Lucene search
Copyright (c) 2010 Greenbone Networks GmbHOPENVAS:1361412562310831038HistoryMay 17, 2010 - 12:00 a.m.
Mandriva Update for samba MDVSA-2010:090-1 (samba)
2010-05-1700:00:00
Copyright (c) 2010 Greenbone Networks GmbH
plugins.openvas.org
10
0.001 Low
EPSS
Percentile
25.4%
Check for the Version of samba
###############################################################################
# OpenVAS Vulnerability Test
#
# Mandriva Update for samba MDVSA-2010:090-1 (samba)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
tag_insight = "Multiple vulnerabilies has been found and corrected in samba:
client/mount.cifs.c in mount.cifs in smbfs in Samba does not verify
that the (1) device name and (2) mountpoint strings are composed of
valid characters, which allows local users to cause a denial of service
(mtab corruption) via a crafted string (CVE-2010-0547).
client/mount.cifs.c in mount.cifs in smbfs in Samba allows local users
to mount a CIFS share on an arbitrary mountpoint, and gain privileges,
via a symlink attack on the mountpoint directory file (CVE-2010-0787).
The updated packages have been patched to correct these issues.
Update:
It was discovered that the previous Samba update required libtalloc
from Samba4 package. Therefore, this update provides the required
packages in order to fix the issue.";
tag_solution = "Please Install the Updated Packages.";
tag_affected = "samba on Mandriva Linux 2010.0,
Mandriva Linux 2010.0/X86_64";
if(description)
{
script_xref(name : "URL" , value : "http://lists.mandriva.com/security-announce/2010-05/msg00011.php");
script_oid("1.3.6.1.4.1.25623.1.0.831038");
script_version("$Revision: 8314 $");
script_tag(name:"last_modification", value:"$Date: 2018-01-08 09:01:01 +0100 (Mon, 08 Jan 2018) $");
script_tag(name:"creation_date", value:"2010-05-17 16:00:10 +0200 (Mon, 17 May 2010)");
script_tag(name:"cvss_base", value:"4.4");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:P/I:P/A:P");
script_xref(name: "MDVSA", value: "2010:090-1");
script_cve_id("CVE-2010-0547", "CVE-2010-0787");
script_name("Mandriva Update for samba MDVSA-2010:090-1 (samba)");
script_tag(name: "summary" , value: "Check for the Version of samba");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
script_family("Mandrake Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mandriva_mandrake_linux", "ssh/login/release");
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "solution" , value : tag_solution);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-rpm.inc");
release = get_kb_item("ssh/login/release");
res = "";
if(release == NULL){
exit(0);
}
if(release == "MNDK_2010.0")
{
if ((res = isrpmvuln(pkg:"ldb-utils", rpm:"ldb-utils~0.9.3~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libdcerpc0", rpm:"libdcerpc0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libdcerpc-devel", rpm:"libdcerpc-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libldb0", rpm:"libldb0~0.9.3~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libldb-devel", rpm:"libldb-devel~0.9.3~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libndr0", rpm:"libndr0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libndr-devel", rpm:"libndr-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libsamba-hostconfig0", rpm:"libsamba-hostconfig0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libsamba-hostconfig-devel", rpm:"libsamba-hostconfig-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtalloc1", rpm:"libtalloc1~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtalloc-devel", rpm:"libtalloc-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtdb1", rpm:"libtdb1~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtdb-devel", rpm:"libtdb-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtevent0", rpm:"libtevent0~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libtevent-devel", rpm:"libtevent-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"mount-cifs4", rpm:"mount-cifs4~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-client", rpm:"samba4-client~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-common", rpm:"samba4-common~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-devel", rpm:"samba4-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-pidl", rpm:"samba4-pidl~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-python", rpm:"samba4-python~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-server", rpm:"samba4-server~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4-test", rpm:"samba4-test~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"tdb-utils", rpm:"tdb-utils~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"samba4", rpm:"samba4~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64dcerpc0", rpm:"lib64dcerpc0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64dcerpc-devel", rpm:"lib64dcerpc-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ldb0", rpm:"lib64ldb0~0.9.3~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ldb-devel", rpm:"lib64ldb-devel~0.9.3~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ndr0", rpm:"lib64ndr0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ndr-devel", rpm:"lib64ndr-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64samba-hostconfig0", rpm:"lib64samba-hostconfig0~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64samba-hostconfig-devel", rpm:"lib64samba-hostconfig-devel~0.0.1~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64talloc1", rpm:"lib64talloc1~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64talloc-devel", rpm:"lib64talloc-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64tdb1", rpm:"lib64tdb1~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64tdb-devel", rpm:"lib64tdb-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64tevent0", rpm:"lib64tevent0~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64tevent-devel", rpm:"lib64tevent-devel~4.0.0~0.4.alpha8.1mdv2010.0", rls:"MNDK_2010.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
Related
openvas
openvas
Gentoo Security Advisory GLSA 201206-29 (mount-cifs)
2012-08-10 00:00:00
Mandriva Update for openssh MDVA-2010:090 (openssh)
2010-03-12 00:00:00
Mandriva Update for openssh MDVA-2010:090 (openssh)
2010-03-12 00:00:00
gentoo
gentoo
mount-cifs: Multiple vulnerabilites
2012-06-25 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : samba (MDVSA-2010:090-1)
2010-05-05 00:00:00
GLSA-201206-29 : mount-cifs: Multiple vulnerabilites
2012-06-26 00:00:00
Debian DSA-2004-1 : samba - several vulnerabilities
2010-03-02 00:00:00
osv
osv
samba - several vulnerabilities
2010-02-28 00:00:00
ubuntucve
ubuntucve
veracode
veracode
Symlink Attack
2020-04-10 00:51:48
Denial Of Service (DoS)
2020-04-10 00:51:48
Denial Of Service (DoS)
2020-04-10 01:02:27
cve
cve
debiancve
debiancve
prion
prion
Directory traversal
2010-03-02 18:30:00
Path traversal
2010-02-04 20:15:00
Path traversal
2011-09-06 16:55:00
seebug
seebug
Samba 3.4.5 client/mount.cifs.c本地拒绝服务漏洞
2010-05-06 00:00:00
redhat
redhat
(RHSA-2011:1219) Moderate: samba security update
2011-08-29 00:00:00
(RHSA-2011:1220) Moderate: samba3x security update
2011-08-29 00:00:00
(RHSA-2011:1221) Moderate: samba and cifs-utils security and bug fix update
2011-08-29 00:00:00
centos
centos
libsmbclient, samba security update
2011-08-29 21:13:06
samba3x security update
2011-09-01 16:12:20
oraclelinux
oraclelinux
samba security update
2011-08-29 00:00:00
samba security, bug fix, and enhancement update
2012-03-01 00:00:00
suse
suse
potential remote code execution in samba
2010-07-01 11:11:15
Security update for Samba (critical)
2012-03-09 17:08:16
fedora
fedora
[SECURITY] Fedora 14 Update: cifs-utils-4.8.1-7.fc14
2011-08-09 01:29:26
[SECURITY] Fedora 15 Update: cifs-utils-5.0-2.fc15
2011-08-09 01:35:06
[SECURITY] Fedora 16 Update: cifs-utils-5.0-2.fc16
2011-08-22 15:29:48
debian
debian
[SECURITY] [DSA 2004-1] New samba packages fix several vulnerabilities
2010-02-28 21:55:00
ubuntu
ubuntu
Samba vulnerability
2010-01-28 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00