{"id": "SECURITYVULNS:DOC:30627", "bulletinFamily": "software", "title": "Deutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328 - vulnerabilities in check_mk", "description": "\r\n\r\nDeutsche Telekom CERT Advisory [DTC-A-20140324-002] update140328 \r\n\r\nSummary: \r\nSeveral vulnerabilities were found in check_mk version 1.2.2p2.\r\n\r\nUpdate to original advisory:\r\nCorrected: vulnerability 5 and 6 (not 4 and 5) are currently not fixed.\r\n\r\nThe vulnerabilities are:\r\n1 - Reflected Cross-Site Scripting (XSS)\r\n2 - Stored Cross-Site Scripting (XSS) (via URL)\r\n3 - Stored Cross-Site Scripting (XSS) (via external data, no link necessary)\r\n4 - Stored Cross-Site Scripting (XSS) (via external data on service port, no link necessary)\r\n5 - Missing CSRF (Cross-Site Request Forgery) token allows execution of arbitrary commands\r\n6 - Multiple use of exec-like function calls which allow arbitrary commands\r\n7 - Deletion of arbitrary files\r\n\r\nRecommendations:\r\nInstall software release 1.2.2p3 or 1.2.3i5 or the latest release to fix the vulnerabilities 1, 2, 3, 4 and 7. \r\nVulnerabilities 5 and 6 are currently not fixed by the developer. To mitigate these issues, deactivate the WATO feature. Deletion of \u201ewato.py\u201c should be preferred. Also review the permissions to the check_mk configuration and application files include folders. These must be set read only for the application user.\r\nThe client should be isolated from the internet connection (including web access over proxy server) to prevent additional threats concerning the open vulnerabilities.\r\n\r\nHomepage: http://mathias-kettner.de/check_mk.html\r\n\r\nDetails:\r\na) application\r\nb) problem\r\nc) CVSS\r\nd) detailed description\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na1) check_mk v1.2.2p2 [CVE-2014-2329]\r\nb1) Reflected Cross-Site Scripting (XSS)\r\nc1) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd1) The check_mk application is susceptible to reflected XSS attacks. This is mainly the result of improper output encoding. Reflected XSS can be triggered by sending a malicious URL to a user of the check_mk application. Once the XSS attack is triggered, the attacker has access to the full check_mk (and nagios) application with the access rights of the logged in victim.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na2) check_mk v1.2.2p2 [CVE-2014-2329]\r\nb2) Stored Cross-Site Scripting (XSS) (via URL)\r\nc2) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd2) The check_mk application is susceptible to stored XSS attacks. This is mainly the result of improper output encoding. Stored XSS can be triggered by sending a malicious input to the application. When an (admin) user of the check_mk application visits the check_mk website, the attack will be triggered. Once the XSS attack is triggered, the attacker has access to the full check_mk (and nagios) application with the access rights of the logged in victim.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na3) check_mk v1.2.2p2 [CVE-2014-2329]\r\nb3) Stored Cross-Site Scripting (XSS) (via external data, no link necessary)\r\nc3) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd3) The check_mk application is susceptible to stored XSS attacks. This is mainly the result of improper output encoding. Stored XSS can be triggered by sending a malicious input to the application. When an (admin) user of the check_mk application visits the check_mk website, the attack will be triggered. Once the XSS attack is triggered, the attacker has access to the full check_mk (and nagios) application with the access rights of the logged in victim. As opposed to the reflected or link-based stored XSS, the victim does not have to click any links or interact in any other way to trigger the exploit.\r\nIn this specific case, an attacker has to modify the check_mk agent, which may be installed on a monitored host. The check_mk agent is a separate software module, which can be installed on monitored systems to extract data from this host, which then should be used as data input for nagios/check_mk. Check_mk agents are an integral part of check_mk to monitor arbitrary operating systems. Once any of the monitored hosts was compromised, an attacker may change the check_mk configuration to include JavaScript code. Once this has been done, check_mk will display the agent string without proper encoding, resulting in a stored XSS. This attack can be used to gain access to the check_mk application, as mentioned before.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na4) check_mk v1.2.2p2 [CVE-2014-2329]\r\nb4) Stored Cross-Site Scripting (XSS) (via external data on service port, no link necessary)\r\nc4) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd4) The check_mk application is susceptible to stored XSS attacks. This is mainly the result of improper output encoding. Stored XSS can be triggered by sending a malicious input to the application. When an (admin) user of the check_mk application visits the check_mk website, the attack will be triggered. Once the XSS attack is triggered, the attacker has access to the full check_mk (and nagios) application with the access rights of the logged in victim. As opposed to the reflected or link-based stored XSS, the victim does not have to click any links or interact in any other way to trigger the exploit.\r\nIn this specific case, an attacker has to send malicious data to a monitored system (not the check_mk or nagios host) to a service port, which is being logged by the "logwatch" functionality of check_mk. This module allows the monitoring of logfiles for hosts monitored by check_mk. It is a very regular task for system administrators to monitor any anomalies and react to it accordingly by monitoring logfiles. Check_mk delivers this functionality by support of the logwatch module. The module is explained in detail on the check_mk website: http://mathias-kettner.de/checkmk_logfiles.html\r\nWhat makes this attack more critical than a usual XSS attack is the fact that not the check_mk system or the administrator is attacked, but a system which is being monitored by check_mk. Usually those systems have a much greater attack surface than the monitoring systems such as check_mk - Both systems may even be separated by firewall, allowing only access from check_mk to the monitored host.