ID RHSA-2002:307 Type redhat Reporter RedHat Modified 2018-03-14T19:27:31
Description
Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files.
During an audit of CUPS, a printing system, Zen Parsec found an integer
overflow vulnerability in the pdftops filter. Since the code for pdftops
is taken from the Xpdf project, all versions of Xpdf including 2.01 are
also vulnerable to this issue. An attacker could create a malicious PDF
file that would execute arbitrary code as the user who used Xpdf to view it.
All users of Xpdf are advised to upgrade to these errata packages which
contain a patch to correct this issue.
{"id": "RHSA-2002:307", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2002:307) xpdf security update", "description": "Xpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an integer\noverflow vulnerability in the pdftops filter. Since the code for pdftops\nis taken from the Xpdf project, all versions of Xpdf including 2.01 are\nalso vulnerable to this issue. An attacker could create a malicious PDF\nfile that would execute arbitrary code as the user who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages which\ncontain a patch to correct this issue.", "published": "2003-02-06T05:00:00", "modified": "2018-03-14T19:27:31", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://access.redhat.com/errata/RHSA-2002:307", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-25T20:37:35", "viewCount": 1, "enchantments": {"score": {"value": 7.6, "vector": "NONE", "modified": "2021-08-25T20:37:35", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "nessus", "idList": ["SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-222.NASL", "DEBIAN_DSA-226.NASL", "REDHAT-RHSA-2002-307.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-25T20:37:35", "rev": 2}, "vulnersScore": 7.6}, "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "arch": "i386", "packageVersion": "0.92-8", "packageFilename": "xpdf-0.92-8.i386.rpm", "operator": "lt", "packageName": "xpdf"}, {"OS": "RedHat", "OSVersion": "any", "arch": "ia64", "packageVersion": "0.92-8", "packageFilename": "xpdf-0.92-8.ia64.rpm", "operator": "lt", "packageName": "xpdf"}], "vendorCvss": {"severity": "important"}}
{"cve": [{"id": "CVE-2002-1384", "bulletinFamily": "NVD", "title": "CVE-2002-1384", "description": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.", "published": "2003-01-02T05:00:00", "modified": "2018-05-03T01:29:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1384", "reporter": "cve@mitre.org", "references": ["http://www.redhat.com/support/errata/RHSA-2002-307.html", "http://www.securityfocus.com/bid/6475", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002", "http://www.redhat.com/support/errata/RHSA-2002-295.html", "http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222", "http://www.novell.com/linux/security/advisories/2003_002_cups.html", "http://www.debian.org/security/2003/dsa-226", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001", "http://www.redhat.com/support/errata/RHSA-2003-037.html", "http://marc.info/?l=bugtraq&m=104152282309980&w=2", "http://www.redhat.com/support/errata/RHSA-2003-216.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1384"], "type": "cve", "lastseen": "2021-04-21T20:20:07", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.6"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.90"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_2"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.17"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.10"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_3"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.7"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.91"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4_8"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.13"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_5"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.1"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.14"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0a"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:easy_software_products:cups:1.1.6", "cpe:/a:xpdf:xpdf:2.0", "cpe:/a:xpdf:xpdf:1.0", "cpe:/a:xpdf:xpdf:1.0a", "cpe:/a:easy_software_products:cups:1.1.14", "cpe:/a:easy_software_products:cups:1.1.4", "cpe:/a:xpdf:xpdf:1.1", "cpe:/a:easy_software_products:cups:1.1.1", "cpe:/a:easy_software_products:cups:1.0.4", "cpe:/a:easy_software_products:cups:1.1.7", "cpe:/a:xpdf:xpdf:2.1", "cpe:/a:easy_software_products:cups:1.1.17", "cpe:/a:xpdf:xpdf:0.91", "cpe:/a:easy_software_products:cups:1.0.4_8", "cpe:/a:easy_software_products:cups:1.1.4_5", "cpe:/a:xpdf:xpdf:0.90", "cpe:/a:easy_software_products:cups:1.1.10", "cpe:/a:easy_software_products:cups:1.1.4_3", "cpe:/a:easy_software_products:cups:1.1.4_2", "cpe:/a:easy_software_products:cups:1.1.13"], "cpe23": ["cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*"], "cpeConfiguration": {}, "cvelist": ["CVE-2002-1384"], "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.", "edition": 2, "enchantments": {"dependencies": {"modified": "2020-09-21T13:50:09", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-09-21T13:50:09", "rev": 2, "value": 6.9, "vector": "NONE"}}, "hash": "654eab229d13cd9e20edc888e8d59aa537e70f301cb75a8ea3f442cd5b76643e", "hashmap": [{"hash": "63b40157c39ea835f5a81afd35f2c2bb", "key": "cpe"}, {"hash": "2720ef1f5ecfab9ceaab4d9838d37ee0", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpeConfiguration"}, {"hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2", "key": "cvss2"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "1b56044b9eef78a4f7e366590aaff7e8", "key": "affectedSoftware"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "ce0682d9f3fae62f6e9a3b9c19d231b7", "key": "modified"}, {"hash": "9f62427f56adf5ff65045341a8e5c848", "key": "cpe23"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d83e45682c95f5ab602001cf5f593598", "key": "references"}, {"hash": "72320201524608abe24cbf67cacdac57", "key": "href"}, {"hash": "f8e9c962d0a36c1aff56ba94e2594c19", "key": "published"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "8c3347aba4c0b188adf9ebb1d6a6dd17", "key": "description"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1384", "id": "CVE-2002-1384", "lastseen": "2020-09-21T13:50:09", "modified": "2018-05-03T01:29:00", "objectVersion": "1.3", "published": "2003-01-02T05:00:00", "references": ["http://www.redhat.com/support/errata/RHSA-2002-307.html", "http://www.securityfocus.com/bid/6475", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002", "http://www.redhat.com/support/errata/RHSA-2002-295.html", "http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222", "http://www.novell.com/linux/security/advisories/2003_002_cups.html", "http://www.debian.org/security/2003/dsa-226", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001", "http://www.redhat.com/support/errata/RHSA-2003-037.html", "http://marc.info/?l=bugtraq&m=104152282309980&w=2", "http://www.redhat.com/support/errata/RHSA-2003-216.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937", "http://www.debian.org/security/2003/dsa-232"], "reporter": "cve@mitre.org", "title": "CVE-2002-1384", "type": "cve", "viewCount": 0}, "differentElements": ["cpeConfiguration"], "edition": 2, "lastseen": "2020-09-21T13:50:09"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.6"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.90"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_2"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.17"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.10"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_3"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.7"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.91"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4_8"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.13"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_5"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.1"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.14"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0a"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:easy_software_products:cups:1.1.6", "cpe:/a:xpdf:xpdf:2.0", "cpe:/a:xpdf:xpdf:1.0", "cpe:/a:xpdf:xpdf:1.0a", "cpe:/a:easy_software_products:cups:1.1.14", "cpe:/a:easy_software_products:cups:1.1.4", "cpe:/a:xpdf:xpdf:1.1", "cpe:/a:easy_software_products:cups:1.1.1", "cpe:/a:easy_software_products:cups:1.0.4", "cpe:/a:easy_software_products:cups:1.1.7", "cpe:/a:xpdf:xpdf:2.1", "cpe:/a:easy_software_products:cups:1.1.17", "cpe:/a:xpdf:xpdf:0.91", "cpe:/a:easy_software_products:cups:1.0.4_8", "cpe:/a:easy_software_products:cups:1.1.4_5", "cpe:/a:xpdf:xpdf:0.90", "cpe:/a:easy_software_products:cups:1.1.10", "cpe:/a:easy_software_products:cups:1.1.4_3", "cpe:/a:easy_software_products:cups:1.1.4_2", "cpe:/a:easy_software_products:cups:1.1.13"], "cpe23": ["cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2002-1384"], "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.", "edition": 4, "enchantments": {"dependencies": {"modified": "2021-02-02T05:19:07", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-02-02T05:19:07", "rev": 2, "value": 6.9, "vector": "NONE"}}, "extraReferences": [{"name": "DSA-226", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-226"}, {"name": "http://www.idefense.com/advisory/12.23.02.txt", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory", "Exploit"], "url": "http://www.idefense.com/advisory/12.23.02.txt"}, {"name": "DSA-232", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-232"}, {"name": "6475", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/6475"}, {"name": "RHSA-2002:295", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"}, {"name": "SUSE-SA:2003:002", "refsource": "SUSE", "tags": [], "url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"}, {"name": "DSA-222", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-222"}, {"name": "RHSA-2002:307", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2002-307.html"}, {"name": "GLSA-200301-1", "refsource": "GENTOO", "tags": [], "url": "http://marc.info/?l=bugtraq&m=104152282309980&w=2"}, {"name": "RHSA-2003:216", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2003-216.html"}, {"name": "RHSA-2003:037", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2003-037.html"}, {"name": "MDKSA-2003:001", "refsource": "MANDRAKE", "tags": [], "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001"}, {"name": "MDKSA-2003:002", "refsource": "MANDRAKE", "tags": [], "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002"}, {"name": "pdftops-integer-overflow(10937)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937"}], "hash": "0d4a4dc8577d21a1b08cc1e90432c0e9c3708fd360af551bc649464799136e8f", "hashmap": [{"hash": "63a5aa754b9cb109af71cb7b3f47d69f", "key": "cpeConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "63b40157c39ea835f5a81afd35f2c2bb", "key": "cpe"}, {"hash": "2720ef1f5ecfab9ceaab4d9838d37ee0", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2", "key": "cvss2"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "1b56044b9eef78a4f7e366590aaff7e8", "key": "affectedSoftware"}, {"hash": "17e423a19864a9d920a64d68d775d01b", "key": "extraReferences"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "ce0682d9f3fae62f6e9a3b9c19d231b7", "key": "modified"}, {"hash": "9f62427f56adf5ff65045341a8e5c848", "key": "cpe23"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d83e45682c95f5ab602001cf5f593598", "key": "references"}, {"hash": "72320201524608abe24cbf67cacdac57", "key": "href"}, {"hash": "f8e9c962d0a36c1aff56ba94e2594c19", "key": "published"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "8c3347aba4c0b188adf9ebb1d6a6dd17", "key": "description"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1384", "id": "CVE-2002-1384", "immutableFields": [], "lastseen": "2021-02-02T05:19:07", "modified": "2018-05-03T01:29:00", "objectVersion": "1.5", "published": "2003-01-02T05:00:00", "references": ["http://www.redhat.com/support/errata/RHSA-2002-307.html", "http://www.securityfocus.com/bid/6475", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002", "http://www.redhat.com/support/errata/RHSA-2002-295.html", "http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222", "http://www.novell.com/linux/security/advisories/2003_002_cups.html", "http://www.debian.org/security/2003/dsa-226", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001", "http://www.redhat.com/support/errata/RHSA-2003-037.html", "http://marc.info/?l=bugtraq&m=104152282309980&w=2", "http://www.redhat.com/support/errata/RHSA-2003-216.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937", "http://www.debian.org/security/2003/dsa-232"], "reporter": "cve@mitre.org", "title": "CVE-2002-1384", "type": "cve", "viewCount": 2}, "different_elements": ["cpeConfiguration"], "edition": 4, "lastseen": "2021-02-02T05:19:07"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.6"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.90"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_2"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.17"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.10"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_3"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.7"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.91"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4_8"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.13"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_5"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.1"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.14"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0a"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:easy_software_products:cups:1.1.6", "cpe:/a:xpdf:xpdf:2.0", "cpe:/a:xpdf:xpdf:1.0", "cpe:/a:xpdf:xpdf:1.0a", "cpe:/a:easy_software_products:cups:1.1.14", "cpe:/a:easy_software_products:cups:1.1.4", "cpe:/a:xpdf:xpdf:1.1", "cpe:/a:easy_software_products:cups:1.1.1", "cpe:/a:easy_software_products:cups:1.0.4", "cpe:/a:easy_software_products:cups:1.1.7", "cpe:/a:xpdf:xpdf:2.1", "cpe:/a:easy_software_products:cups:1.1.17", "cpe:/a:xpdf:xpdf:0.91", "cpe:/a:easy_software_products:cups:1.0.4_8", "cpe:/a:easy_software_products:cups:1.1.4_5", "cpe:/a:xpdf:xpdf:0.90", "cpe:/a:easy_software_products:cups:1.1.10", "cpe:/a:easy_software_products:cups:1.1.4_3", "cpe:/a:easy_software_products:cups:1.1.4_2", "cpe:/a:easy_software_products:cups:1.1.13"], "cpe23": ["cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2002-1384"], "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-10-03T11:37:00", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-10-03T11:37:00", "rev": 2, "value": 6.9, "vector": "NONE"}}, "extraReferences": [], "hash": "31ab49ba9a4e02c6d8522a68e3bf077644f60c70bcbced3325af472a39f40f74", "hashmap": [{"hash": "63a5aa754b9cb109af71cb7b3f47d69f", "key": "cpeConfiguration"}, {"hash": "63b40157c39ea835f5a81afd35f2c2bb", "key": "cpe"}, {"hash": "2720ef1f5ecfab9ceaab4d9838d37ee0", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2", "key": "cvss2"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "1b56044b9eef78a4f7e366590aaff7e8", "key": "affectedSoftware"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "ce0682d9f3fae62f6e9a3b9c19d231b7", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "extraReferences"}, {"hash": "9f62427f56adf5ff65045341a8e5c848", "key": "cpe23"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d83e45682c95f5ab602001cf5f593598", "key": "references"}, {"hash": "72320201524608abe24cbf67cacdac57", "key": "href"}, {"hash": "f8e9c962d0a36c1aff56ba94e2594c19", "key": "published"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "8c3347aba4c0b188adf9ebb1d6a6dd17", "key": "description"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1384", "id": "CVE-2002-1384", "lastseen": "2020-10-03T11:37:00", "modified": "2018-05-03T01:29:00", "objectVersion": "1.3", "published": "2003-01-02T05:00:00", "references": ["http://www.redhat.com/support/errata/RHSA-2002-307.html", "http://www.securityfocus.com/bid/6475", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002", "http://www.redhat.com/support/errata/RHSA-2002-295.html", "http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222", "http://www.novell.com/linux/security/advisories/2003_002_cups.html", "http://www.debian.org/security/2003/dsa-226", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001", "http://www.redhat.com/support/errata/RHSA-2003-037.html", "http://marc.info/?l=bugtraq&m=104152282309980&w=2", "http://www.redhat.com/support/errata/RHSA-2003-216.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937", "http://www.debian.org/security/2003/dsa-232"], "reporter": "cve@mitre.org", "title": "CVE-2002-1384", "type": "cve", "viewCount": 1}, "differentElements": ["extraReferences"], "edition": 3, "lastseen": "2020-10-03T11:37:00"}, {"bulletin": {"affectedSoftware": [{"name": "xpdf xpdf", "operator": "eq", "version": "0.91"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.4_5"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.17"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.4_2"}, {"name": "xpdf xpdf", "operator": "eq", "version": "1.1"}, {"name": "xpdf xpdf", "operator": "eq", "version": "2.0"}, {"name": "xpdf xpdf", "operator": "eq", "version": "1.0a"}, {"name": "xpdf xpdf", "operator": "eq", "version": "2.1"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.6"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.13"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.4"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.10"}, {"name": "xpdf xpdf", "operator": "eq", "version": "1.0"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.0.4"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.4_3"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.0.4_8"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.7"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.14"}, {"name": "xpdf xpdf", "operator": "eq", "version": "0.90"}, {"name": "easy_software_products cups", "operator": "eq", "version": "1.1.1"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:easy_software_products:cups:1.1.6", "cpe:/a:xpdf:xpdf:2.0", "cpe:/a:xpdf:xpdf:1.0", "cpe:/a:xpdf:xpdf:1.0a", "cpe:/a:easy_software_products:cups:1.1.14", "cpe:/a:easy_software_products:cups:1.1.4", "cpe:/a:xpdf:xpdf:1.1", "cpe:/a:easy_software_products:cups:1.1.1", "cpe:/a:easy_software_products:cups:1.0.4", "cpe:/a:easy_software_products:cups:1.1.7", "cpe:/a:xpdf:xpdf:2.1", "cpe:/a:easy_software_products:cups:1.1.17", "cpe:/a:xpdf:xpdf:0.91", "cpe:/a:easy_software_products:cups:1.0.4_8", "cpe:/a:easy_software_products:cups:1.1.4_5", "cpe:/a:xpdf:xpdf:0.90", "cpe:/a:easy_software_products:cups:1.1.10", "cpe:/a:easy_software_products:cups:1.1.4_3", "cpe:/a:easy_software_products:cups:1.1.4_2", "cpe:/a:easy_software_products:cups:1.1.13"], "cpe23": ["cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*"], "cvelist": ["CVE-2002-1384"], "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.", "edition": 1, "enchantments": {"dependencies": {"modified": "2019-05-29T18:07:39", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2019-05-29T18:07:39", "rev": 2, "value": 6.9, "vector": "NONE"}}, "hash": "79e7fd535a291e71c5f8074d630221a9b04929993b5fc9172552f082d9a539bc", "hashmap": [{"hash": "63b40157c39ea835f5a81afd35f2c2bb", "key": "cpe"}, {"hash": "2720ef1f5ecfab9ceaab4d9838d37ee0", "key": "title"}, {"hash": "0bedd4daf6bda4061bd9da513c71ec2e", "key": "affectedSoftware"}, {"hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2", "key": "cvss2"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "ce0682d9f3fae62f6e9a3b9c19d231b7", "key": "modified"}, {"hash": "9f62427f56adf5ff65045341a8e5c848", "key": "cpe23"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d83e45682c95f5ab602001cf5f593598", "key": "references"}, {"hash": "72320201524608abe24cbf67cacdac57", "key": "href"}, {"hash": "f8e9c962d0a36c1aff56ba94e2594c19", "key": "published"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "8c3347aba4c0b188adf9ebb1d6a6dd17", "key": "description"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1384", "id": "CVE-2002-1384", "lastseen": "2019-05-29T18:07:39", "modified": "2018-05-03T01:29:00", "objectVersion": "1.3", "published": "2003-01-02T05:00:00", "references": ["http://www.redhat.com/support/errata/RHSA-2002-307.html", "http://www.securityfocus.com/bid/6475", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002", "http://www.redhat.com/support/errata/RHSA-2002-295.html", "http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222", "http://www.novell.com/linux/security/advisories/2003_002_cups.html", "http://www.debian.org/security/2003/dsa-226", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001", "http://www.redhat.com/support/errata/RHSA-2003-037.html", "http://marc.info/?l=bugtraq&m=104152282309980&w=2", "http://www.redhat.com/support/errata/RHSA-2003-216.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937", "http://www.debian.org/security/2003/dsa-232"], "reporter": "cve@mitre.org", "title": "CVE-2002-1384", "type": "cve", "viewCount": 0}, "differentElements": ["affectedSoftware"], "edition": 1, "lastseen": "2019-05-29T18:07:39"}], "edition": 5, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "1b56044b9eef78a4f7e366590aaff7e8"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "63b40157c39ea835f5a81afd35f2c2bb"}, {"key": "cpe23", "hash": "9f62427f56adf5ff65045341a8e5c848"}, {"key": "cpeConfiguration", "hash": "c844f25a611273ad84b2bb8ad98a78b6"}, {"key": "cvelist", "hash": "432c1b4479c60daa4d5bcb3b011704be"}, {"key": "cvss", "hash": "f74481c4d3fb2a622ac8c8a438ded811"}, {"key": "cvss2", "hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "8c3347aba4c0b188adf9ebb1d6a6dd17"}, {"key": "extraReferences", "hash": "17e423a19864a9d920a64d68d775d01b"}, {"key": "href", "hash": "72320201524608abe24cbf67cacdac57"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "ce0682d9f3fae62f6e9a3b9c19d231b7"}, {"key": "published", "hash": "f8e9c962d0a36c1aff56ba94e2594c19"}, {"key": "references", "hash": "d83e45682c95f5ab602001cf5f593598"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "2720ef1f5ecfab9ceaab4d9838d37ee0"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "5174cf815c7ecce193accf06dd818f8b502032531e10a8cbe0ec9dbcd5eb4270", "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-232.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-226-1:9E313"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-04-21T20:20:07", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-04-21T20:20:07", "rev": 2}}, "objectVersion": "1.5", "cpe": ["cpe:/a:easy_software_products:cups:1.1.6", "cpe:/a:xpdf:xpdf:2.0", "cpe:/a:xpdf:xpdf:1.0", "cpe:/a:xpdf:xpdf:1.0a", "cpe:/a:easy_software_products:cups:1.1.14", "cpe:/a:easy_software_products:cups:1.1.4", "cpe:/a:xpdf:xpdf:1.1", "cpe:/a:easy_software_products:cups:1.1.1", "cpe:/a:easy_software_products:cups:1.0.4", "cpe:/a:easy_software_products:cups:1.1.7", "cpe:/a:xpdf:xpdf:2.1", "cpe:/a:easy_software_products:cups:1.1.17", "cpe:/a:xpdf:xpdf:0.91", "cpe:/a:easy_software_products:cups:1.0.4_8", "cpe:/a:easy_software_products:cups:1.1.4_5", "cpe:/a:xpdf:xpdf:0.90", "cpe:/a:easy_software_products:cups:1.1.10", "cpe:/a:easy_software_products:cups:1.1.4_3", "cpe:/a:easy_software_products:cups:1.1.4_2", "cpe:/a:easy_software_products:cups:1.1.13"], "affectedSoftware": [{"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.6"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.1"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.90"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_2"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.17"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.10"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "2.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_3"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.7"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "0.91"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.0.4_8"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.13"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4_5"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.1"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.14"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0"}, {"cpeName": "easy_software_products:cups", "name": "easy software products cups", "operator": "eq", "version": "1.1.4"}, {"cpeName": "xpdf:xpdf", "name": "xpdf", "operator": "eq", "version": "1.0a"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.0a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.91:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xpdf:xpdf:0.90:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "DSA-226", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-226"}, {"name": "http://www.idefense.com/advisory/12.23.02.txt", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory", "Exploit"], "url": "http://www.idefense.com/advisory/12.23.02.txt"}, {"name": "DSA-232", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-232"}, {"name": "6475", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/6475"}, {"name": "RHSA-2002:295", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"}, {"name": "SUSE-SA:2003:002", "refsource": "SUSE", "tags": [], "url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"}, {"name": "DSA-222", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2003/dsa-222"}, {"name": "RHSA-2002:307", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2002-307.html"}, {"name": "GLSA-200301-1", "refsource": "GENTOO", "tags": [], "url": "http://marc.info/?l=bugtraq&m=104152282309980&w=2"}, {"name": "RHSA-2003:216", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2003-216.html"}, {"name": "RHSA-2003:037", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2003-037.html"}, {"name": "MDKSA-2003:001", "refsource": "MANDRAKE", "tags": [], "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001"}, {"name": "MDKSA-2003:002", "refsource": "MANDRAKE", "tags": [], "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002"}, {"name": "pdftops-integer-overflow(10937)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10937"}], "immutableFields": []}], "debian": [{"id": "DEBIAN:DSA-222-1:165AE", "bulletinFamily": "unix", "title": "[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 222-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 6th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.dsc\n Size/MD5 checksum: 574 2a6a10836edfa134643e54eabdf7800a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.diff.gz\n Size/MD5 checksum: 5732 6048fc73fb6c3bdb84988bfa14f39e4d\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1186210 ec915ccf9d83ab7e80ab01b390e4d29d\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_arm.deb\n Size/MD5 checksum: 1044416 de2ee7c2dbc53fbd288e0c142eca2c73\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_i386.deb\n Size/MD5 checksum: 970292 903b558758cecb9010d49bc011feba9c\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_m68k.deb\n Size/MD5 checksum: 937202 414e5f0c67a0d8dbb5403d2b3f4cdefd\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 998784 6e2c8520b103de3d997f22d5bd1edc43\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_sparc.deb\n Size/MD5 checksum: 967906 4f91ac10e70deeddf31910c8b8804dcc\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.dsc\n Size/MD5 checksum: 705 10b8248182e33e5f808b918164c65e1a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.diff.gz\n Size/MD5 checksum: 9193 b2a726030843f6dba93fca9cf7ee2f07\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00.orig.tar.gz\n Size/MD5 checksum: 397750 81f3c381cef729e4b6f4ce21cf5bbf3c\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-common_1.00-3.1_all.deb\n Size/MD5 checksum: 38352 5d2bb590b9e8048777f97ae716ad7fd9\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1_all.deb\n Size/MD5 checksum: 1284 96fad618de11d4bb5a417597f52fd140\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_alpha.deb\n Size/MD5 checksum: 570340 abcba0057c5163cfa16677861afe0444\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_alpha.deb\n Size/MD5 checksum: 1043778 fff419b1f683dda8d42c6cf5a532466a\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_arm.deb\n Size/MD5 checksum: 486522 181d893a1d72fb57ec2a710b686d9653\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_arm.deb\n Size/MD5 checksum: 885110 197c160a3a8e369120ebf6c0b3887fc2\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_i386.deb\n Size/MD5 checksum: 449114 aaf65860ba521173078d4bd05d509221\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_i386.deb\n Size/MD5 checksum: 827038 8e6f7917d7beab9791ae199df03ed137\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_ia64.deb\n Size/MD5 checksum: 681614 b5c776d364d54288eeca24b2bc3c3f16\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_ia64.deb\n Size/MD5 checksum: 1226210 192370f58c4ea2c0b0afe081e06c814a\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_hppa.deb\n Size/MD5 checksum: 563210 a299eac56445c113a2e1c854e6aa4b41\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_hppa.deb\n Size/MD5 checksum: 1031636 ad0fd54f0b845aeb0833f1251728f150\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_m68k.deb\n Size/MD5 checksum: 427002 645824dbba65ad2d348a6506c3693786\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_m68k.deb\n Size/MD5 checksum: 793786 a7dbbb63426e69e461f71b8e09daae1b\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mips.deb\n Size/MD5 checksum: 554532 06ae29ea680a8d5147eb7ecc4e2a6a89\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mips.deb\n Size/MD5 checksum: 1015364 2c9e8af2ecfed78b81afc4b71b1b252d\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 545672 f91403c256d83e17565a3e6d7dfcf3ec\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 997232 37178c976f59ad89fe70250cb5a36927\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 