Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.SUSE_APACHE2-MOD_PHP5-3979.NASL
HistoryOct 17, 2007 - 12:00 a.m.

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3979)

2007-10-1700:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
12
JSON

This update fixes multiple bugs in php :

  • predictable generaton of an initialization vector (IV) in the mcrypt extension

  • additional cookie attributes could be injected via a session id

  • specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based applications

  • insufficient validation of parmeters in the substr_count function

  • predictable generaton of an initialization vector (IV) in the soap extension

CVE-2007-2727, CVE-2007-2748, CVE-2007-2728, CVE-2007-3472 CVE-2007-3475, CVE-2007-3476, CVE-2007-3477, CVE-2007-3478 CVE-2007-3799

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update apache2-mod_php5-3979.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(27152);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-2727", "CVE-2007-2728", "CVE-2007-2748", "CVE-2007-3472", "CVE-2007-3475", "CVE-2007-3476", "CVE-2007-3477", "CVE-2007-3478");

  script_name(english:"openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3979)");
  script_summary(english:"Check for the apache2-mod_php5-3979 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update fixes multiple bugs in php :

  - predictable generaton of an initialization vector (IV)
    in the mcrypt extension

  - additional cookie attributes could be injected via a
    session id

  - specially crafted files could cause integer overflows in
    gd and leverage them to at least crash gd based
    applications

  - insufficient validation of parmeters in the substr_count
    function

  - predictable generaton of an initialization vector (IV)
    in the soap extension

CVE-2007-2727, CVE-2007-2748, CVE-2007-2728, CVE-2007-3472
CVE-2007-3475, CVE-2007-3476, CVE-2007-3477, CVE-2007-3478
CVE-2007-3799"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected apache2-mod_php5 packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_cwe_id(189, 362, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:apache2-mod_php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-bcmath");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-bz2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-calendar");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-ctype");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-dba");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-dbase");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-dom");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-exif");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-fastcgi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-ftp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-gettext");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-gmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-hash");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-iconv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-imap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-json");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-mbstring");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-mcrypt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-mhash");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-ncurses");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-openssl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-pcntl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-pdo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-pear");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-posix");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-pspell");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-shmop");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-sockets");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-sqlite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-suhosin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-sysvmsg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-sysvsem");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-sysvshm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-tidy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-tokenizer");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-wddx");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-xmlreader");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-xmlwriter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-xsl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-zip");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:php5-zlib");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/07/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/10/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE10.2", reference:"apache2-mod_php5-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-bcmath-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-bz2-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-calendar-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-ctype-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-curl-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-dba-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-dbase-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-devel-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-dom-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-exif-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-fastcgi-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-ftp-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-gd-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-gettext-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-gmp-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-hash-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-iconv-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-imap-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-json-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-ldap-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-mbstring-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-mcrypt-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-mhash-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-mysql-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-ncurses-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-odbc-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-openssl-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-pcntl-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-pdo-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-pear-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-pgsql-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-posix-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-pspell-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-shmop-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-snmp-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-soap-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-sockets-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-sqlite-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-suhosin-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-sysvmsg-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-sysvsem-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-sysvshm-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-tidy-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-tokenizer-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-wddx-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-xmlreader-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-xmlrpc-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-xmlwriter-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-xsl-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-zip-5.2.0-19") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"php5-zlib-5.2.0-19") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "php5");
}
VendorProductVersionCPE
novellopensuseapache2-mod_php5p-cpe:/a:novell:opensuse:apache2-mod_php5
novellopensusephp5p-cpe:/a:novell:opensuse:php5
novellopensusephp5-bcmathp-cpe:/a:novell:opensuse:php5-bcmath
novellopensusephp5-bz2p-cpe:/a:novell:opensuse:php5-bz2
novellopensusephp5-calendarp-cpe:/a:novell:opensuse:php5-calendar
novellopensusephp5-ctypep-cpe:/a:novell:opensuse:php5-ctype
novellopensusephp5-curlp-cpe:/a:novell:opensuse:php5-curl
novellopensusephp5-dbap-cpe:/a:novell:opensuse:php5-dba
novellopensusephp5-dbasep-cpe:/a:novell:opensuse:php5-dbase
novellopensusephp5-xmlrpcp-cpe:/a:novell:opensuse:php5-xmlrpc
Rows per page:
1-10 of 541

