Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-750-1.NASL
HistoryApr 23, 2009 - 12:00 a.m.

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : openssl vulnerability (USN-750-1)

2009-04-2300:00:00
Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

It was discovered that OpenSSL did not properly validate the length of an encoded BMPString or UniversalString when printing ASN.1 strings.
If a user or automated system were tricked into processing a crafted certificate, an attacker could cause a denial of service via application crash in applications linked against OpenSSL.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-750-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(36907);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2009-0590");
  script_bugtraq_id(34256);
  script_xref(name:"USN", value:"750-1");

  script_name(english:"Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : openssl vulnerability (USN-750-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that OpenSSL did not properly validate the length of
an encoded BMPString or UniversalString when printing ASN.1 strings.
If a user or automated system were tricked into processing a crafted
certificate, an attacker could cause a denial of service via
application crash in applications linked against OpenSSL.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/750-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libssl-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libssl0.9.8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libssl0.9.8-dbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openssl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:openssl-doc");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:6.06:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:7.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.10");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/03/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(6\.06|7\.10|8\.04|8\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 6.06 / 7.10 / 8.04 / 8.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"6.06", pkgname:"libssl-dev", pkgver:"0.9.8a-7ubuntu0.7")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libssl0.9.8", pkgver:"0.9.8a-7ubuntu0.7")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libssl0.9.8-dbg", pkgver:"0.9.8a-7ubuntu0.7")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"openssl", pkgver:"0.9.8a-7ubuntu0.7")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libssl-dev", pkgver:"0.9.8e-5ubuntu3.4")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libssl0.9.8", pkgver:"0.9.8e-5ubuntu3.4")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"libssl0.9.8-dbg", pkgver:"0.9.8e-5ubuntu3.4")) flag++;
if (ubuntu_check(osver:"7.10", pkgname:"openssl", pkgver:"0.9.8e-5ubuntu3.4")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"libssl-dev", pkgver:"0.9.8g-4ubuntu3.5")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"libssl0.9.8", pkgver:"0.9.8g-4ubuntu3.5")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"libssl0.9.8-dbg", pkgver:"0.9.8g-4ubuntu3.5")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"openssl", pkgver:"0.9.8g-4ubuntu3.5")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"openssl-doc", pkgver:"0.9.8g-4ubuntu3.5")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"libssl-dev", pkgver:"0.9.8g-10.1ubuntu2.2")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"libssl0.9.8", pkgver:"0.9.8g-10.1ubuntu2.2")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"libssl0.9.8-dbg", pkgver:"0.9.8g-10.1ubuntu2.2")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"openssl", pkgver:"0.9.8g-10.1ubuntu2.2")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"openssl-doc", pkgver:"0.9.8g-10.1ubuntu2.2")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libssl-dev / libssl0.9.8 / libssl0.9.8-dbg / openssl / openssl-doc");
}
VendorProductVersionCPE
canonicalubuntu_linuxlibssl-devp-cpe:/a:canonical:ubuntu_linux:libssl-dev
canonicalubuntu_linuxlibssl0.9.8p-cpe:/a:canonical:ubuntu_linux:libssl0.9.8
canonicalubuntu_linuxlibssl0.9.8-dbgp-cpe:/a:canonical:ubuntu_linux:libssl0.9.8-dbg
canonicalubuntu_linuxopensslp-cpe:/a:canonical:ubuntu_linux:openssl
canonicalubuntu_linuxopenssl-docp-cpe:/a:canonical:ubuntu_linux:openssl-doc
canonicalubuntu_linux6.06cpe:/o:canonical:ubuntu_linux:6.06:-:lts
canonicalubuntu_linux7.10cpe:/o:canonical:ubuntu_linux:7.10
canonicalubuntu_linux8.04cpe:/o:canonical:ubuntu_linux:8.04:-:lts
canonicalubuntu_linux8.10cpe:/o:canonical:ubuntu_linux:8.10