469694 7fc743072be7aa60ca276300df5c31b1\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 858468 0608406ee86bbb12d612ceb2b70822ac\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_s390.deb\n Size/MD5 checksum: 420886 f1a7ce5d72574bac00f6ab033ddbc549\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_s390.deb\n Size/MD5 checksum: 771686 1321ebf1e33163335c024e0489734734\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_sparc.deb\n Size/MD5 checksum: 443210 39beec8cccdfc893fa1f6d04b7f5e1cb\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_sparc.deb\n Size/MD5 checksum: 808376 a445dd84481dbd9f283a6365066ef992\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "published": "2003-01-07T00:00:00", "modified": "2003-01-07T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00002.html", "reporter": "Debian", "references": [], "cvelist": ["CVE-2002-1384"], "type": "debian", "lastseen": "2020-11-11T13:25:30", "history": [{"lastseen": "2019-05-30T02:22:46", "edition": 2, "differentElements": ["affectedPackage"], "bulletin": {"lastseen": "2019-05-30T02:22:46", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-reader_1.00-3.1_all.deb", "packageName": "xpdf-reader", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-utils_1.00-3.1_all.deb", "packageName": "xpdf-utils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "2.2", "packageVersion": "0.90-8.1", "arch": "all", "packageFilename": "xpdf_0.90-8.1_all.deb", "packageName": "xpdf", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf_1.00-3.1_all.deb", "packageName": "xpdf", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-common_1.00-3.1_all.deb", "packageName": "xpdf-common", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 222-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 6th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.dsc\n Size/MD5 checksum: 574 2a6a10836edfa134643e54eabdf7800a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.diff.gz\n Size/MD5 checksum: 5732 6048fc73fb6c3bdb84988bfa14f39e4d\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1186210 ec915ccf9d83ab7e80ab01b390e4d29d\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_arm.deb\n Size/MD5 checksum: 1044416 de2ee7c2dbc53fbd288e0c142eca2c73\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_i386.deb\n Size/MD5 checksum: 970292 903b558758cecb9010d49bc011feba9c\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_m68k.deb\n Size/MD5 checksum: 937202 414e5f0c67a0d8dbb5403d2b3f4cdefd\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 998784 6e2c8520b103de3d997f22d5bd1edc43\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_sparc.deb\n Size/MD5 checksum: 967906 4f91ac10e70deeddf31910c8b8804dcc\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.dsc\n Size/MD5 checksum: 705 10b8248182e33e5f808b918164c65e1a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.diff.gz\n Size/MD5 checksum: 9193 b2a726030843f6dba93fca9cf7ee2f07\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00.orig.tar.gz\n Size/MD5 checksum: 397750 81f3c381cef729e4b6f4ce21cf5bbf3c\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-common_1.00-3.1_all.deb\n Size/MD5 checksum: 38352 5d2bb590b9e8048777f97ae716ad7fd9\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1_all.deb\n Size/MD5 checksum: 1284 96fad618de11d4bb5a417597f52fd140\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_alpha.deb\n Size/MD5 checksum: 570340 abcba0057c5163cfa16677861afe0444\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_alpha.deb\n Size/MD5 checksum: 1043778 fff419b1f683dda8d42c6cf5a532466a\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_arm.deb\n Size/MD5 checksum: 486522 181d893a1d72fb57ec2a710b686d9653\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_arm.deb\n Size/MD5 checksum: 885110 197c160a3a8e369120ebf6c0b3887fc2\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_i386.deb\n Size/MD5 checksum: 449114 aaf65860ba521173078d4bd05d509221\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_i386.deb\n Size/MD5 checksum: 827038 8e6f7917d7beab9791ae199df03ed137\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_ia64.deb\n Size/MD5 checksum: 681614 b5c776d364d54288eeca24b2bc3c3f16\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_ia64.deb\n Size/MD5 checksum: 1226210 192370f58c4ea2c0b0afe081e06c814a\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_hppa.deb\n Size/MD5 checksum: 563210 a299eac56445c113a2e1c854e6aa4b41\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_hppa.deb\n Size/MD5 checksum: 1031636 ad0fd54f0b845aeb0833f1251728f150\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_m68k.deb\n Size/MD5 checksum: 427002 645824dbba65ad2d348a6506c3693786\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_m68k.deb\n Size/MD5 checksum: 793786 a7dbbb63426e69e461f71b8e09daae1b\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mips.deb\n Size/MD5 checksum: 554532 06ae29ea680a8d5147eb7ecc4e2a6a89\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mips.deb\n Size/MD5 checksum: 1015364 2c9e8af2ecfed78b81afc4b71b1b252d\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 545672 f91403c256d83e17565a3e6d7dfcf3ec\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 997232 37178c976f59ad89fe70250cb5a36927\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 469694 7fc743072be7aa60ca276300df5c31b1\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 858468 0608406ee86bbb12d612ceb2b70822ac\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_s390.deb\n Size/MD5 checksum: 420886 f1a7ce5d72574bac00f6ab033ddbc549\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_s390.deb\n Size/MD5 checksum: 771686 1321ebf1e33163335c024e0489734734\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_sparc.deb\n Size/MD5 checksum: 443210 39beec8cccdfc893fa1f6d04b7f5e1cb\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_sparc.deb\n Size/MD5 checksum: 808376 a445dd84481dbd9f283a6365066ef992\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 2, "reporter": "Debian", "history": [], "published": "2003-01-07T00:00:00", "enchantments": {"score": {"rev": 2, "modified": "2019-05-30T02:22:46", "vector": "NONE", "value": 7.9}, "dependencies": {"rev": 2, "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2019-05-30T02:22:46"}}, "title": "[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution", "type": "debian", "objectVersion": "1.3", "bulletinFamily": "unix", "cvelist": ["CVE-2002-1384"], "modified": "2003-01-07T00:00:00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00002.html", "id": "DEBIAN:DSA-222-1:165AE", "viewCount": 1, "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "34a422dbf323a5cb50e4de162a3a95ab", "key": "affectedPackage"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "441a5fa546197c385555bda20768a038", "key": "title"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "published"}, {"hash": "e69ada8c48156e1e86b5477514f8468a", "key": "description"}, {"hash": "44814cfd066b6b5c5f2ddb3aafa5b932", "key": "href"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "modified"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "hash": "122d247f576e570dbcf9a656da6b232a1fd58665c2064fe5dd4a4624b9ff359c"}}, {"lastseen": "2018-10-16T22:13:05", "edition": 1, "differentElements": ["cvss"], "bulletin": {"lastseen": "2018-10-16T22:13:05", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-reader_1.00-3.1_all.deb", "packageName": "xpdf-reader", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-utils_1.00-3.1_all.deb", "packageName": "xpdf-utils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "2.2", "packageVersion": "0.90-8.1", "arch": "all", "packageFilename": "xpdf_0.90-8.1_all.deb", "packageName": "xpdf", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf_1.00-3.1_all.deb", "packageName": "xpdf", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3", "packageVersion": "1.00-3.1", "arch": "all", "packageFilename": "xpdf-common_1.00-3.1_all.deb", "packageName": "xpdf-common", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 222-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 6th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.dsc\n Size/MD5 checksum: 574 2a6a10836edfa134643e54eabdf7800a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.diff.gz\n Size/MD5 checksum: 5732 6048fc73fb6c3bdb84988bfa14f39e4d\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1186210 ec915ccf9d83ab7e80ab01b390e4d29d\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_arm.deb\n Size/MD5 checksum: 1044416 de2ee7c2dbc53fbd288e0c142eca2c73\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_i386.deb\n Size/MD5 checksum: 970292 903b558758cecb9010d49bc011feba9c\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_m68k.deb\n Size/MD5 checksum: 937202 414e5f0c67a0d8dbb5403d2b3f4cdefd\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 998784 6e2c8520b103de3d997f22d5bd1edc43\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_sparc.deb\n Size/MD5 checksum: 967906 4f91ac10e70deeddf31910c8b8804dcc\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.dsc\n Size/MD5 checksum: 705 10b8248182e33e5f808b918164c65e1a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.diff.gz\n Size/MD5 checksum: 9193 b2a726030843f6dba93fca9cf7ee2f07\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00.orig.tar.gz\n Size/MD5 checksum: 397750 81f3c381cef729e4b6f4ce21cf5bbf3c\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-common_1.00-3.1_all.deb\n Size/MD5 checksum: 38352 5d2bb590b9e8048777f97ae716ad7fd9\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1_all.deb\n Size/MD5 checksum: 1284 96fad618de11d4bb5a417597f52fd140\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_alpha.deb\n Size/MD5 checksum: 570340 abcba0057c5163cfa16677861afe0444\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_alpha.deb\n Size/MD5 checksum: 1043778 fff419b1f683dda8d42c6cf5a532466a\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_arm.deb\n Size/MD5 checksum: 486522 181d893a1d72fb57ec2a710b686d9653\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_arm.deb\n Size/MD5 checksum: 885110 197c160a3a8e369120ebf6c0b3887fc2\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_i386.deb\n Size/MD5 checksum: 449114 aaf65860ba521173078d4bd05d509221\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_i386.deb\n Size/MD5 checksum: 827038 8e6f7917d7beab9791ae199df03ed137\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_ia64.deb\n Size/MD5 checksum: 681614 b5c776d364d54288eeca24b2bc3c3f16\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_ia64.deb\n Size/MD5 checksum: 1226210 192370f58c4ea2c0b0afe081e06c814a\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_hppa.deb\n Size/MD5 checksum: 563210 a299eac56445c113a2e1c854e6aa4b41\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_hppa.deb\n Size/MD5 checksum: 1031636 ad0fd54f0b845aeb0833f1251728f150\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_m68k.deb\n Size/MD5 checksum: 427002 645824dbba65ad2d348a6506c3693786\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_m68k.deb\n Size/MD5 checksum: 793786 a7dbbb63426e69e461f71b8e09daae1b\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mips.deb\n Size/MD5 checksum: 554532 06ae29ea680a8d5147eb7ecc4e2a6a89\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mips.deb\n Size/MD5 checksum: 1015364 2c9e8af2ecfed78b81afc4b71b1b252d\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 545672 f91403c256d83e17565a3e6d7dfcf3ec\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 997232 37178c976f59ad89fe70250cb5a36927\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 469694 7fc743072be7aa60ca276300df5c31b1\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 858468 0608406ee86bbb12d612ceb2b70822ac\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_s390.deb\n Size/MD5 checksum: 420886 f1a7ce5d72574bac00f6ab033ddbc549\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_s390.deb\n Size/MD5 checksum: 771686 1321ebf1e33163335c024e0489734734\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_sparc.deb\n Size/MD5 checksum: 443210 39beec8cccdfc893fa1f6d04b7f5e1cb\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_sparc.deb\n Size/MD5 checksum: 808376 a445dd84481dbd9f283a6365066ef992\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 1, "reporter": "Debian", "history": [], "published": "2003-01-07T00:00:00", "enchantments": {"score": {"modified": "2018-10-16T22:13:05", "vector": "NONE", "value": 7.5}, "dependencies": {"references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2018-10-16T22:13:05"}}, "title": "[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution", "type": "debian", "objectVersion": "1.3", "bulletinFamily": "unix", "cvelist": ["CVE-2002-1384"], "modified": "2003-01-07T00:00:00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00002.html", "id": "DEBIAN:DSA-222-1:165AE", "viewCount": 0, "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "hashmap": [{"hash": "cfd16da9581e0c21db590e40dfd9e493", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "34a422dbf323a5cb50e4de162a3a95ab", "key": "affectedPackage"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "441a5fa546197c385555bda20768a038", "key": "title"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "published"}, {"hash": "e69ada8c48156e1e86b5477514f8468a", "key": "description"}, {"hash": "44814cfd066b6b5c5f2ddb3aafa5b932", "key": "href"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "modified"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}], "hash": "dacfa0748c99a3151356fad7fdfc064f08cd03faf16d4b420750dbf3dfb01fbc"}}, {"lastseen": "2020-11-11T13:25:30", "different_elements": ["cvss2"], "edition": 3, "bulletin": {"lastseen": "2020-11-11T13:25:30", "references": [], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 222-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 6th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.dsc\n Size/MD5 checksum: 574 2a6a10836edfa134643e54eabdf7800a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1.diff.gz\n Size/MD5 checksum: 5732 6048fc73fb6c3bdb84988bfa14f39e4d\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1186210 ec915ccf9d83ab7e80ab01b390e4d29d\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_arm.deb\n Size/MD5 checksum: 1044416 de2ee7c2dbc53fbd288e0c142eca2c73\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_i386.deb\n Size/MD5 checksum: 970292 903b558758cecb9010d49bc011feba9c\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_m68k.deb\n Size/MD5 checksum: 937202 414e5f0c67a0d8dbb5403d2b3f4cdefd\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 998784 6e2c8520b103de3d997f22d5bd1edc43\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_0.90-8.1_sparc.deb\n Size/MD5 checksum: 967906 4f91ac10e70deeddf31910c8b8804dcc\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.dsc\n Size/MD5 checksum: 705 10b8248182e33e5f808b918164c65e1a\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1.diff.gz\n Size/MD5 checksum: 9193 b2a726030843f6dba93fca9cf7ee2f07\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00.orig.tar.gz\n Size/MD5 checksum: 397750 81f3c381cef729e4b6f4ce21cf5bbf3c\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-common_1.00-3.1_all.deb\n Size/MD5 checksum: 38352 5d2bb590b9e8048777f97ae716ad7fd9\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf_1.00-3.1_all.deb\n Size/MD5 checksum: 1284 96fad618de11d4bb5a417597f52fd140\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_alpha.deb\n Size/MD5 checksum: 570340 abcba0057c5163cfa16677861afe0444\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_alpha.deb\n Size/MD5 checksum: 1043778 fff419b1f683dda8d42c6cf5a532466a\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_arm.deb\n Size/MD5 checksum: 486522 181d893a1d72fb57ec2a710b686d9653\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_arm.deb\n Size/MD5 checksum: 885110 197c160a3a8e369120ebf6c0b3887fc2\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_i386.deb\n Size/MD5 checksum: 449114 aaf65860ba521173078d4bd05d509221\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_i386.deb\n Size/MD5 checksum: 827038 8e6f7917d7beab9791ae199df03ed137\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_ia64.deb\n Size/MD5 checksum: 681614 b5c776d364d54288eeca24b2bc3c3f16\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_ia64.deb\n Size/MD5 checksum: 1226210 192370f58c4ea2c0b0afe081e06c814a\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_hppa.deb\n Size/MD5 checksum: 563210 a299eac56445c113a2e1c854e6aa4b41\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_hppa.deb\n Size/MD5 checksum: 1031636 ad0fd54f0b845aeb0833f1251728f150\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_m68k.deb\n Size/MD5 checksum: 427002 645824dbba65ad2d348a6506c3693786\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_m68k.deb\n Size/MD5 checksum: 793786 a7dbbb63426e69e461f71b8e09daae1b\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mips.deb\n Size/MD5 checksum: 554532 06ae29ea680a8d5147eb7ecc4e2a6a89\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mips.deb\n Size/MD5 checksum: 1015364 2c9e8af2ecfed78b81afc4b71b1b252d\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 545672 f91403c256d83e17565a3e6d7dfcf3ec\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_mipsel.deb\n Size/MD5 checksum: 997232 37178c976f59ad89fe70250cb5a36927\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 469694 7fc743072be7aa60ca276300df5c31b1\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_powerpc.deb\n Size/MD5 checksum: 858468 0608406ee86bbb12d612ceb2b70822ac\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_s390.deb\n Size/MD5 checksum: 420886 f1a7ce5d72574bac00f6ab033ddbc549\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_s390.deb\n Size/MD5 checksum: 771686 1321ebf1e33163335c024e0489734734\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-reader_1.00-3.1_sparc.deb\n Size/MD5 checksum: 443210 39beec8cccdfc893fa1f6d04b7f5e1cb\n http://security.debian.org/pool/updates/main/x/xpdf/xpdf-utils_1.00-3.1_sparc.deb\n Size/MD5 checksum: 808376 a445dd84481dbd9f283a6365066ef992\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 3, "cvss3": {}, "reporter": "Debian", "history": [], "published": "2003-01-07T00:00:00", "enchantments": {"score": {"rev": 2, "modified": "2020-11-11T13:25:30", "vector": "NONE", "value": 7.9}, "dependencies": {"rev": 2, "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2020-11-11T13:25:30"}}, "title": "[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution", "type": "debian", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2002-1384"], "immutableFields": [], "modified": "2003-01-07T00:00:00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00002.html", "id": "DEBIAN:DSA-222-1:165AE", "viewCount": 1, "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "441a5fa546197c385555bda20768a038", "key": "title"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "published"}, {"hash": "e69ada8c48156e1e86b5477514f8468a", "key": "description"}, {"hash": "44814cfd066b6b5c5f2ddb3aafa5b932", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "85e0023a41d665bd7a4c9f40ae292c88", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "hash": "dcb63a5eb53cbb4d518a34082e8c9a33aac63d5476b19a057d88ae742022793b"}}], "edition": 4, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "432c1b4479c60daa4d5bcb3b011704be"}, {"key": "cvss", "hash": "f74481c4d3fb2a622ac8c8a438ded811"}, {"key": "cvss2", "hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e69ada8c48156e1e86b5477514f8468a"}, {"key": "href", "hash": "44814cfd066b6b5c5f2ddb3aafa5b932"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "85e0023a41d665bd7a4c9f40ae292c88"}, {"key": "published", "hash": "85e0023a41d665bd7a4c9f40ae292c88"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "6fe8b98c53e8d099686936732785d471"}, {"key": "title", "hash": "441a5fa546197c385555bda20768a038"}, {"key": "type", "hash": "6e9552c9bd8e61c8f277c21220160234"}], "hash": "e29eb2e7c8e5de5ef5f3dd07eba04054398a06627a1ff97789548f38144550de", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2020-11-11T13:25:30", "rev": 2}, "score": {"value": 7.9, "vector": "NONE", "modified": "2020-11-11T13:25:30", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Debian", "OSVersion": "2.2", "arch": "all", "operator": "lt", "packageFilename": "xpdf_0.90-8.1_all.deb", "packageName": "xpdf", "packageVersion": "0.90-8.1"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "xpdf_1.00-3.1_all.deb", "packageName": "xpdf", "packageVersion": "1.00-3.1"}], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 3.9, "obtainAllPrivilege": true, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 7.2, "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}}, {"id": "DEBIAN:DSA-226-1:9E313", "bulletinFamily": "unix", "title": "[SECURITY] [DSA 226-1] New xpdf-i packages fix arbitrary command execution", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 226-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 10th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf-i\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining privileged access to the\n'lp' user if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf-i package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.dsc\n Size/MD5 checksum: 583 39b7a7cf9e4aa20884eaea1b9d10d365\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.diff.gz\n Size/MD5 checksum: 17185 340102cc03341ca09ed63e1fccc88a4e\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1224198 a6f19fa411ae6ef54a4ff8d442aa6929\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_arm.deb\n Size/MD5 checksum: 1070284 eda5bb67db61041ab45c1f3a3d966edd\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_i386.deb\n Size/MD5 checksum: 998958 8c210c91bf986b60e7a0b115380d61d0\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_m68k.deb\n Size/MD5 checksum: 963146 a00eca751401cccf20d7bca77d7f3ef7\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 1026286 6270cc9e4a9476c74e4b251c3c652525\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_sparc.deb\n Size/MD5 checksum: 987002 6445cf311bd4b12df4cda95e432fc1f0\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "published": "2003-01-10T00:00:00", "modified": "2003-01-10T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00006.html", "reporter": "Debian", "references": [], "cvelist": ["CVE-2002-1384"], "type": "debian", "lastseen": "2019-05-30T02:22:47", "history": [{"lastseen": "2018-10-16T22:15:07", "edition": 1, "differentElements": ["cvss"], "bulletin": {"lastseen": "2018-10-16T22:15:07", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "2.2", "packageVersion": "0.90-8.1", "arch": "all", "packageFilename": "xpdf-i_0.90-8.1_all.deb", "packageName": "xpdf-i", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 226-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 10th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf-i\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining privileged access to the\n'lp' user if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf-i package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.dsc\n Size/MD5 checksum: 583 39b7a7cf9e4aa20884eaea1b9d10d365\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.diff.gz\n Size/MD5 checksum: 17185 340102cc03341ca09ed63e1fccc88a4e\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1224198 a6f19fa411ae6ef54a4ff8d442aa6929\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_arm.deb\n Size/MD5 checksum: 1070284 eda5bb67db61041ab45c1f3a3d966edd\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_i386.deb\n Size/MD5 checksum: 998958 8c210c91bf986b60e7a0b115380d61d0\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_m68k.deb\n Size/MD5 checksum: 963146 a00eca751401cccf20d7bca77d7f3ef7\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 1026286 6270cc9e4a9476c74e4b251c3c652525\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_sparc.deb\n Size/MD5 checksum: 987002 6445cf311bd4b12df4cda95e432fc1f0\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 1, "reporter": "Debian", "history": [], "published": "2003-01-10T00:00:00", "enchantments": {"score": {"modified": "2018-10-16T22:15:07", "vector": "NONE", "value": 7.5}, "dependencies": {"references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2018-10-16T22:15:07"}}, "title": "[SECURITY] [DSA 226-1] New xpdf-i packages fix arbitrary command execution", "type": "debian", "objectVersion": "1.3", "bulletinFamily": "unix", "cvelist": ["CVE-2002-1384"], "modified": "2003-01-10T00:00:00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00006.html", "id": "DEBIAN:DSA-226-1:9E313", "viewCount": 0, "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "hashmap": [{"hash": "216fd5f8aead236178c2dd11117c36a4", "key": "modified"}, {"hash": "cfd16da9581e0c21db590e40dfd9e493", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "be6257e8489face5abe5189ca8d30442", "key": "title"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "7ebaeb293defc55261459d6026028c70", "key": "description"}, {"hash": "cb442e29561bc1499305fe6e4cbbd50b", "key": "affectedPackage"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "216fd5f8aead236178c2dd11117c36a4", "key": "published"}, {"hash": "cf8968b87c8df0b3b2e5bb5ccda288b5", "key": "href"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}], "hash": "fbf09336e6bb9e584eabdac6486b16ef732f5fcb580500318ddcd86090d413fd"}}, {"lastseen": "2019-05-30T02:22:47", "different_elements": ["cvss2"], "edition": 2, "bulletin": {"lastseen": "2019-05-30T02:22:47", "references": [], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 226-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 10th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : xpdf-i\nVulnerability : integer overflow\nProblem-Type : local, remote\nDebian-specific: no\nCVE Id : CAN-2002-1384\n\niDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining privileged access to the\n'lp' user if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf-i package.\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.dsc\n Size/MD5 checksum: 583 39b7a7cf9e4aa20884eaea1b9d10d365\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1.diff.gz\n Size/MD5 checksum: 17185 340102cc03341ca09ed63e1fccc88a4e\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90.orig.tar.gz\n Size/MD5 checksum: 391204 a7678b64713a466279b61c28ba01134b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_alpha.deb\n Size/MD5 checksum: 1224198 a6f19fa411ae6ef54a4ff8d442aa6929\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_arm.deb\n Size/MD5 checksum: 1070284 eda5bb67db61041ab45c1f3a3d966edd\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_i386.deb\n Size/MD5 checksum: 998958 8c210c91bf986b60e7a0b115380d61d0\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_m68k.deb\n Size/MD5 checksum: 963146 a00eca751401cccf20d7bca77d7f3ef7\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_powerpc.deb\n Size/MD5 checksum: 1026286 6270cc9e4a9476c74e4b251c3c652525\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/x/xpdf-i/xpdf-i_0.90-8.1_sparc.deb\n Size/MD5 checksum: 987002 6445cf311bd4b12df4cda95e432fc1f0\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 2, "cvss3": {}, "reporter": "Debian", "history": [], "published": "2003-01-10T00:00:00", "enchantments": {"score": {"rev": 2, "modified": "2019-05-30T02:22:47", "vector": "NONE", "value": 7.5}, "dependencies": {"rev": 2, "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2019-05-30T02:22:47"}}, "title": "[SECURITY] [DSA 226-1] New xpdf-i packages fix arbitrary command execution", "type": "debian", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2002-1384"], "immutableFields": [], "modified": "2003-01-10T00:00:00", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00006.html", "id": "DEBIAN:DSA-226-1:9E313", "viewCount": 0, "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "216fd5f8aead236178c2dd11117c36a4", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "be6257e8489face5abe5189ca8d30442", "key": "title"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "7ebaeb293defc55261459d6026028c70", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "216fd5f8aead236178c2dd11117c36a4", "key": "published"}, {"hash": "cf8968b87c8df0b3b2e5bb5ccda288b5", "key": "href"}, {"hash": "432c1b4479c60daa4d5bcb3b011704be", "key": "cvelist"}, {"hash": "f74481c4d3fb2a622ac8c8a438ded811", "key": "cvss"}], "hash": "d859270913c346d97561bd52b86602277ecb971bfddfd0b010bf732cd46f4c3a"}}], "edition": 3, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "432c1b4479c60daa4d5bcb3b011704be"}, {"key": "cvss", "hash": "f74481c4d3fb2a622ac8c8a438ded811"}, {"key": "cvss2", "hash": "d5c15c7c1d81cbe81f6a8e0d195b60a2"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "7ebaeb293defc55261459d6026028c70"}, {"key": "href", "hash": "cf8968b87c8df0b3b2e5bb5ccda288b5"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "216fd5f8aead236178c2dd11117c36a4"}, {"key": "published", "hash": "216fd5f8aead236178c2dd11117c36a4"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "6fe8b98c53e8d099686936732785d471"}, {"key": "title", "hash": "be6257e8489face5abe5189ca8d30442"}, {"key": "type", "hash": "6e9552c9bd8e61c8f277c21220160234"}], "hash": "88338849bcc348ab8226d1cc68c98dbe7549eff410e8659c79ad00902799d6f5", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "modified": "2019-05-30T02:22:47", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2019-05-30T02:22:47", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Debian", "OSVersion": "2.2", "arch": "all", "operator": "lt", "packageFilename": "xpdf-i_0.90-8.1_all.deb", "packageName": "xpdf-i", "packageVersion": "0.90-8.1"}], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 3.9, "obtainAllPrivilege": true, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 7.2, "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}}, {"id": "DEBIAN:DSA-232-1:86CAC", "bulletinFamily": "unix", "title": "[SECURITY] [DSA 232-1] New CUPS packages fix several vulnerabilities", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nMultiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n . CAN-2002-1383: Multiple integer overflows allow a remote attacker\n to execute arbitrary code via the CUPSd HTTP interface and the\n image handling code in CUPS filters.