Related

nessus 44
openvas 56
fedora 2
securityvulns 4
freebsd 2
gentoo 1
ubuntucve 9
prion 9
cve 9
ubuntu 4
oraclelinux 3
centos 4
redhat 6
debian 5
osv 3
veracode 1
debiancve 5
redhatcve 2
archlinux 1
slackware 1
amazon 1
f5 2
kitploit 1
nessus
nessus
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3978)
2007-10-17 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 3980)
2007-12-13 00:00:00
SuSE9 Security Update : PHP4 (YOU Patch Number 11666)
2009-09-24 00:00:00
openvas
openvas
SLES9: Security update for PHP4
2009-10-10 00:00:00
SLES9: Security update for PHP4
2009-10-10 00:00:00
SLES9: Security update for gd
2009-10-10 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: gd-2.0.35-1.fc7
2007-09-07 17:19:34
[SECURITY] Fedora Core 6 Update: php-5.1.6-3.7.fc6
2007-09-24 20:33:40
securityvulns
securityvulns
PHP multiple DoS conditions
2007-09-08 00:00:00
[ MDKSA-2007:153 ] - Updated gd packages fix several vulnerabilities
2007-08-05 00:00:00
gb and libgd library multiple security vulnerabilities
2007-08-05 00:00:00
freebsd
freebsd
gd -- multiple vulnerabilities
2007-06-21 00:00:00
libwmf -- multiple vulnerabilities
2004-10-12 00:00:00
gentoo
gentoo
GD: Multiple vulnerabilities
2007-08-09 00:00:00
ubuntucve
ubuntucve
CVE-2007-2728
2007-05-16 00:00:00
CVE-2007-3475
2007-06-28 00:00:00
CVE-2007-3476
2007-06-28 00:00:00
prion
prion
Sql injection
2007-05-16 22:30:00
Design/Logic Flaw
2007-06-28 18:30:00
Integer overflow
2007-06-28 18:30:00
cve
cve
CVE-2007-2728
2007-05-16 22:30:00
CVE-2007-3476
2007-06-28 18:30:00
CVE-2007-2727
2007-05-16 22:30:00
ubuntu
ubuntu
GD library vulnerabilities
2009-11-05 00:00:00
PHP vulnerabilities
2007-07-17 00:00:00
PHP vulnerabilities
2007-11-29 00:00:00
oraclelinux
oraclelinux
Moderate: gd security update
2008-02-28 00:00:00
Moderate: php security update
2007-09-26 00:00:00
Moderate: php security update
2007-09-20 00:00:00
centos
centos
gd security update
2008-02-28 19:35:25
php security update
2007-10-24 03:08:58
php security update
2007-09-20 14:31:37
redhat
redhat
(RHSA-2008:0146) Moderate: gd security update
2008-02-28 00:00:00
(RHSA-2007:0888) Moderate: php security update
2007-10-23 00:00:00
(RHSA-2007:0890) Moderate: php security update
2007-09-20 00:00:00
debian
debian
[SECURITY] [DSA 1613-1] new libgd2 packages fix multiple vulnerabilities
2008-07-22 07:01:19
[SECURITY] [DSA 1613-1] new libgd2 packages fix multiple vulnerabilities
2008-07-22 07:01:19
[SECURITY] [DSA 1578-1] New php4 packages fix several vulnerabilities
2008-05-17 11:44:14
osv
osv
libgd2 - multiple vulnerabilities
2008-07-22 00:00:00
php4 - several vulnerabilities
2008-05-17 00:00:00
php5 several issues
2008-01-23 00:00:00
veracode
veracode
Improper Session Handling
2020-04-10 00:18:57
debiancve
debiancve
CVE-2007-3476
2007-06-28 18:30:00
CVE-2007-3478
2007-06-28 18:30:00
CVE-2007-3472
2007-06-28 18:30:00
redhatcve
redhatcve
CVE-2007-2727
2015-10-30 09:44:00
CVE-2007-2748
2015-10-30 10:05:27
archlinux
archlinux
[ASA-201701-1] libwmf: multiple issues
2017-01-01 00:00:00
slackware
slackware
[slackware-security] libwmf
2018-05-01 01:19:49
amazon
amazon
Important: libwmf
2015-10-27 13:51:00
f5
f5
K13519 : Multiple PHP vulnerabilities
2013-09-20 00:00:00
SOL13519 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00
JSON
Related for SUSE_APACHE2-MOD_PHP5-3979.NASL
nessus44openvas56fedora2securityvulns4freebsd2gentoo1ubuntucve9prion9cve9ubuntu4oraclelinux3centos4redhat6debian5osv3veracode1debiancve5redhatcve2archlinux1slackware1amazon1f52kitploit1