{"id": "RHSA-2007:0631", "hash": "7606c59866f43d999e1131a8c8da694e", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2017-09-08T12:10:33", "cvss": {"score": 3.3, "vector": "AV:L/AC:M/Au:N/C:N/I:P/A:P"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2019-08-13T18:45:21", "history": [{"bulletin": {"id": "RHSA-2007:0631", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2016-04-04T18:37:14", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2016-09-04T11:17:48", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ia64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ia64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ia64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ia64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.src.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "src"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ppc64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ppc64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.i386.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "i386"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ppc.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ppc"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ppc"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.x86_64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "x86_64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.x86_64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "x86_64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc64.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "ppc64"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.i386.rpm", "operator": "lt", "OSVersion": "5", "OS": "RedHat", "arch": "i386"}]}, "lastseen": "2016-09-04T11:17:48", "differentElements": ["affectedPackage", "modified"], "edition": 1}, {"bulletin": {"id": "RHSA-2007:0631", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2017-07-28T19:11:46", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2017-08-02T20:58:32", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.i386.rpm", "arch": "i386", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}]}, "lastseen": "2017-08-02T20:58:32", "differentElements": ["affectedPackage", "modified"], "edition": 2}, {"bulletin": {"id": "RHSA-2007:0631", "hash": "154c257ca7dde3401bb1732e071fb031", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2017-09-08T12:10:33", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2017-09-09T07:20:31", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.i386.rpm", "arch": "i386", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.src.rpm", "arch": "src", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc.rpm", "arch": "ppc", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ppc.rpm", "arch": "ppc", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc64.rpm", "arch": "ppc64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.i386.rpm", "arch": "i386", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.x86_64.rpm", "arch": "x86_64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey", "packageFilename": "coolkey-1.1.0-5.el5.ia64.rpm", "arch": "ia64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "1.1.0-5.el5", "packageName": "coolkey-devel", "packageFilename": "coolkey-devel-1.1.0-5.el5.ia64.rpm", "arch": "ia64", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}]}, "lastseen": "2017-09-09T07:20:31", "differentElements": ["affectedPackage"], "edition": 3}, {"bulletin": {"id": "RHSA-2007:0631", "hash": "21136811a76a9eadb67ba9721881bf1c", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2017-09-08T12:10:33", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2018-12-11T17:43:54", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-4129"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310122638"]}, {"type": "nessus", "idList": ["SL_20071107_COOLKEY_ON_SL5_X.NASL", "REDHAT-RHSA-2007-0631.NASL"]}, {"type": "seebug", "idList": ["SSV:2400"]}, {"type": "oraclelinux", "idList": ["ELSA-2007-0631"]}], "modified": "2018-12-11T17:43:54"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.i386.rpm", "operator": "lt"}]}, "lastseen": "2018-12-11T17:43:54", "differentElements": ["cvss"], "edition": 4}, {"bulletin": {"id": "RHSA-2007:0631", "hash": "708f6ec227ea0eda579fe15382347f9c", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2007:0631) Low: coolkey security and bug fix update", "description": "coolkey contains the driver support for the CoolKey and Common Access Card\n(CAC) Smart Card products. The CAC is used by the U.S. Government.