1894
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?b439d36e"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"patch_publication_date", value:"2010/06/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL3", reference:"cups-1.1.17-13.3.65")) flag++;
if (rpm_check(release:"SL3", reference:"cups-devel-1.1.17-13.3.65")) flag++;
if (rpm_check(release:"SL3", reference:"cups-libs-1.1.17-13.3.65")) flag++;
if (rpm_check(release:"SL4", reference:"cups-1.1.22-0.rc1.9.32.el4_8.6")) flag++;
if (rpm_check(release:"SL4", reference:"cups-devel-1.1.22-0.rc1.9.32.el4_8.6")) flag++;
if (rpm_check(release:"SL4", reference:"cups-libs-1.1.22-0.rc1.9.32.el4_8.6")) flag++;
if (rpm_check(release:"SL5", reference:"cups-1.3.7-18.el5_5.4")) flag++;
if (rpm_check(release:"SL5", reference:"cups-devel-1.3.7-18.el5_5.4")) flag++;
if (rpm_check(release:"SL5", reference:"cups-libs-1.3.7-18.el5_5.4")) flag++;
if (rpm_check(release:"SL5", reference:"cups-lpd-1.3.7-18.el5_5.4")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
nessus
nessus
Fedora 11 : cups-1.4.4-4.fc11 (2010-10066)
2010-07-01 00:00:00
RHEL 3 / 4 / 5 : cups (RHSA-2010:0490)
2010-06-18 00:00:00
oraclelinux
oraclelinux
cups security update
2010-06-17 00:00:00
openvas
openvas
RedHat Update for cups RHSA-2010:0490-01
2010-06-18 00:00:00
Slackware Advisory SSA:2010-176-05 cups
2012-09-11 00:00:00
Oracle Linux Local Check: ELSA-2010-0490
2015-10-06 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2010-06-21 00:00:00
centos
centos
cups security update
2010-06-19 23:35:01
redhat
redhat
(RHSA-2010:0490) Important: cups security update
2010-06-17 00:00:00
slackware
slackware
[slackware-security] cups
2010-06-25 18:33:46
fedora
fedora
[SECURITY] Fedora 13 Update: cups-1.4.4-5.fc13
2010-07-01 18:44:56
[SECURITY] Fedora 12 Update: cups-1.4.4-5.fc12
2010-07-27 02:46:22
[SECURITY] Fedora 11 Update: cups-1.4.4-4.fc11
2010-06-25 18:10:49
osv
osv
cups - several
2011-03-02 00:00:00
debian
debian
[SECURITY] [DSA 2176-1] cups security update
2011-03-01 23:31:10
seebug
seebug
CUPS texttopsθΏζ»€ε¨η©ΊζιεΌη¨ζΌζ΄
2010-06-21 00:00:00
Mac OS X CUPS Webηι’δΏ‘ζ―ζ³ι²ζΌζ΄
2010-06-21 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:44:30
Information Disclosure
2020-04-10 00:44:31
Cross-site Request Forgery (CSRF)
2020-04-10 00:44:30
cve
cve
debiancve
debiancve
prion
prion
Cross site request forgery (csrf)
2010-06-17 16:30:00
Null pointer dereference
2010-06-21 16:30:00
Design/Logic Flaw
2010-06-17 16:30:00
ubuntucve
ubuntucve
gentoo
gentoo
CUPS: Multiple vulnerabilities
2012-07-09 00:00:00
Related for SL_20100617_CUPS_ON_SL3_X.NASL