\r\nThe JavaScript code is displayed in the dashboard without proper encoding, resulting in a XSS attack. As mentioned, the attacker does not need any network connection to the check_mk system itself - only access to a monitored system is needed.\r\nAs a proof of concept attack, the ssh logfile of a host may be watched for any occurrence of invalid login attempts. This is a default setting with the logwatch module, once installed. This setting allows the compromise of a check_mk host by initiating a specially crafted ssh connection to the targeted host.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na5) check_mk v1.2.2p2 [CVE-2014-2330]\r\nb5) Missing CSRF (Cross-Site Request Forgery) token allows execution of arbitrary commands\r\nc5) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd5) The check_mk application does not implement any CSRF tokens. More about CSRF attacks, risks and mitigations see https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF). This attack has a vast impact on the security of the check_mk application, as multiple configuration parameters can be changed using a CSRF attack. One very critical attack vector is the upload of arbitrary snapshot files, which may then be executed on the server. In combination with another security flaw (code execution of snapshot files) this results in full compromise of the check_mk host just by clicking a web link. A proof of concept exploit has been developed, which allows this attack, resulting in full (system level) access of the check_mk system.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na6) check_mk v1.2.2p2 [CVE-2014-2331]\r\nb6) Multiple use of exec-like function calls which allow arbitrary commands\r\nc6) CVSS 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C\r\nd6) check_mk makes use of multiple exec-like method calls, which execute python code without any safety checks in place. One such method is the Python built-in "execfile", which is called multiple times in the check_mk codebase. A proof of concept attack has been developed, which exploits this fact. Uploading a snapshot file for instance with a modified "rules.mk" file resulted in execution of this file as a python script. An attacker may implement attacks (rather complex, as the full functionality of the Python scripting language including all standard modules can be utilized) in this file, which will be executed on the check_mk host, once the snapshot file is extracted. In combination with a CSRF weakness this can be triggered without the knowledge of the check_mk user. Also, for more elaborate attacks, this can be combined with a XSS attack. Such an attack will result in full system (check_mk host) access without any interaction or knowledge of the check_mk admin.\r\n------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\r\na7) check_mk v1.2.2p2 [CVE-2014-2332]\r\nb7) Deletion of arbitrary files\r\nc7) CVSS 4.3 AV:N/AC:M/Au:M/C:N/I:P/A:P (authentication is needed, although this flaw can be triggered using a CSRF attack, see above)\r\nd) By visiting a link, arbitrary files can be deleted. Only files, which have the proper access rights (usually the user under which the web application is running), can be deleted. This may result in unexpected behavior and/or DoS of the application. More information about direct object/file reference can be found here: https://www.owasp.org/index.php/Top_10_2013-A4-Insecure_Direct_Object_References\r\n\r\nDeutsche Telekom CERT\r\nLandgrabenweg 151, 53227 Bonn, Germany\r\n+49 800 DTAG CERT (Tel.)\r\nE-Mail: cert@telekom.de\r\nLife is for sharing.\r\n \r\nDeutsche Telekom AG\r\nSupervisory Board: Prof. Dr. Ulrich Lehner (Chairman)\r\nBoard of Management: Timotheus Hottges (Chairman),\r\nDr. Thomas Kremer, Reinhard Clemens, Niek Jan van Damme,\r\nThomas Dannenfeldt, Claudia Nemat, Prof. Dr. Marion Schick\r\nCommercial register: Amtsgericht Bonn HRB 6794\r\nRegistered office: Bonn\r\n \r\nBig changes start small \u2013 conserve resources by not printing every e-mail.\r\n\r\n", "published": "2014-05-05T00:00:00", "modified": "2014-05-05T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30627", "reporter": "Securityvulns", "references": [], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "securityvulns", "lastseen": "2018-08-31T11:10:52", "edition": 1, "viewCount": 39, "enchantments": {"score": {"value": 7.0, "vector": "NONE", "modified": "2018-08-31T11:10:52", "rev": 2}, "dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:C1D6124450"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2332", "UB:CVE-2014-2329", "UB:CVE-2014-2331", "UB:CVE-2014-2330"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733"]}], "modified": "2018-08-31T11:10:52", "rev": 2}, "vulnersScore": 7.0}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}

{"fedora": [{"id": "FEDORA:0667C2255E", "hash": "1e476e0b9c4a6edf79a9b671e1aae65458b98415f0a5ee522b38872b1013a5f0", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p2-1.fc20", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-04-24T07:38:04", "modified": "2014-04-24T07:38:04", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-04-24T07:38:04", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.3}, "dependencies": {"rev": 2, "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06"], "type": "fedora"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p2-1.fc20", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "modified": "2014-04-24T07:38:04", "href": "", "id": "FEDORA:0667C2255E", "viewCount": 