Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 Tenable Network Security, Inc.SUSE9_12622.NASL
HistoryJul 01, 2010 - 12:00 a.m.

SuSE9 Security Update : Samba (YOU Patch Number 12622)

2010-07-0100:00:00
This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.
www.tenable.com
17
JSON

This update of the Samba server package fixes the following security issue :

  • A buffer overrun was possible in chain_reply code in 3.3.x and below, which could be used to crash the samba server or potentially execute code. (CVE-2010-2063)

Also, the following bug has been fixed :

  • An uninitialized variable read could cause smbd to crash (bso#7254, bnc#605935).
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text description of this plugin is (C) Novell, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(47568);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2010-2063");

  script_name(english:"SuSE9 Security Update : Samba (YOU Patch Number 12622)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 9 host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of the Samba server package fixes the following security
issue :

  - A buffer overrun was possible in chain_reply code in
    3.3.x and below, which could be used to crash the samba
    server or potentially execute code. (CVE-2010-2063)

Also, the following bug has been fixed :

  - An uninitialized variable read could cause smbd to crash
    (bso#7254, bnc#605935)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-2063.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply YOU patch number 12622.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Samba chain_reply Memory Corruption (Linux x86)');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:suse:suse_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/06/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/07/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/SuSE/release")) exit(0, "The host is not running SuSE.");
if (!get_kb_item("Host/SuSE/rpm-list")) exit(1, "Could not obtain the list of installed packages.");

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) exit(1, "Failed to determine the architecture type.");
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") exit(1, "Local checks for SuSE 9 on the '"+cpu+"' architecture have not been implemented.");


flag = 0;
if (rpm_check(release:"SUSE9", reference:"libsmbclient-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"libsmbclient-devel-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-client-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-doc-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-pdb-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-python-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-vscan-0.3.6b-0.43")) flag++;
if (rpm_check(release:"SUSE9", reference:"samba-winbind-3.0.26a-0.15")) flag++;
if (rpm_check(release:"SUSE9", cpu:"x86_64", reference:"libsmbclient-32bit-9-201006132231")) flag++;
if (rpm_check(release:"SUSE9", cpu:"x86_64", reference:"samba-32bit-9-201006132231")) flag++;
if (rpm_check(release:"SUSE9", cpu:"x86_64", reference:"samba-client-32bit-9-201006132231")) flag++;
if (rpm_check(release:"SUSE9", cpu:"x86_64", reference:"samba-winbind-32bit-9-201006132231")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else exit(0, "The host is not affected.");
VendorProductVersionCPE
susesuse_linuxcpe:/o:suse:suse_linux

Related

nessus 18
veracode 1
osv 1
debian 1
securityvulns 2
openvas 25
slackware 1
seebug 2
cvelist 1
f5 2
cve 1
redhat 1
debiancve 1
ubuntu 1
prion 1
altlinux 1
packetstorm 1
oraclelinux 1
centos 1
checkpoint_advisories 1
ubuntucve 1
samba 1
suse 2
vmware 2
gentoo 1
nessus
nessus
Mandriva Linux Security Advisory : samba (MDVSA-2010:119)
2010-06-18 00:00:00
Scientific Linux Security Update : samba and samba3x on SL5.x i386/x86_64
2012-08-01 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 : samba vulnerability (USN-951-1)
2010-06-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:49:16
osv
osv
samba - arbitrary code execution
2010-06-16 00:00:00
debian
debian
[SECURITY] [DSA 2061-1] New samba packages fix arbitrary code execution
2010-06-16 20:41:13
securityvulns
securityvulns
iDefense Security Advisory 06.16.10: Samba 3.3.12 Memory Corruption Vulnerability
2010-06-20 00:00:00
Samba buffer overflow
2010-06-20 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2010-0488)
2015-10-06 00:00:00
Mandriva Update for samba MDVSA-2010:119 (samba)
2010-06-18 00:00:00
Mandriva Update for samba MDVSA-2010:119 (samba)
2010-06-18 00:00:00
slackware
slackware
[slackware-security] samba
2010-06-18 21:10:09
seebug
seebug
Samba SMB1报文链接远程内存破坏漏洞
2010-06-18 00:00:00
VMware ESX Service Console多个安全漏洞
2012-01-13 00:00:00
cvelist
cvelist
CVE-2010-2063
2010-06-17 16:00:00
f5
f5
K11720 : Samba server vulnerability CVE-2010-2063
2013-07-05 00:00:00
SOL11720 - Samba server vulnerability CVE-2010-2063
2010-06-21 00:00:00
cve
cve
CVE-2010-2063
2010-06-17 16:30:00
redhat
redhat
(RHSA-2010:0488) Critical: samba and samba3x security update
2010-06-16 00:00:00
debiancve
debiancve
CVE-2010-2063
2010-06-17 16:30:00
ubuntu
ubuntu
Samba vulnerability
2010-06-16 00:00:00
prion
prion
Buffer overflow
2010-06-17 16:30:00
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.37-alt2.M50P.1
2010-06-16 00:00:00
packetstorm
packetstorm
Samba chain_reply Memory Corruption (Linux x86)
2010-07-17 00:00:00
oraclelinux
oraclelinux
samba and samba3x security update
2010-06-16 00:00:00
centos
centos
libsmbclient, libtalloc, libtdb, samba, samba3x, tdb security update
2010-06-19 11:45:05
checkpoint_advisories
checkpoint_advisories
Update Protection against SAMBA SMBI Packets Chaining Memory Corruption
2010-08-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-2063
2010-06-16 00:00:00
samba
samba
Memory Corruption Vulnerability
2010-06-16 00:00:00
suse
suse
potential remote code execution in samba
2010-07-01 11:11:15
Security update for Samba (critical)
2012-03-09 17:08:16
vmware
vmware
VMware ESX third party updates for Service Console
2010-08-31 00:00:00
VMware ESX third party updates for Service Console
2010-08-31 00:00:00
gentoo
gentoo
Samba: Multiple vulnerabilities
2012-06-24 00:00:00
JSON
Related for SUSE9_12622.NASL
nessus18veracode1osv1debian1securityvulns2openvas25slackware1seebug2cvelist1f52cve1redhat1debiancve1ubuntu1prion1altlinux1packetstorm1oraclelinux1centos1checkpoint_advisories1ubuntucve1samba1suse2vmware2gentoo1