Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20130226_DBUS_GLIB_ON_SL5_X.NASL
HistoryMar 01, 2013 - 12:00 a.m.

Scientific Linux Security Update : dbus-glib on SL5.x, SL6.x i386/x86_64 (20130226)

2013-03-0100:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

A flaw was found in the way dbus-glib filtered the message sender (message source subject) when the ‘NameOwnerChanged’ signal was received. This could trick a system service using dbus-glib (such as fprintd) into believing a signal was sent from a privileged process, when it was not. A local attacker could use this flaw to escalate their privileges. (CVE-2013-0292)

All running applications linked against dbus-glib, such as fprintd and NetworkManager, must be restarted for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(64962);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2013-0292");

  script_name(english:"Scientific Linux Security Update : dbus-glib on SL5.x, SL6.x i386/x86_64 (20130226)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A flaw was found in the way dbus-glib filtered the message sender
(message source subject) when the 'NameOwnerChanged' signal was
received. This could trick a system service using dbus-glib (such as
fprintd) into believing a signal was sent from a privileged process,
when it was not. A local attacker could use this flaw to escalate
their privileges. (CVE-2013-0292)

All running applications linked against dbus-glib, such as fprintd and
NetworkManager, must be restarted for this update to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1302&L=scientific-linux-errata&T=0&P=5781
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?27c84ea0"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected dbus-glib, dbus-glib-debuginfo and / or
dbus-glib-devel packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:dbus-glib");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:dbus-glib-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:dbus-glib-devel");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/03/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/02/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/03/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL5", reference:"dbus-glib-0.73-11.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"dbus-glib-debuginfo-0.73-11.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"dbus-glib-devel-0.73-11.el5_9")) flag++;

if (rpm_check(release:"SL6", reference:"dbus-glib-0.86-6.el6_4")) flag++;
if (rpm_check(release:"SL6", reference:"dbus-glib-debuginfo-0.86-6.el6_4")) flag++;
if (rpm_check(release:"SL6", reference:"dbus-glib-devel-0.86-6.el6_4")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "dbus-glib / dbus-glib-debuginfo / dbus-glib-devel");
}
VendorProductVersionCPE
fermilabscientific_linuxdbus-glibp-cpe:/a:fermilab:scientific_linux:dbus-glib
fermilabscientific_linuxdbus-glib-debuginfop-cpe:/a:fermilab:scientific_linux:dbus-glib-debuginfo
fermilabscientific_linuxdbus-glib-develp-cpe:/a:fermilab:scientific_linux:dbus-glib-devel
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

securityvulns 2
nessus 10
veracode 2
centos 1
openvas 13
cve 1
ubuntucve 1
redhat 2
fedora 2
ubuntu 1
zdt 1
prion 1
oraclelinux 1
debiancve 1
freebsd 1
cvelist 1
securityvulns
securityvulns
dbus-glib privilege escalation
2013-03-02 00:00:00
[USN-1753-1] DBus-GLib vulnerability
2013-03-02 00:00:00
nessus
nessus
Oracle Linux 5 / 6 : dbus-glib (ELSA-2013-0568)
2013-07-12 00:00:00
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : dbus-glib vulnerability (USN-1753-1)
2013-02-28 00:00:00
FreeBSD : dbus-glib -- privledge escalation (77bb0541-c1aa-11e3-a5ac-001b21614864)
2014-04-16 00:00:00
veracode
veracode
Local Privilege Escalation
2018-07-17 08:04:46
Local Privilege Escalation
2019-01-15 08:58:34
centos
centos
dbus security update
2013-02-27 20:09:18
openvas
openvas
Oracle: Security Advisory (ELSA-2013-0568)
2015-10-06 00:00:00
Ubuntu Update for dbus-glib USN-1753-1
2013-03-01 00:00:00
RedHat Update for dbus-glib RHSA-2013:0568-01
2013-03-01 00:00:00
cve
cve
CVE-2013-0292
2013-03-05 21:38:00
ubuntucve
ubuntucve
CVE-2013-0292
2013-02-15 00:00:00
redhat
redhat
(RHSA-2013:0568) Important: dbus-glib security update
2013-02-26 00:00:00
(RHSA-2013:0636) Important: rhev-hypervisor6 security and bug fix update
2013-03-13 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: dbus-glib-0.100-3.fc18
2013-07-13 02:01:16
[SECURITY] Fedora 19 Update: dbus-glib-0.100-5.fc19
2013-07-08 00:57:38
ubuntu
ubuntu
DBus-GLib vulnerability
2013-02-27 00:00:00
zdt
zdt
dbus-glib pam_fprintd - Local Root Exploit
2014-06-03 00:00:00
prion
prion
Design/Logic Flaw
2013-03-05 21:38:00
oraclelinux
oraclelinux
dbus-glib security update
2013-02-27 00:00:00
debiancve
debiancve
CVE-2013-0292
2013-03-05 21:38:00
freebsd
freebsd
dbus-glib -- privledge escalation
2013-02-15 00:00:00
cvelist
cvelist
CVE-2013-0292
2013-03-04 21:00:00
JSON
Related for SL_20130226_DBUS_GLIB_ON_SL5_X.NASL
securityvulns2nessus10veracode2centos1openvas13cve1ubuntucve1redhat2fedora2ubuntu1zdt1prion1oraclelinux1debiancve1freebsd1cvelist1