0, "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "8761a8fd8de0c1f160e56c18ee2e0982", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "b6bbd3f5989cce67895514020f9b6d5c", "key": "title"}, {"hash": "12c1b0ca17989d17f090e48a5ba03767", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "1f555539c49bea6a32010331b5ad759f", "key": "cvss"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "12c1b0ca17989d17f090e48a5ba03767", "key": "modified"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "c115f9da3589e06006bd123db088215b208b9096ceba3b5783c118e3dc039ede"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06"], "type": "fedora"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "20", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p2", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 6.8, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 8.5, "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "8761a8fd8de0c1f160e56c18ee2e0982"}, {"key": "cvss", "hash": "1f555539c49bea6a32010331b5ad759f"}, {"key": "cvss2", "hash": "21c53843956e00403055aee61301af1d"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "12c1b0ca17989d17f090e48a5ba03767"}, {"key": "published", "hash": "12c1b0ca17989d17f090e48a5ba03767"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "b6bbd3f5989cce67895514020f9b6d5c"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:1E5B7227FF", "hash": "f2572e9de3d52b724b5d9e2b51b784bf934823075f27346b6df54d6b5c14991a", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p2-1.fc19", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-04-24T07:34:24", "modified": "2014-04-24T07:34:24", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-04-24T07:34:24", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.3}, "dependencies": {"rev": 2, "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p2-1.fc19", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "modified": "2014-04-24T07:34:24", "href": "", "id": "FEDORA:1E5B7227FF", "viewCount": 0, "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "8761a8fd8de0c1f160e56c18ee2e0982", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "c56d640c0973fb11cf3eae3439276598", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "82bea796b2310884d7477d625d2bb1da", "key": "title"}, {"hash": "1f555539c49bea6a32010331b5ad759f", "key": "cvss"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "c56d640c0973fb11cf3eae3439276598", "key": "modified"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "0e9724048de3b820faa21dd0677ac524651ae1fe82d83f639402ba259d9ec9e2"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "19", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p2", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 6.8, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 8.5, "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "8761a8fd8de0c1f160e56c18ee2e0982"}, {"key": "cvss", "hash": "1f555539c49bea6a32010331b5ad759f"}, {"key": "cvss2", "hash": "21c53843956e00403055aee61301af1d"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "c56d640c0973fb11cf3eae3439276598"}, {"key": "published", "hash": "c56d640c0973fb11cf3eae3439276598"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "82bea796b2310884d7477d625d2bb1da"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:53F0A22028", "hash": "80bbe492b916a50db9d829ffc91f9d5783d6319027b49abb89c220aba4a0b465", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p2-2.fc20", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-06-10T03:09:47", "modified": "2014-06-10T03:09:47", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-06-10T03:09:47", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.3}, "dependencies": {"rev": 2, "references": [{"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p2-2.fc20", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "modified": "2014-06-10T03:09:47", "href": "", "id": "FEDORA:53F0A22028", "viewCount": 0, "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "146291f453de236dbe687aae949b6bb0", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "427eb6c1c5e24a1847dd0fa7fe22f949", "key": "title"}, {"hash": "146291f453de236dbe687aae949b6bb0", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "1f555539c49bea6a32010331b5ad759f", "key": "cvss"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "33a73f6621f9d0288a1f4f9f1514ed5c", "key": "cvelist"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "6c1ead8c2a68d7d8001df56ab00e3b4a93bdff43859cf89c76d8ea32fc0bcfb1"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "20", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p2", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 6.8, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 8.5, "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "33a73f6621f9d0288a1f4f9f1514ed5c"}, {"key": "cvss", "hash": "1f555539c49bea6a32010331b5ad759f"}, {"key": "cvss2", "hash": "21c53843956e00403055aee61301af1d"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "146291f453de236dbe687aae949b6bb0"}, {"key": "published", "hash": "146291f453de236dbe687aae949b6bb0"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "427eb6c1c5e24a1847dd0fa7fe22f949"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:BC09D22176", "hash": "8fb05e0e6c14e9c74ed7848a67817895be79cf0f342990ca6f9fea56ad72f482", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p2-2.fc19", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-06-10T03:08:54", "modified": "2014-06-10T03:08:54", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-06-10T03:08:54", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.3}, "dependencies": {"rev": 2, "references": [{"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p2-2.fc19", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "modified": "2014-06-10T03:08:54", "href": "", "id": "FEDORA:BC09D22176", "viewCount": 0, "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "65edcc40cb7a74a914f813e7be0e7951", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "65edcc40cb7a74a914f813e7be0e7951", "key": "published"}, {"hash": "f5a09e4f3462486bc4a6900dec03a965", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "1f555539c49bea6a32010331b5ad759f", "key": "cvss"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "33a73f6621f9d0288a1f4f9f1514ed5c", "key": "cvelist"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "8c4bc2c4dcc1285aea3abf26cec5279e374462c2fd861018ff16d4eae7347143"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "19", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p2", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 