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in\nthe CAC Smart Card support:\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver,\nhowever, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause\nother, already authenticated, applications to lose their login status\nunless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these\nissues.", "published": "2007-11-07T05:00:00", "modified": "2017-09-08T12:10:33", "cvss": {"score": 3.3, "vector": "AV:L/AC:M/Au:N/C:N/I:P/A:P"}, "href": "https://access.redhat.com/errata/RHSA-2007:0631", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2007-4129"], "lastseen": "2019-05-29T14:35:26", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.6, "vector": "NONE", "modified": "2019-05-29T14:35:26"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-4129"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2007-0631.NASL", "SL_20071107_COOLKEY_ON_SL5_X.NASL"]}, {"type": "seebug", "idList": ["SSV:2400"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310122638"]}, {"type": "oraclelinux", "idList": ["ELSA-2007-0631"]}], "modified": "2019-05-29T14:35:26"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.i386.rpm", "operator": "lt"}]}, "lastseen": "2019-05-29T14:35:26", "differentElements": ["affectedPackage"], "edition": 5}], "viewCount": 0, "enchantments": {"score": {"value": 5.6, "vector": "NONE", "modified": "2019-08-13T18:45:21"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-4129"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2007-0631.NASL", "SL_20071107_COOLKEY_ON_SL5_X.NASL"]}, {"type": "seebug", "idList": ["SSV:2400"]}, {"type": "oraclelinux", "idList": ["ELSA-2007-0631"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310122638"]}], "modified": "2019-08-13T18:45:21"}, "vulnersScore": 5.6}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "coolkey-devel", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-devel-1.1.0-5.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ppc64", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ppc", "packageName": "coolkey-devel", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ppc64", "packageName": "coolkey-devel", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-devel-1.1.0-5.el5.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "x86_64", "packageName": "coolkey-devel", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-devel-1.1.0-5.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "x86_64", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ia64", "packageName": "coolkey-devel", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-devel-1.1.0-5.el5.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "src", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ia64", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "arch": "ppc", "packageName": "coolkey", "packageVersion": "1.1.0-5.el5", "packageFilename": "coolkey-1.1.0-5.el5.ppc.rpm", "operator": "lt"}], "_object_type": "robots.models.redhat.RedHatBulletin", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"]}

{"cve": [{"lastseen": "2019-05-29T18:09:00", "bulletinFamily": "NVD", "description": "CoolKey 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on temporary files in the /tmp/.pk11ipc1/ directory.", "modified": "2017-09-29T01:29:00", "id": "CVE-2007-4129", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4129", "published": "2007-11-08T11:46:00", "title": "CVE-2007-4129", "type": "cve", "cvss": {"score": 3.3, "vector": "AV:L/AC:M/Au:N/C:N/I:P/A:P"}}], "nessus": [{"lastseen": "2019-02-21T01:17:03", "bulletinFamily": "scanner", "description": "Steve Grubb discovered a flaw in the way coolkey created a temporary directory. A local attacker could perform a symlink attack and cause arbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in the CAC Smart Card support :\n\n - CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver, however, was not recognizing cards if they had less than 3 certificates.\n\n - logging into a CAC Smart Card token with a new application would cause other, already authenticated, applications to lose their login status unless the Smart Card was then removed from the reader and re-inserted", "modified": "2019-01-07T00:00:00", "id": "SL_20071107_COOLKEY_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60285", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : coolkey on SL5.x i386/x86_64", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60285);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2019/01/07 9:52:18\");\n\n script_cve_id(\"CVE-2007-4129\");\n\n script_name(english:\"Scientific Linux Security Update : coolkey on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Steve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs\nin the CAC Smart Card support :\n\n - CAC Smart Cards can have from 1 to 3 certificates. The\n coolkey driver, however, was not recognizing cards if\n they had less than 3 certificates.