Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2007-2019 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-547-1.NASL
HistoryNov 29, 2007 - 12:00 a.m.

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : pcre3 vulnerabilities (USN-547-1)

2007-11-2900:00:00
Ubuntu Security Notice (C) 2007-2019 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
JSON

Tavis Ormandy and Will Drewry discovered multiple flaws in the regular expression handling of PCRE. By tricking a user or service into running specially crafted expressions via applications linked against libpcre3, a remote attacker could crash the application, monopolize CPU resources, or possibly execute arbitrary code with the application’s privileges.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-547-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(28359);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2007-1659", "CVE-2007-1660", "CVE-2007-1661", "CVE-2007-1662", "CVE-2007-4766", "CVE-2007-4767", "CVE-2007-4768");
  script_xref(name:"USN", value:"547-1");

  script_name(english:"Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : pcre3 vulnerabilities (USN-547-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Tavis Ormandy and Will Drewry discovered multiple flaws in the regular
expression handling of PCRE. By tricking a user or service into
running specially crafted expressions via applications linked against
libpcre3, a remote attacker could crash the application, monopolize
CPU resources, or possibly execute arbitrary code with the
application's privileges.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/547-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(119, 189);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpcre3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpcre3-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpcrecpp0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:pcregrep");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:pgrep");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:6.06:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:6.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:7.04");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:7.10");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/11/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/11/29");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2007-2019 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(6\.06|6\.10|7\.04|7\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 6.06 / 6.10 / 7.04 / 7.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"6.06", pkgname:"libpcre3", pkgver:"7.4-0ubuntu0.6.06.1")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libpcre3-dev", pkgver:"7.4-0ubuntu0.6.06.1")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libpcrecpp0", pkgver:"7.4-0ubuntu0.6.06.1")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"pcregrep", pkgver:"7.4-0ubuntu0.6.06.1")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"pgrep", pkgver:"7.4-0ubuntu0.6.06.1")) flag++;
if (ubuntu_check(osver:"6.10", pkgname:"libpcre3", pkgver:"7.4-0ubuntu0.6.10.1")) flag++;
if (ubuntu_check(osver:"6.10", pkgname:"libpcre3-dev", pkgver:"7.4-0ubuntu0.6.10.1")) flag++;
if (ubuntu_check(osver:"6.10", pkgname:"libpcrecpp0", pkgver:"7.4-0ubuntu0.6.10.1")) flag++;
if (ubuntu_check(osver:"6.10", pkgname:"pcregrep", pkgver:"7.4-0ubuntu0.6.10.1")) flag++;
if (ubuntu_check(osver:"7.04", pkgname:"libpcre3", pkgver:"7.4-0ubuntu0.7.04.1")) flag++;
if (ubuntu_check(osver:"7.04", pkgname:"libpcre3-dev", pkgver:"7.4-0ubuntu0.7.04.1")) flag++;
if (ubuntu_check(osver:"7.04", pkgname:"libpcrecpp0", pkgver:"7.4-0ubuntu0.7.04.1")) flag++;
if (ubuntu_check(osver:"7.04", pkgname:"pcregrep", pkgver:"7.4-0ubuntu0.7.04.1")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libpcre3", pkgver:"7.4-0ubuntu0.7.10.1")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libpcre3-dev", pkgver:"7.4-0ubuntu0.7.10.1")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libpcrecpp0", pkgver:"7.4-0ubuntu0.7.10.1")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"pcregrep", pkgver:"7.4-0ubuntu0.7.10.1")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libpcre3 / libpcre3-dev / libpcrecpp0 / pcregrep / pgrep");
}
VendorProductVersionCPE
canonicalubuntu_linuxlibpcre3p-cpe:/a:canonical:ubuntu_linux:libpcre3
canonicalubuntu_linuxlibpcre3-devp-cpe:/a:canonical:ubuntu_linux:libpcre3-dev
canonicalubuntu_linuxlibpcrecpp0p-cpe:/a:canonical:ubuntu_linux:libpcrecpp0
canonicalubuntu_linuxpcregrepp-cpe:/a:canonical:ubuntu_linux:pcregrep
canonicalubuntu_linuxpgrepp-cpe:/a:canonical:ubuntu_linux:pgrep
canonicalubuntu_linux6.06cpe:/o:canonical:ubuntu_linux:6.06:-:lts
canonicalubuntu_linux6.10cpe:/o:canonical:ubuntu_linux:6.10
canonicalubuntu_linux7.04cpe:/o:canonical:ubuntu_linux:7.04
canonicalubuntu_linux7.10cpe:/o:canonical:ubuntu_linux:7.10

