Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.SOLARIS10_119059_46.NASL
HistoryApr 02, 2015 - 12:00 a.m.

Solaris 10 (sparc) : 119059-46

2015-04-0200:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
12

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.168 Low

EPSS

Percentile

96.1%

JSON

X11 6.6.2: Xsun patch.
This patch addresses IAVT 2009-T-0001.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text in this plugin was
# extracted from the Oracle SunOS Patch Updates.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(82536);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id(
    "CVE-2005-2495",
    "CVE-2005-3099",
    "CVE-2006-3467",
    "CVE-2006-3739",
    "CVE-2007-1667",
    "CVE-2007-4070",
    "CVE-2008-5684"
  );
  script_bugtraq_id(
    14807,
    18034,
    19974,
    23300,
    32807
  );

  script_name(english:"Solaris 10 (sparc) : 119059-46");
  script_summary(english:"Checks for patch 119059-46.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote host is missing Sun security patch number 119059-46."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"X11 6.6.2: Xsun patch.
This patch addresses IAVT 2009-T-0001."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://getupdates.oracle.com/readme/119059-46"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"You should install this patch for your system to be up-to-date."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(189, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris");

  script_set_attribute(attribute:"vuln_publication_date", value:"2005/09/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/12/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/04/02");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"Solaris Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("solaris.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwsrv", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwplr", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwrtl", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwice", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwfs", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwxst", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwinc", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwfnt", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwpmn", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwplt", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwopt", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwacx", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;
if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"119059-46", obsoleted_by:"", package:"SUNWxwman", version:"6.6.2.7400,REV=0.2004.12.15") < 0) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report());
  else security_hole(0);
  exit(0);
}
audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
sunsolariscpe:/o:sun:solaris

Related

nessus 80
osv 2
openvas 40
debian 3
cve 7
prion 4
cvelist 8
ubuntu 6
centos 10
nvd 8
redhat 8
gentoo 4
suse 2
cert 1
securityvulns 2
freebsd 1
debiancve 3
slackware 2
ubuntucve 4
fedora 2
oraclelinux 1
veracode 1
nessus
nessus
Solaris 10 (sparc) : 119059-73 (deprecated)
2006-11-06 00:00:00
Solaris 10 (sparc) : 119059-66
2018-03-12 00:00:00
Solaris 10 (x86) : 119060-68
2018-03-12 00:00:00
osv
osv
xfree86
2006-10-09 00:00:00
xfree86 - integer overflow
2005-09-19 00:00:00
openvas
openvas
Debian Security Advisory DSA 1193-1 (xfree86)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1193-1)
2008-01-17 00:00:00
FreeBSD Ports: XFree86-Server
2008-09-04 00:00:00
debian
debian
[SECURITY] [DSA 1193-1] New XFree86 packages fix several vulnerabilities
2006-10-09 16:58:41
[SECURITY] [DSA 1178-1] New freetype packages fix execution of arbitrary code
2006-09-16 17:50:59
[SECURITY] [DSA 816-1] New XFree86 packages fix arbitrary code execution
2005-09-22 08:57:47
cve
cve
CVE-2008-5684
2008-12-19 17:30:03
CVE-2005-2495
2005-09-15 20:03:00
CVE-2005-3099
2005-09-28 23:03:00
prion
prion
Session fixation
2008-12-19 17:30:00
Design/Logic Flaw
2007-07-30 17:30:00
Integer overflow
2007-03-24 21:19:00
cvelist
cvelist
CVE-2008-5684
2008-12-19 17:00:00
CVE-2005-3099
2005-09-28 04:00:00
CVE-2006-3739
2006-09-13 01:00:00
ubuntu
ubuntu
X server vulnerability
2005-09-12 00:00:00
freetype vulnerability
2006-07-28 00:00:00
libxfont vulnerability
2006-09-07 00:00:00
centos
centos
XFree86 security update
2005-09-13 23:21:44
xorg security update
2005-09-13 18:53:55
XFree86 security update
2006-08-22 12:09:22
nvd
nvd
CVE-2005-2495
2005-09-15 20:03:00
CVE-2008-5684
2008-12-19 17:30:03
CVE-2005-3099
2005-09-28 23:03:00
redhat
redhat
(RHSA-2005:396) xorg-x11 security update
2005-09-13 00:00:00
(RHSA-2005:501) XFree86 security update
2005-09-15 00:00:00
(RHSA-2006:0634) xorg-x11 security update
2006-08-21 00:00:00
gentoo
gentoo
X.Org: Heap overflow in pixmap allocation
2005-09-12 00:00:00
LibXfont: Multiple integer overflows
2006-09-06 00:00:00
X.Org X11 library: Multiple integer overflows
2007-05-05 00:00:00
suse
suse
remote command execution in XFree86-server,xorg-x11-server
2005-09-26 13:04:19
possible code execution in freetype2
2006-08-01 16:43:51
cert
cert
Multiple X servers fail to properly allocate memory for large pixmaps
2005-09-13 00:00:00
securityvulns
securityvulns
[Full-disclosure] [USN-182-1] X server vulnerability
2005-09-12 00:00:00
X.Org libx11 library buffer overflow
2007-03-25 00:00:00
freebsd
freebsd
X11 server -- pixmap allocation vulnerability
2005-09-12 00:00:00
debiancve
debiancve
CVE-2006-3739
2006-09-13 01:07:00
CVE-2007-1667
2007-03-24 21:19:00
CVE-2006-3467
2006-07-21 14:03:00
slackware
slackware
X.Org pixmap overflow
2005-09-26 10:43:04
[slackware-security] x11
2006-09-17 05:14:08
ubuntucve
ubuntucve
CVE-2005-2495
2005-09-15 00:00:00
CVE-2006-3739
2006-09-13 00:00:00
CVE-2007-1667
2007-03-24 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: libX11-1.0.3-7.fc6
2007-04-10 16:51:20
[SECURITY] Fedora Core 5 Update: libX11-1.0.0-4.fc5
2007-04-10 16:52:48
oraclelinux
oraclelinux
Moderate: xorg-x11-apps/libX11 security updates
2007-06-26 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:13:16

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.168 Low

EPSS

Percentile

96.1%

JSON
Related for SOLARIS10_119059_46.NASL
nessus80osv2openvas40debian3cve7prion4cvelist8ubuntu6centos10nvd8redhat8gentoo4suse2cert1securityvulns2freebsd1debiancve3slackware2ubuntucve4fedora2oraclelinux1veracode1