Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-3667-1.NASL
HistoryJun 01, 2018 - 12:00 a.m.

Ubuntu 14.04 LTS : libytnef vulnerabilities (USN-3667-1)

2018-06-0100:00:00
Ubuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

It was discovered that libytnef incorrectly handled certain files. An attacker could possibly use this to cause a denial of service.
(CVE-2017-12141, CVE-2017-9146, CVE-2017-9471, CVE-2017-9473)

It was discovered that libytnef incorrectly handled certain files. An attacker could possibly use this to access sensitive information.
(CVE-2017-9058).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-3667-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('compat.inc');

if (description)
{
  script_id(110286);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/23");

  script_cve_id(
    "CVE-2017-12141",
    "CVE-2017-9058",
    "CVE-2017-9146",
    "CVE-2017-9471",
    "CVE-2017-9473"
  );
  script_xref(name:"USN", value:"3667-1");

  script_name(english:"Ubuntu 14.04 LTS : libytnef vulnerabilities (USN-3667-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"It was discovered that libytnef incorrectly handled certain files. An
attacker could possibly use this to cause a denial of service.
(CVE-2017-12141, CVE-2017-9146, CVE-2017-9471, CVE-2017-9473)

It was discovered that libytnef incorrectly handled certain files. An
attacker could possibly use this to access sensitive information.
(CVE-2017-9058).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-3667-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected libytnef0 and / or libytnef0-dev packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-9058");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/05/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/05/31");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/06/01");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libytnef0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libytnef0-dev");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '14.04', 'pkgname': 'libytnef0', 'pkgver': '1.5-6ubuntu0.2'},
    {'osver': '14.04', 'pkgname': 'libytnef0-dev', 'pkgver': '1.5-6ubuntu0.2'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libytnef0 / libytnef0-dev');
}
VendorProductVersionCPE
canonicalubuntu_linuxlibytnef0p-cpe:/a:canonical:ubuntu_linux:libytnef0
canonicalubuntu_linuxlibytnef0-devp-cpe:/a:canonical:ubuntu_linux:libytnef0-dev
canonicalubuntu_linux14.04cpe:/o:canonical:ubuntu_linux:14.04:-:lts

Related

openvas 3
ubuntu 1
osv 5
cvelist 5
debiancve 5
ubuntucve 5
cve 5
prion 5
archlinux 1
nessus 1
fedora 1
mageia 1
openvas
openvas
Ubuntu: Security Advisory (USN-3667-1)
2018-10-26 00:00:00
Fedora Update for ytnef FEDORA-2019-7d7083b8be
2019-05-19 00:00:00
Mageia: Security Advisory (MGASA-2017-0174)
2022-01-28 00:00:00
ubuntu
ubuntu
libytnef vulnerabilities
2018-05-31 00:00:00
osv
osv
CVE-2017-12141
2017-08-02 05:29:00
CVE-2017-9146
2017-05-22 18:29:00
CVE-2017-9473
2017-06-07 05:29:00
cvelist
cvelist
CVE-2017-12141
2017-08-02 05:00:00
CVE-2017-9146
2017-05-22 18:00:00
CVE-2017-9473
2017-06-07 04:50:00
debiancve
debiancve
CVE-2017-12141
2017-08-02 05:29:00
CVE-2017-9146
2017-05-22 18:29:00
CVE-2017-9471
2017-06-07 05:29:00
ubuntucve
ubuntucve
CVE-2017-12141
2017-08-02 00:00:00
CVE-2017-9146
2017-05-22 00:00:00
CVE-2017-9473
2017-06-07 00:00:00
cve
cve
CVE-2017-12141
2017-08-02 05:29:00
CVE-2017-9146
2017-05-22 18:29:00
CVE-2017-9058
2017-05-18 06:29:00
prion
prion
Heap overflow
2017-08-02 05:29:00
Code injection
2017-06-07 05:29:00
Heap overflow
2017-05-22 18:29:00
archlinux
archlinux
[ASA-201708-10] libytnef: arbitrary code execution
2017-08-14 00:00:00
nessus
nessus
Fedora 30 : 1:ytnef (2019-7d7083b8be)
2019-05-20 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: ytnef-1.9.3-1.fc30
2019-05-18 01:02:52
mageia
mageia
Updated libytnef packages fix security vulnerabilities
2017-06-14 18:52:21
JSON
Related for UBUNTU_USN-3667-1.NASL
openvas3ubuntu1osv5cvelist5debiancve5ubuntucve5cve5prion5archlinux1nessus1fedora1mageia1