6.8, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 8.5, "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "33a73f6621f9d0288a1f4f9f1514ed5c"}, {"key": "cvss", "hash": "1f555539c49bea6a32010331b5ad759f"}, {"key": "cvss2", "hash": "21c53843956e00403055aee61301af1d"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "65edcc40cb7a74a914f813e7be0e7951"}, {"key": "published", "hash": "65edcc40cb7a74a914f813e7be0e7951"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "f5a09e4f3462486bc4a6900dec03a965"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:2A62D211DC", "hash": "477f90c3e55a26838b63c5dc02371765fab402628d14da5364d98d3db07a93de", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-1.fc19", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-09-27T09:43:00", "modified": "2014-09-27T09:43:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-09-27T09:43:00", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.2}, "dependencies": {"rev": 2, "references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-1.fc19", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "modified": "2014-09-27T09:43:00", "href": "", "id": "FEDORA:2A62D211DC", "viewCount": 1, "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "a8999a9cafb9c59989a3e59ebf817c74", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d726e774add6189e33cf2ea0c61a2ba5", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "e87588da57d5e8020ec43b43952cc336", "key": "cvelist"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "a8999a9cafb9c59989a3e59ebf817c74", "key": "published"}, {"hash": "d4d29e1620b9f792c01231a42e131eb8", "key": "title"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "ab598ffb7994f9f1b23dcb01d0fe24bddfb39a603fbba28f5c339314c2ae7791"}}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "19", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p5", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "e87588da57d5e8020ec43b43952cc336"}, {"key": "cvss", "hash": "d726e774add6189e33cf2ea0c61a2ba5"}, {"key": "cvss2", "hash": "e8dbb4c019811b96da3443b871bd4b26"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "a8999a9cafb9c59989a3e59ebf817c74"}, {"key": "published", "hash": "a8999a9cafb9c59989a3e59ebf817c74"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "d4d29e1620b9f792c01231a42e131eb8"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:C1D6124450", "hash": "d56f30f2ef1ce1f129779484cfd64170bf0852693cef0550087797aee6b7729d", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p5-1.fc20", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-09-27T10:01:37", "modified": "2014-09-27T10:01:37", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-09-27T10:01:37", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.2}, "dependencies": {"rev": 2, "references": [{"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p5-1.fc20", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "modified": "2014-09-27T10:01:37", "href": "", "id": "FEDORA:C1D6124450", "viewCount": 1, "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "f388d8a6b69c8299bb29161a11aea0ba", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "f388d8a6b69c8299bb29161a11aea0ba", "key": "published"}, {"hash": "d726e774add6189e33cf2ea0c61a2ba5", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "e87588da57d5e8020ec43b43952cc336", "key": "cvelist"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "e3dd4f97dbe199b90761243d762ee589", "key": "title"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "2c9ebdf80f1a8bbe1ebd347594580fbe61ffb8cb643ddf7b50bb0efda07fa984"}}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "20", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p5", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "e87588da57d5e8020ec43b43952cc336"}, {"key": "cvss", "hash": "d726e774add6189e33cf2ea0c61a2ba5"}, {"key": "cvss2", "hash": "e8dbb4c019811b96da3443b871bd4b26"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "f388d8a6b69c8299bb29161a11aea0ba"}, {"key": "published", "hash": "f388d8a6b69c8299bb29161a11aea0ba"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "e3dd4f97dbe199b90761243d762ee589"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:594E922B06", "hash": "8a068fea4e7c2ac20ff433674b5c463f87ace75dc132e58c8108e50769db5c4d", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-2.fc19", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-10-10T15:59:01", "modified": "2014-10-10T15:59:01", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-10-10T15:59:01", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.2}, "dependencies": {"rev": 2, "references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 19 Update: check-mk-1.2.4p5-2.fc19", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "modified": "2014-10-10T15:59:01", "href": "", "id": "FEDORA:594E922B06", "viewCount": 0, "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d726e774add6189e33cf2ea0c61a2ba5", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "ac24e308758993c361a806b30727571b", "key": "title"}, {"hash": "e87588da57d5e8020ec43b43952cc336", "key": "cvelist"}, {"hash": "d08c0c8338103e118bf84022dbc88135", "key": "published"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "d08c0c8338103e118bf84022dbc88135", "key": "modified"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "2d037d34671508aaf4e0f79beb3dcb69a0ca2d6f653bf30040d5ffef38c04120"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "19", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p5", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "e87588da57d5e8020ec43b43952cc336"}, {"key": "cvss", "hash": "d726e774add6189e33cf2ea0c61a2ba5"}, {"key": "cvss2", "hash": "e8dbb4c019811b96da3443b871bd4b26"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d08c0c8338103e118bf84022dbc88135"}, {"key": "published", "hash": "d08c0c8338103e118bf84022dbc88135"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "ac24e308758993c361a806b30727571b"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}, {"id": "FEDORA:3F3E622B6A", "hash": "6e4ee8330a304d2db53c2e0914b698f2f96a8291e273610a70ea4f3a375e37d6", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p5-2.fc20", "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "published": "2014-10-10T16:05:37", "modified": "2014-10-10T16:05:37", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "lastseen": "2020-12-21T08:17:52", "history": [{"lastseen": "2020-12-21T08:17:52", "different_elements": ["cvss2"], "edition": 