Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2011 Greenbone AGOPENVAS:1361412562310802343
HistoryNov 09, 2011 - 12:00 a.m.

ChaSen Buffer Overflow Vulnerability - Windows

2011-11-0900:00:00
Copyright (C) 2011 Greenbone AG
plugins.openvas.org
6

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.073 Low

EPSS

Percentile

94.1%

JSON

ChaSen Software is prone to a buffer overflow vulnerability.

# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.802343");
  script_version("2024-02-15T05:05:39+0000");
  script_cve_id("CVE-2011-4000");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2011-11-09 16:19:55 +0530 (Wed, 09 Nov 2011)");
  script_name("ChaSen Buffer Overflow Vulnerability - Windows");
  script_xref(name:"URL", value:"http://jvn.jp/en/jp/JVN16901583/index.html");
  script_xref(name:"URL", value:"http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000099.html");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_family("Buffer overflow");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");

  script_tag(name:"impact", value:"Successful exploitation allows remote attackers to cause a buffer overflow
  or execute arbitrary code.");
  script_tag(name:"affected", value:"ChaSen Version 2.4.x");
  script_tag(name:"insight", value:"The flaw is due to an error when reading user-supplied input string,
  which allows attackers to execute arbitrary code via a crafted string.");
  script_tag(name:"solution", value:"Use ChaSen Version 2.3.3.");
  script_tag(name:"summary", value:"ChaSen Software is prone to a buffer overflow vulnerability.");
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("smb_nt.inc");
include("version_func.inc");

if(!get_kb_item("SMB/WindowsVersion")){
  exit(0);
}

key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\chasen";
if(!registry_key_exists(key:key)){
  exit(0);
}

chaName = registry_get_sz(key:key, item:"DisplayName");
if("ChaSen" >< chaName)
{
  chaVer = eregmatch(pattern:"ChaSen ([0-9.]+)", string:chaName);
  if(chaVer[1] != NULL)
  {
    if(version_in_range(version:chaVer[1], test_version:"2.4.0", test_version2:"2.4.4")){
      report = report_fixed_ver(installed_version:chaVer[1], vulnerable_range:"2.4.0 - 2.4.4");
      security_message(port: 0, data: report);
    }
  }
}

Related

openvas 7
osv 1
nessus 6
freebsd 1
debian 1
cve 1
securityvulns 2
debiancve 1
jvn 1
gentoo 1
nvd 1
prion 1
ubuntucve 1
cvelist 1
openvas
openvas
Gentoo Security Advisory GLSA 201207-03 (ChaSen)
2012-08-10 00:00:00
Debian Security Advisory DSA 2361-1 (chasen)
2012-02-11 00:00:00
Gentoo Security Advisory GLSA 201207-03 (ChaSen)
2012-08-10 00:00:00
osv
osv
chasen - buffer overflow
2011-12-07 00:00:00
nessus
nessus
Debian DSA-2361-1 : chasen - buffer overflow
2012-01-12 00:00:00
FreeBSD : ChaSen -- buffer overflow (972837fc-c304-11e3-8758-00262d5ed8ee)
2014-04-14 00:00:00
openSUSE Security Update : chasen (openSUSE-SU-2012:0026-1)
2014-06-13 00:00:00
freebsd
freebsd
ChaSen -- buffer overflow
2011-11-08 00:00:00
debian
debian
[SECURITY] [DSA 2361-1] chasen security update
2011-12-07 20:51:29
cve
cve
CVE-2011-4000
2011-11-08 22:55:01
securityvulns
securityvulns
chasen library buffer overflow
2011-12-11 00:00:00
[SECURITY] [DSA 2361-1] chasen security update
2011-12-11 00:00:00
debiancve
debiancve
CVE-2011-4000
2011-11-08 22:55:01
jvn
jvn
JVN#16901583: ChaSen vulnerable to buffer overflow
2011-11-08 00:00:00
gentoo
gentoo
ChaSen: User-assisted execution of arbitrary code
2012-07-09 00:00:00
nvd
nvd
CVE-2011-4000
2011-11-08 22:55:01
prion
prion
Buffer overflow
2011-11-08 22:55:00
ubuntucve
ubuntucve
CVE-2011-4000
2011-11-08 00:00:00
cvelist
cvelist
CVE-2011-4000
2011-11-08 22:00:00

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.073 Low

EPSS

Percentile

94.1%

JSON
Related for OPENVAS:1361412562310802343
openvas7osv1nessus6freebsd1debian1cve1securityvulns2debiancve1jvn1gentoo1nvd1prion1ubuntucve1cvelist1