\n\n . CAN-2002-1366: Race conditions in connection with /etc/cups/certs/\n allow local users with lp privileges to create or overwrite\n arbitrary files. This is not present in the potato version.\n\n . CAN-2002-1367: This vulnerabilities allows a remote attacker to add\n printers without authentication via a certain UDP packet, which can\n then be used to perform unauthorized activities such as stealing\n the local root certificate for the administration server via a\n "need authorization" page.\n\n . CAN-2002-1368: Negative lengths fed into memcpy() can cause a\n denial of service and possibly execute arbitrary code.\n\n . CAN-2002-1369: An unsafe strncat() function call processing the\n options string allows a remote attacker to execute arbitrary code\n via a buffer overflow.\n\n . CAN-2002-1371: Zero width images allows a remote attacker to\n execute arbitrary code via modified chunk headers.\n\n . CAN-2002-1372: CUPS does not properly check the return values of\n various file and socket operations, which could allow a remote\n attacker to cause a denial of service.\n\n . CAN-2002-1384: The cupsys package contains some code from the xpdf\n package, used to convert PDF files for printing, which contains an\n exploitable integer overflow bug. This is not present in the\n potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.dsc\n Size/MD5 checksum: 640 4dc208e40f63d9489096094c816e0aab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.diff.gz\n Size/MD5 checksum: 31087 d27ef43f96213e35a3fcd43aa14a4b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4.orig.tar.gz\n Size/MD5 checksum: 3147998 d753d8b3c2506a9b97bf4f22ca53f38b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 2438248 aaa4524a445c43d51d45325f18a21a0e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 18050 34e299da4303b82a38a897d3574a430a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 87808 d7c294281899ab7a8e8d8158ff3d19bc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 117740 6342f1a851a3075493f277548613fb91\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 2335642 eb5abc77ec982a103cb99fd1ae44fb8e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 17042 54db853e04f164bdb6f7c3780a770f45\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 64726 cac8881dd707af979bcc3b2c0774f7ad\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 92574 f493560542d625644d3675fbf31a5c32\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 2295330 3e977f66990a5d169d24088c22ffba34\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 16746 d101cceb0b1929b21e8fa16b688b43aa\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 64790 9db4d79646e4e69a763f9f73d87124a1\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 83146 d62c83955dfb01d44c95a4e0066f4760\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 2244722 e16fc52c24c8c89151e104292a6c598c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 16246 94271dc6ccfd72526b5a991b6506fd93\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 60086 91f8d44a474e0258ab10c307ffe0099e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 76130 28bb402a4bcf5ed618089e7ef7d99650\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 2331374 889a07299be40970d018fc3a1415dbb4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 16620 40f83566033cc2e9485a706839415f85\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 68346 ee6b562330731a40feee359827c2ec32\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 89548 1eae59dd93ac2f66f0450ca6993fc076\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 2348864 9c7717d9a987f034145e8a5de53e5cfa\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 16860 7f89e6c646e2fd71fdc64f377d994359\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 71318 654ebb56f716c96073902a978cc3b463\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 89346 06d607a21e84d6fb1b938ea3fcf48d43\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.dsc\n Size/MD5 checksum: 703 731309263ec48b95ae0cb591d0ee59b4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.diff.gz\n Size/MD5 checksum: 35406 11bfd58a768374b366c6d96f3f94cf7e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 1899754 a0b0c290488522117526ae202a7ae2ff\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 73784 5f1ce0319d6705a0675fb107f1494697\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 92426 334048c0e66cf45b751209d41b131cef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 2445268 02a0f9b14cfd0406b47b4e07699af0ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 137294 180a41e8d487fa823428ff6b5feab0e3\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 180072 366b240f494c595371ebf0aa76495968\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 1821218 1a5a7b2f99adf59214af6310b528aaca\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 67920 2e131a508ef69a99d4f31e00accd613f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 85106 89733fd8e141b714612e3fbe88aaf618\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 2345270 1fd92dd3592d46102c123525ffba924f\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 112238 37ba72995818f8d118ef364f8457361c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 149648 c0bcd3073c939bfe51c2ef6cc9271302\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 1787724 09165107e5638a2ea9bafe23d12dbc22\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 67420 c9b102f68e45060fc20b0453f2e985c2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 83568 b7b51133931295233b995a986acf730b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 2311406 cad54ef5642381a95566137fc5e490e9\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 110296 cbbb26f20387c8045599bba4d5067541\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 135740 b75c3c6e99eb435e55a20b2633edcae5\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2007820 1c6de4f61f495706a1e7e0e3e5bcf8b2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 76856 af4f10ddbbf39d2192b42c6b0e16cfe7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 96580 0204b611074a972894e8a3b3c2c4eaee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2656224 6572d4626c36636f5479b852472a154c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 155042 f1cf6145bec0858378f78e65ff2a079c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 181986 09e81033fb7faf00339955ac17e493c5\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 1881256 ee399012eb45487e1e83d30c9a10174b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 70232 a3949939d591d301d7e209c6ea5a36ed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 89246 0b2314247edf8a9476392b7bc67c2ac0\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 2455474 c1792566e4cc052c7ca7b88bed96424a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 125938 58143366bbacda6689e29612a05acd9b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 158762 5836cf0d3768ede7d67a23523457baa2\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 1754948 d6640d147a05f075158590191e80af7c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 65696 667e3dd5023a876908702c5f2e0071e8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 80820 2c71139899e3d9e9b992c230f4a5c97e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 2260812 73049e9e3f2ad0fdfab6beb1a7d1cf0e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 105532 2cbfd4ba400ca04caa39cba0a0f747c7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 128090 3947055497519ffaa0890036e93fc24a\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 1811434 e9da6135a9df048682b179d2908fa8d7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 67348 ed057f08a3bafd3634a2ef6e7eab5b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 80794 ec9c303425b6c7ca0bedb340a8201f97\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 2404100 12f65dac839b6d2d55a1f0276e7977ee\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 112088 819aeef46301ba2c8166af1cad942ff0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 150376 b733e7eb1639ecae09a7c2c4f6ea9843\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 1812224 719c8d133b723c67ccfef6a900f7e2ef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 67320 6162a88599d2bc21cead4e3ee5b831cf\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 80814 9b42a74de3e7e01b9987b4f53f860364\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 2406454 52841d08e5547fd033b0166c841ca5b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 111808 461bc2686de9f820e838bace6bcc1ffb\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 150196 7efb68d1171369bb54c9e782928d5497\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 1799712 5e5226117797dbdf5d7689303596a394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 67330 86410befd2ea69507a51f71ed823f918\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 82924 4744992e3df7a94df6a3f4cbbe023c28\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 2359234 fd1f62c0a8f9a323739193101094490d\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 116026 818379da14940b9ea9005194b648af65\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 144332 d7d5380c7ae4cfce492702f1db4b9376\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 1794976 48433fc4e46a79f6ae5fda1188ef876e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 68726 77be9718f9b8e591741de9593376e487\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 85452 63aa415bcc67611fd6e1cc1878997c99\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 2337080 22caf75ee1a362e738dd213d404a93ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 114600 82d05e55a06f699d03eae259fb36e4b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 140140 bf46320d0fe2af6de8461bcfeea5165b\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 1844650 ac5ea5b374299e68779dcbbfa6d25423\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 70292 12590365cf4023189e815371d4099e33\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 83726 9bde67d3c4d371d41f0a332a263240ee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 2354114 8525f1296681d5e77d5c0c64b9554576\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 119750 894d0f5c439332d26d85c2aa3bee2693\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 145916 ef0a899b95e949cb3991ffb81a29110c\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "published": "2003-01-20T00:00:00", "modified": "2003-01-20T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00013.html", "reporter": "Debian", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "debian", "lastseen": "2020-11-11T13:17:40", "history": [{"bulletin": {"affectedPackage": [{"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "libcupsys2_1.1.14-4.3_all.deb", "packageName": "libcupsys2", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "2.2", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.0.4-12.1_all.deb", "packageName": "cupsys", "packageVersion": "1.0.4-12.1"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-bsd_1.1.14-4.3_all.deb", "packageName": "cupsys-bsd", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-pstoraster_1.1.14-4.3_all.deb", "packageName": "cupsys-pstoraster", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.1.14-4.3_all.deb", "packageName": "cupsys", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "libcupsys2-dev_1.1.14-4.3_all.deb", "packageName": "libcupsys2-dev", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-client_1.1.14-4.3_all.deb", "packageName": "cupsys-client", "packageVersion": "1.1.14-4.3"}], "bulletinFamily": "unix", "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nMultiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n . CAN-2002-1383: Multiple integer overflows allow a remote attacker\n to execute arbitrary code via the CUPSd HTTP interface and the\n image handling code in CUPS filters.\n\n . CAN-2002-1366: Race conditions in connection with /etc/cups/certs/\n allow local users with lp privileges to create or overwrite\n arbitrary files. This is not present in the potato version.\n\n . CAN-2002-1367: This vulnerabilities allows a remote attacker to add\n printers without authentication via a certain UDP packet, which can\n then be used to perform unauthorized activities such as stealing\n the local root certificate for the administration server via a\n "need authorization" page.\n\n . CAN-2002-1368: Negative lengths fed into memcpy() can cause a\n denial of service and possibly execute arbitrary code.\n\n . CAN-2002-1369: An unsafe strncat() function call processing the\n options string allows a remote attacker to execute arbitrary code\n via a buffer overflow.\n\n . CAN-2002-1371: Zero width images allows a remote attacker to\n execute arbitrary code via modified chunk headers.\n\n . CAN-2002-1372: CUPS does not properly check the return values of\n various file and socket operations, which could allow a remote\n attacker to cause a denial of service.\n\n . CAN-2002-1384: The cupsys package contains some code from the xpdf\n package, used to convert PDF files for printing, which contains an\n exploitable integer overflow bug. This is not present in the\n potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.dsc\n Size/MD5 checksum: 640 4dc208e40f63d9489096094c816e0aab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.diff.gz\n Size/MD5 checksum: 31087 d27ef43f96213e35a3fcd43aa14a4b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4.orig.tar.gz\n Size/MD5 checksum: 3147998 d753d8b3c2506a9b97bf4f22ca53f38b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 2438248 aaa4524a445c43d51d45325f18a21a0e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 18050 34e299da4303b82a38a897d3574a430a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 87808 d7c294281899ab7a8e8d8158ff3d19bc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 117740 6342f1a851a3075493f277548613fb91\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 2335642 eb5abc77ec982a103cb99fd1ae44fb8e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 17042 54db853e04f164bdb6f7c3780a770f45\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 64726 cac8881dd707af979bcc3b2c0774f7ad\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 92574 f493560542d625644d3675fbf31a5c32\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 2295330 3e977f66990a5d169d24088c22ffba34\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 16746 d101cceb0b1929b21e8fa16b688b43aa\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 64790 9db4d79646e4e69a763f9f73d87124a1\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 83146 d62c83955dfb01d44c95a4e0066f4760\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 2244722 e16fc52c24c8c89151e104292a6c598c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 16246 94271dc6ccfd72526b5a991b6506fd93\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 60086 91f8d44a474e0258ab10c307ffe0099e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 76130 28bb402a4bcf5ed618089e7ef7d99650\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 2331374 889a07299be40970d018fc3a1415dbb4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 16620 40f83566033cc2e9485a706839415f85\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 68346 ee6b562330731a40feee359827c2ec32\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 89548 1eae59dd93ac2f66f0450ca6993fc076\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 2348864 9c7717d9a987f034145e8a5de53e5cfa\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 16860 7f89e6c646e2fd71fdc64f377d994359\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 71318 654ebb56f716c96073902a978cc3b463\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 89346 06d607a21e84d6fb1b938ea3fcf48d43\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.dsc\n Size/MD5 checksum: 703 731309263ec48b95ae0cb591d0ee59b4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.diff.gz\n Size/MD5 checksum: 35406 11bfd58a768374b366c6d96f3f94cf7e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 1899754 a0b0c290488522117526ae202a7ae2ff\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 73784 5f1ce0319d6705a0675fb107f1494697\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 92426 334048c0e66cf45b751209d41b131cef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 2445268 02a0f9b14cfd0406b47b4e07699af0ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 137294 180a41e8d487fa823428ff6b5feab0e3\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 180072 366b240f494c595371ebf0aa76495968\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 1821218 1a5a7b2f99adf59214af6310b528aaca\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 67920 2e131a508ef69a99d4f31e00accd613f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 85106 89733fd8e141b714612e3fbe88aaf618\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 2345270 1fd92dd3592d46102c123525ffba924f\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 112238 37ba72995818f8d118ef364f8457361c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 149648 c0bcd3073c939bfe51c2ef6cc9271302\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 1787724 09165107e5638a2ea9bafe23d12dbc22\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 67420 c9b102f68e45060fc20b0453f2e985c2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 83568 b7b51133931295233b995a986acf730b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 2311406 cad54ef5642381a95566137fc5e490e9\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 110296 cbbb26f20387c8045599bba4d5067541\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 135740 b75c3c6e99eb435e55a20b2633edcae5\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2007820 1c6de4f61f495706a1e7e0e3e5bcf8b2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 76856 af4f10ddbbf39d2192b42c6b0e16cfe7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 96580 0204b611074a972894e8a3b3c2c4eaee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2656224 6572d4626c36636f5479b852472a154c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 155042 f1cf6145bec0858378f78e65ff2a079c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 181986 09e81033fb7faf00339955ac17e493c5\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 1881256 ee399012eb45487e1e83d30c9a10174b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 70232 a3949939d591d301d7e209c6ea5a36ed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 89246 0b2314247edf8a9476392b7bc67c2ac0\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 2455474 c1792566e4cc052c7ca7b88bed96424a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 125938 58143366bbacda6689e29612a05acd9b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 158762 5836cf0d3768ede7d67a23523457baa2\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 1754948 d6640d147a05f075158590191e80af7c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 65696 667e3dd5023a876908702c5f2e0071e8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 80820 2c71139899e3d9e9b992c230f4a5c97e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 2260812 73049e9e3f2ad0fdfab6beb1a7d1cf0e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 105532 2cbfd4ba400ca04caa39cba0a0f747c7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 128090 3947055497519ffaa0890036e93fc24a\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 1811434 e9da6135a9df048682b179d2908fa8d7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 67348 ed057f08a3bafd3634a2ef6e7eab5b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 80794 ec9c303425b6c7ca0bedb340a8201f97\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 2404100 12f65dac839b6d2d55a1f0276e7977ee\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 112088 819aeef46301ba2c8166af1cad942ff0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 150376 b733e7eb1639ecae09a7c2c4f6ea9843\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 1812224 719c8d133b723c67ccfef6a900f7e2ef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 67320 6162a88599d2bc21cead4e3ee5b831cf\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 80814 9b42a74de3e7e01b9987b4f53f860364\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 2406454 52841d08e5547fd033b0166c841ca5b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 111808 461bc2686de9f820e838bace6bcc1ffb\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 150196 7efb68d1171369bb54c9e782928d5497\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 1799712 5e5226117797dbdf5d7689303596a394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 67330 86410befd2ea69507a51f71ed823f918\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 82924 4744992e3df7a94df6a3f4cbbe023c28\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 2359234 fd1f62c0a8f9a323739193101094490d\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 116026 818379da14940b9ea9005194b648af65\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 144332 d7d5380c7ae4cfce492702f1db4b9376\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 1794976 48433fc4e46a79f6ae5fda1188ef876e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 68726 77be9718f9b8e591741de9593376e487\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 85452 63aa415bcc67611fd6e1cc1878997c99\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 2337080 22caf75ee1a362e738dd213d404a93ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 114600 82d05e55a06f699d03eae259fb36e4b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 140140 bf46320d0fe2af6de8461bcfeea5165b\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 1844650 ac5ea5b374299e68779dcbbfa6d25423\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 70292 12590365cf4023189e815371d4099e33\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 83726 9bde67d3c4d371d41f0a332a263240ee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 2354114 8525f1296681d5e77d5c0c64b9554576\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 119750 894d0f5c439332d26d85c2aa3bee2693\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 145916 ef0a899b95e949cb3991ffb81a29110c\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2018-10-16T22:15:07", "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}]}, "score": {"modified": "2018-10-16T22:15:07", "value": 7.2, "vector": "NONE"}}, "hash": "d13b6a79467e2958e1ded68b0251a5c975d472ee9fe0768e260813f7ae4a13e8", "hashmap": [{"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "published"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "8c329d4f081c0b74b587e19dd5b6dac3", "key": "description"}, {"hash": "a444648065ee6c59e6f8a863655d3cd0", "key": "title"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "382e005500cdd8fca46c9da2fc71bb80", "key": "href"}, {"hash": "8d8938f5decd85812f1fd9048feb6044", "key": "cvelist"}, {"hash": "41faf76dd9906558ffc96bf3ba669fd8", "key": "affectedPackage"}], "history": [], "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00013.html", "id": "DEBIAN:DSA-232-1:86CAC", "lastseen": "2018-10-16T22:15:07", "modified": "2003-01-20T00:00:00", "objectVersion": "1.3", "published": "2003-01-20T00:00:00", "references": [], "reporter": "Debian", "title": "[SECURITY] [DSA 232-1] New CUPS packages fix several vulnerabilities", "type": "debian", "viewCount": 0}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-10-16T22:15:07"}, {"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nMultiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n . CAN-2002-1383: Multiple integer overflows allow a remote attacker\n to execute arbitrary code via the CUPSd HTTP interface and the\n image handling code in CUPS filters.\n\n . CAN-2002-1366: Race conditions in connection with /etc/cups/certs/\n allow local users with lp privileges to create or overwrite\n arbitrary files. This is not present in the potato version.\n\n . CAN-2002-1367: This vulnerabilities allows a remote attacker to add\n printers without authentication via a certain UDP packet, which can\n then be used to perform unauthorized activities such as stealing\n the local root certificate for the administration server via a\n "need authorization" page.\n\n . CAN-2002-1368: Negative lengths fed into memcpy() can cause a\n denial of service and possibly execute arbitrary code.\n\n . CAN-2002-1369: An unsafe strncat() function call processing the\n options string allows a remote attacker to execute arbitrary code\n via a buffer overflow.\n\n . CAN-2002-1371: Zero width images allows a remote attacker to\n execute arbitrary code via modified chunk headers.\n\n . CAN-2002-1372: CUPS does not properly check the return values of\n various file and socket operations, which could allow a remote\n attacker to cause a denial of service.\n\n . CAN-2002-1384: The cupsys package contains some code from the xpdf\n package, used to convert PDF files for printing, which contains an\n exploitable integer overflow bug. This is not present in the\n potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.dsc\n Size/MD5 checksum: 640 4dc208e40f63d9489096094c816e0aab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.diff.gz\n Size/MD5 checksum: 31087 d27ef43f96213e35a3fcd43aa14a4b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4.orig.tar.gz\n Size/MD5 checksum: 3147998 d753d8b3c2506a9b97bf4f22ca53f38b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 2438248 aaa4524a445c43d51d45325f18a21a0e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 18050 34e299da4303b82a38a897d3574a430a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 87808 d7c294281899ab7a8e8d8158ff3d19bc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 117740 6342f1a851a3075493f277548613fb91\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 2335642 eb5abc77ec982a103cb99fd1ae44fb8e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 17042 54db853e04f164bdb6f7c3780a770f45\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 64726 cac8881dd707af979bcc3b2c0774f7ad\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 92574 f493560542d625644d3675fbf31a5c32\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 2295330 3e977f66990a5d169d24088c22ffba34\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 16746 d101cceb0b1929b21e8fa16b688b43aa\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 64790 9db4d79646e4e69a763f9f73d87124a1\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 83146 d62c83955dfb01d44c95a4e0066f4760\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 2244722 e16fc52c24c8c89151e104292a6c598c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 16246 94271dc6ccfd72526b5a991b6506fd93\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 60086 91f8d44a474e0258ab10c307ffe0099e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 76130 28bb402a4bcf5ed618089e7ef7d99650\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 2331374 889a07299be40970d018fc3a1415dbb4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 16620 40f83566033cc2e9485a706839415f85\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 68346 ee6b562330731a40feee359827c2ec32\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 89548 1eae59dd93ac2f66f0450ca6993fc076\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 2348864 9c7717d9a987f034145e8a5de53e5cfa\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 16860 7f89e6c646e2fd71fdc64f377d994359\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 71318 654ebb56f716c96073902a978cc3b463\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 89346 06d607a21e84d6fb1b938ea3fcf48d43\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.dsc\n Size/MD5 checksum: 703 731309263ec48b95ae0cb591d0ee59b4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.diff.gz\n Size/MD5 checksum: 35406 11bfd58a768374b366c6d96f3f94cf7e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 1899754 a0b0c290488522117526ae202a7ae2ff\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 73784 5f1ce0319d6705a0675fb107f1494697\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 92426 334048c0e66cf45b751209d41b131cef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 2445268 02a0f9b14cfd0406b47b4e07699af0ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 137294 180a41e8d487fa823428ff6b5feab0e3\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 180072 366b240f494c595371ebf0aa76495968\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 1821218 1a5a7b2f99adf59214af6310b528aaca\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 67920 2e131a508ef69a99d4f31e00accd613f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 85106 89733fd8e141b714612e3fbe88aaf618\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 2345270 1fd92dd3592d46102c123525ffba924f\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 112238 37ba72995818f8d118ef364f8457361c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 149648 c0bcd3073c939bfe51c2ef6cc9271302\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 1787724 09165107e5638a2ea9bafe23d12dbc22\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 67420 c9b102f68e45060fc20b0453f2e985c2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 83568 b7b51133931295233b995a986acf730b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 2311406 cad54ef5642381a95566137fc5e490e9\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 110296 cbbb26f20387c8045599bba4d5067541\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 135740 b75c3c6e99eb435e55a20b2633edcae5\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2007820 1c6de4f61f495706a1e7e0e3e5bcf8b2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 76856 af4f10ddbbf39d2192b42c6b0e16cfe7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 96580 