Search...

Debian Security Advisory DSA 640-1 (gatos)

2008-01-17T00:00:00

ID OPENVAS:53104
Type openvas
Reporter Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com
Modified 2017-07-07T00:00:00

Description

The remote host is missing an update to gatos announced via advisory DSA 640-1.

                                        
                                            # OpenVAS Vulnerability Test
# $Id: deb_640_1.nasl 6616 2017-07-07 12:10:49Z cfischer $
# Description: Auto-generated from advisory DSA 640-1
#
# Authors:
# Thomas Reinke &lt;reinke@securityspace.com&gt;
#
# Copyright:
# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largerly excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

include("revisions-lib.inc");
tag_insight = "Erik Sjölund discovered a buffer overflow in xatitv, one of the
programs in the gatos package, that is used to display video with
certain ATI video cards.  xatitv is installed setuid root in order to
gain direct access to the video hardware.

For the stable distribution (woody) this problem has been fixed in
version 0.0.5-6woody3.

For the unstable distribution (sid) this problem has been fixed in
version 0.0.5-15.

We recommend that you upgrade your gatos package.";
tag_summary = "The remote host is missing an update to gatos
announced via advisory DSA 640-1.";

tag_solution = "https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20640-1";

if(description)
{
 script_id(53104);
 script_version("$Revision: 6616 $");
 script_tag(name:"last_modification", value:"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $");
 script_tag(name:"creation_date", value:"2008-01-17 22:56:38 +0100 (Thu, 17 Jan 2008)");
 script_cve_id("CVE-2005-0016");
 script_tag(name:"cvss_base", value:"7.2");
 script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
 script_name("Debian Security Advisory DSA 640-1 (gatos)");



 script_category(ACT_GATHER_INFO);

 script_copyright("Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
 script_family("Debian Local Security Checks");
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages");
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "insight" , value : tag_insight);
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

#
# The script code starts here
#

include("pkg-lib-deb.inc");

res = "";
report = "";
if ((res = isdpkgvuln(pkg:"gatos", ver:"0.0.5-6woody3", rls:"DEB3.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libgatos-dev", ver:"0.0.5-6woody3", rls:"DEB3.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libgatos0", ver:"0.0.5-6woody3", rls:"DEB3.0")) != NULL) {
    report += res;
}

