Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 Tenable Network Security, Inc.SUSE_11_HPLIP-140116.NASL
HistoryFeb 04, 2014 - 12:00 a.m.

SuSE 11.2 / 11.3 Security Update : hplip (SAT Patch Numbers 8775 / 8777)

2014-02-0400:00:00
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.
www.tenable.com
13

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

hplip was updated to fix three security issues :

  • Some local file overwrite problems via predictable /tmp filenames were fixed. (CVE-2013-0200)

  • hplip used an insecure polkit DBUS API (polkit-process subject race condition) which could lead to local privilege escalation. (CVE-2013-4325)

  • hplip uses arbitrary file creation/overwrite (via hard-coded file name /tmp/hp-pkservice.log).
    (CVE-2013-6402)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(72277);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2013-0200", "CVE-2013-4325", "CVE-2013-6402");

  script_name(english:"SuSE 11.2 / 11.3 Security Update : hplip (SAT Patch Numbers 8775 / 8777)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"hplip was updated to fix three security issues :

  - Some local file overwrite problems via predictable /tmp
    filenames were fixed. (CVE-2013-0200)

  - hplip used an insecure polkit DBUS API (polkit-process
    subject race condition) which could lead to local
    privilege escalation. (CVE-2013-4325)

  - hplip uses arbitrary file creation/overwrite (via
    hard-coded file name /tmp/hp-pkservice.log).
    (CVE-2013-6402)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=808355"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=835827"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=836937"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=852368"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-0200.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-4325.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-6402.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Apply SAT patch number 8775 / 8777 as appropriate."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:hplip");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:hplip-hpijs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/01/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/02/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);


flag = 0;
if (rpm_check(release:"SLED11", sp:2, cpu:"i586", reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"i586", reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"hplip-3.11.10-0.6.11.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"hplip-hpijs-3.11.10-0.6.11.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:hplip
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:hplip-hpijs
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

openvas 28
securityvulns 7
nessus 23
debian 1
fedora 4
cvelist 3
debiancve 3
ubuntucve 3
prion 3
cve 3
nvd 3
redhat 2
centos 2
veracode 2
ubuntu 3
oraclelinux 2
slackware 1
mageia 2
gentoo 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0188-2)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0188-1)
2021-06-09 00:00:00
Debian Security Advisory DSA 2829-1 (hplip - several vulnerabilities)
2013-12-28 00:00:00
securityvulns
securityvulns
hplip multiple security vulnerabilities
2014-01-09 00:00:00
[SECURITY] [DSA 2829-1] hplip security update
2014-01-09 00:00:00
hplip symbolic lcinks vulnerability
2013-10-01 00:00:00
nessus
nessus
Debian DSA-2829-1 : hplip - several vulnerabilities
2013-12-31 00:00:00
Slackware 13.1 / 13.37 / 14.0 / current : hplip (SSA:2013-291-01)
2013-10-20 00:00:00
Oracle Linux 6 : hplip (ELSA-2013-1274)
2013-09-20 00:00:00
debian
debian
[SECURITY] [DSA 2829-1] hplip security update
2013-12-28 17:57:19
fedora
fedora
[SECURITY] Fedora 19 Update: hplip-3.13.9-2.fc19
2013-09-20 16:24:56
[SECURITY] Fedora 18 Update: hplip-3.13.9-2.fc18
2013-10-18 20:03:43
[SECURITY] Fedora 19 Update: hplip-3.13.9-2.fc19
2013-09-20 04:01:53
cvelist
cvelist
CVE-2013-4325
2013-09-23 10:00:00
CVE-2013-6402
2014-01-05 20:00:00
CVE-2013-0200
2013-03-06 20:00:00
debiancve
debiancve
CVE-2013-6402
2014-01-05 20:55:04
CVE-2013-4325
2013-09-23 10:18:58
CVE-2013-0200
2013-03-06 20:55:01
ubuntucve
ubuntucve
CVE-2013-6402
2014-01-05 00:00:00
CVE-2013-4325
2013-09-18 00:00:00
CVE-2013-0200
2013-03-06 00:00:00
prion
prion
Arbitrary file deletion
2014-01-05 20:55:00
Race condition
2013-09-23 10:18:00
Design/Logic Flaw
2013-03-06 20:55:00
cve
cve
CVE-2013-6402
2014-01-05 20:55:04
CVE-2013-4325
2013-09-23 10:18:58
CVE-2013-0200
2013-03-06 20:55:01
nvd
nvd
CVE-2013-6402
2014-01-05 20:55:04
CVE-2013-4325
2013-09-23 10:18:58
CVE-2013-0200
2013-03-06 20:55:01
redhat
redhat
(RHSA-2013:1274) Important: hplip security update
2013-09-19 00:00:00
(RHSA-2013:0500) Low: hplip security, bug fix and enhancement update
2013-02-21 00:00:00
centos
centos
hpijs, hplip, libsane security update
2013-09-20 02:23:59
hpijs, hplip, libsane security update
2013-02-27 19:35:16
veracode
veracode
Authorization Bypass
2019-01-15 08:59:38
Arbitrary File Write
2019-05-02 04:52:58
ubuntu
ubuntu
HPLIP vulnerability
2013-09-18 00:00:00
HPLIP vulnerabilities
2014-01-21 00:00:00
HPLIP vulnerabilities
2013-09-30 00:00:00
oraclelinux
oraclelinux
hplip security update
2013-09-19 00:00:00
hplip security, bug fix and enhancement update
2013-02-27 00:00:00
slackware
slackware
[slackware-security] hplip
2013-10-19 05:18:15
mageia
mageia
Updated hplip package fixes security vulnerabilities
2014-02-05 19:27:44
Updated polkit package and the packages that call polkit fixes security vulnerability
2013-10-05 21:53:02
gentoo
gentoo
polkit, Spice-Gtk, systemd, HPLIP, libvirt: Privilege escalation
2014-06-26 00:00:00

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for SUSE_11_HPLIP-140116.NASL
openvas28securityvulns7nessus23debian1fedora4cvelist3debiancve3ubuntucve3prion3cve3nvd3redhat2centos2veracode2ubuntu3oraclelinux2slackware1mageia2gentoo1