Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 Tenable Network Security, Inc.SUSE_11_2_KRB5-100113.NASL
HistoryJan 20, 2010 - 12:00 a.m.

openSUSE Security Update : krb5 (krb5-1792)

2010-01-2000:00:00
This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.
www.tenable.com
10
JSON

Specially crafted ticket requests could crash the kerberos server (CVE-2009-3295).

Specially crafted AES and RC4 packets could allow unauthenticated remote attackers to trigger an integer underflow that leads to heap memory corruption (CVE-2009-4212).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update krb5-1792.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(44090);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-3295", "CVE-2009-4212");

  script_name(english:"openSUSE Security Update : krb5 (krb5-1792)");
  script_summary(english:"Check for the krb5-1792 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Specially crafted ticket requests could crash the kerberos server
(CVE-2009-3295).

Specially crafted AES and RC4 packets could allow unauthenticated
remote attackers to trigger an integer underflow that leads to heap
memory corruption (CVE-2009-4212)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=561347"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=561351"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected krb5 packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(119, 189);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-apps-clients");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-apps-servers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-devel-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-plugin-kdb-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-plugin-preauth-pkinit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:krb5-server");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/01/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/01/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.2", reference:"krb5-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-apps-clients-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-apps-servers-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-client-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-devel-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-plugin-kdb-ldap-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-plugin-preauth-pkinit-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"krb5-server-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", cpu:"x86_64", reference:"krb5-32bit-1.7-6.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", cpu:"x86_64", reference:"krb5-devel-32bit-1.7-6.2.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "krb5 / krb5-32bit / krb5-apps-clients / krb5-apps-servers / etc");
}
VendorProductVersionCPE
novellopensusekrb5p-cpe:/a:novell:opensuse:krb5
novellopensusekrb5-32bitp-cpe:/a:novell:opensuse:krb5-32bit
novellopensusekrb5-apps-clientsp-cpe:/a:novell:opensuse:krb5-apps-clients
novellopensusekrb5-apps-serversp-cpe:/a:novell:opensuse:krb5-apps-servers
novellopensusekrb5-clientp-cpe:/a:novell:opensuse:krb5-client
novellopensusekrb5-develp-cpe:/a:novell:opensuse:krb5-devel
novellopensusekrb5-devel-32bitp-cpe:/a:novell:opensuse:krb5-devel-32bit
novellopensusekrb5-plugin-kdb-ldapp-cpe:/a:novell:opensuse:krb5-plugin-kdb-ldap
novellopensusekrb5-plugin-preauth-pkinitp-cpe:/a:novell:opensuse:krb5-plugin-preauth-pkinit
novellopensusekrb5-serverp-cpe:/a:novell:opensuse:krb5-server
Rows per page:
1-10 of 111

Related

openvas 48
nessus 23
suse 1
fedora 9
securityvulns 4
ubuntu 2
ubuntucve 2
debiancve 2
checkpoint_advisories 1
prion 2
seebug 1
cve 2
osv 1
centos 1
redhat 2
debian 1
oraclelinux 1
veracode 1
gentoo 1
vmware 4
openvas
openvas
Fedora Update for krb5 FEDORA-2010-0503
2010-03-02 00:00:00
SuSE Update for krb5 SUSE-SA:2010:006
2010-01-25 00:00:00
Fedora Update for krb5 FEDORA-2010-0503
2010-03-02 00:00:00
nessus
nessus
openSUSE Security Update : krb5 (krb5-1795)
2010-01-20 00:00:00
openSUSE Security Update : krb5 (krb5-1795)
2010-01-20 00:00:00
SuSE 11 Security Update : Kerberos 5 (SAT Patch Number 1796)
2010-01-20 00:00:00
suse
suse
remote code execution in krb5
2010-01-19 17:05:33
fedora
fedora
[SECURITY] Fedora 12 Update: krb5-1.7.1-2.fc12
2010-02-18 22:26:48
[SECURITY] Fedora 12 Update: krb5-1.7.1-6.fc12
2010-03-27 00:55:38
[SECURITY] Fedora 12 Update: krb5-1.7-15.fc12
2010-01-05 22:54:25
securityvulns
securityvulns
MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing
2009-12-29 00:00:00
MIT Kerberos 5 DoS
2009-12-29 00:00:00
MIT Kerberos 5 integer overflows
2010-01-17 00:00:00
ubuntu
ubuntu
Kerberos vulnerability
2010-01-06 00:00:00
Kerberos vulnerability
2010-01-12 00:00:00
ubuntucve
ubuntucve
CVE-2009-3295
2009-12-29 00:00:00
CVE-2009-4212
2010-01-12 00:00:00
debiancve
debiancve
CVE-2009-3295
2009-12-29 20:41:00
CVE-2009-4212
2010-01-13 19:30:00
checkpoint_advisories
checkpoint_advisories
MIT Kerberos KDC Cross Realm Referral Denial of Service (CVE-2009-3295)
2011-05-17 00:00:00
prion
prion
Null pointer dereference
2009-12-29 20:41:00
Integer overflow
2010-01-13 19:30:00
seebug
seebug
MIT Kerberos KDC跨域Referralη©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-12-29 00:00:00
cve
cve
CVE-2009-3295
2009-12-29 20:41:00
CVE-2009-4212
2010-01-13 19:30:00
osv
osv
krb5 - denial of service
2010-01-12 00:00:00
centos
centos
krb5 security update
2010-01-13 00:51:06
redhat
redhat
(RHSA-2010:0029) Critical: krb5 security update
2010-01-12 00:00:00
(RHSA-2010:0095) Important: rhev-hypervisor security and bug fix update
2010-02-09 00:00:00
debian
debian
[SECURITY] [DSA-1969-1] New krb5 packages fix denial of service
2010-01-12 21:36:58
oraclelinux
oraclelinux
krb5 security update
2010-01-12 00:00:00
veracode
veracode
Arbitary Code Execution
2020-04-10 00:46:44
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00
vmware
vmware
VMware ESXi and ESX third party updates for Service Console and Likewise components
2010-11-15 00:00:00
VMware ESXi and ESX third party updates for Service Console and Likewise components
2010-11-15 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
JSON
Related for SUSE_11_2_KRB5-100113.NASL
openvas48nessus23suse1fedora9securityvulns4ubuntu2ubuntucve2debiancve2checkpoint_advisories1prion2seebug1cve2osv1centos1redhat2debian1oraclelinux1veracode1gentoo1vmware4