if (report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

JSON Vulners Source

Initial Source

{"href": "http://plugins.openvas.org/nasl.php?oid=53104", "history": [{"lastseen": "2017-07-02T21:10:19", "differentElements": ["modified", "sourceData"], "edition": 1, "bulletin": {"href": "http://plugins.openvas.org/nasl.php?oid=53104", "history": [], "naslFamily": "Debian Local Security Checks", "id": "OPENVAS:53104", "title": "Debian Security Advisory DSA 640-1 (gatos)", "description": "The remote host is missing an update to gatos\nannounced via advisory DSA 640-1.", "published": "2008-01-17T00:00:00", "type": "openvas", "bulletinFamily": "scanner", "hashmap": [{"key": "pluginID", "hash": "9e1671a7530228e2271dca641f06f673"}, {"key": "href", "hash": "82dd11024d6f3a26ed8f252dbf43b93d"}, {"key": "description", "hash": "ab9a2cf76d952b58a922eacc939e0055"}, {"key": "reporter", "hash": "bd0c646e06156cd71a2e5bbae48ef94c"}, {"key": "cvss", "hash": "cfd16da9581e0c21db590e40dfd9e493"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "7f26cb8285000720bb1c56f1accef2d8"}, {"key": "sourceData", "hash": "583a9061a4ff2e117fdfedc28211f17f"}, {"key": "title", "hash": "6a883fd5022bbe0e47be6edd4452d8b3"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}, {"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "modified", "hash": "8729fee12f24d9aa61b0066a3d83004b"}, {"key": "naslFamily", "hash": "74562d71b087df9eabd0c21f99b132cc"}, {"key": "published", "hash": "d50ef4187c812efcd7df8d6f70c1cb0e"}], "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_640_1.nasl 4015 2016-09-09 05:53:53Z teissa $\n# Description: Auto-generated from advisory DSA 640-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Erik Sj\u00f6lund discovered a buffer overflow in xatitv, one of the\nprograms in the gatos package, that is used to display video with\ncertain ATI video cards. xatitv is installed setuid root in order to\ngain direct access to the video hardware.\n\nFor the stable distribution (woody) this problem has been fixed in\nversion 0.0.5-6woody3.\n\nFor the unstable distribution (sid) this problem has been fixed in\nversion 0.0.5-15.\n\nWe recommend that you upgrade your gatos package.\";\ntag_summary = \"The remote host is missing an update to gatos\nannounced via advisory DSA 640-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20640-1\";\n\nif(description)\n{\n script_id(53104);\n script_version(\"$Revision: 4015 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-09 07:53:53 +0200 (Fri, 09 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:56:38 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2005-0016\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 640-1 (gatos)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:debian:debian_linux\", \"login/SSH/success\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"gatos\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgatos-dev\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgatos0\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "pluginID": "53104", "hash": "ffd6b43dbd6d9dd558e28dc5905f2f181a8d09fbfcfb2c2af47b2bf506e6da57", "modified": "2016-09-09T00:00:00", "edition": 1, "cvelist": ["CVE-2005-0016"], "lastseen": "2017-07-02T21:10:19", "viewCount": 0, "enchantments": {}, "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "objectVersion": "1.3", "references": []}}], "naslFamily": "Debian Local Security Checks", "id": "OPENVAS:53104", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "description": "The remote host is missing an update to gatos\nannounced via advisory DSA 640-1.", "title": "Debian Security Advisory DSA 640-1 (gatos)", "bulletinFamily": "scanner", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_640_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 640-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Erik Sj\u00f6lund discovered a buffer overflow in xatitv, one of the\nprograms in the gatos package, that is used to display video with\ncertain ATI video cards. xatitv is installed setuid root in order to\ngain direct access to the video hardware.\n\nFor the stable distribution (woody) this problem has been fixed in\nversion 0.0.5-6woody3.\n\nFor the unstable distribution (sid) this problem has been fixed in\nversion 0.0.5-15.\n\nWe recommend that you upgrade your gatos package.\";\ntag_summary = \"The remote host is missing an update to gatos\nannounced via advisory DSA 640-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20640-1\";\n\nif(description)\n{\n script_id(53104);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:56:38 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2005-0016\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 640-1 (gatos)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"gatos\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgatos-dev\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgatos0\", ver:\"0.0.5-6woody3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "pluginID": "53104", "hash": "504495bfe06124b9658c346984fc084019244146dd30897243d679fdb38f4b02", "references": [], "edition": 2, "cvelist": ["CVE-2005-0016"], "lastseen": "2017-07-24T12:50:06", "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-0016"]}, {"type": "osvdb", "idList": ["OSVDB:13016"]}, {"type": "debian", "idList": ["DEBIAN:DSA-640-1:2596C"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-640.NASL"]}], "modified": "2017-07-24T12:50:06"}, "vulnersScore": 7.5}, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "7f26cb8285000720bb1c56f1accef2d8"}, {"key": "cvss", "hash": "cfd16da9581e0c21db590e40dfd9e493"}, {"key": "description", "hash": "ab9a2cf76d952b58a922eacc939e0055"}, {"key": "href", "hash": "82dd11024d6f3a26ed8f252dbf43b93d"}, {"key": "modified", "hash": "d89cc672a6266551218ef8145d1f22e2"}, {"key": "naslFamily", "hash": "74562d71b087df9eabd0c21f99b132cc"}, {"key": "pluginID", "hash": "9e1671a7530228e2271dca641f06f673"}, {"key": "published", "hash": "d50ef4187c812efcd7df8d6f70c1cb0e"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "bd0c646e06156cd71a2e5bbae48ef94c"}, {"key": "sourceData", "hash": "bfa58f73f0287eb78330a3f0e17115db"}, {"key": "title", "hash": "6a883fd5022bbe0e47be6edd4452d8b3"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "objectVersion": "1.3", "modified": "2017-07-07T00:00:00"}

