RedHat Update for openldap RHSA-2010:0542-01

RedHat Update for OpenLDAP with multiple flaws in modrdn handlin

Reporter	Title	Published	Views	Family All 96
Tenable Nessus	Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities	11 Nov 201000:00	–	nessus
Tenable Nessus	Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities	11 Nov 201000:00	–	nessus
Tenable Nessus	CentOS 5 : openldap (CESA-2010:0542)	22 Jul 201000:00	–	nessus
Tenable Nessus	CentOS 4 : openldap (CESA-2010:0543)	22 Jul 201000:00	–	nessus
Tenable Nessus	Debian DSA-2077-1 : openldap - several vulnerabilities	3 Aug 201000:00	–	nessus
Tenable Nessus	Fedora 12 : openldap-2.4.19-6.fc12 (2010-11319)	1 Nov 201000:00	–	nessus
Tenable Nessus	Fedora 13 : openldap-2.4.21-10.fc13 (2010-11343)	24 Aug 201000:00	–	nessus
Tenable Nessus	GLSA-201406-36 : OpenLDAP: Multiple vulnerabilities	1 Jul 201400:00	–	nessus
Tenable Nessus	Mac OS X 10.6.x < 10.6.5 Multiple Vulnerabilities	10 Nov 201000:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : openldap (MDVSA-2010:142)	30 Jul 201000:00	–	nessus

Source	Link
redhat	www.redhat.com/archives/rhsa-announce/2010-July/msg00009.html

###############################################################################
# OpenVAS Vulnerability Test
#
# RedHat Update for openldap RHSA-2010:0542-01
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
  Protocol) applications and development tools.

  Multiple flaws were discovered in the way the slapd daemon handled modify
  relative distinguished name (modrdn) requests. An authenticated user with
  privileges to perform modrdn operations could use these flaws to crash the
  slapd daemon via specially-crafted modrdn requests. (CVE-2010-0211,
  CVE-2010-0212)
  
  Red Hat would like to thank CERT-FI for responsibly reporting these flaws,
  who credit Ilkka Mattila and Tuomas Salomki for the discovery of the
  issues.
  
  Users of OpenLDAP should upgrade to these updated packages, which contain
  a backported patch to correct these issues. After installing this update,
  the OpenLDAP daemons will be restarted automatically.";

tag_affected = "openldap on Red Hat Enterprise Linux (v. 5 server)";
tag_solution = "Please Install the Updated Packages.";


if(description)
{
  script_xref(name : "URL" , value : "https://www.redhat.com/archives/rhsa-announce/2010-July/msg00009.html");
  script_id(870295);
  script_version("$Revision: 8164 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-19 07:30:41 +0100 (Tue, 19 Dec 2017) $");
  script_tag(name:"creation_date", value:"2010-07-23 16:10:25 +0200 (Fri, 23 Jul 2010)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_xref(name: "RHSA", value: "2010:0542-01");
  script_cve_id("CVE-2010-0211", "CVE-2010-0212");
  script_name("RedHat Update for openldap RHSA-2010:0542-01");

  script_tag(name: "summary" , value: "Check for the Version of openldap");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "RHENT_5")
{

  if ((res = isrpmvuln(pkg:"compat-openldap", rpm:"compat-openldap~2.3.43_2.2.29~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap", rpm:"openldap~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-clients", rpm:"openldap-clients~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-debuginfo", rpm:"openldap-debuginfo~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-devel", rpm:"openldap-devel~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-servers", rpm:"openldap-servers~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-servers-overlays", rpm:"openldap-servers-overlays~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"openldap-servers-sql", rpm:"openldap-servers-sql~2.3.43~12.el5_5.1", rls:"RHENT_5")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

19 Dec 2017 00:00Current

8.8High risk

Vulners AI Score8.8

EPSS0.66867