0204b611074a972894e8a3b3c2c4eaee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2656224 6572d4626c36636f5479b852472a154c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 155042 f1cf6145bec0858378f78e65ff2a079c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 181986 09e81033fb7faf00339955ac17e493c5\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 1881256 ee399012eb45487e1e83d30c9a10174b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 70232 a3949939d591d301d7e209c6ea5a36ed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 89246 0b2314247edf8a9476392b7bc67c2ac0\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 2455474 c1792566e4cc052c7ca7b88bed96424a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 125938 58143366bbacda6689e29612a05acd9b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 158762 5836cf0d3768ede7d67a23523457baa2\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 1754948 d6640d147a05f075158590191e80af7c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 65696 667e3dd5023a876908702c5f2e0071e8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 80820 2c71139899e3d9e9b992c230f4a5c97e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 2260812 73049e9e3f2ad0fdfab6beb1a7d1cf0e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 105532 2cbfd4ba400ca04caa39cba0a0f747c7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 128090 3947055497519ffaa0890036e93fc24a\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 1811434 e9da6135a9df048682b179d2908fa8d7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 67348 ed057f08a3bafd3634a2ef6e7eab5b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 80794 ec9c303425b6c7ca0bedb340a8201f97\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 2404100 12f65dac839b6d2d55a1f0276e7977ee\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 112088 819aeef46301ba2c8166af1cad942ff0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 150376 b733e7eb1639ecae09a7c2c4f6ea9843\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 1812224 719c8d133b723c67ccfef6a900f7e2ef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 67320 6162a88599d2bc21cead4e3ee5b831cf\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 80814 9b42a74de3e7e01b9987b4f53f860364\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 2406454 52841d08e5547fd033b0166c841ca5b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 111808 461bc2686de9f820e838bace6bcc1ffb\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 150196 7efb68d1171369bb54c9e782928d5497\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 1799712 5e5226117797dbdf5d7689303596a394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 67330 86410befd2ea69507a51f71ed823f918\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 82924 4744992e3df7a94df6a3f4cbbe023c28\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 2359234 fd1f62c0a8f9a323739193101094490d\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 116026 818379da14940b9ea9005194b648af65\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 144332 d7d5380c7ae4cfce492702f1db4b9376\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 1794976 48433fc4e46a79f6ae5fda1188ef876e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 68726 77be9718f9b8e591741de9593376e487\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 85452 63aa415bcc67611fd6e1cc1878997c99\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 2337080 22caf75ee1a362e738dd213d404a93ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 114600 82d05e55a06f699d03eae259fb36e4b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 140140 bf46320d0fe2af6de8461bcfeea5165b\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 1844650 ac5ea5b374299e68779dcbbfa6d25423\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 70292 12590365cf4023189e815371d4099e33\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 83726 9bde67d3c4d371d41f0a332a263240ee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 2354114 8525f1296681d5e77d5c0c64b9554576\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 119750 894d0f5c439332d26d85c2aa3bee2693\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 145916 ef0a899b95e949cb3991ffb81a29110c\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-11-11T13:17:40", "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}], "rev": 2}, "score": {"modified": "2020-11-11T13:17:40", "rev": 2, "value": 8.2, "vector": "NONE"}}, "hash": "84a9ca5e836fffe32a47444262a59e9bcb4bf9ec105ab16526abc4ff7fccf4e7", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "published"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "8c329d4f081c0b74b587e19dd5b6dac3", "key": "description"}, {"hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d", "key": "cvss"}, {"hash": "a444648065ee6c59e6f8a863655d3cd0", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "382e005500cdd8fca46c9da2fc71bb80", "key": "href"}, {"hash": "8d8938f5decd85812f1fd9048feb6044", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}], "history": [], "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00013.html", "id": "DEBIAN:DSA-232-1:86CAC", "immutableFields": [], "lastseen": "2020-11-11T13:17:40", "modified": "2003-01-20T00:00:00", "objectVersion": "1.5", "published": "2003-01-20T00:00:00", "references": [], "reporter": "Debian", "title": "[SECURITY] [DSA 232-1] New CUPS packages fix several vulnerabilities", "type": "debian", "viewCount": 1}, "different_elements": ["cvss2"], "edition": 3, "lastseen": "2020-11-11T13:17:40"}, {"bulletin": {"affectedPackage": [{"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "libcupsys2_1.1.14-4.3_all.deb", "packageName": "libcupsys2", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "2.2", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.0.4-12.1_all.deb", "packageName": "cupsys", "packageVersion": "1.0.4-12.1"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-bsd_1.1.14-4.3_all.deb", "packageName": "cupsys-bsd", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-pstoraster_1.1.14-4.3_all.deb", "packageName": "cupsys-pstoraster", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.1.14-4.3_all.deb", "packageName": "cupsys", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "libcupsys2-dev_1.1.14-4.3_all.deb", "packageName": "libcupsys2-dev", "packageVersion": "1.1.14-4.3"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys-client_1.1.14-4.3_all.deb", "packageName": "cupsys-client", "packageVersion": "1.1.14-4.3"}], "bulletinFamily": "unix", "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nJanuary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nMultiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n . CAN-2002-1383: Multiple integer overflows allow a remote attacker\n to execute arbitrary code via the CUPSd HTTP interface and the\n image handling code in CUPS filters.\n\n . CAN-2002-1366: Race conditions in connection with /etc/cups/certs/\n allow local users with lp privileges to create or overwrite\n arbitrary files. This is not present in the potato version.\n\n . CAN-2002-1367: This vulnerabilities allows a remote attacker to add\n printers without authentication via a certain UDP packet, which can\n then be used to perform unauthorized activities such as stealing\n the local root certificate for the administration server via a\n "need authorization" page.\n\n . CAN-2002-1368: Negative lengths fed into memcpy() can cause a\n denial of service and possibly execute arbitrary code.\n\n . CAN-2002-1369: An unsafe strncat() function call processing the\n options string allows a remote attacker to execute arbitrary code\n via a buffer overflow.\n\n . CAN-2002-1371: Zero width images allows a remote attacker to\n execute arbitrary code via modified chunk headers.\n\n . CAN-2002-1372: CUPS does not properly check the return values of\n various file and socket operations, which could allow a remote\n attacker to cause a denial of service.\n\n . CAN-2002-1384: The cupsys package contains some code from the xpdf\n package, used to convert PDF files for printing, which contains an\n exploitable integer overflow bug. This is not present in the\n potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 2.2 alias potato\n- ---------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.dsc\n Size/MD5 checksum: 640 4dc208e40f63d9489096094c816e0aab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1.diff.gz\n Size/MD5 checksum: 31087 d27ef43f96213e35a3fcd43aa14a4b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4.orig.tar.gz\n Size/MD5 checksum: 3147998 d753d8b3c2506a9b97bf4f22ca53f38b\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 2438248 aaa4524a445c43d51d45325f18a21a0e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 18050 34e299da4303b82a38a897d3574a430a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 87808 d7c294281899ab7a8e8d8158ff3d19bc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_alpha.deb\n Size/MD5 checksum: 117740 6342f1a851a3075493f277548613fb91\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 2335642 eb5abc77ec982a103cb99fd1ae44fb8e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 17042 54db853e04f164bdb6f7c3780a770f45\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 64726 cac8881dd707af979bcc3b2c0774f7ad\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_arm.deb\n Size/MD5 checksum: 92574 f493560542d625644d3675fbf31a5c32\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 2295330 3e977f66990a5d169d24088c22ffba34\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 16746 d101cceb0b1929b21e8fa16b688b43aa\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 64790 9db4d79646e4e69a763f9f73d87124a1\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_i386.deb\n Size/MD5 checksum: 83146 d62c83955dfb01d44c95a4e0066f4760\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 2244722 e16fc52c24c8c89151e104292a6c598c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 16246 94271dc6ccfd72526b5a991b6506fd93\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 60086 91f8d44a474e0258ab10c307ffe0099e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_m68k.deb\n Size/MD5 checksum: 76130 28bb402a4bcf5ed618089e7ef7d99650\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 2331374 889a07299be40970d018fc3a1415dbb4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 16620 40f83566033cc2e9485a706839415f85\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 68346 ee6b562330731a40feee359827c2ec32\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_powerpc.deb\n Size/MD5 checksum: 89548 1eae59dd93ac2f66f0450ca6993fc076\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 2348864 9c7717d9a987f034145e8a5de53e5cfa\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 16860 7f89e6c646e2fd71fdc64f377d994359\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 71318 654ebb56f716c96073902a978cc3b463\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys1-dev_1.0.4-12.1_sparc.deb\n Size/MD5 checksum: 89346 06d607a21e84d6fb1b938ea3fcf48d43\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.dsc\n Size/MD5 checksum: 703 731309263ec48b95ae0cb591d0ee59b4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3.diff.gz\n Size/MD5 checksum: 35406 11bfd58a768374b366c6d96f3f94cf7e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 1899754 a0b0c290488522117526ae202a7ae2ff\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 73784 5f1ce0319d6705a0675fb107f1494697\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 92426 334048c0e66cf45b751209d41b131cef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 2445268 02a0f9b14cfd0406b47b4e07699af0ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 137294 180a41e8d487fa823428ff6b5feab0e3\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_alpha.deb\n Size/MD5 checksum: 180072 366b240f494c595371ebf0aa76495968\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 1821218 1a5a7b2f99adf59214af6310b528aaca\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 67920 2e131a508ef69a99d4f31e00accd613f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 85106 89733fd8e141b714612e3fbe88aaf618\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 2345270 1fd92dd3592d46102c123525ffba924f\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 112238 37ba72995818f8d118ef364f8457361c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_arm.deb\n Size/MD5 checksum: 149648 c0bcd3073c939bfe51c2ef6cc9271302\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 1787724 09165107e5638a2ea9bafe23d12dbc22\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 67420 c9b102f68e45060fc20b0453f2e985c2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 83568 b7b51133931295233b995a986acf730b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 2311406 cad54ef5642381a95566137fc5e490e9\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 110296 cbbb26f20387c8045599bba4d5067541\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_i386.deb\n Size/MD5 checksum: 135740 b75c3c6e99eb435e55a20b2633edcae5\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2007820 1c6de4f61f495706a1e7e0e3e5bcf8b2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 76856 af4f10ddbbf39d2192b42c6b0e16cfe7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 96580 0204b611074a972894e8a3b3c2c4eaee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 2656224 6572d4626c36636f5479b852472a154c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 155042 f1cf6145bec0858378f78e65ff2a079c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_ia64.deb\n Size/MD5 checksum: 181986 09e81033fb7faf00339955ac17e493c5\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 1881256 ee399012eb45487e1e83d30c9a10174b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 70232 a3949939d591d301d7e209c6ea5a36ed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 89246 0b2314247edf8a9476392b7bc67c2ac0\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 2455474 c1792566e4cc052c7ca7b88bed96424a\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 125938 58143366bbacda6689e29612a05acd9b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_hppa.deb\n Size/MD5 checksum: 158762 5836cf0d3768ede7d67a23523457baa2\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 1754948 d6640d147a05f075158590191e80af7c\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 65696 667e3dd5023a876908702c5f2e0071e8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 80820 2c71139899e3d9e9b992c230f4a5c97e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 2260812 73049e9e3f2ad0fdfab6beb1a7d1cf0e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 105532 2cbfd4ba400ca04caa39cba0a0f747c7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_m68k.deb\n Size/MD5 checksum: 128090 3947055497519ffaa0890036e93fc24a\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 1811434 e9da6135a9df048682b179d2908fa8d7\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 67348 ed057f08a3bafd3634a2ef6e7eab5b5a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 80794 ec9c303425b6c7ca0bedb340a8201f97\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 2404100 12f65dac839b6d2d55a1f0276e7977ee\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 112088 819aeef46301ba2c8166af1cad942ff0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mips.deb\n Size/MD5 checksum: 150376 b733e7eb1639ecae09a7c2c4f6ea9843\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 1812224 719c8d133b723c67ccfef6a900f7e2ef\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 67320 6162a88599d2bc21cead4e3ee5b831cf\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 80814 9b42a74de3e7e01b9987b4f53f860364\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 2406454 52841d08e5547fd033b0166c841ca5b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 111808 461bc2686de9f820e838bace6bcc1ffb\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_mipsel.deb\n Size/MD5 checksum: 150196 7efb68d1171369bb54c9e782928d5497\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 1799712 5e5226117797dbdf5d7689303596a394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 67330 86410befd2ea69507a51f71ed823f918\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 82924 4744992e3df7a94df6a3f4cbbe023c28\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 2359234 fd1f62c0a8f9a323739193101094490d\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 116026 818379da14940b9ea9005194b648af65\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_powerpc.deb\n Size/MD5 checksum: 144332 d7d5380c7ae4cfce492702f1db4b9376\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 1794976 48433fc4e46a79f6ae5fda1188ef876e\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 68726 77be9718f9b8e591741de9593376e487\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 85452 63aa415bcc67611fd6e1cc1878997c99\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 2337080 22caf75ee1a362e738dd213d404a93ab\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 114600 82d05e55a06f699d03eae259fb36e4b8\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_s390.deb\n Size/MD5 checksum: 140140 bf46320d0fe2af6de8461bcfeea5165b\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 1844650 ac5ea5b374299e68779dcbbfa6d25423\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 70292 12590365cf4023189e815371d4099e33\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 83726 9bde67d3c4d371d41f0a332a263240ee\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 2354114 8525f1296681d5e77d5c0c64b9554576\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 119750 894d0f5c439332d26d85c2aa3bee2693\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.3_sparc.deb\n Size/MD5 checksum: 145916 ef0a899b95e949cb3991ffb81a29110c\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 2, "enchantments": {"dependencies": {"modified": "2019-05-30T02:22:19", "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}], "rev": 2}, "score": {"modified": "2019-05-30T02:22:19", "rev": 2, "value": 8.2, "vector": "NONE"}}, "hash": "1650cd92c70d06eed4053525d2767e557ea21dc3f9383549b1421234d1120d3c", "hashmap": [{"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "02acb2a8bf336f5d99be273b3b6a2766", "key": "published"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "8c329d4f081c0b74b587e19dd5b6dac3", "key": "description"}, {"hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d", "key": "cvss"}, {"hash": "a444648065ee6c59e6f8a863655d3cd0", "key": "title"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "382e005500cdd8fca46c9da2fc71bb80", "key": "href"}, {"hash": "8d8938f5decd85812f1fd9048feb6044", "key": "cvelist"}, {"hash": "41faf76dd9906558ffc96bf3ba669fd8", "key": "affectedPackage"}], "history": [], "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00013.html", "id": "DEBIAN:DSA-232-1:86CAC", "lastseen": "2019-05-30T02:22:19", "modified": "2003-01-20T00:00:00", "objectVersion": "1.3", "published": "2003-01-20T00:00:00", "references": [], "reporter": "Debian", "title": "[SECURITY] [DSA 232-1] New CUPS packages fix several vulnerabilities", "type": "debian", "viewCount": 0}, "differentElements": ["affectedPackage"], "edition": 2, "lastseen": "2019-05-30T02:22:19"}], "edition": 4, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "8d8938f5decd85812f1fd9048feb6044"}, {"key": "cvss", "hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d"}, {"key": "cvss2", "hash": "11e56c2d8f36b1920223217250e3f2a6"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "8c329d4f081c0b74b587e19dd5b6dac3"}, {"key": "href", "hash": "382e005500cdd8fca46c9da2fc71bb80"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "02acb2a8bf336f5d99be273b3b6a2766"}, {"key": "published", "hash": "02acb2a8bf336f5d99be273b3b6a2766"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "6fe8b98c53e8d099686936732785d471"}, {"key": "title", "hash": "a444648065ee6c59e6f8a863655d3cd0"}, {"key": "type", "hash": "6e9552c9bd8e61c8f277c21220160234"}], "hash": "025477203f473ab31f4388c1a193e1534eb8e8094f1d65c41fea780f1f5387cc", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2020-11-11T13:17:40", "rev": 2}, "score": {"value": 8.2, "vector": "NONE", "modified": "2020-11-11T13:17:40", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Debian", "OSVersion": "2.2", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.0.4-12.1_all.deb", "packageName": "cupsys", "packageVersion": "1.0.4-12.1"}, {"OS": "Debian", "OSVersion": "3", "arch": "all", "operator": "lt", "packageFilename": "cupsys_1.1.14-4.3_all.deb", "packageName": "cupsys", "packageVersion": "1.1.14-4.3"}], "scheme": null, "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}}, {"id": "DEBIAN:DSA-232-2:C9F72", "bulletinFamily": "unix", "title": "[SECURITY] [DSA 232-2] New CUPS packages fix wrong libPNG dependency", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-2 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nFebruary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nThis update corrects a library dependency for the libcupsys2 package\nwhich sneaked in with the last security update to CUPS for the stable\ndistribution (woody).\n\nThe original advisory DSA 232-1 stated:\n\n Multiple vulnerabilities were discovered in the Common Unix\n Printing System (CUPS). Several of these issues represent the\n potential for a remote compromise or denial of service. The Common\n Vulnerabilities and Exposures project identifies the problems\n listed above.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.dsc\n Size/MD5 checksum: 690 488a4f8ea7203fadde75d906e6cf64ea\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.diff.gz\n Size/MD5 checksum: 35455 de07347fda86dad071c45e6d932c97f4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 1899888 49dc42a554de6d65a87b6ae2e8ff9bc2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 73878 3f2a05f77006279df5a72a5e10f2567a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 92524 d7e288183671c27fa8fa09626d699380\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 2445346 c317555525b3afae1f1900e48f73ccb6\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 137394 c772d3cb006f8e44738b349e24a5984b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 180182 a70ad0d886b74710d3b4106aabe55184\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 1821374 a6674c57f31308872e20499b17357c37\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 68006 ab978ff099fdd7b37550106971454059\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 85210 48f3e5ba501e1b38a1634a047d61d636\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 2345388 7a8ac6e933aa3824afea3a0a228bb0dc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 112332 0d8f215879b74847ed5acf8e7fe7fff4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 149736 b08a2c3bfae9b364969fee4521f8a601\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 1788152 cc4758069a8aa1fa0e4958f131f0faa2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 67532 739cb994c54cd11154f13a99d36edffb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 83722 8f8fcd75c985a1e5f75d1170f21197c6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 2311516 09a23d49459ca3effd505921a2f8d434\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 110408 86ece906e4f6bf1607758894a217c9bd\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 135864 50e2bd585535a49a53f518178dedaa12\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2007920 a5789e5d38b90613aea9b5a458714b95\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 76944 18f4cf8775b1bf950b7db673f6be26d2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 96686 10d076494a77ebda207b3f4ccbb4d2fb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2656320 898d58fa392cf145466c7c035eeb0126\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 155146 d472d99b98d3df5b9a88934fa1325449\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 182086 f6b72a5972bddfa606e8369b1d6f4db0\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 1881350 c14a8d5cca984546202bff3b3a5cfbc8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 70332 737ad34c1337a351f850e5a09dd27173\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 89344 894cd4fe76e427b09ba7e30288a69394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 2455558 56a4e578951ffbcf6c9c7be6234c5fb7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 126020 cfc0ba6b024a6bf627e2bc57aecf9dac\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 158844 ac79946225c6f83d2fa5f88e6c5b4fba\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 1755098 3c27c579b91cf890a47b98917461267f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 65798 48b9c5e7cea3e4f9c72a45cd925347d8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 80918 3fbdf5ad323a27d7cb3bfe73176c4afc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 2260938 85a91950c1bff5d447b51b8162d30d01\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 105630 b284987845a6eaa414f305756029a571\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 128180 cf0c3ebf9d4b5c3b98079d1ca07f76d6\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 1811460 8494a7da26a892605955b91e7aec2752\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 67422 0146e8d156c0aa6b8813168e3d66feed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 80874 d097c0c61fc2e8f0904109d432a233ab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 2404196 41e947389ba9414f69a9c6cdbd5476a0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 112190 b51437fa6dedb0b7cc8178b550e3a95c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 150458 7007044bc2d13a922999ee4a0b2340fb\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 1812312 9dbabaedf362d30cf0bfb8d5a6e1ac26\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 67416 0569cbc30da536cbca2639f0d5d1dcfc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 80902 8a0b296db80627b629711c87334ca13a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 2406512 3857a4490fca8ab736d5466c5a282fce\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 111910 119cb8711ce5c8d8198a5aa55047ea11\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 150300 a82267043aff30d615e6412b1419920b\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 1800642 2e8e32a8ad80d6537bba0f53b5e5d614\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 67434 330355b0de8fbe9942c3b45c86b8833b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 83012 eb02960a180f9a7b2c20f3acd30b8ac4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 2359336 e106d470424730249bd78e3627cd982e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 116116 15ec4592d5d69df82ef0bfc13af38470\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 144438 6e07739403598c1fa4e547384027749e\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 1795128 6d8293268c3b69e44c4b4fef02cdd41f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 68818 a945b56e02744f098ae98a8b529d9e13\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 85552 6569bf59c17d3bde8d723fd441060b5f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 2337158 444e722e99e0207ba45a4a2782372492\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 114702 766c671a3e0380d5ea79bd8908f222c4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 140224 4706d66dd339c0bee9429c710053a86d\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 1844716 3148ba840c107efb91e9ae7ec472b38a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 70380 43573608b4c8b2194eba8320d84a676d\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 83818 f2d12acc706621476f04b03e31f47bc6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 2354226 07c0e47816a4abcc6b4798a75245f805\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 119844 36e6cdfa8ba20a339118184ec2a9e04e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 146012 08ec4db24b3e696f4be77f56c9705eb7\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "published": "2003-02-17T00:00:00", "modified": "2003-02-17T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00033.html", "reporter": "Debian", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "debian", "lastseen": "2019-05-30T02:21:23", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-2 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nFebruary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nThis update corrects a library dependency for the libcupsys2 package\nwhich sneaked in with the last security update to CUPS for the stable\ndistribution (woody).\n\nThe original advisory DSA 232-1 stated:\n\n Multiple vulnerabilities were discovered in the Common Unix\n Printing System (CUPS). Several of these issues represent the\n potential for a remote compromise or denial of service. The Common\n Vulnerabilities and Exposures project identifies the problems\n listed above.