{"cve": [{"lastseen": "2017-07-11T11:14:45", "bulletinFamily": "NVD", "description": "Buffer overflow in the exported_display function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code.", "modified": "2017-07-10T21:32:03", "published": "2005-04-14T00:00:00", "id": "CVE-2005-0016", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0016", "title": "CVE-2005-0016", "type": "cve", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:08", "bulletinFamily": "software", "description": "## Vulnerability Description\nA local overflow exists in gatos xatitv. Xatitv contains a boundary error in the exported_display() function of xutils.c resulting in a buffer overflow. With a specially crafted request, an attacker can cause privilege escalation and arbitrary code execution resulting in a loss of integrity.\n## Solution Description\nUpgrade to version 0.0.5-6woody3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nA local overflow exists in gatos xatitv. Xatitv contains a boundary error in the exported_display() function of xutils.c resulting in a buffer overflow. With a specially crafted request, an attacker can cause privilege escalation and arbitrary code execution resulting in a loss of integrity.\n## References:\n[Secunia Advisory ID:13884](https://secuniaresearch.flexerasoftware.com/advisories/13884/)\nOther Advisory URL: http://www.debian.org/security/2005/dsa-640\n[CVE-2005-0016](https://vulners.com/cve/CVE-2005-0016)\n", "modified": "2005-01-17T10:35:54", "published": "2005-01-17T10:35:54", "id": "OSVDB:13016", "href": "https://vulners.com/osvdb/OSVDB:13016", "title": "GATOS xatitv exported_display() Local Overflow", "type": "osvdb", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2018-10-16T22:14:08", "bulletinFamily": "unix", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 640-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 17th, 2005 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : gatos\nVulnerability : buffer overflow\nProblem-Type : local\nDebian-specific: no\nCVE ID : CAN-2005-0016\n\nErik Sj\u00f6lund discovered a buffer overflow in xatitv, one of the\nprograms in the gatos package, that is used to display video with\ncertain ATI video cards. xatitv is installed setuid root in order to\ngain direct access to the video hardware.\n\nFor the stable distribution (woody) this problem has been fixed in\nversion 0.0.5-6woody3.\n\nFor the unstable distribution (sid) this problem has been fixed in\nversion 0.0.5-15.\n\nWe recommend that you upgrade your gatos package.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/g/gatos/gatos_0.0.5-6woody3.dsc\n Size/MD5 checksum: 629 0005020205c97ebd6f2efdf146846c15\n http://security.debian.org/pool/updates/main/g/gatos/gatos_0.0.5-6woody3.diff.gz\n Size/MD5 checksum: 40976 34933c1e1da0fbb172ab919e23b68e02\n http://security.debian.org/pool/updates/main/g/gatos/gatos_0.0.5.orig.tar.gz\n Size/MD5 checksum: 483916 9c16631afc933bde6f5d5e1421efddb7\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/g/gatos/gatos_0.0.5-6woody3_i386.deb\n Size/MD5 checksum: 148110 2d2e9c2ba2d429175cab205c6ce6860d\n http://security.debian.org/pool/updates/main/g/gatos/libgatos-dev_0.0.5-6woody3_i386.deb\n Size/MD5 checksum: 109748 4c1d0a17839934a2c818e314c5d7d3b2\n http://security.debian.org/pool/updates/main/g/gatos/libgatos0_0.0.5-6woody3_i386.deb\n Size/MD5 checksum: 75460 bc27c6c2ec12dab3b6b3e164ee8f05f2\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "modified": "2005-01-17T00:00:00", "published": "2005-01-17T00:00:00", "id": "DEBIAN:DSA-640-1:2596C", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2005/msg00018.html", "title": "[SECURITY] [DSA 640-1] New gatos packages fix arbitrary code execution", "type": "debian", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2019-02-21T01:08:20", "bulletinFamily": "scanner", "description": "Erik Sjolund discovered a buffer overflow in xatitv, one of the programs in the gatos package, that is used to display video with certain ATI video cards. xatitv is installed setuid root in order to gain direct access to the video hardware.", "modified": "2018-08-09T00:00:00", "id": "DEBIAN_DSA-640.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=16176", "published": "2005-01-17T00:00:00", "title": "Debian DSA-640-1 : gatos - buffer overflow", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-640. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(16176);\n script_version(\"1.20\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2005-0016\");\n script_xref(name:\"DSA\", value:\"640\");\n\n script_name(english:\"Debian DSA-640-1 : gatos - buffer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Erik Sjolund discovered a buffer overflow in xatitv, one of the\nprograms in the gatos package, that is used to display video with\ncertain ATI video cards. xatitv is installed setuid root in order to\ngain direct access to the video hardware.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2005/dsa-640\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the gatos package.\n\nFor the stable distribution (woody) this problem has been fixed in\nversion 0.0.5-6woody3.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gatos\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2005/01/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2005/01/17\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2005/01/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.0\", prefix:\"gatos\", reference:\"0.0.5-6woody3\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgatos-dev\", reference:\"0.0.5-6woody3\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgatos0\", reference:\"0.0.5-6woody3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}