Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

SuSE Update for w3m SUSE-SA:2007:005

🗓️ 28 Jan 2009 00:00:00Reported by Copyright (C) 2009 Greenbone Networks GmbHType 
openvas
 openvas🔗 plugins.openvas.org👁 27 Views

SuSE Update for w3m SUSE-SA:2007:005. A format string problem in w3m -dump / -backend mode could be used by a malicious server to crash w3m or execute code. This problem is tracked by the Mitre CVE ID CVE-2006-6772

Related
Code
ReporterTitlePublishedViews
Family
FreeBSD		w3m -- format string vulnerability
10 Dec 200600:00
freebsd
ATTACKERKB		CVE-2007-3125
7 Jun 200722:30
attackerkb
CVE		CVE-2006-6772
27 Dec 200623:00
cve
Cvelist		CVE-2006-6772
27 Dec 200623:00
cvelist
Debian CVE		CVE-2006-6772
27 Dec 200623:00
debiancve
Fedora		[SECURITY] Fedora Core 5 Update: w3m-0.5.1-15.fc5
15 Jan 200716:26
fedora
Tenable Nessus		Fedora Core 6 : w3m-0.5.1-15.fc6 (2007-077)
17 Jan 200700:00
nessus
Tenable Nessus		Fedora Core 5 : w3m-0.5.1-15.fc5 (2007-078)
17 Jan 200700:00
nessus
Tenable Nessus		FreeBSD : w3m -- format string vulnerability (9347d82d-9a66-11db-b271-000e35248ad7)
8 Jan 200700:00
nessus
Tenable Nessus		GLSA-200701-06 : w3m: Format string vulnerability
17 Jan 200700:00
nessus
Rows per page
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_suse_2007_005.nasl 8050 2017-12-08 09:34:29Z santu $
#
# SuSE Update for w3m SUSE-SA:2007:005
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "A format string problem in w3m -dump / -backend mode could be used
  by a malicious server to crash w3m or execute code.

  In SUSE Linux 10.1, openSUSE 10.2 and SUSE Linux Enterprise Server
  and Desktop 10 this problem was not exploitable to execute code due
  to use of the FORTIFY SOURCE extensions.

  This problem is tracked by the Mitre CVE ID CVE-2006-6772.";

tag_impact = "remote denial of service, remote code execution";
tag_affected = "w3m on Novell Linux Desktop 9, Novell Linux POS 9, Open Enterprise Server, openSUSE 10.2, SUSE LINUX 10.1, SuSE Linux Enterprise Server 8, SUSE SLED 10, SUSE SLES 10, SUSE SLES 9";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_id(850065);
  script_version("$Revision: 8050 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-08 10:34:29 +0100 (Fri, 08 Dec 2017) $");
  script_tag(name:"creation_date", value:"2009-01-28 13:40:10 +0100 (Wed, 28 Jan 2009)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_xref(name: "SUSE-SA", value: "2007-005");
  script_cve_id("CVE-2006-6772");
  script_name( "SuSE Update for w3m SUSE-SA:2007:005");

  script_summary("Check for the Version of w3m");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("SuSE Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/suse", "ssh/login/rpms");
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "openSUSE10.2")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~41.2", rls:"openSUSE10.2")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "SLES10")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"SLES10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"SLES10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"SLES10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "SLESSr8")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"SLESSr8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"SLESSr8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"SLESSr8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "NLPOS9")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"NLPOS9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"NLPOS9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"NLPOS9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "OES")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"OES")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"OES")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"OES")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "SLES9")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"SLES9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"SLES9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"SLES9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "NLDk9")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"NLDk9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"NLDk9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"NLDk9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "SL10.1")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"SL10.1")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "SLED10")
{

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.4.1_m17n_20030308~201.3", rls:"SLED10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.3.1~205", rls:"SLED10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"w3m", rpm:"w3m~0.5.1~19.5", rls:"SLED10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
08 Dec 2017 00:00Current
7.5High risk
Vulners AI Score7.5
EPSS0.13757
remote denial of serviceremote code executionw3mnovell linux desktop 9novell linux pos 9open enterprise serveropensuse 10.2suse linux 10.1suse linux enterprise server 8suse sled 10suse sles 10suse sles 9updated packages
27