CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
Percentile
92.6%
A security problem was fixed in the GNU TLS library, where excess data was not checked during signature checking with RSA keys with exponent 3.
This problem could be used to fake those RSA signatures.
(CVE-2006-4790)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update gnutls-2118.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(27242);
script_version("1.13");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2006-4790");
script_name(english:"openSUSE 10 Security Update : gnutls (gnutls-2118)");
script_summary(english:"Check for the gnutls-2118 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"A security problem was fixed in the GNU TLS library, where excess data
was not checked during signature checking with RSA keys with exponent
3.
This problem could be used to fake those RSA signatures.
(CVE-2006-4790)"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected gnutls packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-devel-32bit");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.1");
script_set_attribute(attribute:"patch_publication_date", value:"2006/09/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2007/10/17");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE10.1", reference:"gnutls-1.2.10-13.5") ) flag++;
if ( rpm_check(release:"SUSE10.1", reference:"gnutls-devel-1.2.10-13.5") ) flag++;
if ( rpm_check(release:"SUSE10.1", cpu:"x86_64", reference:"gnutls-32bit-1.2.10-13.5") ) flag++;
if ( rpm_check(release:"SUSE10.1", cpu:"x86_64", reference:"gnutls-devel-32bit-1.2.10-13.5") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gnutls");
}