1, "bulletin": {"lastseen": "2020-12-21T08:17:52", "references": [], "description": "check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a new approach for collecting data from operating systems and network compone nts. It obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many benefits, the most important are a significant reduction of CPU usage on the Nagios host and an automatic inventory of items to be checked on hosts. ", "edition": 1, "cvss3": {}, "reporter": "Fedora", "history": [], "published": "2014-10-10T16:05:37", "enchantments": {"score": {"rev": 2, "modified": "2020-12-21T08:17:52", "vector": "NONE", "value": 6.2}, "dependencies": {"rev": 2, "references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}], "modified": "2020-12-21T08:17:52"}}, "title": "[SECURITY] Fedora 20 Update: check-mk-1.2.4p5-2.fc20", "type": "fedora", "objectVersion": "1.5", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "modified": "2014-10-10T16:05:37", "href": "", "id": "FEDORA:3F3E622B6A", "viewCount": 0, "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "9f519649aee4deb185f4b3ae5745fc67", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "e975fe78a5ccef06d5c193b1e1e08395", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d726e774add6189e33cf2ea0c61a2ba5", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "e87588da57d5e8020ec43b43952cc336", "key": "cvelist"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "ba440476dac63ec5f721d1b14e10882c", "key": "title"}, {"hash": "9f519649aee4deb185f4b3ae5745fc67", "key": "modified"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "hash": "27df8d7fdda2432c3ec229edcd6ff06d8f40f5df03fb7de93720679c4fb169bc"}}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}], "modified": "2020-12-21T08:17:52", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2020-12-21T08:17:52", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "20", "arch": "any", "packageName": "check-mk", "packageVersion": "1.2.4p5", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "scheme": null, "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "e87588da57d5e8020ec43b43952cc336"}, {"key": "cvss", "hash": "d726e774add6189e33cf2ea0c61a2ba5"}, {"key": "cvss2", "hash": "e8dbb4c019811b96da3443b871bd4b26"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "e975fe78a5ccef06d5c193b1e1e08395"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "9f519649aee4deb185f4b3ae5745fc67"}, {"key": "published", "hash": "9f519649aee4deb185f4b3ae5745fc67"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "ba440476dac63ec5f721d1b14e10882c"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}]}], "openvas": [{"id": "OPENVAS:867720", "hash": "596c2951ae4dcb6e8b3fee6129debb42", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2017-07-25T10:48:30", "history": [{"lastseen": "2017-07-02T21:09:24", "differentElements": ["modified", "sourceData"], "edition": 1, "bulletin": {"id": "OPENVAS:867720", "hash": "7b9fb6554be4bc02ea55c438897898d6bfa70e68c1c3fda90f86941252411372", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2017-07-02T21:09:24", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867720);\n script_version(\"$Revision: 2802 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 15:35:48 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}}], "viewCount": 2, "enchantments": {"score": {"value": 6.4, "vector": "NONE", "modified": "2017-07-25T10:48:30", "rev": 2}, "dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:594E922B06"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "nessus", "idList": ["FEDORA_2014-6818.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6810.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2330", "UB:CVE-2014-2331", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-5139"]}, {"type": "cve", "idList": ["CVE-2014-2331", "CVE-2014-2330", "CVE-2014-2332", "CVE-2014-2329", "CVE-2014-5139"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61961", "SSV:61960", "SSV:61946"]}], "modified": "2017-07-25T10:48:30", "rev": 2}}, "objectVersion": "1.5", "pluginID": "867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867720);\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310867720", "hash": "4400a170e2841f5d18db58db911088b7", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "The remote host is missing an update for the ", "published": "2014-05-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2019-05-29T18:37:12", "history": [{"bulletin": {"id": "OPENVAS:1361412562310867720", "hash": "a876ede9a4c8c0110030d5e458237bf005727d23bd81b2ce6926bc5b67e567b7", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-04-06T11:11:16", "history": [], "viewCount": 0, "enchantments": {"score": {"modified": "2018-04-06T11:11:16", "value": 3.5, "vector": "AV:N/AC:M/Au:S/C:N/I:P/A:N/"}}, "objectVersion": "1.4", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 9354 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:15:32 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["sourceData"], "edition": 