Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_11_0_NAGIOS-090715.NASL
HistoryJul 31, 2009 - 12:00 a.m.

openSUSE Security Update : nagios (nagios-1102)

2009-07-3100:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.97 High

EPSS

Percentile

99.7%

JSON

A shell injection bug in nagios’ statuswml.cgi CGI script has been fixed. CVE-2009-2288 has been assigned to this issue.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update nagios-1102.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(40443);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-2288");

  script_name(english:"openSUSE Security Update : nagios (nagios-1102)");
  script_summary(english:"Check for the nagios-1102 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A shell injection bug in nagios' statuswml.cgi CGI script has been
fixed. CVE-2009-2288 has been assigned to this issue."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=517311"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected nagios packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"d2_elliot_name", value:"Nagios 3.1.0 RCE");
  script_set_attribute(attribute:"exploit_framework_d2_elliot", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Nagios3 statuswml.cgi Ping Command Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:'CANVAS');
  script_cwe_id(78);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:nagios");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:nagios-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:nagios-www");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2009/07/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2009/07/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/07/31");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.0)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.0", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.0", reference:"nagios-3.0.6-1.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"nagios-devel-3.0.6-1.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"nagios-www-3.0.6-1.3") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "nagios / nagios-devel / nagios-www");
}
VendorProductVersionCPE
novellopensusenagiosp-cpe:/a:novell:opensuse:nagios
novellopensusenagios-develp-cpe:/a:novell:opensuse:nagios-devel
novellopensusenagios-wwwp-cpe:/a:novell:opensuse:nagios-www
novellopensuse11.0cpe:/o:novell:opensuse:11.0

Related

openvas 17
canvas 1
saint 4
nessus 8
checkpoint_advisories 1
packetstorm 1
freebsd 1
nvd 1
dsquare 1
ubuntucve 1
debian 1
ubuntu 1
securityvulns 4
prion 1
cve 1
cvelist 1
gentoo 1
openvas
openvas
SLES11: Security update for nagios
2009-10-11 00:00:00
Nagios 'statuswml.cgi' Remote Arbitrary Shell Command Injection Vulnerability
2009-07-08 00:00:00
SLES11: Security update for nagios
2009-10-11 00:00:00
canvas
canvas
Immunity Canvas: NAGIOS_PING
2009-07-01 13:00:00
saint
saint
Nagios statuswml.cgi Command Injection
2010-04-13 00:00:00
Nagios statuswml.cgi Command Injection
2010-04-13 00:00:00
Nagios statuswml.cgi Command Injection
2010-04-13 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 8.10 / 9.04 : nagios2, nagios3 vulnerability (USN-795-1)
2009-07-03 00:00:00
FreeBSD : nagios -- Command Injection Vulnerability (3ebd4cb5-657f-11de-883a-00e0815b8da8)
2009-07-01 00:00:00
Debian DSA-1825-1 : nagios2, nagios3 - insufficient input validation
2010-02-24 00:00:00
checkpoint_advisories
checkpoint_advisories
Nagios statuswml.cgi Command Execution (CVE-2009-2288)
2013-12-02 00:00:00
packetstorm
packetstorm
Nagios3 statuswml.cgi Ping Command Execution
2009-10-30 00:00:00
freebsd
freebsd
nagios -- Command Injection Vulnerability
2009-05-29 00:00:00
nvd
nvd
CVE-2009-2288
2009-07-01 13:00:01
dsquare
dsquare
Nagios 3.1.0 RCE
2012-01-30 00:00:00
ubuntucve
ubuntucve
CVE-2009-2288
2009-07-01 00:00:00
debian
debian
[SECURITY] [DSA 1825-1] New nagios2/nagios3 packages fix arbitrary code execution
2009-07-03 15:46:14
ubuntu
ubuntu
Nagios vulnerability
2009-07-02 00:00:00
securityvulns
securityvulns
[USN-795-1] Nagios vulnerability
2009-07-03 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2009-07-03 00:00:00
HP Insight Control for Linux multiple security vulnerabilities
2010-03-31 00:00:00
prion
prion
Code injection
2009-07-01 13:00:00
cve
cve
CVE-2009-2288
2009-07-01 13:00:01
cvelist
cvelist
CVE-2009-2288
2009-07-01 12:26:00
gentoo
gentoo
Nagios: Execution of arbitrary code
2009-07-19 00:00:00

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.97 High

EPSS

Percentile

99.7%

JSON
Related for SUSE_11_0_NAGIOS-090715.NASL
openvas17canvas1saint4nessus8checkpoint_advisories1packetstorm1freebsd1nvd1dsquare1ubuntucve1debian1ubuntu1securityvulns4prion1cve1cvelist1gentoo1