\n\n - logging into a CAC Smart Card token with a new\n application would cause other, already authenticated,\n applications to lose their login status unless the Smart\n Card was then removed from the reader and re-inserted\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0711&L=scientific-linux-errata&T=0&P=1410\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?125776d1\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected coolkey and / or coolkey-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:N/I:P/A:P\");\n script_cwe_id(59);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/11/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"coolkey-1.1.0-5.el5\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"coolkey-devel-1.1.0-5.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());\n else security_note(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:10:18", "bulletinFamily": "scanner", "description": "Updated coolkey packages that fix a security issue and various bugs are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having low security impact by the Red Hat Security Response Team.\n\ncoolkey contains the driver support for the CoolKey and Common Access Card (CAC) Smart Card products. The CAC is used by the U.S.\nGovernment.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary directory. A local attacker could perform a symlink attack and cause arbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs in the CAC Smart Card support :\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey driver, however, was not recognizing cards if they had less than 3 certificates.\n\n* logging into a CAC Smart Card token with a new application would cause other, already authenticated, applications to lose their login status unless the Smart Card was then removed from the reader and re-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve these issues.", "modified": "2018-11-16T00:00:00", "id": "REDHAT-RHSA-2007-0631.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27832", "published": "2007-11-08T00:00:00", "title": "RHEL 5 : coolkey (RHSA-2007:0631)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:0631. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27832);\n script_version (\"1.19\");\n script_cvs_date(\"Date: 2018/11/16 15:19:26\");\n\n script_cve_id(\"CVE-2007-4129\");\n script_xref(name:\"RHSA\", value:\"2007:0631\");\n\n script_name(english:\"RHEL 5 : coolkey (RHSA-2007:0631)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated coolkey packages that fix a security issue and various bugs\nare now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having low security impact by the Red\nHat Security Response Team.\n\ncoolkey contains the driver support for the CoolKey and Common Access\nCard (CAC) Smart Card products. The CAC is used by the U.S.\nGovernment.\n\nSteve Grubb discovered a flaw in the way coolkey created a temporary\ndirectory. A local attacker could perform a symlink attack and cause\narbitrary files to be overwritten. (CVE-2007-4129)\n\nIn addition, the updated packages contain fixes for the following bugs\nin the CAC Smart Card support :\n\n* CAC Smart Cards can have from 1 to 3 certificates. The coolkey\ndriver, however, was not recognizing cards if they had less than 3\ncertificates.\n\n* logging into a CAC Smart Card token with a new application would\ncause other, already authenticated, applications to lose their login\nstatus unless the Smart Card was then removed from the reader and\nre-inserted.\n\nAll CAC users should upgrade to these updated packages, which resolve\nthese issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2007-4129\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2007:0631\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected coolkey and / or coolkey-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:N/I:P/A:P\");\n script_cwe_id(59);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:coolkey\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:coolkey-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/11/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2007:0631\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"coolkey-1.1.0-5.