Lucene search
Copyright (C) 2010 Greenbone AGOPENVAS:1361412562310840433HistoryMay 28, 2010 - 12:00 a.m.
Ubuntu: Security Advisory (USN-940-1)
2010-05-2800:00:00
Copyright (C) 2010 Greenbone AG
plugins.openvas.org
16
6.3 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.065 Low
EPSS
Percentile
93.7%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2010 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.840433");
script_cve_id("CVE-2007-5902", "CVE-2007-5971", "CVE-2007-5972", "CVE-2010-1320", "CVE-2010-1321");
script_tag(name:"creation_date", value:"2010-05-28 08:00:59 +0000 (Fri, 28 May 2010)");
script_version("2024-02-02T05:06:04+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:04 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_name("Ubuntu: Security Advisory (USN-940-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2010 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(6\.06\ LTS|8\.04\ LTS|9\.04|9\.10)");
script_xref(name:"Advisory-ID", value:"USN-940-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-940-1");
script_tag(name:"summary", value:"The remote host is missing an update for the 'krb5' package(s) announced via the USN-940-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"It was discovered that Kerberos did not correctly free memory in the
GSSAPI and kdb libraries. If a remote attacker were able to manipulate
an application using these libraries carefully, the service could
crash, leading to a denial of service. (Only Ubuntu 6.06 LTS was
affected.) (CVE-2007-5902, CVE-2007-5971, CVE-2007-5972)
Joel Johnson, Brian Almeida, and Shawn Emery discovered that Kerberos
did not correctly verify certain packet structures. An unauthenticated
remote attacker could send specially crafted traffic to cause the KDC or
kadmind services to crash, leading to a denial of service. (CVE-2010-1320,
CVE-2010-1321)");
script_tag(name:"affected", value:"'krb5' package(s) on Ubuntu 6.06, Ubuntu 8.04, Ubuntu 9.04, Ubuntu 9.10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU6.06 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"krb5-kdc", ver:"1.4.3-5ubuntu0.11", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libkrb53", ver:"1.4.3-5ubuntu0.11", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU8.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"krb5-admin-server", ver:"1.6.dfsg.3~beta1-2ubuntu1.5", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"krb5-kdc", ver:"1.6.dfsg.3~beta1-2ubuntu1.5", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU9.04") {
if(!isnull(res = isdpkgvuln(pkg:"krb5-admin-server", ver:"1.6.dfsg.4~beta1-5ubuntu2.4", rls:"UBUNTU9.04"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"krb5-kdc", ver:"1.6.dfsg.4~beta1-5ubuntu2.4", rls:"UBUNTU9.04"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU9.10") {
if(!isnull(res = isdpkgvuln(pkg:"krb5-admin-server", ver:"1.7dfsg~beta3-1ubuntu0.6", rls:"UBUNTU9.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"krb5-kdc", ver:"1.7dfsg~beta3-1ubuntu0.6", rls:"UBUNTU9.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 : krb5 vulnerabilities (USN-940-1)
2010-05-20 00:00:00
openSUSE 10 Security Update : krb5 (krb5-4851)
2008-01-16 00:00:00
SuSE 10 Security Update : Kerberos (ZYPP Patch Number 4852)
2008-01-16 00:00:00
openvas
openvas
Ubuntu Update for krb5 vulnerabilities USN-940-1
2010-05-28 00:00:00
Ubuntu Update for krb5 vulnerabilities USN-924-1
2010-04-09 00:00:00
Ubuntu: Security Advisory (USN-924-1)
2010-04-09 00:00:00
ubuntu
ubuntu
Kerberos vulnerabilities
2010-05-19 00:00:00
Kerberos vulnerabilities
2010-04-07 00:00:00
Kerberos vulnerability
2010-07-21 00:00:00
cve
cve
debiancve
debiancve
prion
prion
ubuntucve
ubuntucve
securityvulns
securityvulns
MIT Kerberos 5 double free()
2010-04-23 00:00:00
MITKRB5-SA-2010-004 [CVE-2010-1320] double free in KDC
2010-04-23 00:00:00
MITKRB5-SA-2010-005 [CVE-2010-1321] GSS-API lib null pointer deref
2010-05-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:47:56
freebsd
freebsd
krb5 -- KDC double free vulnerability
2010-04-20 00:00:00
checkpoint_advisories
checkpoint_advisories
osv
osv
krb5 - denial of service
2010-05-24 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: krb5-1.7.1-10.fc13
2010-05-19 19:11:47
[SECURITY] Fedora 13 Update: krb5-1.7.1-8.fc13
2010-04-21 21:54:06
[SECURITY] Fedora 12 Update: krb5-1.7.1-9.fc12
2010-05-19 19:19:21
centos
centos
krb5 security update
2010-05-21 22:00:31
krb5 security update
2008-03-20 11:48:34
krb5 security update
2008-03-19 00:46:42
redhat
redhat
(RHSA-2010:0423) Important: krb5 security update
2010-05-18 00:00:00
(RHSA-2011:0152) Moderate: java-1.4.2-ibm security update
2011-01-17 00:00:00
(RHSA-2010:0935) Moderate: java-1.4.2-ibm security update
2010-12-01 00:00:00
seebug
seebug
MIT Kerberos GSS-API校验和空指针引用拒绝服务漏洞
2010-05-20 00:00:00
VMware ESX Service Console多个安全漏洞
2012-01-13 00:00:00
debian
debian
[SECURITY] [DSA 2052-1] New krb5 packages fix denial of service
2010-05-24 19:49:50
[SECURITY] [DSA 2052-1] New krb5 packages fix denial of service
2010-05-24 19:48:30
oraclelinux
oraclelinux
krb5 security update
2010-05-18 00:00:00
Critical: krb5 security update
2008-03-18 00:00:00
Critical: krb5 security and bugfix update
2008-03-18 00:00:00
suse
suse
Security update for krb5 (important)
2012-01-05 12:08:23
Security update for krb5 (important)
2012-01-05 12:35:50
remote code execution in java-1_6_0-ibm,java-1_5_0-ibm,java-1_4_2-ibm
2011-03-22 13:32:34
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2008-03-24 00:00:00
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00
vmware
vmware
VMware ESX third party updates for Service Console
2010-08-31 00:00:00
VMware ESX third party updates for Service Console
2010-08-31 00:00:00
6.3 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.065 Low
EPSS
Percentile
93.7%
Related for OPENVAS:1361412562310840433