Lucene search
Copyright (C) 2009 Greenbone AGOPENVAS:1361412562310861353HistoryFeb 27, 2009 - 12:00 a.m.
Fedora Update for php FEDORA-2007-709
2009-02-2700:00:00
Copyright (C) 2009 Greenbone AG
plugins.openvas.org
2
7.8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.258 Low
EPSS
Percentile
96.7%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_xref(name:"URL", value:"https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html");
script_oid("1.3.6.1.4.1.25623.1.0.861353");
script_version("2023-07-04T05:05:35+0000");
script_tag(name:"last_modification", value:"2023-07-04 05:05:35 +0000 (Tue, 04 Jul 2023)");
script_tag(name:"creation_date", value:"2009-02-27 16:31:39 +0100 (Fri, 27 Feb 2009)");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_xref(name:"FEDORA", value:"2007-709");
script_cve_id("CVE-2007-3996", "CVE-2007-2872", "CVE-2007-4670", "CVE-2007-4658", "CVE-2007-3998", "CVE-2007-3799", "CVE-2007-2756");
script_name("Fedora Update for php FEDORA-2007-709");
script_tag(name:"summary", value:"The remote host is missing an update for the 'php'
package(s) announced via the referenced advisory.");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora_core", "ssh/login/rpms", re:"ssh/login/release=FC6");
script_tag(name:"affected", value:"php on Fedora Core 6");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
if(release == "FC6")
{
if ((res = isrpmvuln(pkg:"php", rpm:"php~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/debug/php-debuginfo", rpm:"x86_64/debug/php-debuginfo~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-mbstring", rpm:"x86_64/php-mbstring~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-ncurses", rpm:"x86_64/php-ncurses~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-pgsql", rpm:"x86_64/php-pgsql~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-soap", rpm:"x86_64/php-soap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-common", rpm:"x86_64/php-common~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-dba", rpm:"x86_64/php-dba~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-snmp", rpm:"x86_64/php-snmp~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-bcmath", rpm:"x86_64/php-bcmath~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-xmlrpc", rpm:"x86_64/php-xmlrpc~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-devel", rpm:"x86_64/php-devel~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-mysql", rpm:"x86_64/php-mysql~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-pdo", rpm:"x86_64/php-pdo~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-gd", rpm:"x86_64/php-gd~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-ldap", rpm:"x86_64/php-ldap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-imap", rpm:"x86_64/php-imap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-odbc", rpm:"x86_64/php-odbc~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php", rpm:"x86_64/php~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-xml", rpm:"x86_64/php-xml~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"x86_64/php-cli", rpm:"x86_64/php-cli~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-snmp", rpm:"i386/php-snmp~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-cli", rpm:"i386/php-cli~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-mysql", rpm:"i386/php-mysql~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-ncurses", rpm:"i386/php-ncurses~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php", rpm:"i386/php~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-ldap", rpm:"i386/php-ldap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-common", rpm:"i386/php-common~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-gd", rpm:"i386/php-gd~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/debug/php-debuginfo", rpm:"i386/debug/php-debuginfo~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-pdo", rpm:"i386/php-pdo~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-soap", rpm:"i386/php-soap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-odbc", rpm:"i386/php-odbc~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-xml", rpm:"i386/php-xml~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-imap", rpm:"i386/php-imap~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-bcmath", rpm:"i386/php-bcmath~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-devel", rpm:"i386/php-devel~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-pgsql", rpm:"i386/php-pgsql~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-xmlrpc", rpm:"i386/php-xmlrpc~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-mbstring", rpm:"i386/php-mbstring~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"i386/php-dba", rpm:"i386/php-dba~5.1.6~3.7.fc6", rls:"FC6")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
Related
nessus
nessus
CentOS 4 / 5 : php (CESA-2007:0890)
2007-09-24 00:00:00
RHEL 4 / 5 : php (RHSA-2007:0890)
2007-09-24 00:00:00
Oracle Linux 4 / 5 : php (ELSA-2007-0890)
2013-07-12 00:00:00
openvas
openvas
Fedora Update for php FEDORA-2007-709
2009-02-27 00:00:00
Oracle: Security Advisory (ELSA-2007-0890)
2015-10-08 00:00:00
Mandriva Update for php MDKSA-2007:187 (php)
2009-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: php-5.1.6-3.7.fc6
2007-09-24 20:33:40
redhat
redhat
(RHSA-2007:0890) Moderate: php security update
2007-09-20 00:00:00
(RHSA-2007:0891) Moderate: php security update
2007-10-25 00:00:00
(RHSA-2007:0889) Moderate: php security update
2007-09-26 00:00:00
centos
centos
php security update
2007-09-20 14:31:37
php security update
2007-09-26 09:03:28
php security update
2007-10-24 03:08:58
oraclelinux
oraclelinux
Moderate: php security update
2007-09-20 00:00:00
Moderate: php security update
2007-09-26 00:00:00
php security update
2009-04-06 00:00:00
securityvulns
securityvulns
[OpenPKG-SA-2007.020] OpenPKG Security Advisory (php)
2007-06-01 00:00:00
PHP multiple security vulnerabilities
2007-06-01 00:00:00
PHP multiple security vulnerabilities
2008-01-04 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2007-11-29 00:00:00
PHP regression
2007-12-03 00:00:00
GD library vulnerability
2007-12-18 00:00:00
freebsd
freebsd
php -- multiple vulnerabilities
2007-08-30 00:00:00
slackware
slackware
[slackware-security] php5
2007-06-01 21:19:18
osv
osv
php5 several issues
2008-01-23 00:00:00
php4 - several vulnerabilities
2008-05-17 00:00:00
libgd2 - multiple vulnerabilities
2008-07-22 00:00:00
debian
debian
[SECURITY] [DSA 1444-1] New php5 packages fix several vulnerabilities
2008-01-03 20:25:59
[SECURITY] [DSA 1444-2] New php5 packages fix regression
2008-01-23 21:29:45
[SECURITY] [DSA 1578-1] New php4 packages fix several vulnerabilities
2008-05-17 11:44:14
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:18:58
Improper Session Handling
2020-04-10 00:18:57
Improper Session Management
2020-04-10 00:19:00
cve
cve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2007-09-04 18:17:00
Format string
2007-09-04 22:17:00
Integer overflow
2007-06-04 17:30:00
seebug
seebug
PHP libgd实现多个函数整数溢出漏洞
2007-09-05 00:00:00
debiancve
debiancve
CVE-2007-3996
2007-09-04 18:17:00
CVE-2007-2756
2007-05-18 18:30:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
GD: Multiple vulnerabilities
2007-08-09 00:00:00
redhatcve
redhatcve
CVE-2007-4657
2015-10-30 09:33:14
suse
suse
remote code execution in php4, php5
2008-01-29 14:18:48
remote denial of service in php4,php5
2007-07-12 16:26:43
7.8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.258 Low
EPSS
Percentile
96.7%
Related for OPENVAS:1361412562310861353