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"coolkey-1.1.0-5.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"coolkey-devel-1.1.0-5.el5\")) flag++;\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"coolkey-devel-1.1.0-5.el5\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"coolkey / coolkey-devel\");\n }\n}\n", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "seebug": [{"lastseen": "2017-11-19T21:55:20", "bulletinFamily": "exploit", "description": "BUGTRAQ ID: 26369\r\nCVE(CAN) ID: CVE-2007-4129\r\n\r\nCoolKey\u662fPKI\u89e3\u51b3\u65b9\u6848\u7684\u4e00\u90e8\u5206\uff0c\u63d0\u4f9b\u667a\u80fd\u5361\u767b\u5f55\u3001\u5355\u70b9\u767b\u5f55\u3001\u5b89\u5168\u90ae\u4ef6\u8bbf\u95ee\u7b49\u670d\u52a1\u3002\r\n\r\nCoolKey\u5728\u4e0d\u5b89\u5168\u7684\u65b9\u5f0f\u521b\u5efa\u4e34\u65f6\u6587\u4ef6\uff0c\u672c\u5730\u653b\u51fb\u8005\u53ef\u80fd\u5229\u7528\u6b64\u6f0f\u6d1e\u8986\u76d6\u7cfb\u7edf\u6587\u4ef6\u3002\r\n\r\nCoolKey\u4ee5\u5b8c\u5168\u53ef\u5199\u7684\u6743\u9650\u521b\u5efa/tmp/.pk11ipc1\u4e34\u65f6\u76ee\u5f55\uff0c\u8be5\u76ee\u5f55\u4e2d\u7684\u6587\u4ef6\u4e5f\u662f\u5b8c\u5168\u53ef\u5199\u7684\uff0c\u56e0\u6b64\u672c\u5730\u653b\u51fb\u8005\u53ef\u4ee5\u6267\u884c\u7b26\u53f7\u94fe\u63a5\u653b\u51fb\u5bfc\u81f4\u8986\u76d6\u4efb\u610f\u6587\u4ef6\u3002\r\n\n\nCoolKey CoolKey 1.0.1\r\nCoolKey CoolKey 1.0\nRedHat\r\n------\r\nRedHat\u5df2\u7ecf\u4e3a\u6b64\u53d1\u5e03\u4e86\u4e00\u4e2a\u5b89\u5168\u516c\u544a\uff08RHSA-2007:0631-04\uff09\u4ee5\u53ca\u76f8\u5e94\u8865\u4e01:\r\nRHSA-2007:0631-04\uff1aLow: coolkey security and bug fix update\r\n\u94fe\u63a5\uff1a<a href=\"https://www.redhat.com/support/errata/RHSA-2007-0631.html\" target=\"_blank\">https://www.redhat.com/support/errata/RHSA-2007-0631.html</a>\r\n\r\nCoolKey\r\n-------\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\n<a href=\"http://directory.fedora.redhat.com/download/coolkey/coolkey-1.1.0.tar._gz\" target=\"_blank\">http://directory.fedora.redhat.com/download/coolkey/coolkey-1.1.0.tar._gz</a>", "modified": "2007-11-09T00:00:00", "published": "2007-11-09T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-2400", "id": "SSV:2400", "type": "seebug", "title": "CoolKey\u4ee5\u4e0d\u5b89\u5168\u7684\u65b9\u5f0f\u521b\u5efaPK11IPC1\u4e34\u65f6\u6587\u4ef6\u6f0f\u6d1e", "sourceData": "\n ls -la /tmp | grep pk11ipc1\r\n\r\n\u5b9e\u9645\u7ed3\u679c\uff1a\r\ndrwxrwxrwx 2 root root 4096 2007-08-03 19:57 .pk11ipc1\r\n\r\n\u9884\u671f\u7ed3\u679c\uff1a\r\ndrwxrwxrwt 2 root root 4096 2007-08-03 19:57 .pk11ipc1\n ", "sourceHref": "https://www.seebug.org/vuldb/ssvid-2400", "cvss": {"score": 3.3, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:35:44", "bulletinFamily": "unix", "description": "[1.1.0-5]\n- 1777 is not octal and does not set the correct bits should be 01777\n[1.1.0-4]\n- fix cache location to be more secure\n[1.1.0-3]\n- replace the install stuff\n[1.1.0-2]\n- Back out RHEL-4 version of spec from CVS, add pcsc-lite-lib requires.\n[1.1.0-1]\n- Pick up lates release.", "modified": "2007-11-19T00:00:00", "published": "2007-11-19T00:00:00", "id": "ELSA-2007-0631", "href": "http://linux.oracle.com/errata/ELSA-2007-0631.html", "title": "coolkey security and bug fix update", "type": "oraclelinux", "cvss": {"score": 3.3, "vector": "AV:L/AC:M/Au:N/C:N/I:P/A:P"}}], "openvas": [{"lastseen": "2019-05-29T18:36:25", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2007-0631", "modified": "2018-09-28T00:00:00", "published": "2015-10-08T00:00:00", "id": "OPENVAS:1361412562310122638", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122638", "title": "Oracle Linux Local Check: ELSA-2007-0631", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2007-0631.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122638\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-08 14:49:57 +0300 (Thu, 08 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2007-0631\");\n script_tag(name:\"insight\", value:\"ELSA-2007-0631 - coolkey security and bug fix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2007-0631\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2007-0631.html\");\n script_cve_id(\"CVE-2007-4129\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:N/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"coolkey\", rpm:\"coolkey~1.1.0~5.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"coolkey-devel\", rpm:\"coolkey-devel~1.1.0~5.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 3.3, "vector": "AV:L/AC:M/Au:N/C:N/I:P/A:P"}}]}