Lucene search
Copyright (c) 2012 E-Soft Inc. http://www.securityspace.comOPENVAS:57698HistorySep 11, 2012 - 12:00 a.m.
Slackware Advisory SSA:2006-310-01 bind
2012-09-1100:00:00
Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com
plugins.openvas.org
10
0.068 Low
EPSS
Percentile
93.2%
The remote host is missing an update as announced
via advisory SSA:2006-310-01.
# OpenVAS Vulnerability Test
# $Id: esoft_slk_ssa_2006_310_01.nasl 6598 2017-07-07 09:36:44Z cfischer $
# Description: Auto-generated from the corresponding slackware advisory
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# or at your option, GNU General Public License version 3,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
include("revisions-lib.inc");
tag_insight = "New bind packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2,
and 11.0 to fix security issues. The minimum OpenSSL version was raised to
OpenSSL 0.9.7l and OpenSSL 0.9.8d to avoid exposure to known security flaws
in older versions (these patches were already issued for Slackware). If you
have not upgraded yet, get those as well to prevent a potentially exploitable
security problem in named.
In addition, the default RSA exponent was changed from 3 to 65537.
Both of these issues are essentially the same as ones discovered in OpenSSL at
the end of September 2006, only now there's protection against compiling using
the wrong OpenSSL version. RSA keys using exponent 3 (which was previously
BIND's default) will need to be regenerated to protect against the forging of
RRSIGs.";
tag_summary = "The remote host is missing an update as announced
via advisory SSA:2006-310-01.";
tag_solution = "https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2006-310-01";
if(description)
{
script_id(57698);
script_tag(name:"creation_date", value:"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)");
script_tag(name:"last_modification", value:"$Date: 2017-07-07 11:36:44 +0200 (Fri, 07 Jul 2017) $");
script_cve_id("CVE-2006-4339");
script_tag(name:"cvss_base", value:"4.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_version("$Revision: 6598 $");
name = "Slackware Advisory SSA:2006-310-01 bind";
script_name(name);
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com");
script_family("Slackware Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/slackware_linux", "ssh/login/slackpack");
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "summary" , value : tag_summary);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
#
# The script code starts here
#
include("pkg-lib-slack.inc");
vuln = 0;
if(isslkpkgvuln(pkg:"bind", ver:"9.2.6_P2-i386-1_slack8.1", rls:"SLK8.1")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.2.6_P2-i386-1_slack9.0", rls:"SLK9.0")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.2.6_P2-i486-1_slack9.1", rls:"SLK9.1")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.2.6_P2-i486-1_slack10.0", rls:"SLK10.0")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.3.2_P2-i486-1_slack10.1", rls:"SLK10.1")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.3.2_P2-i486-1_slack10.2", rls:"SLK10.2")) {
vuln = 1;
}
if(isslkpkgvuln(pkg:"bind", ver:"9.3.2_P2-i486-1_slack11.0", rls:"SLK11.0")) {
vuln = 1;
}
if(vuln) {
security_message(0);
} else if (__pkg_match) {
exit(99); # Not vulnerable.
}
Related
checkpoint_advisories
checkpoint_advisories
Update Protection against OpenSSL RSA Key Signature Forgery Vulnerability
2006-11-13 00:00:00
securityvulns
securityvulns
OpenSSL Security Advisory [5th September 2006] RSA Signature Forgery (CVE-2006-4339)
2006-09-05 00:00:00
SIP over TLS: X.509 peer authentication vulnerability in Ingate products
2006-09-15 00:00:00
[OpenPKG-SA-2006.029] OpenPKG Security Advisory (bind)
2006-11-05 00:00:00
f5
f5
SOL6623 - OpenSSL signature vulnerability - CVE-2006-4339
2007-05-16 00:00:00
K6623 : OpenSSL signature vulnerability - CVE-2006-4339
2013-03-26 00:00:00
nessus
nessus
slackware
slackware
[slackware-security] bind
2006-11-07 06:26:27
[slackware-security] openssl
2006-09-14 22:05:20
openvas
openvas
SLES9: Security update for openssl
2009-10-10 00:00:00
Debian Security Advisory DSA 1174-1 (openssl096)
2008-01-17 00:00:00
Slackware Advisory SSA:2006-257-02 openssl
2012-09-11 00:00:00
ubuntu
ubuntu
OpenSSL vulnerability
2006-09-05 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-06:19.openssl
2006-09-06 00:00:00
debian
debian
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 0.9.7g-alt4
2006-09-06 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 0.9.7g-alt4
2006-09-06 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.7g-alt4
2006-09-06 00:00:00
jvn
jvn
JVN#51615542: Adobe Reader fails to properly handle signatures
2012-08-30 00:00:00
cve
cve
centos
centos
openssl, openssl095a, openssl096 security update
2006-09-11 00:52:04
openssl, openssl096b security update
2006-09-08 09:58:00
openssl
openssl
Vulnerability in OpenSSL CVE-2006-4339
2006-09-05 00:00:00
debiancve
debiancve
CVE-2006-4339
2006-09-05 17:04:00
CVE-2006-4340
2006-09-15 18:07:00
gentoo
gentoo
OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery
2006-09-07 00:00:00
Mozilla Network Security Service (NSS): RSA signature forgery
2006-10-17 00:00:00
osv
osv
openssl - cryptographic weakness
2006-09-10 00:00:00
checkpoint_security
checkpoint_security
OpenSSL CVE-2006-4339 8732 vulnerability Fix
2006-10-18 22:00:00
freebsd
freebsd
openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)
2006-09-06 00:00:00
opera -- RSA Signature Forgery
2006-09-18 00:00:00
openoffice.org -- multiple vulnerabilities
2006-08-24 00:00:00
cert
cert
Multiple RSA implementations fail to properly handle signatures
2006-09-11 00:00:00
ubuntucve
ubuntucve
redhat
redhat
(RHSA-2006:0661) openssl security update
2006-09-06 00:00:00
(RHSA-2007:0062) Critical: java-1.4.2-ibm security update
2007-02-07 00:00:00
(RHSA-2007:0072) Critical: IBMJava2 security update
2007-02-08 00:00:00
suse
suse
remote code execution in opera
2006-10-19 13:18:21
RSA signature evasion in openssl,mozilla-nss
2006-09-22 15:25:59
remote code execution in IBMJava2
2007-01-18 16:13:31
mozilla
mozilla
RSA Signature Forgery — Mozilla
2006-09-14 00:00:00
cisco
cisco
OpenSSL RSA Signature Forgery Vulnerability
2006-09-05 17:39:31
oraclelinux
oraclelinux
Important openssl security update
2006-11-30 00:00:00
Important openssl security update
2006-11-30 00:00:00
threatpost
threatpost
OpenOffice Zaps Six Security Bugs
2010-02-18 15:09:26