1, "lastseen": "2018-04-06T11:11:16"}, {"bulletin": {"id": "OPENVAS:1361412562310867720", "hash": "490617751d72f8687b29e87b2c382df6668d342083f8f539092539e6b46a7ad4", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-04-09T11:12:07", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-04-09T11:12:07"}, {"bulletin": {"id": "OPENVAS:1361412562310867720", "hash": "2913187fff51cc286924c8caae122c1579b5662c7e7b4758ad76e1520f557d33", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-08-30T19:23:24", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:23:24"}, {"bulletin": {"id": "OPENVAS:1361412562310867720", "hash": "490617751d72f8687b29e87b2c382df6668d342083f8f539092539e6b46a7ad4", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-09-01T23:53:32", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-09-01T23:53:32", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5139\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 4, "lastseen": "2018-09-01T23:53:32"}, {"bulletin": {"id": "OPENVAS:1361412562310867720", "hash": "b7bb8154298eb546c6b445ff6c766d22d9c986f13513c42ae549c0321ff3db3e", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5139", "description": "The remote host is missing an update for the ", "published": "2014-05-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867720", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-5139", "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2019-03-18T14:36:58", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-03-18T14:36:58", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2019-03-18T14:36:58"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:2A62D211DC"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5139"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-5139"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}], "modified": "2019-05-29T18:37:12", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2019-05-29T18:37:12", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310867720", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5139\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867720\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:47 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5139\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:867735", "hash": "34cd533bf21043536dba353c384e91b2", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2017-07-25T10:48:58", "history": [{"lastseen": "2017-07-02T21:09:43", "differentElements": ["modified", "sourceData"], "edition": 1, "bulletin": {"id": "OPENVAS:867735", "hash": "08bcb1094182765bc84ba05afd4919ad736e9cfe766b3afadd01d7fe30847f9c", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2017-07-02T21:09:43", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867735);\n script_version(\"$Revision: 2802 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 15:35:48 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}}], "viewCount": 0, "enchantments": {"score": {"value": 6.5, "vector": "NONE", "modified": "2017-07-25T10:48:58", "rev": 2}, "dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:C1D6124450"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5194", "CVE-2014-2331", "CVE-2014-2332"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2332", "UB:CVE-2014-2329", "UB:CVE-2014-2331", "UB:CVE-2014-2330"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "zeroscience", "idList": ["ZSL-2014-5194"]}], "modified": "2017-07-25T10:48:58", "rev": 2}}, "objectVersion": "1.5", "pluginID": "867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867735);\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310867735", "hash": "7f744b0fc52b06a20a1f7f1d0f2bc2c0", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "The remote host is missing an update for the ", "published": "2014-05-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2019-05-29T18:37:39", "history": [{"bulletin": {"id": "OPENVAS:1361412562310867735", "hash": "43f10f3cb57e1cbcb76e292f938aea9abbac0fa56fb60b1e376212fcdc171705", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-09-01T23:55:06", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-09-01T23:55:06", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 4, "lastseen": "2018-09-01T23:55:06"}, {"bulletin": {"id": "OPENVAS:1361412562310867735", "hash": "43f10f3cb57e1cbcb76e292f938aea9abbac0fa56fb60b1e376212fcdc171705", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-04-09T11:13:47", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-04-09T11:13:47"}, {"bulletin": {"id": "OPENVAS:1361412562310867735", "hash": "1b5c8cfafecfccaa3a7f6f1d2405de601d035eeade021b7b52babdfdcd9e08da", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-04-06T11:12:58", "history": [], "viewCount": 0, "enchantments": {"score": {"modified": "2018-04-06T11:12:58", "value": 3.5, "vector": "AV:N/AC:M/Au:S/C:N/I:P/A:N/"}}, "objectVersion": "1.4", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 9354 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:15:32 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["sourceData"], "edition": 1, "lastseen": "2018-04-06T11:12:58"}, {"bulletin": {"id": "OPENVAS:1361412562310867735", "hash": "9dc5f7785b388aaff16477b7a739fac5c10879720c2c4840cd88c4285d7f3aa8", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "Check for the Version of check-mk", "published": "2014-05-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2018-08-30T19:24:05", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-5194\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:24:05"}, {"bulletin": {"id": "OPENVAS:1361412562310867735", "hash": "693717f798a4611f80d041e26be43782883cf0a22c84b22e5f6ec3c1a380d293", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-5194", "description": "The remote host is missing an update for the ", "published": "2014-05-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867735", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html", "2014-5194"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "lastseen": "2019-03-18T14:38:09", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-03-18T14:38:09", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2019-03-18T14:38:09"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:594E922B06"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867862"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "nessus", "idList": ["FEDORA_2014-6818.