Fedora Update for bitlbee FEDORA-2008-7274

Fedora Update for bitlbee FEDORA-2008-7274. Vulnerability check for bitlbee version

Reporter	Title	Published	Views	Family All 27
FreeBSD	bitlbee -- account recreation security issues	27 Aug 200800:00	–	freebsd
CVE	CVE-2008-3920	4 Sep 200818:00	–	cve
Cvelist	CVE-2008-3920	4 Sep 200818:00	–	cvelist
Debian CVE	CVE-2008-3920	4 Sep 200818:00	–	debiancve
EUVD	EUVD-2008-3905	7 Oct 202500:30	–	euvd
Tenable Nessus	Fedora 9 : bitlbee-1.2.2-1.fc9 (2008-7274)	8 Sep 200800:00	–	nessus
Tenable Nessus	Fedora 8 : bitlbee-1.2.2-1.fc8 (2008-7712)	10 Sep 200800:00	–	nessus
Tenable Nessus	Fedora 9 : bitlbee-1.2.3-1.fc9 (2008-7830)	12 Sep 200800:00	–	nessus
Tenable Nessus	FreeBSD : bitlbee -- account recreation security issues (24ec781b-8c11-11dd-9923-0016d325a0ed)	28 Sep 200800:00	–	nessus
Tenable Nessus	GLSA-200809-14 : BitlBee: Security bypass	24 Sep 200800:00	–	nessus

Source	Link
redhat	www.redhat.com/archives/fedora-package-announce/2008-September/msg00045.html

###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for bitlbee FEDORA-2008-7274
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_affected = "bitlbee on Fedora 9";
tag_insight = "Bitlbee is an IRC to other chat networks gateway. Bitlbee can be used as
  an IRC server which forwards everything you say to people on other chat
  networks like ICQ, MSN, Jabber or Yahoo!";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name : "URL" , value : "https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00045.html");
  script_id(860911);
  script_cve_id("CVE-2008-3920");
 script_tag(name:"cvss_base", value:"7.5");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
 script_version("$Revision: 6623 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-10 08:10:20 +0200 (Mon, 10 Jul 2017) $");
  script_tag(name:"creation_date", value:"2009-02-17 17:03:12 +0100 (Tue, 17 Feb 2009)");
  script_xref(name: "FEDORA", value: "2008-7274");
  script_name( "Fedora Update for bitlbee FEDORA-2008-7274");

  script_summary("Check for the Version of bitlbee");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "FC9")
{

  if ((res = isrpmvuln(pkg:"bitlbee", rpm:"bitlbee~1.2.2~1.fc9", rls:"FC9")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

10 Jul 2017 00:00Current

0.4Low risk

Vulners AI Score0.4

EPSS0.01449