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.dsc\n Size/MD5 checksum: 690 488a4f8ea7203fadde75d906e6cf64ea\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.diff.gz\n Size/MD5 checksum: 35455 de07347fda86dad071c45e6d932c97f4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 1899888 49dc42a554de6d65a87b6ae2e8ff9bc2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 73878 3f2a05f77006279df5a72a5e10f2567a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 92524 d7e288183671c27fa8fa09626d699380\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 2445346 c317555525b3afae1f1900e48f73ccb6\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 137394 c772d3cb006f8e44738b349e24a5984b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 180182 a70ad0d886b74710d3b4106aabe55184\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 1821374 a6674c57f31308872e20499b17357c37\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 68006 ab978ff099fdd7b37550106971454059\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 85210 48f3e5ba501e1b38a1634a047d61d636\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 2345388 7a8ac6e933aa3824afea3a0a228bb0dc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 112332 0d8f215879b74847ed5acf8e7fe7fff4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 149736 b08a2c3bfae9b364969fee4521f8a601\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 1788152 cc4758069a8aa1fa0e4958f131f0faa2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 67532 739cb994c54cd11154f13a99d36edffb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 83722 8f8fcd75c985a1e5f75d1170f21197c6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 2311516 09a23d49459ca3effd505921a2f8d434\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 110408 86ece906e4f6bf1607758894a217c9bd\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 135864 50e2bd585535a49a53f518178dedaa12\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2007920 a5789e5d38b90613aea9b5a458714b95\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 76944 18f4cf8775b1bf950b7db673f6be26d2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 96686 10d076494a77ebda207b3f4ccbb4d2fb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2656320 898d58fa392cf145466c7c035eeb0126\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 155146 d472d99b98d3df5b9a88934fa1325449\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 182086 f6b72a5972bddfa606e8369b1d6f4db0\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 1881350 c14a8d5cca984546202bff3b3a5cfbc8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 70332 737ad34c1337a351f850e5a09dd27173\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 89344 894cd4fe76e427b09ba7e30288a69394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 2455558 56a4e578951ffbcf6c9c7be6234c5fb7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 126020 cfc0ba6b024a6bf627e2bc57aecf9dac\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 158844 ac79946225c6f83d2fa5f88e6c5b4fba\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 1755098 3c27c579b91cf890a47b98917461267f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 65798 48b9c5e7cea3e4f9c72a45cd925347d8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 80918 3fbdf5ad323a27d7cb3bfe73176c4afc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 2260938 85a91950c1bff5d447b51b8162d30d01\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 105630 b284987845a6eaa414f305756029a571\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 128180 cf0c3ebf9d4b5c3b98079d1ca07f76d6\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 1811460 8494a7da26a892605955b91e7aec2752\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 67422 0146e8d156c0aa6b8813168e3d66feed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 80874 d097c0c61fc2e8f0904109d432a233ab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 2404196 41e947389ba9414f69a9c6cdbd5476a0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 112190 b51437fa6dedb0b7cc8178b550e3a95c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 150458 7007044bc2d13a922999ee4a0b2340fb\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 1812312 9dbabaedf362d30cf0bfb8d5a6e1ac26\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 67416 0569cbc30da536cbca2639f0d5d1dcfc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 80902 8a0b296db80627b629711c87334ca13a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 2406512 3857a4490fca8ab736d5466c5a282fce\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 111910 119cb8711ce5c8d8198a5aa55047ea11\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 150300 a82267043aff30d615e6412b1419920b\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 1800642 2e8e32a8ad80d6537bba0f53b5e5d614\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 67434 330355b0de8fbe9942c3b45c86b8833b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 83012 eb02960a180f9a7b2c20f3acd30b8ac4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 2359336 e106d470424730249bd78e3627cd982e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 116116 15ec4592d5d69df82ef0bfc13af38470\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 144438 6e07739403598c1fa4e547384027749e\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 1795128 6d8293268c3b69e44c4b4fef02cdd41f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 68818 a945b56e02744f098ae98a8b529d9e13\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 85552 6569bf59c17d3bde8d723fd441060b5f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 2337158 444e722e99e0207ba45a4a2782372492\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 114702 766c671a3e0380d5ea79bd8908f222c4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 140224 4706d66dd339c0bee9429c710053a86d\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 1844716 3148ba840c107efb91e9ae7ec472b38a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 70380 43573608b4c8b2194eba8320d84a676d\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 83818 f2d12acc706621476f04b03e31f47bc6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 2354226 07c0e47816a4abcc6b4798a75245f805\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 119844 36e6cdfa8ba20a339118184ec2a9e04e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 146012 08ec4db24b3e696f4be77f56c9705eb7\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 2, "enchantments": {"dependencies": {"modified": "2019-05-30T02:21:23", "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}], "rev": 2}, "score": {"modified": "2019-05-30T02:21:23", "rev": 2, "value": 6.8, "vector": "NONE"}}, "hash": "0d2bf99e9f9c47e873101d0302dca5d1e79ec01f0c5b215840fc8d3edaa82cc3", "hashmap": [{"hash": "631319552b5fe4b536943e97a3da7092", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "631319552b5fe4b536943e97a3da7092", "key": "published"}, {"hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d", "key": "cvss"}, {"hash": "a88a8fe2116263a0656fccfa4abf91b4", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "8d8938f5decd85812f1fd9048feb6044", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "01b460025cbb8ffa8a83f6a7301addb3", "key": "description"}, {"hash": "181efd7736a3375224dd9e45582e0f3d", "key": "href"}], "history": [], "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00033.html", "id": "DEBIAN:DSA-232-2:C9F72", "immutableFields": [], "lastseen": "2019-05-30T02:21:23", "modified": "2003-02-17T00:00:00", "objectVersion": "1.5", "published": "2003-02-17T00:00:00", "references": [], "reporter": "Debian", "title": "[SECURITY] [DSA 232-2] New CUPS packages fix wrong libPNG dependency", "type": "debian", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 2, "lastseen": "2019-05-30T02:21:23"}, {"bulletin": {"affectedPackage": [], "bulletinFamily": "unix", "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 232-2 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nFebruary 20th, 2003 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : cupsys\nVulnerability : several\nProblem-type : remote\nDebian-specific: no\nCVE Id : CAN-2002-1366 CAN-2002-1367 CAN-2002-1368 CAN-2002-1369 CAN-2002-1371 CAN-2002-1372 CAN-2002-1383 CAN-2002-1384\n\nThis update corrects a library dependency for the libcupsys2 package\nwhich sneaked in with the last security update to CUPS for the stable\ndistribution (woody).\n\nThe original advisory DSA 232-1 stated:\n\n Multiple vulnerabilities were discovered in the Common Unix\n Printing System (CUPS). Several of these issues represent the\n potential for a remote compromise or denial of service. The Common\n Vulnerabilities and Exposures project identifies the problems\n listed above.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.dsc\n Size/MD5 checksum: 690 488a4f8ea7203fadde75d906e6cf64ea\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4.diff.gz\n Size/MD5 checksum: 35455 de07347fda86dad071c45e6d932c97f4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14.orig.tar.gz\n Size/MD5 checksum: 6150756 0dfa41f29fa73e7744903b2471d2ca2f\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 1899888 49dc42a554de6d65a87b6ae2e8ff9bc2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 73878 3f2a05f77006279df5a72a5e10f2567a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 92524 d7e288183671c27fa8fa09626d699380\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 2445346 c317555525b3afae1f1900e48f73ccb6\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 137394 c772d3cb006f8e44738b349e24a5984b\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_alpha.deb\n Size/MD5 checksum: 180182 a70ad0d886b74710d3b4106aabe55184\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 1821374 a6674c57f31308872e20499b17357c37\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 68006 ab978ff099fdd7b37550106971454059\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 85210 48f3e5ba501e1b38a1634a047d61d636\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 2345388 7a8ac6e933aa3824afea3a0a228bb0dc\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 112332 0d8f215879b74847ed5acf8e7fe7fff4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_arm.deb\n Size/MD5 checksum: 149736 b08a2c3bfae9b364969fee4521f8a601\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 1788152 cc4758069a8aa1fa0e4958f131f0faa2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 67532 739cb994c54cd11154f13a99d36edffb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 83722 8f8fcd75c985a1e5f75d1170f21197c6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 2311516 09a23d49459ca3effd505921a2f8d434\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 110408 86ece906e4f6bf1607758894a217c9bd\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_i386.deb\n Size/MD5 checksum: 135864 50e2bd585535a49a53f518178dedaa12\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2007920 a5789e5d38b90613aea9b5a458714b95\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 76944 18f4cf8775b1bf950b7db673f6be26d2\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 96686 10d076494a77ebda207b3f4ccbb4d2fb\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 2656320 898d58fa392cf145466c7c035eeb0126\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 155146 d472d99b98d3df5b9a88934fa1325449\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_ia64.deb\n Size/MD5 checksum: 182086 f6b72a5972bddfa606e8369b1d6f4db0\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 1881350 c14a8d5cca984546202bff3b3a5cfbc8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 70332 737ad34c1337a351f850e5a09dd27173\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 89344 894cd4fe76e427b09ba7e30288a69394\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 2455558 56a4e578951ffbcf6c9c7be6234c5fb7\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 126020 cfc0ba6b024a6bf627e2bc57aecf9dac\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_hppa.deb\n Size/MD5 checksum: 158844 ac79946225c6f83d2fa5f88e6c5b4fba\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 1755098 3c27c579b91cf890a47b98917461267f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 65798 48b9c5e7cea3e4f9c72a45cd925347d8\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 80918 3fbdf5ad323a27d7cb3bfe73176c4afc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 2260938 85a91950c1bff5d447b51b8162d30d01\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 105630 b284987845a6eaa414f305756029a571\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_m68k.deb\n Size/MD5 checksum: 128180 cf0c3ebf9d4b5c3b98079d1ca07f76d6\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 1811460 8494a7da26a892605955b91e7aec2752\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 67422 0146e8d156c0aa6b8813168e3d66feed\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 80874 d097c0c61fc2e8f0904109d432a233ab\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 2404196 41e947389ba9414f69a9c6cdbd5476a0\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 112190 b51437fa6dedb0b7cc8178b550e3a95c\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mips.deb\n Size/MD5 checksum: 150458 7007044bc2d13a922999ee4a0b2340fb\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 1812312 9dbabaedf362d30cf0bfb8d5a6e1ac26\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 67416 0569cbc30da536cbca2639f0d5d1dcfc\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 80902 8a0b296db80627b629711c87334ca13a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 2406512 3857a4490fca8ab736d5466c5a282fce\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 111910 119cb8711ce5c8d8198a5aa55047ea11\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_mipsel.deb\n Size/MD5 checksum: 150300 a82267043aff30d615e6412b1419920b\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 1800642 2e8e32a8ad80d6537bba0f53b5e5d614\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 67434 330355b0de8fbe9942c3b45c86b8833b\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 83012 eb02960a180f9a7b2c20f3acd30b8ac4\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 2359336 e106d470424730249bd78e3627cd982e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 116116 15ec4592d5d69df82ef0bfc13af38470\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_powerpc.deb\n Size/MD5 checksum: 144438 6e07739403598c1fa4e547384027749e\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 1795128 6d8293268c3b69e44c4b4fef02cdd41f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 68818 a945b56e02744f098ae98a8b529d9e13\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 85552 6569bf59c17d3bde8d723fd441060b5f\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 2337158 444e722e99e0207ba45a4a2782372492\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 114702 766c671a3e0380d5ea79bd8908f222c4\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_s390.deb\n Size/MD5 checksum: 140224 4706d66dd339c0bee9429c710053a86d\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 1844716 3148ba840c107efb91e9ae7ec472b38a\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-bsd_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 70380 43573608b4c8b2194eba8320d84a676d\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-client_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 83818 f2d12acc706621476f04b03e31f47bc6\n http://security.debian.org/pool/updates/main/c/cupsys/cupsys-pstoraster_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 2354226 07c0e47816a4abcc6b4798a75245f805\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 119844 36e6cdfa8ba20a339118184ec2a9e04e\n http://security.debian.org/pool/updates/main/c/cupsys/libcupsys2-dev_1.1.14-4.4_sparc.deb\n Size/MD5 checksum: 146012 08ec4db24b3e696f4be77f56c9705eb7\n\n\n These files will probably be moved into the stable distribution on\n its next revision.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2018-10-16T22:13:19", "references": [{"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}]}, "score": {"modified": "2018-10-16T22:13:19", "value": 5.0, "vector": "NONE"}}, "hash": "91503abd98162384cbeaa46f4974a38458b0088fecf6dd18e5312af3175ddfd5", "hashmap": [{"hash": "631319552b5fe4b536943e97a3da7092", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "6fe8b98c53e8d099686936732785d471", "key": "reporter"}, {"hash": "631319552b5fe4b536943e97a3da7092", "key": "published"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "a88a8fe2116263a0656fccfa4abf91b4", "key": "title"}, {"hash": "6e9552c9bd8e61c8f277c21220160234", "key": "type"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "8d8938f5decd85812f1fd9048feb6044", "key": "cvelist"}, {"hash": "01b460025cbb8ffa8a83f6a7301addb3", "key": "description"}, {"hash": "181efd7736a3375224dd9e45582e0f3d", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedPackage"}], "history": [], "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2003/msg00033.html", "id": "DEBIAN:DSA-232-2:C9F72", "lastseen": "2018-10-16T22:13:19", "modified": "2003-02-17T00:00:00", "objectVersion": "1.3", "published": "2003-02-17T00:00:00", "references": [], "reporter": "Debian", "title": "[SECURITY] [DSA 232-2] New CUPS packages fix wrong libPNG dependency", "type": "debian", "viewCount": 0}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-10-16T22:13:19"}], "edition": 3, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "8d8938f5decd85812f1fd9048feb6044"}, {"key": "cvss", "hash": "edfca85c4c320ffaa9dcfdcb6a20ce1d"}, {"key": "cvss2", "hash": "11e56c2d8f36b1920223217250e3f2a6"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "01b460025cbb8ffa8a83f6a7301addb3"}, {"key": "href", "hash": "181efd7736a3375224dd9e45582e0f3d"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "631319552b5fe4b536943e97a3da7092"}, {"key": "published", "hash": "631319552b5fe4b536943e97a3da7092"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "6fe8b98c53e8d099686936732785d471"}, {"key": "title", "hash": "a88a8fe2116263a0656fccfa4abf91b4"}, {"key": "type", "hash": "6e9552c9bd8e61c8f277c21220160234"}], "hash": "0e1ae3a6764d9a6746e765c715b27f86169da6b6136a74e233316a10aa329058", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2019-05-30T02:21:23", "rev": 2}, "score": {"value": 6.8, "vector": "NONE", "modified": "2019-05-30T02:21:23", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [], "scheme": null, "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}}], "openvas": [{"id": "OPENVAS:53304", "hash": "e2e5b01e2cdbc327269202bd016540c7", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 222-1 (xpdf)", "description": "The remote host is missing an update to xpdf\nannounced via advisory DSA 222-1.", "published": "2008-01-17T00:00:00", "modified": "2017-07-07T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53304", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1384"], "lastseen": "2017-07-24T12:50:00", "history": [{"lastseen": "2017-07-02T21:10:16", "bulletin": {"id": "OPENVAS:53304", "hash": "757e4052dbbe7fa4db9c6d6bf98edb634d431890ecda5bcc5c1ba9ac2340ad24", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 222-1 (xpdf)", "description": "The remote host is missing an update to xpdf\nannounced via advisory DSA 222-1.", "published": "2008-01-17T00:00:00", "modified": "2016-09-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53304", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1384"], "lastseen": "2017-07-02T21:10:16", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "53304", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_222_1.nasl 3939 2016-09-02 05:15:43Z teissa $\n# Description: Auto-generated from advisory DSA 222-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\";\ntag_summary = \"The remote host is missing an update to xpdf\nannounced via advisory DSA 222-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20222-1\";\n\nif(description)\n{\n script_id(53304);\n script_version(\"$Revision: 3939 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-02 07:15:43 +0200 (Fri, 02 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_bugtraq_id(6475);\n script_cve_id(\"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 222-1 (xpdf)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:debian:debian_linux\", \"login/SSH/success\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"xpdf\", ver:\"0.90-8.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-common\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-reader\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-utils\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE", "modified": "2017-07-24T12:50:00", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313"]}, {"type": "nessus", "idList": ["SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-232.NASL", "CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-001.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:53305", "OPENVAS:53586", "OPENVAS:53327"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2017-07-24T12:50:00", "rev": 2}}, "objectVersion": "1.4", "pluginID": "53304", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_222_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 222-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining privileged access to the 'lp'\nuser if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf package.\";\ntag_summary = \"The remote host is missing an update to xpdf\nannounced via advisory DSA 222-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20222-1\";\n\nif(description)\n{\n script_id(53304);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_bugtraq_id(6475);\n script_cve_id(\"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 222-1 (xpdf)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"xpdf\", ver:\"0.90-8.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-common\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-reader\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xpdf-utils\", ver:\"1.00-3.1\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"]}, {"id": "OPENVAS:53305", "hash": "c2dc3c6cd4a8de2b5d8850459d5b122f", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 226-1 (xpdf-i)", "description": "The remote host is missing an update to xpdf-i\nannounced via advisory DSA 226-1.", "published": "2008-01-17T00:00:00", "modified": "2017-07-07T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53305", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1384"], "lastseen": "2017-07-24T12:50:17", "history": [{"lastseen": "2017-07-02T21:10:24", "bulletin": {"id": "OPENVAS:53305", "hash": "439c37431327ec14cf4f9a478817c14fd009a1176fd791fc6e69aa9341a725bc", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 226-1 (xpdf-i)", "description": "The remote host is missing an update to xpdf-i\nannounced via advisory DSA 226-1.", "published": "2008-01-17T00:00:00", "modified": "2016-09-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53305", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1384"], "lastseen": "2017-07-02T21:10:24", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "53305", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_226_1.nasl 3939 2016-09-02 05:15:43Z teissa $\n# Description: Auto-generated from advisory DSA 226-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining privileged access to the\n'lp' user if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf-i package.\";\ntag_summary = \"The remote host is missing an update to xpdf-i\nannounced via advisory DSA 226-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20226-1\";\n\nif(description)\n{\n script_id(53305);\n script_version(\"$Revision: 3939 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-02 07:15:43 +0200 (Fri, 02 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_bugtraq_id(6475);\n script_cve_id(\"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 226-1 (xpdf-i)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:debian:debian_linux\", \"login/SSH/success\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"xpdf-i\", ver:\"0.90-8.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "viewCount": 0, "enchantments": {"score": {"value": 7.6, "vector": "NONE", "modified": "2017-07-24T12:50:17", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313"]}, {"type": "nessus", "idList": ["SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-232.NASL", "CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-001.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53586", "OPENVAS:53327"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2017-07-24T12:50:17", "rev": 2}}, "objectVersion": "1.4", "pluginID": "53305", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_226_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 226-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining privileged access to the\n'lp' user if thee pdftops program is part of the print filter.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been\nfixed in version 0.90-8.1.\n\nFor the unstable distribution (sid) this problem has been\nfixed in version 2.01-2.\n\nWe recommend that you upgrade your xpdf-i package.\";\ntag_summary = \"The remote host is missing an update to xpdf-i\nannounced via advisory DSA 226-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20226-1\";\n\nif(description)\n{\n script_id(53305);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_bugtraq_id(6475);\n script_cve_id(\"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 226-1 (xpdf-i)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"xpdf-i\", ver:\"0.90-8.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"]}, {"id": "OPENVAS:53586", "hash": "75515690c7c4c127a3bdb801288995fb", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 232-1 (cupsys)", "description": "The remote host is missing an update to cupsys\nannounced via advisory DSA 232-1.", "published": "2008-01-17T00:00:00", "modified": "2017-07-07T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53586", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "lastseen": "2017-07-24T12:50:09", "history": [{"lastseen": "2017-07-02T21:10:20", "differentElements": ["modified", "sourceData"], "edition": 1, "bulletin": {"id": "OPENVAS:53586", "hash": "6ec86a3ae0d208b203c8399c97a2fede65aa40aa4ba3cdadfff95cb03ab934c0", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 232-1 (cupsys)", "description": "The remote host is missing an update to cupsys\nannounced via advisory DSA 232-1.", "published": "2008-01-17T00:00:00", "modified": "2016-09-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53586", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "lastseen": "2017-07-02T21:10:20", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "53586", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_232_1.nasl 3939 2016-09-02 05:15:43Z teissa $\n# Description: Auto-generated from advisory DSA 232-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n. CVE-2002-1383: Multiple integer overflows allow a remote attacker\nto execute arbitrary code via the CUPSd HTTP interface and the\nimage handling code in CUPS filters.\n\n. CVE-2002-1366: Race conditions in connection with /etc/cups/certs/\nallow local users with lp privileges to create or overwrite\narbitrary files. This is not present in the potato version.\n\n. CVE-2002-1367: This vulnerabilities allows a remote attacker to add\nprinters without authentication via a certain UDP packet, which can\nthen be used to perform unauthorized activities such as stealing\nthe local root certificate for the administration server via a\n'need authorization' page.\n\n. CVE-2002-1368: Negative lengths fed into memcpy() can cause a\ndenial of service and possibly execute arbitrary code.\n\n. CVE-2002-1369: An unsafe strncat() function call processing the\noptions string allows a remote attacker to execute arbitrary code\nvia a buffer overflow.\n\n. CVE-2002-1371: Zero width images allows a remote attacker to\nexecute arbitrary code via modified chunk headers.\n\n. CVE-2002-1372: CUPS does not properly check the return values of\nvarious file and socket operations, which could allow a remote\nattacker to cause a denial of service.\n\n. CVE-2002-1384: The cupsys package contains some code from the xpdf\npackage, used to convert PDF files for printing, which contains an\nexploitable integer overflow bug. This is not present in the\npotato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\";\ntag_summary = \"The remote host is missing an update to cupsys\nannounced via advisory DSA 232-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20232-1\";\n\nif(description)\n{\n script_id(53586);\n script_version(\"$Revision: 3939 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-02 07:15:43 +0200 (Fri, 02 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 232-1 (cupsys)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:debian:debian_linux\", \"login/SSH/success\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys1\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys1-dev\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-client\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-pstoraster\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2-dev\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks"}}], "viewCount": 1, "enchantments": {"score": {"value": 7.7, "vector": "NONE", "modified": "2017-07-24T12:50:09", "rev": 2}, "dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2017-07-24T12:50:09", "rev": 2}}, "objectVersion": "1.5", "pluginID": "53586", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_232_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 232-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities\nand Exposures project identifies the following problems:\n\n. CVE-2002-1383: Multiple integer overflows allow a remote attacker\nto execute arbitrary code via the CUPSd HTTP interface and the\nimage handling code in CUPS filters.\n\n. CVE-2002-1366: Race conditions in connection with /etc/cups/certs/\nallow local users with lp privileges to create or overwrite\narbitrary files. This is not present in the potato version.\n\n. CVE-2002-1367: This vulnerabilities allows a remote attacker to add\nprinters without authentication via a certain UDP packet, which can\nthen be used to perform unauthorized activities such as stealing\nthe local root certificate for the administration server via a\n'need authorization' page.\n\n. CVE-2002-1368: Negative lengths fed into memcpy() can cause a\ndenial of service and possibly execute arbitrary code.\n\n. CVE-2002-1369: An unsafe strncat() function call processing the\noptions string allows a remote attacker to execute arbitrary code\nvia a buffer overflow.\n\n. CVE-2002-1371: Zero width images allows a remote attacker to\nexecute arbitrary code via modified chunk headers.\n\n. CVE-2002-1372: CUPS does not properly check the return values of\nvarious file and socket operations, which could allow a remote\nattacker to cause a denial of service.\n\n. CVE-2002-1384: The cupsys package contains some code from the xpdf\npackage, used to convert PDF files for printing, which contains an\nexploitable integer overflow bug. This is not present in the\npotato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\n\nFor the current stable distribution (woody), these problems have been fixed\nin version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed\nin version 1.0.4-12.1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.1.18-1.