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6810.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2330", "UB:CVE-2014-2331"]}, {"type": "cve", "idList": ["CVE-2014-5194", "CVE-2014-2331", "CVE-2014-2330", "CVE-2014-2332", "CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61961", "SSV:61960", "SSV:61946"]}, {"type": "zeroscience", "idList": ["ZSL-2014-5194"]}], "modified": "2019-05-29T18:37:39", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2019-05-29T18:37:39", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310867735", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-5194\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867735\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-05-02 10:13:32 +0530 (Fri, 02 May 2014)\");\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-5194\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310867855", "hash": "a6a1f81255438acfd7b7d65fdc7f99ef", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "The remote host is missing an update for the ", "published": "2014-06-17T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2019-05-29T18:37:42", "history": [{"bulletin": {"id": "OPENVAS:1361412562310867855", "hash": "fc80dd6ea63bf8c28486059a116c2d5e060ac189d36f86b22e27899a1576f380", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2018-04-09T11:11:23", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6818\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-04-09T11:11:23"}, {"bulletin": {"id": "OPENVAS:1361412562310867855", "hash": "8ec2623bd40940ada80f3fb74bfaba6bfb61693248bd4309771537b33eeed81e", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2018-08-30T19:24:10", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6818\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:24:10"}, {"bulletin": {"id": "OPENVAS:1361412562310867855", "hash": "1487bb3609bbec83935ceaf4a1eb5693ff76140135c1a4070fca9be5884a5d6b", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2017-07-02T21:09:15", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 2803 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 15:37:27 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6818\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:09:15"}, {"bulletin": {"id": "OPENVAS:1361412562310867855", "hash": "55c571b39250674055acddad32829f316be9190b926cf0e3f861861b7da87c24", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "The remote host is missing an update for the ", "published": "2014-06-17T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2019-03-18T14:38:17", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-03-18T14:38:17", "references": [{"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 7, "lastseen": "2019-03-18T14:38:17"}, {"bulletin": {"id": "OPENVAS:1361412562310867855", "hash": "6de70be8e21bec41b2af3e7767bcb79c07b0601f346b79d942087a719a485929", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6818", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2018-09-21T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867855", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-6818", "https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2018-09-21T16:14:23", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-09-21T16:14:23", "references": [{"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 11513 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-21 05:48:51 +0200 (Fri, 21 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6818\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 6, "lastseen": "2018-09-21T16:14:23"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:594E922B06"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30760"]}, {"type": "nessus", "idList": ["FEDORA_2014-6818.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5139.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6810.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-0243", "UB:CVE-2014-2330", "UB:CVE-2014-2331", "UB:CVE-2014-2329", "UB:CVE-2014-2332"]}, {"type": "cve", "idList": ["CVE-2014-2331", "CVE-2014-2330", "CVE-2014-6818", "CVE-2014-0243", "CVE-2014-2332", "CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61961", "SSV:61960", "SSV:61946"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2019-05-29T18:37:42", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2019-05-29T18:37:42", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310867855", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6818\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867855\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:45:34 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\", \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6818\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310867862", "hash": "0c1c3b05fba1f70eb616b5c12fe77be5", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "The remote host is missing an update for the ", "published": "2014-06-17T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2019-05-29T18:37:24", "history": [{"bulletin": {"id": "OPENVAS:1361412562310867862", "hash": "8e37489230bdab5c23f2a64f2adef164f36e267664c3a8c805dcc9f86f8d5bb7", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2018-04-09T11:11:43", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6810\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-04-09T11:11:43"}, {"bulletin": {"id": "OPENVAS:1361412562310867862", "hash": "ecbb6bfcb8cad44bc6c622e0f32076dc31cb8e8448cdaa1e6909362a0c7e44fb", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2017-07-02T21:09:19", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 2803 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 15:37:27 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6810\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:09:19"}, {"bulletin": {"id": "OPENVAS:1361412562310867862", "hash": "35c9a7f03bb465900a252af521c2fb900326702e7fc0dfe69f4d982b40a1ace5", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "The remote host is