5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
0.133 Low
EPSS
Percentile
95.6%
The transaction id and the UDP source port used for DNS queries by the bind nameserver were predicatable. Attackers could potentially exploit that weakness to manipulate the DNS cache (‘DNS cache poisoning’, CVE-2008-1447).
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update bind-5410.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(33501);
script_version("1.19");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2008-1447");
script_xref(name:"IAVA", value:"2008-A-0045");
script_name(english:"openSUSE 10 Security Update : bind (bind-5410)");
script_summary(english:"Check for the bind-5410 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"The transaction id and the UDP source port used for DNS queries by the
bind nameserver were predicatable. Attackers could potentially exploit
that weakness to manipulate the DNS cache ('DNS cache poisoning',
CVE-2008-1447)."
);
script_set_attribute(attribute:"solution", value:"Update the affected bind packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-chrootenv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-libs-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:bind-utils");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.2");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.3");
script_set_attribute(attribute:"patch_publication_date", value:"2008/06/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2008/07/15");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.2|SUSE10\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.2 / 10.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE10.2", reference:"bind-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"bind-chrootenv-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"bind-devel-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"bind-libs-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"bind-utils-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.2", cpu:"x86_64", reference:"bind-libs-32bit-9.3.5P1-0.1") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"bind-9.4.1.P1-12.5") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"bind-chrootenv-9.4.1.P1-12.5") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"bind-devel-9.4.1.P1-12.5") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"bind-libs-9.4.1.P1-12.5") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"bind-utils-9.4.1.P1-12.5") ) flag++;
if ( rpm_check(release:"SUSE10.3", cpu:"x86_64", reference:"bind-libs-32bit-9.4.1.P1-12.5") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chrootenv / bind-devel / bind-libs / bind-libs-32bit / etc");
}
Vendor | Product | Version | CPE |
---|---|---|---|
novell | opensuse | bind | p-cpe:/a:novell:opensuse:bind |
novell | opensuse | bind-chrootenv | p-cpe:/a:novell:opensuse:bind-chrootenv |
novell | opensuse | bind-devel | p-cpe:/a:novell:opensuse:bind-devel |
novell | opensuse | bind-libs | p-cpe:/a:novell:opensuse:bind-libs |
novell | opensuse | bind-libs-32bit | p-cpe:/a:novell:opensuse:bind-libs-32bit |
novell | opensuse | bind-utils | p-cpe:/a:novell:opensuse:bind-utils |
novell | opensuse | 10.2 | cpe:/o:novell:opensuse:10.2 |
novell | opensuse | 10.3 | cpe:/o:novell:opensuse:10.3 |
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
0.133 Low
EPSS
Percentile
95.6%