\n\nWe recommend that you upgrade your CUPS packages immediately.\";\ntag_summary = \"The remote host is missing an update to cupsys\nannounced via advisory DSA 232-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20232-1\";\n\nif(description)\n{\n script_id(53586);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 232-1 (cupsys)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys1\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys1-dev\", ver:\"1.0.4-12.1\", rls:\"DEB2.2\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-client\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-pstoraster\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2-dev\", ver:\"1.1.14-4.3\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:53327", "hash": "2717cb2ce4b7582fdb3b82412792f04c", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 232-2 (cupsys)", "description": "The remote host is missing an update to cupsys\nannounced via advisory DSA 232-2.", "published": "2008-01-17T00:00:00", "modified": "2017-07-07T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53327", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "lastseen": "2017-07-24T12:49:41", "history": [{"lastseen": "2017-07-02T21:10:08", "bulletin": {"id": "OPENVAS:53327", "hash": "0db15fab40d5aedc202aff02dd89ed806e30bc0fbcad4ee092e2dbd1a1dc429f", "type": "openvas", "bulletinFamily": "scanner", "title": "Debian Security Advisory DSA 232-2 (cupsys)", "description": "The remote host is missing an update to cupsys\nannounced via advisory DSA 232-2.", "published": "2008-01-17T00:00:00", "modified": "2016-09-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=53327", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "lastseen": "2017-07-02T21:10:08", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "53327", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_232_2.nasl 3939 2016-09-02 05:15:43Z teissa $\n# Description: Auto-generated from advisory DSA 232-2\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update corrects a library dependency for the libcupsys2 package\nwhich sneaked in with the last security update to CUPS for the stable\ndistribution (woody).\n\nThe original advisory DSA 232-1 stated:\n\nMultiple vulnerabilities were discovered in the Common Unix\nPrinting System (CUPS). Several of these issues represent the\npotential for a remote compromise or denial of service. The Common\nVulnerabilities and Exposures project identifies the problems\nlisted above.\";\ntag_summary = \"The remote host is missing an update to cupsys\nannounced via advisory DSA 232-2.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20232-2\";\n\nif(description)\n{\n script_id(53327);\n script_version(\"$Revision: 3939 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-02 07:15:43 +0200 (Fri, 02 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 232-2 (cupsys)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:debian:debian_linux\", \"login/SSH/success\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-client\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-pstoraster\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2-dev\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "viewCount": 0, "enchantments": {"score": {"value": 6.9, "vector": "NONE", "modified": "2017-07-24T12:49:41", "rev": 2}, "dependencies": {"references": [{"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2017-07-24T12:49:41", "rev": 2}}, "objectVersion": "1.5", "pluginID": "53327", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_232_2.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 232-2\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"This update corrects a library dependency for the libcupsys2 package\nwhich sneaked in with the last security update to CUPS for the stable\ndistribution (woody).\n\nThe original advisory DSA 232-1 stated:\n\nMultiple vulnerabilities were discovered in the Common Unix\nPrinting System (CUPS). Several of these issues represent the\npotential for a remote compromise or denial of service. The Common\nVulnerabilities and Exposures project identifies the problems\nlisted above.\";\ntag_summary = \"The remote host is missing an update to cupsys\nannounced via advisory DSA 232-2.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20232-2\";\n\nif(description)\n{\n script_id(53327);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:28:10 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 232-2 (cupsys)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"cupsys\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-bsd\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-client\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"cupsys-pstoraster\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libcupsys2-dev\", ver:\"1.1.14-4.4\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Debian Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}], "securityvulns": [{"id": "SECURITYVULNS:DOC:3912", "bulletinFamily": "software", "title": "iDEFENSE Security Advisory 12.23.02: Integer Overflow in pdftops", "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\niDEFENSE Security Advisory 12.23.02:\r\nhttp://www.idefense.com/advisory/12.23.02.txt\r\nInteger Overflow in pdftops\r\nDecember 23, 2002\r\n\r\nReference Advisory: http://www.idefense.com/advisory/12.19.02.txt \r\n[Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)]\r\n\r\nI. BACKGROUND\r\n\r\nEasy Software Products' Common Unix Printing System (CUPS) is a\r\ncross-platform printing solution for Unix environments. It is based on the\r\n"Internet Printing Protocol," and provides complete printing services to\r\nmost PostScript and raster printers. CUPS has a web-based graphical\r\ninterface for printer management and is available on most Linux systems.\r\nMore information is available at http://www.cups.org .\r\n\r\nXpdf is an open source viewer for Portable Document Format (PDF) files. \r\nThe Xpdf project also includes a PDF text extractor, PDF-to-PostScript\r\nconverter, and various other utilities. It also comes with two other\r\nprograms: pdftops and pdftotext which convert PDF files to postscript and\r\nplain text respectively. More information is available at\r\nhttp://www.foolabs.com/xpdf/ .\r\n\r\nII. DESCRIPTION\r\n\r\nThe pdftops filter in the Xpdf and CUPS packages contains an integer\r\noverflow that can be exploited to gain the privileges of the target user\r\nor in some cases the increased privileges of the 'lp' user if installed\r\nsetuid. There are multiple ways of exploiting this vulnerability. The\r\nfollowing is just one example: \r\n\r\nA ColorSpace with 1,431,655,768 elements is created, each element having\r\nthree components. 1,431,655,768 is too large to store within a 32-bit\r\ninteger so the high bit is cut off leaving only 8 which is how much that\r\nis actually allocated. \r\n\r\n... \r\n /CS \r\n [\r\n /Indexed\r\n /RGB \r\n 1431655768\r\n 7 0 R \r\n ] \r\n... \r\n\r\nThe '7 0 R' from above refers to a stream that is read into an array that\r\nis allocated as above. The stream is read until it has reached the highest\r\nindex number, or the stream ends. If the filter supplies enough data the\r\napplication will crash when trying to access bad memory. It is possible to\r\nexploit this condition by supplying the right length of bad memory, and\r\nstop the stream breaking the reading. A function pointer can then be\r\noverwritten to execute arbitrary code. Example: \r\n\r\n...\r\n7 0 obj <<\r\n/Length 229\r\n>>\r\nstream\r\ncontent to write into memory....endstream\r\nendobject\r\n... \r\n\r\nThe following is a sample run of the cups-pdf exploit running with the\r\nuser's privileges: \r\n\r\n$ ./cups-pdf | lp\r\nrequest id is lp-108 (1 file(s))\r\n$ ls -l /tmp/pdfexploit-worked \r\n- - -rw-rw-r-- 1 farmer farmer 0 Dec 4 13:41 /tmp/pdfexploit-worked \r\n\r\nIII. ANALYSIS\r\n\r\nThis vulnerability is locally exploitable. In order to perform "remote"\r\nexploitation, an attacker must trick a user into printing a malformed PDF\r\nfile from the command line. In the implementation cases where "lp" user\r\nprivileges are attainable, more advanced attacks can be performed to gain\r\nlocal root access (see iDEFENSE Advisory 12.19.02).\r\n\r\nIV. DETECTION\r\n\r\nThe vulnerability exists in the latest stable version of Xpdf (Xpdf 2.01)\r\nand all prior versions. The vulnerability was verified on Red Hat Linux\r\n7.0 running CUPS-1.1.14-5 (RPM). \r\n\r\nV. VENDOR RESPONSES/FIXES\r\n\r\nA patch supplied by the author of Xpdf is available from\r\nftp://ftp.foolabs.com/pub/xpdf/xpdf-2.01-patch1 which fixes this issue in\r\npdftops when applied to the latest source code version, 2.01. \r\nAdditionally, the latest version of CUPS, 1.1.18, should also fix this\r\nissue within the included pdftops utility. It is available from\r\nhttp://www.cups.org .\r\n\r\nVI. CVE INFORMATION\r\n\r\nThe Mitre Corp.'s Common Vulnerabilities and Exposures (CVE) Project\r\nassigned the identification number CAN-2002-1384 to this issue.\r\n\r\nVII. DISCLOSURE TIMELINE\r\n\r\n10/27/2002 Initial discussion with contributor\r\n11/14/2002 Final contributor submission\r\n12/12/2002 CUPS author and Xdf author notified via e-mail to \r\n cups-support@cups.org and Derek B. Noonburg \r\n (derekn@glyphandcog.com)\r\n12/12/2002 iDEFENSE clients notified\r\n12/12/2002 Response and preliminary patch received from\r\n CUPS author Michael Sweet (mike@easysw.com)\r\n12/12/2002 Apple, Linux Security List (vendor-sec@lst.de)\r\n12/13/2002 Updated patch received from Michael Sweet\r\n12/17/2002 Patch received from Derek B. Noonburg\r\n12/23/2002 Coordinated Public Disclosure\r\n\r\nIX. CREDIT\r\n\r\nzen-parse (zen-parse@gmx.net) discovered this issue.\r\n\r\n\r\nGet paid for security research\r\nhttp://www.idefense.com/contributor.html\r\n\r\nSubscribe to iDEFENSE Advisories:\r\nsend email to listserv@idefense.com, subject line: "subscribe"\r\n\r\n\r\nAbout iDEFENSE:\r\n\r\niDEFENSE is a global security intelligence company that proactively\r\nmonitors sources throughout the world \u2014 from technical\r\nvulnerabilities and hacker profiling to the global spread of viruses\r\nand other malicious code. Our security intelligence services provide \r\ndecision-makers, frontline security professionals and network \r\nadministrators with timely access to actionable intelligence\r\nand decision support on cyber-related threats. For more information,\r\nvisit http://www.idefense.com .\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: PGP 8.0\r\nComment: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE4A96E4F\r\n\r\niQA/AwUBPgeADfrkky7kqW5PEQIU4ACglDPjTQOxzgReoVTJPzXSOiS2/0sAoJtn\r\nvExhR59MXKCVfUFm1sr5SSIC\r\n=PNwe\r\n-----END PGP SIGNATURE-----\r\n", "published": "2002-12-24T00:00:00", "modified": "2002-12-24T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:3912", "reporter": "Securityvulns", "references": [], "cvelist": ["CVE-2002-1384"], "type": "securityvulns", "lastseen": "2018-08-31T11:10:06", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "432c1b4479c60daa4d5bcb3b011704be"}, {"key": "cvss", "hash": "cfd16da9581e0c21db590e40dfd9e493"}, {"key": "description", "hash": "57e299936e5188c977332b0664da9511"}, {"key": "href", "hash": "cdc0e99864ff693dfb48cc05809c512d"}, {"key": "modified", "hash": "5269a4f55bbee133a1825fdfd97e272a"}, {"key": "published", "hash": "5269a4f55bbee133a1825fdfd97e272a"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "a49ebb2e1a771348dfa0039e0d589df6"}, {"key": "title", "hash": "8655a6ea804b7011b4415752da77ae1a"}, {"key": "type", "hash": "d54751dd75af2ea0147b462b3e001cd0"}], "hash": "df3b0b2faa4377a4ed9890400cd74738f29fad18caef0af580bd9fbb5ad7e196", "viewCount": 0, "enchantments": {"score": {"value": 7.1, "vector": "NONE", "modified": "2018-08-31T11:10:06", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53586", "OPENVAS:53305", "OPENVAS:53327"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-226-1:9E313"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2018-08-31T11:10:06", "rev": 2}}, "objectVersion": "1.3", "affectedSoftware": []}], "nessus": [{"id": "REDHAT-RHSA-2002-307.NASL", "hash": "575d7fde9f7774d2d1ea6dedc64873f1", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a malicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation 2.1\n\nXpdf is an X Window System based viewer for Portable Document Format (PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an integer overflow vulnerability in the pdftops filter. Since the code for pdftops is taken from the Xpdf project, all versions of Xpdf including 2.01 are also vulnerable to this issue. An attacker could create a malicious PDF file that would execute arbitrary code as the user who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages which contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:20:16", "history": [{"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "94d273ca7562337035af01a2acadc75e9fb3421e74b0648b4037ee0ded403893", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a malicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation 2.1\n\nXpdf is an X Window System based viewer for Portable Document Format (PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an integer overflow vulnerability in the pdftops filter. Since the code for pdftops is taken from the Xpdf project, all versions of Xpdf including 2.01 are also vulnerable to this issue. An attacker could create a malicious PDF file that would execute arbitrary code as the user who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages which contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2016-12-28T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=12345", "reporter": "Tenable", "references": ["https://www.redhat.com/security/data/cve/CVE-2002-1384.html", "http://rhn.redhat.com/errata/RHSA-2002-307.html"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2016-12-29T02:12:59", "history": [], "viewCount": 3, "enchantments": {}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12345);\n script_version (\"$Revision: 1.18 $\");\n script_cvs_date(\"$Date: 2016/12/28 17:44:42 $\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2002-1384.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2002-307.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2016-12-29T02:12:59", "differentElements": ["cpe", "cvss", "description", "href", "modified", "references", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "983fb7c82c9608f54ba307d228440b9afc93dd6ba9297847dbfde63cab0b917f", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-10-28T21:07:29", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2019-10-28T21:07:29", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-10-28T21:07:29", "value": 8.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12345);\n script_version (\"1.23\");\n script_cvs_date(\"Date: 2019/10/25 13:36:10\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T21:07:29", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "652456d1f3d27cf8e9a29bf592fb775ed8648818b9f3e0f43daff9b92aa64b18", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2019-11-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-11-01T03:20:08", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2019-11-01T03:20:08", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-11-01T03:20:08", "value": 8.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12345);\n script_version (\"1.23\");\n script_cvs_date(\"Date: 2019/10/25 13:36:10\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-11-01T03:20:08", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "dcb683fb60c21d503bb06380c3f3f2529d40172d8b7d66aede9e5074a18f5b51", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2020-03-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-03-18T02:21:45", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-03-18T02:21:45", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2020-03-18T02:21:45", "value": 8.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(12345);\n script_version (\"1.23\");\n script_cvs_date(\"Date: 2019/10/25 13:36:10\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-03-18T02:21:45", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "93b3600f7b42c9e84579d932b9d07de783f48c2a9070155e978b345b06d5cc40", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2004-07-06T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-01-17T13:05:15", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-17T13:05:15", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-17T13:05:15", "rev": 2, "value": 8.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(12345);\n script_version(\"1.24\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-17T13:05:15", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "1884e2f78f1c24e1f3168a6b13dad563", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2004-07-06T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-07-29T02:46:26", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586", "OPENVAS:53327"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-222.NASL", "SUSE_SA_2003_002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-07-29T02:46:26", "rev": 2}, "score": {"value": 8.6, "vector": "NONE", "modified": "2021-07-29T02:46:26", "rev": 2}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(12345);\n script_version(\"1.24\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T02:46:26", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "REDHAT-RHSA-2002-307.NASL", "hash": "b06afe5db007a488952ed71a6e5865b6", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 2.1 : xpdf (RHSA-2002:307)", "description": "Updated Xpdf packages are available to fix a vulnerability where a malicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation 2.1\n\nXpdf is an X Window System based viewer for Portable Document Format (PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an integer overflow vulnerability in the pdftops filter. Since the code for pdftops is taken from the Xpdf project, all versions of Xpdf including 2.01 are also vulnerable to this issue. An attacker could create a malicious PDF file that would execute arbitrary code as the user who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages which contain a patch to correct this issue.", "published": "2004-07-06T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/12345", "reporter": "This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2002:307", "https://access.redhat.com/security/cve/cve-2002-1384", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:31:52", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-002.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-222.NASL", "DEBIAN_DSA-232.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-12T13:31:52", "rev": 2}, "score": {"value": 8.6, "vector": "NONE", "modified": "2021-08-12T13:31:52", "rev": 2}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(12345);\n script_version(\"1.24\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["p-cpe:/a:redhat:enterprise_linux:xpdf", "cpe:/o:redhat:enterprise_linux:2.1"], "solution": "Update the affected xpdf package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2003-02-05T00:00:00", "vulnerabilityPublicationDate": "2003-01-02T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-12T13:31:52", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53586", "OPENVAS:53305", "OPENVAS:53327"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "DEBIAN_DSA-232.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-19T13:20:16", "rev": 2}, "score": {"value": 8.6, "vector": "NONE", "modified": "2021-08-19T13:20:16", "rev": 2}}, "objectVersion": "1.6", "pluginID": "12345", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2002:307. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(12345);\n script_version(\"1.24\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"RHSA\", value:\"2002:307\");\n\n script_name(english:\"RHEL 2.1 : xpdf (RHSA-2002:307)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated Xpdf packages are available to fix a vulnerability where a\nmalicious PDF document could run arbitrary code.\n\n[Updated 06 Feb 2003] Added fixed packages for Advanced Workstation\n2.1\n\nXpdf is an X Window System based viewer for Portable Document Format\n(PDF) files.\n\nDuring an audit of CUPS, a printing system, Zen Parsec found an\ninteger overflow vulnerability in the pdftops filter. Since the code\nfor pdftops is taken from the Xpdf project, all versions of Xpdf\nincluding 2.01 are also vulnerable to this issue. An attacker could\ncreate a malicious PDF file that would execute arbitrary code as the\nuser who used Xpdf to view it.\n\nAll users of Xpdf are advised to upgrade to these errata packages\nwhich contain a patch to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2002-1384\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2002:307\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/01/02\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/02/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2002:307\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"xpdf-0.92-8\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xpdf\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["p-cpe:/a:redhat:enterprise_linux:xpdf", "cpe:/o:redhat:enterprise_linux:2.1"], "solution": "Update the affected xpdf package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2003-02-05T00:00:00", "vulnerabilityPublicationDate": "2003-01-02T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "4cd6700f04a346bd52a65c78e9e8e9ed", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers from an integer overflow that can be exploited to gain the privilege of the victim user.", "published": "2004-07-31T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13987", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:19:40", "history": [{"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "075ee60d82f9197ffe886fc9edd4ce25335bc8e8fd5866a459319c2ff6b51acb", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers from an integer overflow that can be exploited to gain the privilege of the victim user.", "published": "2004-07-31T00:00:00", "modified": "2013-05-31T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=13987", "reporter": "Tenable", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2016-09-26T17:26:28", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13987);\n script_version (\"$Revision: 1.15 $\");\n script_cvs_date(\"$Date: 2013/05/31 23:47:33 $\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2016-09-26T17:26:28", "differentElements": ["cpe", "modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "961d779a2f3d191f6f7c489671f92e963ef58939c85f4f43ff5a0ab52c221aa5", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers from an integer overflow that can be exploited to gain the privilege of the victim user.", "published": "2004-07-31T00:00:00", "modified": "2018-07-19T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=13987", "reporter": "Tenable", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2018-08-02T08:24:59", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13987);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/07/19 20:59:12\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-08-02T08:24:59", "differentElements": ["description"], "edition": 2}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "433b12588e96ead95ab755aecbc8547aff5a10fb641cd06c3be01078b7469bc5", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.", "published": "2004-07-31T00:00:00", "modified": "2018-07-19T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=13987", "reporter": "Tenable", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-01-16T20:05:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-01-16T20:05:31", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13987);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/07/19 20:59:12\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-01-16T20:05:31", "differentElements": ["cvss", "href", "modified", "reporter", "sourceData"], "edition": 3}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "c16e1b8e84c5710b0f2a5ff484c9ae0995b2f7f4b303420906e9a1d66ad3939e", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.", "published": "2004-07-31T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13987", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-12-13T08:05:24", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T08:05:24", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-12-13T08:05:24", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13987);\n script_version (\"1.17\");\n script_cvs_date(\"Date: 2019/08/02 13:32:46\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T08:05:24", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "8af4cd78148675e17d6c53d9f50723434c8b99cb2277d0c7019356e23517de5a", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.", "published": "2004-07-31T00:00:00", "modified": "2004-07-31T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13987", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-01-07T11:51:17", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-01-07T11:51:17", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-07T11:51:17", "rev": 2, "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13987);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-07T11:51:17", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "de8e57b62ab879c4fc38de915cfc8cba", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.", "published": "2004-07-31T00:00:00", "modified": "2004-07-31T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13987", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-07-29T01:18:14", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586", "OPENVAS:53327"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-222.NASL", "CUPS_VULNS.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-07-29T01:18:14", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-07-29T01:18:14", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13987);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T01:18:14", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-002.NASL", "hash": "daf31a8d906b642ca03c206d2c557ba2", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)", "description": "The pdftops filter found in both the xpdf and CUPS packages suffers from an integer overflow that can be exploited to gain the privilege of the victim user.", "published": "2004-07-31T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13987", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384", "http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:30:38", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-12T13:30:38", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-08-12T13:30:38", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13987);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["p-cpe:/a:mandriva:linux:xpdf", "cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:9.0"], "solution": "Update the affected xpdf package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2003-01-09T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:30:38", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-222.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-19T13:19:40", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-08-19T13:19:40", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13987", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:002. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13987);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:002\");\n\n script_name(english:\"Mandrake Linux Security Advisory : xpdf (MDKSA-2003:002)\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Mandrake Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The pdftops filter found in both the xpdf and CUPS packages suffers\nfrom an integer overflow that can be exploited to gain the privilege\nof the victim user.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xpdf package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.2mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"xpdf-1.01-4.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["p-cpe:/a:mandriva:linux:xpdf", "cpe:/o:mandrakesoft:mandrake_linux:7.2", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "cpe:/o:mandrakesoft:mandrake_linux:9.0"], "solution": "Update the affected xpdf package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2003-01-09T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "DEBIAN_DSA-226.NASL", "hash": "b824b0cf8de765df58c1b22309dc3417", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf and xpdf-i packages that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:18:46", "history": [{"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "9b55d432da283de2fdf5e7ff4db0d6bdde69cc5612576237b6c0d3cb55d007af", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe ", "published": "2004-09-29T00:00:00", "modified": "2019-11-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-11-01T02:21:09", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-11-01T02:21:09", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-11-01T02:21:09", "value": 7.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-11-01T02:21:09", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "cf425ed57b6e4b1a34d6ceccbdb318568399983b50661f8620d0276054431ada", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe ", "published": "2004-09-29T00:00:00", "modified": "2020-04-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-04-01T06:59:22", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-04-01T06:59:22", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-04-01T06:59:22", "rev": 2, "value": 7.