Related

openvas 59
osv 1
ubuntu 1
securityvulns 2
freebsd 2
nessus 42
debian 2
fedora 1
gentoo 2
suse 3
redhat 7
centos 6
oraclelinux 5
debiancve 7
prion 7
cve 7
ubuntucve 7
vmware 2
openvas
openvas
Mandriva Update for pcre MDKSA-2007:211 (pcre)
2009-04-09 00:00:00
Mandriva Update for pcre MDKSA-2007:211 (pcre)
2009-04-09 00:00:00
Ubuntu: Security Advisory (USN-547-1)
2009-03-23 00:00:00
osv
osv
pcre3 - arbitrary code execution
2007-11-05 00:00:00
ubuntu
ubuntu
PCRE vulnerabilities
2007-11-27 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-07 00:00:00
PCRE and perl regular expression handling multiple security vulnerabilities
2007-11-07 00:00:00
freebsd
freebsd
pcre -- arbitrary code execution
2007-11-05 00:00:00
linux-flashplugin -- multiple vulnerabilities
2007-12-18 00:00:00
nessus
nessus
FreeBSD : pcre -- arbitrary code execution (bfd6eef4-8c94-11dc-8c55-001c2514716c)
2007-11-07 00:00:00
Debian DSA-1399-1 : pcre3 - several vulnerabilities
2007-11-06 00:00:00
Mandrake Linux Security Advisory : pcre (MDKSA-2007:211)
2009-04-23 00:00:00
debian
debian
[SECURITY] [DSA 1399-1] New pcre3 packages fix arbitrary code execution
2007-11-05 20:22:19
[SECURITY] [DSA 1570-1] New kazehakase packages fix execution of arbitrary code
2008-05-06 18:49:36
fedora
fedora
[SECURITY] Fedora 7 Update: pcre-7.3-3.fc7
2008-03-06 16:37:25
gentoo
gentoo
PCRE: Multiple vulnerabilities
2007-11-20 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2008-01-20 00:00:00
suse
suse
remote code execution in pcre
2007-11-23 15:35:33
remote code execution in flash-player
2007-12-21 16:24:32
remote code execution in php4, php5
2008-01-29 14:18:48
redhat
redhat
(RHSA-2007:0967) Critical: pcre security update
2007-11-05 00:00:00
(RHSA-2007:0968) Critical: pcre security update
2007-11-05 00:00:00
(RHSA-2007:1065) Moderate: pcre security update
2007-11-29 00:00:00
centos
centos
pcre security update
2007-11-08 17:34:12
pcre security update
2007-11-05 18:41:23
pcre security update
2007-11-30 03:00:27
oraclelinux
oraclelinux
Critical: pcre security update
2007-11-05 00:00:00
Important: pcre security update
2007-11-30 00:00:00
Critical: pcre security update
2007-11-05 00:00:00
debiancve
debiancve
CVE-2007-4768
2007-11-07 23:46:00
CVE-2007-4766
2007-11-07 23:46:00
CVE-2007-4767
2007-11-07 23:46:00
prion
prion
Heap overflow
2007-11-07 23:46:00
Integer overflow
2007-11-07 23:46:00
Code injection
2007-11-07 23:46:00
cve
cve
CVE-2007-4766
2007-11-07 23:46:00
CVE-2007-4768
2007-11-07 23:46:00
CVE-2007-4767
2007-11-07 23:46:00
ubuntucve
ubuntucve
CVE-2007-4768
2007-11-07 00:00:00
CVE-2007-1662
2007-11-07 00:00:00
CVE-2007-4766
2007-11-07 00:00:00
vmware
vmware
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
JSON
Related for UBUNTU_USN-547-1.NASL
openvas59osv1ubuntu1securityvulns2freebsd2nessus42debian2fedora1gentoo2suse3redhat7centos6oraclelinux5debiancve7prion7cve7ubuntucve7vmware2