Lucene search
Ubuntu Security Notice (C) 2008-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-698-3.NASLHistoryApr 23, 2009 - 12:00 a.m.
Ubuntu 8.04 LTS : nagios2 vulnerabilities (USN-698-3)
2009-04-2300:00:00
Ubuntu Security Notice (C) 2008-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
It was discovered that Nagios was vulnerable to a Cross-site request forgery (CSRF) vulnerability. If an authenticated nagios user were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands to be processed by Nagios and execute arbitrary programs. This update alters Nagios behaviour by disabling submission of CMD_CHANGE commands. (CVE-2008-5028)
It was discovered that Nagios did not properly parse commands submitted using the web interface. An authenticated user could use a custom form or a browser addon to bypass security restrictions and submit unauthorized commands. (CVE-2008-5027).
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-698-3. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(37968);
script_version("1.14");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2008-5027", "CVE-2008-5028");
script_xref(name:"USN", value:"698-3");
script_name(english:"Ubuntu 8.04 LTS : nagios2 vulnerabilities (USN-698-3)");
script_summary(english:"Checks dpkg output for updated packages.");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Ubuntu host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"It was discovered that Nagios was vulnerable to a Cross-site request
forgery (CSRF) vulnerability. If an authenticated nagios user were
tricked into clicking a link on a specially crafted web page, an
attacker could trigger commands to be processed by Nagios and execute
arbitrary programs. This update alters Nagios behaviour by disabling
submission of CMD_CHANGE commands. (CVE-2008-5028)
It was discovered that Nagios did not properly parse commands
submitted using the web interface. An authenticated user could use a
custom form or a browser addon to bypass security restrictions and
submit unauthorized commands. (CVE-2008-5027).
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://usn.ubuntu.com/698-3/"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_cwe_id(264, 352);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:nagios2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:nagios2-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:nagios2-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:nagios2-doc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.04:-:lts");
script_set_attribute(attribute:"patch_publication_date", value:"2008/12/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2008-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(8\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 8.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
flag = 0;
if (ubuntu_check(osver:"8.04", pkgname:"nagios2", pkgver:"2.11-1ubuntu1.4")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"nagios2-common", pkgver:"2.11-1ubuntu1.4")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"nagios2-dbg", pkgver:"2.11-1ubuntu1.4")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"nagios2-doc", pkgver:"2.11-1ubuntu1.4")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "nagios2 / nagios2-common / nagios2-dbg / nagios2-doc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | nagios2 | p-cpe:/a:canonical:ubuntu_linux:nagios2 |
| canonical | ubuntu_linux | nagios2-common | p-cpe:/a:canonical:ubuntu_linux:nagios2-common |
| canonical | ubuntu_linux | nagios2-dbg | p-cpe:/a:canonical:ubuntu_linux:nagios2-dbg |
| canonical | ubuntu_linux | nagios2-doc | p-cpe:/a:canonical:ubuntu_linux:nagios2-doc |
| canonical | ubuntu_linux | 8.04 | cpe:/o:canonical:ubuntu_linux:8.04:-:lts |
Related
nessus
nessus
openSUSE Security Update : nagios (nagios-531)
2009-07-21 00:00:00
Ubuntu 8.10 : nagios3 vulnerabilities (USN-698-2)
2009-04-23 00:00:00
openSUSE Security Update : nagios (nagios-531)
2009-07-21 00:00:00
ubuntu
ubuntu
Nagios3 vulnerabilities
2008-12-22 00:00:00
Nagios vulnerabilities
2008-12-23 00:00:00
Nagios vulnerability
2008-12-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-698-3)
2009-03-23 00:00:00
Ubuntu: Security Advisory (USN-698-2)
2008-12-29 00:00:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2008-12-26 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2008-12-23 00:00:00
[USN-698-1] Nagios vulnerability
2008-12-23 00:00:00
gentoo
gentoo
Nagios: Execution of arbitrary code
2009-07-19 00:00:00
debian
debian
[Backports-security-announce] Security Update for nagios3
2008-12-08 17:54:08
[Backports-security-announce] Security Update for nagios3
2008-12-08 11:47:25
cve
cve
CVE-2008-5028
2008-11-10 15:23:00
CVE-2008-5027
2008-11-10 15:23:00
prion
prion
Authorization
2008-11-10 15:23:00
Cross site request forgery (csrf)
2008-11-10 15:23:00
freebsd
freebsd
nagios -- web interface privilege escalation vulnerability
2008-11-06 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: nagios-3.0.5-1.fc10
2008-11-26 06:19:44
ubuntucve
ubuntucve
Related for UBUNTU_USN-698-3.NASL