Lucene search
Copyright (C) 2008 E-Soft Inc.OPENVAS:136141256231053838HistoryJan 17, 2008 - 12:00 a.m.
Debian Security Advisory DSA 104-1 (cipe)
2008-01-1700:00:00
Copyright (C) 2008 E-Soft Inc.
plugins.openvas.org
7
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.2
Confidence
Low
EPSS
0.008
Percentile
82.1%
The remote host is missing an update to cipe
announced via advisory DSA 104-1.
# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.53838");
script_cve_id("CVE-2002-0047");
script_version("2023-07-19T05:05:15+0000");
script_tag(name:"last_modification", value:"2023-07-19 05:05:15 +0000 (Wed, 19 Jul 2023)");
script_tag(name:"creation_date", value:"2008-01-17 22:24:46 +0100 (Thu, 17 Jan 2008)");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_name("Debian Security Advisory DSA 104-1 (cipe)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 E-Soft Inc.");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB2\.2");
script_xref(name:"URL", value:"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20104-1");
script_tag(name:"insight", value:"Larry McVoy found a bug in the packet handling code for the CIPE
VPN package: it did not check if a received packet was too short
and could crash.
This has been fixed in version 1.3.0-3, and we recommend that you
upgrade your cipe packages immediately.
Please note that the package only contains the needed kernel patch,
you will have to build the kernel modules for your kernel with the
updated source from the cipe-source package.");
script_tag(name:"summary", value:"The remote host is missing an update to cipe
announced via advisory DSA 104-1.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
res = "";
report = "";
if((res = isdpkgvuln(pkg:"cipe-common", ver:"1.3.0-3", rls:"DEB2.2")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"cipe-source", ver:"1.3.0-3", rls:"DEB2.2")) != NULL) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
Related
nessus
nessus
Debian DSA-104-1 : cipe - DoS attack
2004-09-29 00:00:00
cve
cve
CVE-2002-0047
2002-06-25 04:00:00
nvd
nvd
CVE-2002-0047
2002-01-31 05:00:00
openvas
openvas
Debian Security Advisory DSA 104-1 (cipe)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2002-0047
2002-06-25 04:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.2
Confidence
Low
EPSS
0.008
Percentile
82.1%
Related for OPENVAS:136141256231053838