Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-799-1.NASL
HistoryJul 14, 2009 - 12:00 a.m.

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : dbus vulnerability (USN-799-1)

2009-07-1400:00:00
Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

It was discovered that the D-Bus library did not correctly validate signatures. If a local user sent a specially crafted D-Bus key, they could spoof a valid signature and bypass security policies.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-799-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(39786);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2009-1189");
  script_bugtraq_id(31602);
  script_xref(name:"USN", value:"799-1");

  script_name(english:"Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : dbus vulnerability (USN-799-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that the D-Bus library did not correctly validate
signatures. If a local user sent a specially crafted D-Bus key, they
could spoof a valid signature and bypass security policies.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/799-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dbus");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dbus-1-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dbus-1-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dbus-x11");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-1-2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-1-3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-1-cil");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-1-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-glib-1-2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-glib-1-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-qt-1-1c2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdbus-qt-1-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:monodoc-dbus-1-manual");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:python2.4-dbus");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:6.06:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:9.04");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/07/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/07/14");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(6\.06|8\.04|8\.10|9\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 6.06 / 8.04 / 8.10 / 9.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"6.06", pkgname:"dbus", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"dbus-1-doc", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"dbus-1-utils", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-1-2", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-1-cil", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-1-dev", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-glib-1-2", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-glib-1-dev", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-qt-1-1c2", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"libdbus-qt-1-dev", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"monodoc-dbus-1-manual", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"6.06", pkgname:"python2.4-dbus", pkgver:"0.60-6ubuntu8.4")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"dbus", pkgver:"1.1.20-1ubuntu3.3")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"dbus-1-doc", pkgver:"1.1.20-1ubuntu3.3")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"dbus-x11", pkgver:"1.1.20-1ubuntu3.3")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"libdbus-1-3", pkgver:"1.1.20-1ubuntu3.3")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"libdbus-1-dev", pkgver:"1.1.20-1ubuntu3.3")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"dbus", pkgver:"1.2.4-0ubuntu1.1")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"dbus-1-doc", pkgver:"1.2.4-0ubuntu1.1")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"dbus-x11", pkgver:"1.2.4-0ubuntu1.1")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"libdbus-1-3", pkgver:"1.2.4-0ubuntu1.1")) flag++;
if (ubuntu_check(osver:"8.10", pkgname:"libdbus-1-dev", pkgver:"1.2.4-0ubuntu1.1")) flag++;
if (ubuntu_check(osver:"9.04", pkgname:"dbus", pkgver:"1.2.12-0ubuntu2.1")) flag++;
if (ubuntu_check(osver:"9.04", pkgname:"dbus-1-doc", pkgver:"1.2.12-0ubuntu2.1")) flag++;
if (ubuntu_check(osver:"9.04", pkgname:"dbus-x11", pkgver:"1.2.12-0ubuntu2.1")) flag++;
if (ubuntu_check(osver:"9.04", pkgname:"libdbus-1-3", pkgver:"1.2.12-0ubuntu2.1")) flag++;
if (ubuntu_check(osver:"9.04", pkgname:"libdbus-1-dev", pkgver:"1.2.12-0ubuntu2.1")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_NOTE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "dbus / dbus-1-doc / dbus-1-utils / dbus-x11 / libdbus-1-2 / etc");
}
VendorProductVersionCPE
canonicalubuntu_linuxdbusp-cpe:/a:canonical:ubuntu_linux:dbus
canonicalubuntu_linuxdbus-1-docp-cpe:/a:canonical:ubuntu_linux:dbus-1-doc
canonicalubuntu_linuxdbus-1-utilsp-cpe:/a:canonical:ubuntu_linux:dbus-1-utils
canonicalubuntu_linuxdbus-x11p-cpe:/a:canonical:ubuntu_linux:dbus-x11
canonicalubuntu_linuxlibdbus-1-2p-cpe:/a:canonical:ubuntu_linux:libdbus-1-2
canonicalubuntu_linuxlibdbus-1-3p-cpe:/a:canonical:ubuntu_linux:libdbus-1-3
canonicalubuntu_linuxlibdbus-1-cilp-cpe:/a:canonical:ubuntu_linux:libdbus-1-cil
canonicalubuntu_linuxlibdbus-1-devp-cpe:/a:canonical:ubuntu_linux:libdbus-1-dev
canonicalubuntu_linuxlibdbus-glib-1-2p-cpe:/a:canonical:ubuntu_linux:libdbus-glib-1-2
canonicalubuntu_linuxlibdbus-glib-1-devp-cpe:/a:canonical:ubuntu_linux:libdbus-glib-1-dev
Rows per page:
1-10 of 181

Related

debian 1
nessus 13
centos 1
redhat 3
veracode 1
ubuntu 1
openvas 14
securityvulns 2
oraclelinux 1
cvelist 1
cve 1
debiancve 1
prion 1
ubuntucve 1
vmware 2
debian
debian
[SECURITY] [DSA 1837-1] New dbus packages fix denial of service
2009-07-18 08:56:45
nessus
nessus
Scientific Linux Security Update : dbus on SL5.x i386/x86_64
2012-08-01 00:00:00
Debian DSA-1837-1 : dbus - programming error
2010-02-24 00:00:00
Mandriva Linux Security Advisory : dbus (MDVSA-2009:256-1)
2009-10-07 00:00:00
centos
centos
dbus security update
2010-01-08 01:04:41
redhat
redhat
(RHSA-2010:0018) Moderate: dbus security update
2010-01-07 00:00:00
(RHSA-2010:0476) Important: rhev-hypervisor security, bug fix, and enhancement update
2010-06-22 00:00:00
(RHSA-2010:0095) Important: rhev-hypervisor security and bug fix update
2010-02-09 00:00:00
veracode
veracode
Spoofable Signature
2020-04-10 00:41:57
ubuntu
ubuntu
D-Bus vulnerability
2009-07-13 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-799-1)
2009-07-29 00:00:00
Debian Security Advisory DSA 1837-1 (dbus)
2009-07-29 00:00:00
Debian: Security Advisory (DSA-1837-1)
2009-07-29 00:00:00
securityvulns
securityvulns
dbus DoS
2009-07-20 00:00:00
[SECURITY] [DSA 1837-1] New dbus packages fix denial of service
2009-07-20 00:00:00
oraclelinux
oraclelinux
dbus security update
2010-01-07 00:00:00
cvelist
cvelist
CVE-2009-1189
2009-04-27 17:43:00
cve
cve
CVE-2009-1189
2009-04-27 18:00:00
debiancve
debiancve
CVE-2009-1189
2009-04-27 18:00:00
prion
prion
Design/Logic Flaw
2009-04-27 18:00:00
ubuntucve
ubuntucve
CVE-2009-1189
2009-04-27 00:00:00
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
JSON
Related for UBUNTU_USN-799-1.NASL
debian1nessus13centos1redhat3veracode1ubuntu1openvas14securityvulns2oraclelinux1cvelist1cve1debiancve1prion1ubuntucve1vmware2