Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 Tenable Network Security, Inc.SUSE_11_LIBMOON-DEVEL-110329.NASL
HistoryApr 07, 2011 - 12:00 a.m.

SuSE 11.1 Security Update : moonlight (SAT Patch Number 4246)

2011-04-0700:00:00
This script is Copyright (C) 2011-2021 Tenable Network Security, Inc.
www.tenable.com
8
JSON

Moonlight was prone to several security problems :

  • modification of read-only values via RuntimeHelpers.InitializeArray. (CVE-2011-0989)

  • buffer overflow due to race condition in in Array.FastCopy. (CVE-2011-0990)

  • use-after-free due to DynamicMethod resurrection.
    (CVE-2011-0991)

  • information leak due to improper thread finalization These issues have been fixed. (CVE-2011-0992)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(53314);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2011-0989", "CVE-2011-0990", "CVE-2011-0991", "CVE-2011-0992");

  script_name(english:"SuSE 11.1 Security Update : moonlight (SAT Patch Number 4246)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Moonlight was prone to several security problems :

  - modification of read-only values via
    RuntimeHelpers.InitializeArray. (CVE-2011-0989)

  - buffer overflow due to race condition in in
    Array.FastCopy. (CVE-2011-0990)

  - use-after-free due to DynamicMethod resurrection.
    (CVE-2011-0991)

  - information leak due to improper thread finalization
    These issues have been fixed. (CVE-2011-0992)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=667077"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0989.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0990.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0991.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0992.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 4246.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmoon0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:moonlight-plugin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:moonlight-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/03/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/04/07");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, "SuSE 11.1");


flag = 0;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"libmoon0-2.4.1-0.5.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"moonlight-plugin-2.4.1-0.5.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"moonlight-tools-2.4.1-0.5.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"libmoon0-2.4.1-0.5.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"moonlight-plugin-2.4.1-0.5.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"moonlight-tools-2.4.1-0.5.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmoon0
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:moonlight-plugin
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:moonlight-tools
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

nessus 4
openvas 3
gentoo 1
cve 4
debiancve 4
ubuntucve 4
prion 4
ubuntu 1
nessus
nessus
openSUSE Security Update : libmoon-devel (openSUSE-SU-2011:0313-1)
2014-06-13 00:00:00
openSUSE Security Update : libmoon-devel (openSUSE-SU-2011:0313-1)
2014-06-13 00:00:00
GLSA-201206-13 : Mono: Multiple vulnerabilities
2012-06-22 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-13 (mono mono-debugger)
2012-08-10 00:00:00
Gentoo Security Advisory GLSA 201206-13 (mono mono-debugger)
2012-08-10 00:00:00
Ubuntu: Security Advisory (USN-2547-1)
2015-03-25 00:00:00
gentoo
gentoo
Mono: Multiple vulnerabilities
2012-06-21 00:00:00
cve
cve
CVE-2011-0990
2011-04-13 21:55:00
CVE-2011-0992
2011-04-13 21:55:00
CVE-2011-0989
2011-04-13 21:55:00
debiancve
debiancve
CVE-2011-0990
2011-04-13 21:55:00
CVE-2011-0991
2011-04-13 21:55:00
CVE-2011-0989
2011-04-13 21:55:00
ubuntucve
ubuntucve
CVE-2011-0991
2011-04-13 00:00:00
CVE-2011-0989
2011-04-13 00:00:00
CVE-2011-0990
2011-04-13 00:00:00
prion
prion
Race condition
2011-04-13 21:55:00
Design/Logic Flaw
2011-04-13 21:55:00
Design/Logic Flaw
2011-04-13 21:55:00
ubuntu
ubuntu
Mono vulnerabilities
2015-03-24 00:00:00
JSON
Related for SUSE_11_LIBMOON-DEVEL-110329.NASL
nessus4openvas3gentoo1cve4debiancve4ubuntucve4prion4ubuntu1