Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1632-1.NASL
HistoryNov 16, 2012 - 12:00 a.m.

Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : python-django vulnerability (USN-1632-1)

2012-11-1600:00:00
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

James Kettle discovered Django did not properly filter the Host HTTP header when processing certain requests. An attacker could exploit this to generate and display arbitrary URLs to users.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1632-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(62937);
  script_version("1.8");
  script_cvs_date("Date: 2019/09/19 12:54:28");

  script_cve_id("CVE-2012-4520");
  script_bugtraq_id(56146);
  script_xref(name:"USN", value:"1632-1");

  script_name(english:"Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : python-django vulnerability (USN-1632-1)");
  script_summary(english:"Checks dpkg output for updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Ubuntu host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"James Kettle discovered Django did not properly filter the Host HTTP
header when processing certain requests. An attacker could exploit
this to generate and display arbitrary URLs to users.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/1632-1/"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected python-django package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:python-django");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.10");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/11/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/11/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/11/16");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04|11\.10|12\.04|12\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04 / 11.10 / 12.04 / 12.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"10.04", pkgname:"python-django", pkgver:"1.1.1-2ubuntu1.6")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"python-django", pkgver:"1.3-2ubuntu1.4")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"python-django", pkgver:"1.3.1-4ubuntu1.3")) flag++;
if (ubuntu_check(osver:"12.10", pkgname:"python-django", pkgver:"1.4.1-2ubuntu0.1")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "python-django");
}
VendorProductVersionCPE
canonicalubuntu_linuxpython-djangop-cpe:/a:canonical:ubuntu_linux:python-django
canonicalubuntu_linux10.04cpe:/o:canonical:ubuntu_linux:10.04:-:lts
canonicalubuntu_linux11.10cpe:/o:canonical:ubuntu_linux:11.10
canonicalubuntu_linux12.04cpe:/o:canonical:ubuntu_linux:12.04:-:lts
canonicalubuntu_linux12.10cpe:/o:canonical:ubuntu_linux:12.10

Related

openvas 14
nessus 8
github 1
prion 1
gitlab 1
cve 1
securityvulns 4
osv 3
seebug 1
fedora 3
freebsd 1
ubuntu 2
ubuntucve 1
debiancve 1
debian 1
openvas
openvas
FreeBSD Ports: django
2012-10-29 00:00:00
Mandriva Update for python-django MDVSA-2012:181 (python-django)
2012-12-26 00:00:00
FreeBSD Ports: django
2012-10-29 00:00:00
nessus
nessus
Fedora 18 : python-django-1.4.2-1.fc18 (2012-16406)
2012-10-24 00:00:00
Mandriva Linux Security Advisory : python-django (MDVSA-2012:181)
2012-12-20 00:00:00
Fedora 17 : Django-1.4.2-1.fc17 (2012-16440)
2012-10-31 00:00:00
github
github
Django Allows Arbitrary URL Generation
2022-05-17 05:10:31
prion
prion
Default credentials
2012-11-18 23:55:00
gitlab
gitlab
Improper Input Validation
2022-05-17 00:00:00
cve
cve
CVE-2012-4520
2012-11-18 23:55:00
securityvulns
securityvulns
[USN-1632-1] Django vulnerability
2012-11-18 00:00:00
[SECURITY] [DSA 2634-1] python-django security update
2013-03-03 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2013-03-03 00:00:00
osv
osv
PYSEC-2012-7
2012-11-18 23:55:00
Django Allows Arbitrary URL Generation
2022-05-17 05:10:31
python-django - several vulnerabilities
2013-02-27 00:00:00
seebug
seebug
Django 1.3.1 'HttpRequest.get_host()'信息泄露漏洞
2012-10-23 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: python-django-1.4.2-1.fc18
2012-10-23 08:48:21
[SECURITY] Fedora 17 Update: Django-1.4.2-1.fc17
2012-10-31 02:58:14
[SECURITY] Fedora 16 Update: Django-1.3.4-1.fc16
2012-10-30 03:45:58
freebsd
freebsd
django -- multiple vulnerabilities
2012-10-17 00:00:00
ubuntu
ubuntu
Django vulnerability
2012-11-15 00:00:00
Django vulnerabilities
2013-03-07 00:00:00
ubuntucve
ubuntucve
CVE-2012-4520
2012-10-30 00:00:00
debiancve
debiancve
CVE-2012-4520
2012-11-18 23:55:00
debian
debian
[SECURITY] [DSA 2634-1] python-django security update
2013-02-26 23:58:40
JSON
Related for UBUNTU_USN-1632-1.NASL
openvas14nessus8github1prion1gitlab1cve1securityvulns4osv3seebug1fedora3freebsd1ubuntu2ubuntucve1debiancve1debian1