Lucene search
This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.SUSE_11_2_CUPS-100305.NASLHistoryMar 19, 2010 - 12:00 a.m.
openSUSE Security Update : cups (cups-2102)
2010-03-1900:00:00
This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.
www.tenable.com
13
lppasswd when running setuid or setgid still honors environment variables that specify the location of message files. Local attackers could exploit that to gather information by using crafted format strings (CVE-2010-0393).
The previous fix for a use-after-free vulnerability (CVE-2009-3553) was incomplete (CVE-2010-0302).
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update cups-2102.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(45102);
script_version("1.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2009-3553", "CVE-2010-0302", "CVE-2010-0393");
script_name(english:"openSUSE Security Update : cups (cups-2102)");
script_summary(english:"Check for the cups-2102 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"lppasswd when running setuid or setgid still honors environment
variables that specify the location of message files. Local attackers
could exploit that to gather information by using crafted format
strings (CVE-2010-0393).
The previous fix for a use-after-free vulnerability (CVE-2009-3553)
was incomplete (CVE-2010-0302)."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=574336"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=578215"
);
script_set_attribute(attribute:"solution", value:"Update the affected cups packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_cwe_id(264, 399);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:cups");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:cups-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:cups-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:cups-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:cups-libs-32bit");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.2");
script_set_attribute(attribute:"patch_publication_date", value:"2010/03/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2010/03/19");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE11.2", reference:"cups-1.3.11-4.5.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"cups-client-1.3.11-4.5.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"cups-devel-1.3.11-4.5.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"cups-libs-1.3.11-4.5.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", cpu:"x86_64", reference:"cups-libs-32bit-1.3.11-4.5.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "cups / cups-client / cups-devel / cups-libs / cups-libs-32bit");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | cups | p-cpe:/a:novell:opensuse:cups |
| novell | opensuse | cups-client | p-cpe:/a:novell:opensuse:cups-client |
| novell | opensuse | cups-devel | p-cpe:/a:novell:opensuse:cups-devel |
| novell | opensuse | cups-libs | p-cpe:/a:novell:opensuse:cups-libs |
| novell | opensuse | cups-libs-32bit | p-cpe:/a:novell:opensuse:cups-libs-32bit |
| novell | opensuse | 11.2 | cpe:/o:novell:opensuse:11.2 |
Related
nessus
nessus
SuSE 11 Security Update : CUPS (SAT Patch Number 2108)
2010-03-19 00:00:00
openSUSE Security Update : cups (cups-2102)
2010-03-19 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2010-03-03 00:00:00
openvas
openvas
Ubuntu Update for cups, cupsys vulnerabilities USN-906-1
2010-03-05 00:00:00
Ubuntu: Security Advisory (USN-906-1)
2010-03-05 00:00:00
Mandriva Update for cups MDVSA-2010:073-1 (cups)
2010-04-16 00:00:00
cve
cve
prion
prion
Design/Logic Flaw
2010-03-05 19:30:00
Format string
2010-03-05 19:30:00
Design/Logic Flaw
2009-11-20 02:30:00
fedora
fedora
[SECURITY] Fedora 12 Update: cups-1.4.2-28.fc12
2010-03-12 04:20:55
[SECURITY] Fedora 13 Update: cups-1.4.2-34.fc13
2010-03-11 13:24:42
[SECURITY] Fedora 11 Update: cups-1.4.2-26.fc11
2010-03-13 02:30:06
ubuntucve
ubuntucve
debiancve
debiancve
oraclelinux
oraclelinux
cups security update
2010-03-03 00:00:00
cups security update
2009-11-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:47:13
Denial Of Service (DoS)
2020-04-10 00:39:44
redhat
redhat
(RHSA-2010:0129) Moderate: cups security update
2010-03-03 00:00:00
(RHSA-2009:1595) Moderate: cups security update
2009-11-18 00:00:00
centos
centos
cups security update
2010-03-12 17:09:32
cups security update
2009-11-24 16:44:53
debian
debian
[SECURITY] [DSA 2007-1] New cups packages fix arbitrary code execution
2010-03-03 22:13:55
[SECURITY] [DSA 2176-1] cups security update
2011-03-01 23:30:56
securityvulns
securityvulns
cups lppasswd format string vulnerability
2010-03-04 00:00:00
[SECURITY] [DSA 2007-1] New cups packages fix arbitrary code execution
2010-03-04 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2012-07-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple CUPS cupsdDoSelect Remote Code Execution attack - Ver2 (CVE-2009-3553)
2014-12-28 00:00:00
osv
osv
cups - arbitrary code execution
2010-03-03 00:00:00
cups - several
2011-03-02 00:00:00
seebug
seebug
CUPSζδ»Άζ述符ε€ηθΏη¨ζη»ζε‘ζΌζ΄
2009-11-19 00:00:00
threatpost
threatpost
Apple Patches 12 Serious Mac OS X Flaws
2010-01-19 21:27:36
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44
Related for SUSE_11_2_CUPS-100305.NASL