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-04-01T06:59:22", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "a81628953951218457835c4039baf1d428334532159aeb6920405bc6a656f166", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe ", "published": "2004-09-29T00:00:00", "modified": "2020-05-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-05-03T02:01:11", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-05-03T02:01:11", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-05-03T02:01:11", "rev": 2, "value": 7.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-05-03T02:01:11", "differentElements": ["description", "modified"], "edition": 3}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "0b22cd6e404886f473aa92db1632284fa55703b24cd2b653029646e44ea1f8fe", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-09-14T13:33:09", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-09-14T13:33:09", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-09-14T13:33:09", "rev": 2, "value": 7.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-14T13:33:09", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "401e6412e02dc4917b02e476a66227ecfe1d2195fc51b348db7088e3c9f5119d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-01-06T09:46:35", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-01-06T09:46:35", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-06T09:46:35", "rev": 2, "value": 7.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-06T09:46:35", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "88a8758ac1718c599b14f459a1ae3127", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-07-28T23:04:07", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-222.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-07-28T23:04:07", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2021-07-28T23:04:07", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "p-cpe:/a:debian:debian_linux:xpdf-i"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:04:07", "differentElements": ["cvss2", "cvss3", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "DEBIAN_DSA-226.NASL", "hash": "947c05cc72020ed35d3261649b368886", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-226-1 : xpdf-i - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf and xpdf-i packages that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15063", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-226", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:28:20", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-002.NASL", "REDHAT-RHSA-2002-307.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-222.NASL", "DEBIAN_DSA-232.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-12T13:28:20", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2021-08-12T13:28:20", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:xpdf-i", "cpe:/o:debian:debian_linux:2.2"], "solution": "Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy package and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed in version 0.90-8.1.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:28:20", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53327", "OPENVAS:53586"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-232.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "REDHAT-RHSA-2002-307.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-19T13:18:46", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2021-08-19T13:18:46", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15063", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-226. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15063);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"226\");\n\n script_name(english:\"Debian DSA-226-1 : xpdf-i - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf and xpdf-i packages that can be exploited to gain the privileges\nof the target user. This can lead to gaining unauthorized access to\nthe 'lp' user if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-226\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy\npackage and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf-i\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf-i\", reference:\"0.90-8.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:xpdf-i", "cpe:/o:debian:debian_linux:2.2"], "solution": "Upgrade the xpdf-i package.\n\nFor the current stable distribution (woody) xpdf-i is only a dummy package and the problem was fixed in xpdf already.\n\nFor the old stable distribution (potato) this problem has been fixed in version 0.90-8.1.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "DEBIAN_DSA-222.NASL", "hash": "e60d6ef808a14bce66ac1d50ddf8765d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf package that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.debian.org/security/2003/dsa-222", "http://www.idefense.com/advisory/12.23.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:18:37", "history": [{"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "6d8dcec4c61512c034074e90893f4d89be692919e87b57c8c661f650ee899ca2", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf package that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2018-07-20T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=15059", "reporter": "Tenable", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-02-21T01:08:09", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-02-21T01:08:09", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-02-21T01:08:09", "value": 7.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.18\");\n script_cvs_date(\"Date: 2018/07/20 2:17:10\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-02-21T01:08:09", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "4916f0e89355bb9d75f8eda8a800868699df8cc817f3f28a4962ff64db3b97ea", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the ", "published": "2004-09-29T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2019-10-28T20:05:54", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-10-28T20:05:54", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-10-28T20:05:54", "value": 7.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T20:05:54", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "5429610edee970b47db2a3884a5d76c4b5948cbb4041132d2974b53ec14d4594", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the ", "published": "2004-09-29T00:00:00", "modified": "2020-04-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-04-01T06:59:21", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2020-04-01T06:59:21", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-04-01T06:59:21", "rev": 2, "value": 7.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-04-01T06:59:21", "differentElements": ["description", "modified"], "edition": 3}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "97bf8c2b213ae2ed01779b76b73b821d0495e58d7adf47875ec503a8585285ca", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2020-11-02T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2020-11-01T05:30:58", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2020-11-01T05:30:58", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-11-01T05:30:58", "rev": 2, "value": 7.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.19\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-11-01T05:30:58", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "2de674d0893259dd50d5fa70bb667b3f8fa59122b037ab13334e3c3447c56e1a", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-01-06T09:46:27", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-06T09:46:27", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["OSVDB:10747"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:DOC:3912"], "type": "securityvulns"}, {"idList": ["CVE-2002-1384"], "type": "cve"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-06T09:46:27", "rev": 2, "value": 7.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-06T09:46:27", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "7f457e21dd18998d8d40c50ac43d6203", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt", "http://www.debian.org/security/2003/dsa-222"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-07-28T23:03:55", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53327"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-222-1:165AE"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-232.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "REDHAT-RHSA-2002-307.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-226.NASL", "SUSE_SA_2003_002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-07-28T23:03:55", "rev": 2}, "score": {"value": 7.8, "vector": "NONE", "modified": "2021-07-28T23:03:55", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0", "p-cpe:/a:debian:debian_linux:xpdf"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:03:55", "differentElements": ["cvss2", "cvss3", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "DEBIAN_DSA-222.NASL", "hash": "1a15c52bd83e79301cc14c61c407723a", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-222-1 : xpdf - integer overflow", "description": "iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf package that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the 'lp' user if the pdftops program is part of the print filter.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15059", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384", "http://www.debian.org/security/2003/dsa-222", "http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:28:37", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-12T13:28:37", "rev": 2}, "score": {"value": 7.8, "vector": "NONE", "modified": "2021-08-12T13:28:37", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:xpdf", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been fixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed in version 0.90-8.1.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-06T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:28:37", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2002-1384"]}, {"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "osvdb", "idList": ["OSVDB:10747"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}], "modified": "2021-08-19T13:18:37", "rev": 2}, "score": {"value": 7.8, "vector": "NONE", "modified": "2021-08-19T13:18:37", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15059", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-222. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15059);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1384\");\n script_bugtraq_id(6475);\n script_xref(name:\"DSA\", value:\"222\");\n\n script_name(english:\"Debian DSA-222-1 : xpdf - integer overflow\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDEFENSE discovered an integer overflow in the pdftops filter from the\nxpdf package that can be exploited to gain the privileges of the\ntarget user. This can lead to gaining unauthorized access to the 'lp'\nuser if the pdftops program is part of the print filter.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-222\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been\nfixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed\nin version 0.90-8.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:xpdf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"xpdf\", reference:\"0.90-8.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-common\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-reader\", reference:\"1.00-3.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"xpdf-utils\", reference:\"1.00-3.1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:xpdf", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "Upgrade the xpdf package.\n\nFor the current stable distribution (woody) this problem has been fixed in version 1.00-3.1.\n\nFor the old stable distribution (potato) this problem has been fixed in version 0.90-8.1.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-06T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "CUPS_VULNS.NASL", "hash": "d6141f765e29886307600411d0af3fee", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer overflow, denial of service, privilege escalation) that could allow a remote attacker to shut down this service or remotely gain the privileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2018-07-06T00:00:00", "cvss": {"score": 7.5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1369", "CVE-2002-1383"], "immutableFields": [], "lastseen": "2021-08-19T13:20:38", "history": [{"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "bd97a5777f0f986d249ffde0089dbc7c56239a00f5ef59977992566447510733", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the ", "published": "2003-01-18T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-01-01T06:47:05", "history": [], "viewCount": 15, "enchantments": {"dependencies": {"modified": "2020-01-01T06:47:05", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}]}, "score": {"modified": "2020-01-01T06:47:05", "value": 8.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T06:47:05", "differentElements": ["cvss", "modified"], "edition": 1}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "290aa29efa2e4f1b27bef07c93fc547df3b1f65e2fa3cd437fc8af2d77815d27", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the ", "published": "2003-01-18T00:00:00", "modified": "2020-07-02T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-07-01T01:05:48", "history": [], "viewCount": 20, "enchantments": {"dependencies": {"modified": "2020-07-01T01:05:48", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}], "rev": 2}, "score": {"modified": "2020-07-01T01:05:48", "rev": 2, "value": 8.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-07-01T01:05:48", "differentElements": ["description", "modified"], "edition": 2}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "d5dc0e0f3f7aef32446cf2e9c9f7c67c6879ba1a52a262c4d4773e659946f56b", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2020-12-02T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-12-01T09:39:46", "history": [], "viewCount": 25, "enchantments": {"dependencies": {"modified": "2020-12-01T09:39:46", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}], "rev": 2}, "score": {"modified": "2020-12-01T09:39:46", "rev": 2, "value": 8.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-12-01T09:39:46", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "9079c3851af5bc54002106f8f2f9292f0f0a9cc56e7b07d1e00b28e008dd01a9", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2021-06-02T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-05-31T22:57:13", "history": [], "viewCount": 30, "enchantments": {"dependencies": {"modified": "2021-05-31T22:57:13", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}], "rev": 2}, "score": {"modified": "2021-05-31T22:57:13", "rev": 2, "value": 8.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-31T22:57:13", "differentElements": ["cvss2", "modified"], "edition": 4}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "4897a4925e5120f24ea48ecb77cacf8cf9dd7b99059dc784005ce3d2fd5c0439", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2021-07-02T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-07-28T22:54:12", "history": [], "viewCount": 30, "enchantments": {"dependencies": {"modified": "2021-07-28T22:54:12", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}], "rev": 2}, "score": {"modified": "2021-07-28T22:54:12", "rev": 2, "value": 8.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:54:12", "differentElements": ["modified"], "edition": 5}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "dbf836efb2ffa267c98875db573ccd07", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2021-08-02T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-08-01T06:57:12", "history": [], "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL", "SUSE_SA_2003_002.NASL", "REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1383", "CVE-2002-1384", "CVE-2002-1372", "CVE-2002-1368", "CVE-2002-1369"]}, {"type": "osvdb", "idList": ["OSVDB:10739", "OSVDB:10742", "OSVDB:10747", "OSVDB:10744", "OSVDB:10746", "OSVDB:10740", "OSVDB:10741", "OSVDB:10745"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-01T06:57:12", "rev": 2}, "score": {"value": 8.4, "vector": "NONE", "modified": "2021-08-01T06:57:12", "rev": 2}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:apple:cups"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-01T06:57:12", "differentElements": ["cpe", "cvss", "cvss2", "cvss3", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "CUPS_VULNS.NASL", "hash": "d67db43600c1776dd10d25140ed167f7", "type": "nessus", "bulletinFamily": "scanner", "title": "CUPS < 1.1.18 Multiple Vulnerabilities", "description": "The remote CUPS server seems vulnerable to various flaws (buffer overflow, denial of service, privilege escalation) that could allow a remote attacker to shut down this service or remotely gain the privileges of the 'lp' user.", "published": "2003-01-18T00:00:00", "modified": "2018-07-06T00:00:00", "cvss": {"score": 7.5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/11199", "reporter": "This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1384", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1369", "CVE-2002-1383"], "immutableFields": [], "lastseen": "2021-08-12T13:32:46", "history": [], "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "nessus", "idList": ["SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10744", "OSVDB:10747", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-12T13:32:46", "rev": 2}, "score": {"value": 8.4, "vector": "NONE", "modified": "2021-08-12T13:32:46", "rev": 2}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*"], "solution": "Upgrade to CUPS version 1.1.18 or later.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2002-12-12T00:00:00", "vulnerabilityPublicationDate": "2002-12-19T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-12T13:32:46", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "debian", "idList": ["DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53305"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "SUSE_SA_2003_002.NASL", "2058.PRM", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"]}, {"type": "cve", "idList": ["CVE-2002-1368", "CVE-2002-1366", "CVE-2002-1384", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1383"]}, {"type": "osvdb", "idList": ["OSVDB:10740", "OSVDB:10744", "OSVDB:10747", "OSVDB:10746", "OSVDB:10741", "OSVDB:10742", "OSVDB:10745", "OSVDB:10739"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-19T13:20:38", "rev": 2}, "score": {"value": 8.4, "vector": "NONE", "modified": "2021-08-19T13:20:38", "rev": 2}}, "objectVersion": "1.6", "pluginID": "11199", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n#\n# This script checks for CVE-2002-1368, but incidentally covers\n# all the issues listed, as they were all corrected in the\n# same package\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(11199);\n script_version(\"1.26\");\n script_cvs_date(\"Date: 2018/07/06 11:26:08\");\n\n script_cve_id(\n \"CVE-2002-1366\",\n \"CVE-2002-1367\",\n \"CVE-2002-1368\",\n \"CVE-2002-1369\",\n \"CVE-2002-1372\",\n \"CVE-2002-1383\",\n \"CVE-2002-1384\"\n );\n script_bugtraq_id(6433, 6434, 6435, 6436, 6437, 6438, 6440, 6475);\n script_xref(name:\"SuSE\", value:\"SUSE-SA:2003:002\");\n\n script_name(english:\"CUPS < 1.1.18 Multiple Vulnerabilities\");\n script_summary(english:\"Crashes the remote CUPS server\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote printer service has multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CUPS server seems vulnerable to various flaws (buffer\noverflow, denial of service, privilege escalation) that could allow a\nremote attacker to shut down this service or remotely gain the\nprivileges of the 'lp' user.\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to CUPS version 1.1.18 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2002/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2003/01/18\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:apple:cups\");\n script_end_attributes();\n\n script_category(ACT_ATTACK);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.\");\n\n script_dependencie(\"http_version.nasl\");\n script_require_keys(\"www/cups\", \"Settings/ParanoidReport\");\n script_require_ports(\"Services/www\", 631);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\n\nfunction check(port)\n{\n local_var banner, r, req;\n #\n # This attack is non-destructive.\n # A non-patched cups will reply nothing to :\n # POST /printers HTTP/1.1\\r\\nContent-length: -1\\r\\n\\r\\n\" (and won't\n # crash until we add another \\r\\n at the end of the request),\n # whereas a patched cups will immediately reply with a code 400\n #\n\n if(http_is_dead(port:port))return(0);\n banner = get_http_banner(port:port);\n if(!banner)return(0); # we need to make sure this is CUPS\n\n if(egrep(pattern:\"^Server: .*CUPS/.*\", string:banner))\n {\n r = http_send_recv3(method:\"POST\", item: \"/printers\", port: port,\n add_headers: make_array(\"Authorization\", \"Basic AAA\",\n \t\t\"Content-Length\", \"-1\"));\n\n if (http_is_dead(port: port)) security_hole(port);\t# The server dumbly waits for our data\n }\n}\n\nports = add_port_in_list(list:get_kb_list(\"Services/www\"), port:631);\n\nforeach port (ports)\n{\n check(port:port);\n}\n", "naslFamily": "Misc.", "cpe": ["cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*"], "solution": "Upgrade to CUPS version 1.1.18 or later.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2002-12-12T00:00:00", "vulnerabilityPublicationDate": "2002-12-19T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SUSE_SA_2003_002.NASL", "hash": "fcd1fbb767aa42fd65e2a740a68b337f", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like systems. iDFENSE reported several security issues with CUPS that can lead to local and remote root compromise. The following list includes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote access with CUPS privileges\n- local file race condition to gain root (bug mentioned above has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in memcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher privileges\n- file descriptor leak and denial-of-service due to missing checks of return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative printing system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install them to fix your system.\n\nPlease download the update package for your distribution and verify its integrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply the update.", "published": "2004-07-25T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:19:51", "history": [{"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "660485db1b13a9cf638c7e6045935883ecee4a18effee03b83fed01d8aaf7fda", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of ", "published": "2004-07-25T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2019-10-28T21:22:07", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-10-28T21:22:07", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}]}, "score": {"modified": "2019-10-28T21:22:07", "value": 8.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version (\"1.15\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_cvs_date(\"Date: 2019/10/25 13:36:27\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T21:22:07", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "65da2bbff70c38573c2b93c47689f67b11c8394e44a772050ac57fa00556a2ac", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of ", "published": "2004-07-25T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-06-01T04:21:39", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-06-01T04:21:39", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2020-06-01T04:21:39", "rev": 2, "value": 8.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version (\"1.15\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_cvs_date(\"Date: 2019/10/25 13:36:27\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T04:21:39", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "1ddf5673bfa7a9648cc4d0ed74ed217d520e58ca3d738465f451c25b4b7d7705", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of ", "published": "2004-07-25T00:00:00", "modified": "2020-08-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-08-01T05:00:29", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-08-01T05:00:29", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2020-08-01T05:00:29", "rev": 2, "value": 8.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version (\"1.15\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_cvs_date(\"Date: 2019/10/25 13:36:27\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-08-01T05:00:29", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "f6ab43d818e6574df3dc4028eaf124414bcd55a43b8ee6e0486c9f1a457a5c13", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of ", "published": "2004-07-25T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-09-04T05:36:26", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-09-04T05:36:26", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2020-09-04T05:36:26", "rev": 2, "value": 8.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version (\"1.15\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_cvs_date(\"Date: 2019/10/25 13:36:27\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-04T05:36:26", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "a6633b9f4d88d491b092a6c721a75d653e763f4b51cd1af9cde9ee688a7863c1", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.", "published": "2004-07-25T00:00:00", "modified": "2004-07-25T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-01-17T14:14:42", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-01-17T14:14:42", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-01-17T14:14:42", "rev": 2, "value": 7.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version(\"1.16\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-17T14:14:42", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "cfab4e225f9008afe9f67141ff24187d", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.", "published": "2004-07-25T00:00:00", "modified": "2004-07-25T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": [], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-07-29T04:16:17", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53304", "OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53305"]}, {"type": "nessus", "idList": ["MANDRAKE_MDKSA-2003-001.NASL", "DEBIAN_DSA-226.NASL", "REDHAT-RHSA-2002-307.NASL", "CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-232.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"]}, {"type": "cve", "idList": ["CVE-2002-1369", "CVE-2002-1383", "CVE-2002-1372", "CVE-2002-1384", "CVE-2002-1371", "CVE-2002-1366", "CVE-2002-1368", "CVE-2002-1367"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10747", "OSVDB:10744", "OSVDB:10741", "OSVDB:10739", "OSVDB:10743", "OSVDB:10742", "OSVDB:10740", "OSVDB:10745"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-07-29T04:16:17", "rev": 2}, "score": {"value": 7.6, "vector": "NONE", "modified": "2021-07-29T04:16:17", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version(\"1.16\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T04:16:17", "differentElements": ["cvss2", "cvss3", "description", "exploitAvailable", "exploitEase", "modified", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "SUSE_SA_2003_002.NASL", "hash": "8cba4558af8041c18404dac46e2870a7", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE-SA:2003:002: cups", "description": "The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like systems. iDFENSE reported several security issues with CUPS that can lead to local and remote root compromise. The following list includes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote access with CUPS privileges\n- local file race condition to gain root (bug mentioned above has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in memcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher privileges\n- file descriptor leak and denial-of-service due to missing checks of return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative printing system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install them to fix your system.\n\nPlease download the update package for your distribution and verify its integrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply the update.", "published": "2004-07-25T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13780", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:30:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-12T13:30:31", "rev": 2}, "score": {"value": 7.6, "vector": "NONE", "modified": "2021-08-12T13:30:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version(\"1.16\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "http://www.suse.de/security/2003_002_cups.html", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:30:31", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-232.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1367", "CVE-2002-1371", "CVE-2002-1366", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1369", "CVE-2002-1383", "CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10740", "OSVDB:10739", "OSVDB:10747", "OSVDB:10745", "OSVDB:10741", "OSVDB:10742", "OSVDB:10746", "OSVDB:10743", "OSVDB:10744"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-19T13:19:51", "rev": 2}, "score": {"value": 7.6, "vector": "NONE", "modified": "2021-08-19T13:19:51", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13780", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2003:002\n#\n\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(13780);\n script_bugtraq_id(6475);\n script_version(\"1.16\");\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n \n name[\"english\"] = \"SUSE-SA:2003:002: cups\";\n \n script_name(english:name[\"english\"]);\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing a vendor-supplied security patch\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing the patch for the advisory SUSE-SA:2003:002 (cups).