Related

f5 2
securityvulns 3
openvas 58
nessus 41
freebsd 1
gentoo 1
cvelist 1
ubuntu 1
cbl_mariner 1
ubuntucve 1
cve 1
veracode 1
openssl 1
prion 1
debian 1
debiancve 1
freebsd_advisory 1
altlinux 4
redhat 2
threatpost 1
centos 2
slackware 1
oraclelinux 2
vmware 6
suse 2
lenovo 2
f5
f5
K15358 : OpenSSL vulnerability CVE-2009-0590
2014-06-19 00:00:00
SOL15358 - OpenSSL vulnerability CVE-2009-0590
2014-06-19 00:00:00
securityvulns
securityvulns
OpenSSL library BMPString DoS
2009-04-01 00:00:00
[USN-750-1] OpenSSL vulnerability
2009-04-01 00:00:00
[security bulletin] HPSBMA02447 SSRT090062 rev.1 - Insight Control Suite For Linux &#40;ICE-LX&#41; Cross Site Request Forgery &#40;CSRF&#41; , Remote Execution of Arbitrary Code, Denial of Service &#40;DoS&#41;, and Other Vulnerabilities
2009-08-14 00:00:00
openvas
openvas
Solaris Update for sshd 141742-02
2009-09-23 00:00:00
Gentoo Security Advisory GLSA 200904-08 (openssl)
2009-04-15 00:00:00
Ubuntu: Security Advisory (USN-750-1)
2009-04-06 00:00:00
nessus
nessus
Debian DSA-1763-1 : openssl - programming error
2009-04-07 00:00:00
Solaris 10 (sparc) : 141742-04
2009-06-08 00:00:00
FreeBSD : FreeBSD -- remotely exploitable crash in OpenSSL (2539)
2009-05-08 00:00:00
freebsd
freebsd
FreeBSD -- remotely exploitable crash in OpenSSL
2009-03-25 00:00:00
gentoo
gentoo
OpenSSL: Denial of service
2009-04-07 00:00:00
cvelist
cvelist
CVE-2009-0590
2009-03-27 16:00:00
ubuntu
ubuntu
OpenSSL vulnerability
2009-03-30 00:00:00
cbl_mariner
cbl_mariner
CVE-2009-0590 affecting package openssl 1.1.1g-6
2021-08-11 06:39:26
ubuntucve
ubuntucve
CVE-2009-0590
2009-03-27 00:00:00
cve
cve
CVE-2009-0590
2009-03-27 16:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:41:59
openssl
openssl
Vulnerability in OpenSSL CVE-2009-0590
2009-03-25 00:00:00
prion
prion
Authentication flaw
2009-03-27 16:30:00
debian
debian
[SECURITY] [DSA 1763-1] New openssl packages fix denial of service
2009-04-06 16:26:01
debiancve
debiancve
CVE-2009-0590
2009-03-27 16:30:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-09:08.openssl
2009-04-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package openssl10 version 0.9.8k-alt1
2009-03-25 00:00:00
Security fix for the ALT Linux 9 package openssl10 version 0.9.8k-alt1
2009-03-25 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8k-alt1
2009-03-25 00:00:00
redhat
redhat
(RHSA-2010:0163) Moderate: openssl security update
2010-03-25 00:00:00
(RHSA-2009:1335) Moderate: openssl security, bug fix, and enhancement update
2009-09-02 09:47:12
threatpost
threatpost
Multiple vulnerabilities found, fixed in OpenSSL
2009-03-26 23:43:56
centos
centos
openssl security update
2010-03-25 22:38:39
openssl security update
2009-09-15 18:42:01
slackware
slackware
openssl
2009-04-07 23:29:36
oraclelinux
oraclelinux
openssl security update
2010-03-25 00:00:00
openssl security, bug fix, and enhancement update
2009-09-08 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console
2010-12-07 00:00:00
VMware ESX third party updates for Service Console
2010-12-07 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
suse
suse
Security update for compat-openssl097g (important)
2011-07-27 17:08:16
compat-openssl097g (important)
2011-07-27 16:08:25
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
JSON
Related for UBUNTU_USN-750-1.NASL
f52securityvulns3openvas58nessus41freebsd1gentoo1cvelist1ubuntu1cbl_mariner1ubuntucve1cve1veracode1openssl1prion1debian1debiancve1freebsd_advisory1altlinux4redhat2threatpost1centos2slackware1oraclelinux2vmware6suse2lenovo2