Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20120322_RAPTOR_ON_SL6_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : raptor on SL6.x i386/x86_64 (20120322)

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON

Raptor provides parsers for Resource Description Framework (RDF) files.

An XML External Entity expansion flaw was found in the way Raptor processed RDF files. If an application linked against Raptor were to open a specially crafted RDF file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running the application had access to. A bug in the way Raptor handled external entities could cause that application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2012-0037)

All Raptor users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. All running applications linked against Raptor must be restarted for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(61288);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2012-0037");

  script_name(english:"Scientific Linux Security Update : raptor on SL6.x i386/x86_64 (20120322)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Raptor provides parsers for Resource Description Framework (RDF)
files.

An XML External Entity expansion flaw was found in the way Raptor
processed RDF files. If an application linked against Raptor were to
open a specially crafted RDF file, it could possibly allow a remote
attacker to obtain a copy of an arbitrary local file that the user
running the application had access to. A bug in the way Raptor handled
external entities could cause that application to crash or, possibly,
execute arbitrary code with the privileges of the user running the
application. (CVE-2012-0037)

All Raptor users are advised to upgrade to these updated packages,
which contain a backported patch to correct this issue. All running
applications linked against Raptor must be restarted for this update
to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1203&L=scientific-linux-errata&T=0&P=4178
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?fbce8000"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected raptor, raptor-debuginfo and / or raptor-devel
packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:raptor");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:raptor-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:raptor-devel");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/03/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL6", reference:"raptor-1.4.18-5.el6_2.1")) flag++;
if (rpm_check(release:"SL6", reference:"raptor-debuginfo-1.4.18-5.el6_2.1")) flag++;
if (rpm_check(release:"SL6", reference:"raptor-devel-1.4.18-5.el6_2.1")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "raptor / raptor-debuginfo / raptor-devel");
}
VendorProductVersionCPE
fermilabscientific_linuxraptorp-cpe:/a:fermilab:scientific_linux:raptor
fermilabscientific_linuxraptor-debuginfop-cpe:/a:fermilab:scientific_linux:raptor-debuginfo
fermilabscientific_linuxraptor-develp-cpe:/a:fermilab:scientific_linux:raptor-devel
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

redhat 2
fedora 4
prion 1
securityvulns 3
openvas 31
nessus 28
cvelist 1
ubuntucve 1
debian 1
cve 1
veracode 1
freebsd 1
ubuntu 2
seebug 1
centos 2
oraclelinux 1
rosalinux 1
nvd 1
gentoo 2
redhat
redhat
(RHSA-2012:0410) Important: raptor security update
2012-03-22 00:00:00
(RHSA-2012:0411) Important: openoffice.org security update
2012-03-22 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: raptor-1.4.21-12.fc17
2012-07-30 22:27:56
[SECURITY] Fedora 17 Update: raptor2-2.0.7-1.fc17
2012-04-12 02:56:09
[SECURITY] Fedora 16 Update: raptor2-2.0.7-1.fc16
2012-04-12 11:35:14
prion
prion
Xxe
2012-06-17 03:41:00
securityvulns
securityvulns
raptor library &#40;libreoffice / openoffice&#41; file injection
2012-04-02 00:00:00
[SECURITY] [DSA 2438-1] raptor security update
2012-03-26 00:00:00
CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation &#40;Multiple office products affected&#41;
2012-04-02 00:00:00
openvas
openvas
Fedora Update for raptor FEDORA-2012-10591
2012-08-30 00:00:00
Debian: Security Advisory (DSA-2438-1)
2012-04-30 00:00:00
FreeBSD Ports: raptor2
2012-04-30 00:00:00
nessus
nessus
Fedora 16 : raptor2-2.0.7-1.fc16 (2012-4663)
2012-04-13 00:00:00
Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : raptor vulnerability (USN-1480-1)
2012-06-19 00:00:00
Fedora 17 : raptor-1.4.21-12.fc17 (2012-10591)
2012-07-31 00:00:00
cvelist
cvelist
CVE-2012-0037
2012-06-17 01:00:00
ubuntucve
ubuntucve
CVE-2012-0037
2012-03-22 00:00:00
debian
debian
[SECURITY] [DSA 2438-1] raptor security update
2012-03-22 16:44:46
cve
cve
CVE-2012-0037
2012-06-17 03:41:40
veracode
veracode
XML External Entity Expansion
2020-04-10 01:12:37
freebsd
freebsd
raptor/raptor2 -- XXE in RDF/XML File Interpretation
2012-03-24 00:00:00
ubuntu
ubuntu
Raptor vulnerability
2012-06-18 00:00:00
Raptor vulnerability
2013-07-08 00:00:00
seebug
seebug
OpenOffice ODF文档信息泄露漏洞
2012-03-23 00:00:00
centos
centos
openoffice.org security update
2012-03-23 18:34:12
raptor security update
2012-03-22 20:07:09
oraclelinux
oraclelinux
raptor security update
2012-03-22 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1961
2021-07-02 18:04:27
nvd
nvd
CVE-2012-0037
2012-06-17 03:41:40
gentoo
gentoo
LibreOffice: Multiple vulnerabilities
2012-09-24 00:00:00
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON
Related for SL_20120322_RAPTOR_ON_SL6_X.NASL
redhat2fedora4prion1securityvulns3openvas31nessus28cvelist1ubuntucve1debian1cve1veracode1freebsd1ubuntu2seebug1centos2oraclelinux1rosalinux1nvd1gentoo2