\n\n\nCUPS is a well known and widely used printing system for unix-like\nsystems. iDFENSE reported several security issues with CUPS that can\nlead to local and remote root compromise. The following list\nincludes all vulnerabilities:\n- integer overflow in HTTP interface to gain remote\naccess with CUPS privileges\n- local file race condition to gain root (bug mentioned\nabove has to be exploited first)\n- remotely add printers\n- remote denial-of-service attack due to negative length in\nmemcpy() call\n- integer overflow in image handling code to gain higher privileges\n- gain local root due to buffer overflow of 'options' buffer\n- design problem to gain local root (needs added printer, see above)\n- wrong handling of zero width images can be abused to gain higher\nprivileges\n- file descriptor leak and denial-of-service due to missing checks\nof return values of file/socket operations\n\nSince SUSE 8.1 CUPS is the default printing system.\n\nAs a temporary workaround CUPS can be disabled and an alternative\nprinting system like LPRng can be installed instead.\n\nNew CUPS packages are available on our FTP servers. Please, install\nthem to fix your system.\n\nPlease download the update package for your distribution and verify its\nintegrity by the methods listed in section 3) of this announcement.\nThen, install the package using the command 'rpm -Fhv file.rpm' to apply\nthe update.\" );\n script_set_attribute(attribute:\"solution\", value:\n\"http://www.suse.de/security/2003_002_cups.html\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n\n\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/07/25\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n script_end_attributes();\n\n \n summary[\"english\"] = \"Check for the version of the cups package\";\n script_summary(english:summary[\"english\"]);\n \n script_category(ACT_GATHER_INFO);\n \n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n family[\"english\"] = \"SuSE Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/SuSE/rpm-list\");\n exit(0);\n}\n\ninclude(\"rpm.inc\");\nif ( rpm_check( reference:\"cups-1.1.6-121\", release:\"SUSE7.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.6-122\", release:\"SUSE7.2\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.10-94\", release:\"SUSE7.3\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.12-90\", release:\"SUSE8.0\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-libs-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif ( rpm_check( reference:\"cups-client-1.1.15-69\", release:\"SUSE8.1\") )\n{\n security_hole(0);\n exit(0);\n}\nif (rpm_exists(rpm:\"cups-\", release:\"SUSE7.1\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.2\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE7.3\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.0\")\n || rpm_exists(rpm:\"cups-\", release:\"SUSE8.1\") )\n{\n set_kb_item(name:\"CVE-2002-1366\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1367\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1368\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1369\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1371\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1372\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1383\", value:TRUE);\n set_kb_item(name:\"CVE-2002-1384\", value:TRUE);\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": [], "solution": "http://www.suse.de/security/2003_002_cups.html", "nessusSeverity": "Critical", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "DEBIAN_DSA-232.NASL", "hash": "0950b92ebae6536d40e3b3c496ade0b1", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing System (CUPS). Several of these issues represent the potential for a remote compromise or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote attacker to execute arbitrary code via the CUPSd HTTP interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with /etc/cups/certs/ allow local users with lp privileges to create or overwrite arbitrary files. This is not present in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote attacker to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a 'need authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can cause a denial of service and possibly execute arbitrary code.\n\n - CAN-2002-1369: An unsafe strncat() function call processing the options string allows a remote attacker to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote attacker to execute arbitrary code via modified chunk headers.\n\n - CAN-2002-1372: CUPS does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service.\n\n - CAN-2002-1384: The cupsys package contains some code from the xpdf package, used to convert PDF files for printing, which contains an exploitable integer overflow bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for potato as well, the packages may still contain other security related problems. Hence, we advise users of potato systems using CUPS to upgrade to woody soon.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://www.idefense.com/advisory/12.19.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://www.debian.org/security/2003/dsa-232", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:18:45", "history": [{"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "a2de7463c0f35c1b7f5764787b2eda73f7fc36d7338066330a3372c35ce0a0e0", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a ", "published": "2004-09-29T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2019-10-28T20:05:56", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-10-28T20:05:56", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-10-28T20:05:56", "value": 9.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.28\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T20:05:56", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "f2a2d8af775c36f693fbc7e0dd50a6f89a86ebfa7efce40922d41734fcf3ccf8", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a ", "published": "2004-09-29T00:00:00", "modified": "2020-03-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-03-17T23:00:27", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-03-17T23:00:27", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2020-03-17T23:00:27", "value": 9.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.28\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-03-17T23:00:27", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "dd9d2479d9c7fccbb19c1b878e5f507fb90bfb63a7866b8ecdb78dbfb786dc7b", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a ", "published": "2004-09-29T00:00:00", "modified": "2020-04-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-04-01T06:59:23", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-04-01T06:59:23", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-04-01T06:59:23", "rev": 2, "value": 9.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.28\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-04-01T06:59:23", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "596872c875f04c34dd868d0314591de3e9af4ff00015274ac70005d43fb971d3", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a ", "published": "2004-09-29T00:00:00", "modified": "2020-07-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-07-01T01:10:21", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-07-01T01:10:21", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-07-01T01:10:21", "rev": 2, "value": 9.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.28\");\n script_cvs_date(\"Date: 2019/08/02 13:32:17\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-07-01T01:10:21", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "ebe4f69b24018795eaee539217084f47d86d9d6e8e9087a37477e48398edd64d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-01-06T09:47:00", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-06T09:47:00", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL"], "type": "nessus"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-06T09:47:00", "rev": 2, "value": 9.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-06T09:47:00", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "bae321e6578146d4f62b2123f47375f8", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.", "published": "2004-09-29T00:00:00", "modified": "2004-09-29T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.19.02.txt", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-07-28T23:04:33", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53305", "OPENVAS:53304", "OPENVAS:53586", "OPENVAS:53327"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1383", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1371", "CVE-2002-1369", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1366"]}, {"type": "osvdb", "idList": ["OSVDB:10742", "OSVDB:10747", "OSVDB:10744", "OSVDB:10745", "OSVDB:10741", "OSVDB:10739", "OSVDB:10743", "OSVDB:10746", "OSVDB:10740"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-07-28T23:04:33", "rev": 2}, "score": {"value": 9.7, "vector": "NONE", "modified": "2021-07-28T23:04:33", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:04:33", "differentElements": ["cvss2", "cvss3", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "DEBIAN_DSA-232.NASL", "hash": "fe6351b69cf5982ba0352ac373c8ac1c", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-232-1 : cupsys - several vulnerabilities", "description": "Multiple vulnerabilities were discovered in the Common Unix Printing System (CUPS). Several of these issues represent the potential for a remote compromise or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote attacker to execute arbitrary code via the CUPSd HTTP interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with /etc/cups/certs/ allow local users with lp privileges to create or overwrite arbitrary files. This is not present in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote attacker to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a 'need authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can cause a denial of service and possibly execute arbitrary code.\n\n - CAN-2002-1369: An unsafe strncat() function call processing the options string allows a remote attacker to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote attacker to execute arbitrary code via modified chunk headers.\n\n - CAN-2002-1372: CUPS does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service.\n\n - CAN-2002-1384: The cupsys package contains some code from the xpdf package, used to convert PDF files for printing, which contains an exploitable integer overflow bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for potato as well, the packages may still contain other security related problems. Hence, we advise users of potato systems using CUPS to upgrade to woody soon.", "published": "2004-09-29T00:00:00", "modified": "2021-01-04T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/15069", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://www.idefense.com/advisory/12.19.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384", "http://www.debian.org/security/2003/dsa-232"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:28:19", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "REDHAT-RHSA-2002-307.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10743", "OSVDB:10741", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-12T13:28:19", "rev": 2}, "score": {"value": 9.7, "vector": "NONE", "modified": "2021-08-12T13:28:19", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been fixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed in version 1.0.4-12.1.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-20T00:00:00", "vulnerabilityPublicationDate": "2002-12-19T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-12T13:28:19", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "debian", "idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-001.NASL", "SUSE_SA_2003_002.NASL", "2058.PRM", "DEBIAN_DSA-222.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-226.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1367", "CVE-2002-1371", "CVE-2002-1366", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1369", "CVE-2002-1383", "CVE-2002-1384"]}, {"type": "osvdb", "idList": ["OSVDB:10740", "OSVDB:10739", "OSVDB:10747", "OSVDB:10745", "OSVDB:10741", "OSVDB:10742", "OSVDB:10746", "OSVDB:10743", "OSVDB:10744"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-19T13:18:45", "rev": 2}, "score": {"value": 9.7, "vector": "NONE", "modified": "2021-08-19T13:18:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "15069", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-232. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(15069);\n script_version(\"1.29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_bugtraq_id(6435, 6436, 6437, 6438, 6439, 6440, 6475);\n script_xref(name:\"DSA\", value:\"232\");\n\n script_name(english:\"Debian DSA-232-1 : cupsys - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the Common Unix Printing\nSystem (CUPS). Several of these issues represent the potential for a\nremote compromise or denial of service. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CAN-2002-1383: Multiple integer overflows allow a remote\n attacker to execute arbitrary code via the CUPSd HTTP\n interface and the image handling code in CUPS filters.\n - CAN-2002-1366: Race conditions in connection with\n /etc/cups/certs/ allow local users with lp privileges to\n create or overwrite arbitrary files. This is not present\n in the potato version.\n\n - CAN-2002-1367: This vulnerability allows a remote\n attacker to add printers without authentication via a\n certain UDP packet, which can then be used to perform\n unauthorized activities such as stealing the local root\n certificate for the administration server via a 'need\n authorization' page.\n\n - CAN-2002-1368: Negative lengths fed into memcpy() can\n cause a denial of service and possibly execute arbitrary\n code.\n\n - CAN-2002-1369: An unsafe strncat() function call\n processing the options string allows a remote attacker\n to execute arbitrary code via a buffer overflow.\n\n - CAN-2002-1371: Zero width images allows a remote\n attacker to execute arbitrary code via modified chunk\n headers.\n\n - CAN-2002-1372: CUPS does not properly check the return\n values of various file and socket operations, which\n could allow a remote attacker to cause a denial of\n service.\n\n - CAN-2002-1384: The cupsys package contains some code\n from the xpdf package, used to convert PDF files for\n printing, which contains an exploitable integer overflow\n bug. This is not present in the potato version.\n\nEven though we tried very hard to fix all problems in the packages for\npotato as well, the packages may still contain other security related\nproblems. Hence, we advise users of potato systems using CUPS to\nupgrade to woody soon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.19.02.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2003/dsa-232\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been\nfixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been\nfixed in version 1.0.4-12.1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:cupsys\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:2.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2002/12/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"2.2\", prefix:\"cupsys\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"cupsys-bsd\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"2.2\", prefix:\"libcupsys1-dev\", reference:\"1.0.4-12.1\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-bsd\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-client\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"cupsys-pstoraster\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2\", reference:\"1.1.14-4.4\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libcupsys2-dev\", reference:\"1.1.14-4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:cupsys", "cpe:/o:debian:debian_linux:2.2", "cpe:/o:debian:debian_linux:3.0"], "solution": "Upgrade the CUPS packages immediately.\n\nFor the current stable distribution (woody), these problems have been fixed in version 1.1.14-4.3.\n\nFor the old stable distribution (potato), these problems have been fixed in version 1.0.4-12.1.", "nessusSeverity": "Critical", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "6.3"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2003-01-20T00:00:00", "vulnerabilityPublicationDate": "2002-12-19T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "cfe38f5785ebfe1f590a2e8e2a1376be", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to local and remote root compromise. An integer overflow in the HTTP interface can be used to gain remote access with CUPS privilege. A local file race condition can be used to gain root privilege, although the previous bug must be exploited first. An attacker can remotely add printers to the vulnerable system. A remote DoS can be accomplished due to negative length in the memcpy() call. An integer overflow in image handling code can be used to gain higher privilege. An attacker can gain local root privilege due to a buffer overflow of the 'options' buffer. A design problem can be exploited to gain local root access, however this needs an added printer (which can also be done, as per a previously noted bug). Wrong handling of zero-width images can be abused to gain higher privilege. Finally, a file descriptor leak and DoS due to missing checks of return values of file/socket operations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages immediately.", "published": "2004-07-31T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://www.idefense.com/advisory/12.23.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-19T13:19:36", "history": [{"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "d958aeb6584f6b4ce1b0773d3ff863a45a000bc0bf6d9eb8c42229bbb65dabe2", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.", "published": "2004-07-31T00:00:00", "modified": "2018-07-19T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=13986", "reporter": "Tenable", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2019-01-16T20:05:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-01-16T20:05:31", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13986);\n script_version (\"1.17\");\n script_cvs_date(\"Date: 2018/07/19 20:59:12\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-01-16T20:05:31", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "ea761cf2ee7272de6067cd66ad12be5a93802cf0a9070ee58f97ef36a4135830", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n", "published": "2004-07-31T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2019-12-13T08:05:24", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T08:05:24", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2019-12-13T08:05:24", "value": 7.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13986);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2019/08/02 13:32:46\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T08:05:24", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "48e09cfe1da69d525e69e7986fc6274064492c5c52f71d3e01619b1d386d59a1", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n", "published": "2004-07-31T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-01-01T00:17:39", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-01-01T00:17:39", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2020-01-01T00:17:39", "value": 7.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13986);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2019/08/02 13:32:46\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T00:17:39", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "7913423b6839ee6875b21ae3e79a76eee6674bdce13253ba1694466090735350", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n", "published": "2004-07-31T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2020-02-01T00:44:23", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-02-01T00:44:23", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}]}, "score": {"modified": "2020-02-01T00:44:23", "value": 7.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(13986);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2019/08/02 13:32:46\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T00:44:23", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "a74ac051657cdbafb8c1631d9f50a6f12d3114c099f3439fa7c0417e9a161d77", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.", "published": "2004-07-31T00:00:00", "modified": "2004-07-31T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-01-07T11:51:17", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-01-07T11:51:17", "references": [{"idList": ["DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC", "DEBIAN:DSA-222-1:165AE"], "type": "debian"}, {"idList": ["MANDRAKE_MDKSA-2003-002.NASL", "DEBIAN_DSA-222.NASL", "REDHAT-RHSA-2002-307.NASL", "SUSE_SA_2003_002.NASL", "DEBIAN_DSA-226.NASL", "CUPS_VULNS.NASL", "DEBIAN_DSA-232.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:DOC:3912", "SECURITYVULNS:DOC:3901"], "type": "securityvulns"}, {"idList": ["OSVDB:10745", "OSVDB:10746", "OSVDB:10743", "OSVDB:10747", "OSVDB:10739", "OSVDB:10744", "OSVDB:10740", "OSVDB:10741", "OSVDB:10742"], "type": "osvdb"}, {"idList": ["RHSA-2002:307"], "type": "redhat"}, {"idList": ["SUSE-SA:2003:002"], "type": "suse"}, {"idList": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "type": "cve"}, {"idList": ["EDB-ID:22106"], "type": "exploitdb"}, {"idList": ["OPENVAS:53327", "OPENVAS:53586", "OPENVAS:53304", "OPENVAS:53305"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-01-07T11:51:17", "rev": 2, "value": 7.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13986);\n script_version(\"1.19\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-07T11:51:17", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "d77f02321962dc2d03f350fb1d6bddd3", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.", "published": "2004-07-31T00:00:00", "modified": "2004-07-31T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.idefense.com/advisory/12.23.02.txt"], "cvelist": ["CVE-2002-1371", "CVE-2002-1384", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369"], "immutableFields": [], "lastseen": "2021-07-29T01:18:14", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53586", "OPENVAS:53327", "OPENVAS:53305", "OPENVAS:53304"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-222.NASL", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-232.NASL", "CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "REDHAT-RHSA-2002-307.NASL", "MANDRAKE_MDKSA-2003-002.NASL"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1366", "CVE-2002-1371", "CVE-2002-1367", "CVE-2002-1383", "CVE-2002-1384", "CVE-2002-1372", "CVE-2002-1368", "CVE-2002-1369"]}, {"type": "osvdb", "idList": ["OSVDB:10739", "OSVDB:10742", "OSVDB:10747", "OSVDB:10743", "OSVDB:10744", "OSVDB:10746", "OSVDB:10740", "OSVDB:10741", "OSVDB:10745"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-07-29T01:18:14", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2021-07-29T01:18:14", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(13986);\n script_version(\"1.19\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2002-1366\", \"CVE-2002-1367\", \"CVE-2002-1368\", \"CVE-2002-1369\", \"CVE-2002-1371\", \"CVE-2002-1372\", \"CVE-2002-1383\", \"CVE-2002-1384\");\n script_xref(name:\"MDKSA\", value:\"2003:001\");\n\n script_name(english:\"Mandrake Linux Security Advisory : cups (MDKSA-2003:001)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"iDefense reported several security problems in CUPS that can lead to\nlocal and remote root compromise. An integer overflow in the HTTP\ninterface can be used to gain remote access with CUPS privilege. A\nlocal file race condition can be used to gain root privilege, although\nthe previous bug must be exploited first. An attacker can remotely add\nprinters to the vulnerable system. A remote DoS can be accomplished\ndue to negative length in the memcpy() call. An integer overflow in\nimage handling code can be used to gain higher privilege. An attacker\ncan gain local root privilege due to a buffer overflow of the\n'options' buffer. A design problem can be exploited to gain local root\naccess, however this needs an added printer (which can also be done,\nas per a previously noted bug). Wrong handling of zero-width images\ncan be abused to gain higher privilege. Finally, a file descriptor\nleak and DoS due to missing checks of return values of file/socket\noperations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages\nimmediately.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.idefense.com/advisory/12.23.02.txt\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cups-serial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libcups1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:printer-testpages\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2003/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK7.2\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.0\", cpu:\"i386\", reference:\"printer-testpages-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.1\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.4mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK8.2\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-common-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"cups-serial-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.0\", cpu:\"i386\", reference:\"libcups1-devel-1.1.18-1.1mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Mandriva Local Security Checks", "cpe": ["cpe:/o:mandrakesoft:mandrake_linux:7.2", "p-cpe:/a:mandriva:linux:libcups1-devel", "p-cpe:/a:mandriva:linux:cups-devel", "cpe:/o:mandrakesoft:mandrake_linux:8.2", "p-cpe:/a:mandriva:linux:cups-serial", "p-cpe:/a:mandriva:linux:libcups1", "cpe:/o:mandrakesoft:mandrake_linux:8.0", "cpe:/o:mandrakesoft:mandrake_linux:9.0", "cpe:/o:mandrakesoft:mandrake_linux:8.1", "p-cpe:/a:mandriva:linux:cups", "p-cpe:/a:mandriva:linux:printer-testpages", "p-cpe:/a:mandriva:linux:cups-common"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T01:18:14", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "MANDRAKE_MDKSA-2003-001.NASL", "hash": "6500f7bdb29b1027a7b246d5804e1914", "type": "nessus", "bulletinFamily": "scanner", "title": "Mandrake Linux Security Advisory : cups (MDKSA-2003:001)", "description": "iDefense reported several security problems in CUPS that can lead to local and remote root compromise. An integer overflow in the HTTP interface can be used to gain remote access with CUPS privilege. A local file race condition can be used to gain root privilege, although the previous bug must be exploited first. An attacker can remotely add printers to the vulnerable system. A remote DoS can be accomplished due to negative length in the memcpy() call. An integer overflow in image handling code can be used to gain higher privilege. An attacker can gain local root privilege due to a buffer overflow of the 'options' buffer. A design problem can be exploited to gain local root access, however this needs an added printer (which can also be done, as per a previously noted bug). Wrong handling of zero-width images can be abused to gain higher privilege. Finally, a file descriptor leak and DoS due to missing checks of return values of file/socket operations.\n\nMandrakeSoft recommends all users upgrade these CUPS packages immediately.", "published": "2004-07-31T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/13986", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1383", "http://www.idefense.com/advisory/12.23.02.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1372", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1368", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1369", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1367", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1366", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1371", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1384"], "cvelist": ["CVE-2002-1366", "CVE-2002-1367", "CVE-2002-1368", "CVE-2002-1369", "CVE-2002-1371", "CVE-2002-1372", "CVE-2002-1383", "CVE-2002-1384"], "immutableFields": [], "lastseen": "2021-08-12T13:30:35", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:53327", "OPENVAS:53304", "OPENVAS:53305", "OPENVAS:53586"]}, {"type": "suse", "idList": ["SUSE-SA:2003:002"]}, {"type": "debian", "idList": ["DEBIAN:DSA-222-1:165AE", "DEBIAN:DSA-232-2:C9F72", "DEBIAN:DSA-226-1:9E313", "DEBIAN:DSA-232-1:86CAC"]}, {"type": "nessus", "idList": ["CUPS_VULNS.NASL", "SUSE_SA_2003_002.NASL", "MANDRAKE_MDKSA-2003-002.NASL", "REDHAT-RHSA-2002-307.NASL", "DEBIAN_DSA-232.NASL", "2058.PRM", "DEBIAN_DSA-226.NASL", "DEBIAN_DSA-222.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:3901", "SECURITYVULNS:DOC:3912"]}, {"type": "cve", "idList": ["CVE-2002-1371", "CVE-2002-1383", "CVE-2002-1366", "CVE-2002-1369", "CVE-2002-1372", "CVE-2002-1367", "CVE-2002-1384", "CVE-2002-1368"]}, {"type": "osvdb", "idList": ["OSVDB:10746", "OSVDB:10745", "OSVDB:10740", "OSVDB:10741", "OSVDB:10743", "OSVDB:10747", "OSVDB:10744", "OSVDB:10739", "OSVDB:10742"]}, {"type": "exploitdb", "idList": ["EDB-ID:22106"]}, {"type": "redhat", "idList": ["RHSA-2002:307"]}], "modified": "2021-08-12T13:30:35", "rev": 2}, "score": {"value": 7.5, "vector": "NONE", "modified": "2021-08-12T13:30:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "13986", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2003:001. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude('deprecated
