Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Linux: Read GRUB config files (KB)

🗓️ 23 Mar 2020 00:00:00Reported by Copyright (C) 2020 Greenbone AGType 
openvas
 openvas🔗 plugins.openvas.org👁 9 Views

Linux: Read GRUB config files (KB

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Refs
Code
# SPDX-FileCopyrightText: 2020 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.150178");
  script_version("2023-07-28T16:09:07+0000");
  script_tag(name:"last_modification", value:"2023-07-28 16:09:07 +0000 (Fri, 28 Jul 2023)");
  script_tag(name:"creation_date", value:"2020-03-23 13:25:47 +0000 (Mon, 23 Mar 2020)");
  script_tag(name:"cvss_base", value:"0.0");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:H/Au:S/C:N/I:N/A:N");
  script_tag(name:"qod", value:"97");

  script_name("Linux: Read GRUB config files (KB)");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone AG");
  script_family("Policy");
  script_dependencies("gather-package-list.nasl", "compliance_tests.nasl");
  script_mandatory_keys("Compliance/Launch");
  script_exclude_keys("ssh/no_linux_shell");

  script_xref(name:"URL", value:"https://www.tutorialspoint.com/what-is-grub-in-linux");

  script_tag(name:"summary", value:"The GRUB (Grand Unified Bootloader) is a bootloader available
from the GNU project. A bootloader is very important as it is impossible to start an operating
system without it. It is the first program which starts when the program is switched on. The
bootloader transfers the control to the operating system kernel.

This script searches for grub.cfg, menu.lst and user.cfg in /boot/ directory.

Note: This script only stores information for other Policy Controls.");

  exit(0);
}

include("ssh_func.inc");
include("policy_functions.inc");

if(!get_kb_item("login/SSH/success") || !sock = ssh_login_or_reuse_connection()){
  set_kb_item(name:"Policy/linux/grub/ssh/ERROR", value:TRUE);
  exit(0);
}

bootloader_files = make_list();

grub_cfg_files = ssh_find_file(file_name:"grub.cfg", sock:sock, useregex:FALSE);
menu_lst_files = ssh_find_file(file_name:"menu.lst", sock:sock, useregex:FALSE);
user_cfg_files = ssh_find_file(file_name:"user.cfg", sock:sock, useregex:FALSE);

if(grub_cfg_files)
  bootloader_files = make_list(bootloader_files, grub_cfg_files);

if(menu_lst_files)
  bootloader_files = make_list(bootloader_files, menu_lst_files);

if(user_cfg_files)
  bootloader_files = make_list(bootloader_files, user_cfg_files);

foreach file (bootloader_files){
  file = chomp(file);
  set_kb_item(name:"Policy/linux/grub/files/", value:file);
  policy_linux_stat_file(socket:sock, file:file);
  policy_linux_file_content(socket:sock, file:file);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
23 Mar 2020 00:00Current
6.8Medium risk
Vulners AI Score6.8
grubbootloadergnu projectoperating systemkernelmenu.lstpolicy controlssshconfiguration files
9
.json
Report