missing an update for the ", "published": "2014-06-17T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2019-03-18T14:37:32", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-03-18T14:37:32", "references": [{"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 7, "lastseen": "2019-03-18T14:37:32"}, {"bulletin": {"id": "OPENVAS:1361412562310867862", "hash": "65a5155f31636fa9476bee8c320a7b5c378e66745ae878001844da5c942a76e3", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2018-09-21T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2018-09-21T16:13:47", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-09-21T16:13:47", "references": [{"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 11513 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-21 05:48:51 +0200 (Fri, 21 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6810\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 6, "lastseen": "2018-09-21T16:13:47"}, {"bulletin": {"id": "OPENVAS:1361412562310867862", "hash": "5c3a0b5b1555f488de1a3245596613392302ef9a56dacb820172fb9e1922eb9f", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-6810", "description": "Check for the Version of check-mk", "published": "2014-06-17T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867862", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html", "2014-6810"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-0243", "CVE-2014-2329"], "lastseen": "2017-07-25T10:48:23", "history": [], "viewCount": 0, "enchantments": {"score": {"modified": "2017-07-25T10:48:23", "value": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:N/"}}, "objectVersion": "1.4", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"7.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:P/A:N\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n\n tag_insight = \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\";\n\n tag_affected = \"check-mk on Fedora 20\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-6810\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:48:23"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:BC09D22176", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:C1D6124450"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30760", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13786"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-0243", "CVE-2014-6810"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-0243", "UB:CVE-2014-2330", "UB:CVE-2014-2332", "UB:CVE-2014-2331"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2019-05-29T18:37:24", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2019-05-29T18:37:24", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310867862", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-6810\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867862\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-06-17 09:53:21 +0530 (Tue, 17 Jun 2014)\");\n script_cve_id(\"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\",\n \"CVE-2014-0243\");\n script_tag(name:\"cvss_base\", value:\"8.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-6810\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p2~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310868379", "hash": "56d2ea34c4009ccf1ff7413a14667687", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-05-29T18:37:13", "history": [{"bulletin": {"id": "OPENVAS:1361412562310868379", "hash": "52e706406d4df26829f58191a0b26bffc4276473d0b57fd3e9990d58a1376b86", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-03-18T14:37:01", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2019-03-18T14:37:01", "references": [{"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name:\"summary\", value:\"Check the version of check-mk\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2019-03-18T14:37:01"}, {"bulletin": {"id": "OPENVAS:1361412562310868379", "hash": "0cc04db6dfc648ccc92bda1a6a7a7d9821ae005ae4bd4b3baccb8165ce85d510", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-25T10:48:21", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11895\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:48:21"}, {"bulletin": {"id": "OPENVAS:1361412562310868379", "hash": "dd585c4b245933315c962aa1dfbba3a794449097875964b1391711cb8a6c94fe", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-20T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-08-30T19:23:26", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 6769 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-20 11:56:33 +0200 (Thu, 20 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11895\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:23:26"}, {"bulletin": {"id": "OPENVAS:1361412562310868379", "hash": "354a82c081081ac3f9eb6d9a84da532fb7321715c5d44e34fe2f0340e1c02766", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-20T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-09-01T23:53:36", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2018-09-01T23:53:36", "references": [{"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 6769 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-20 11:56:33 +0200 (Thu, 20 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11895\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 5, "lastseen": "2018-09-01T23:53:36"}, {"bulletin": {"id": "OPENVAS:1361412562310868379", "hash": "913fb25e4009618f7fd548f7e462c96f42f396a5b0d6239e64d076d814772491", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11895", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868379", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html", "2014-11895"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-02T21:09:17", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 2796 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 13:49:17 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11895\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:09:17"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:867720", "OPENVAS:867735", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:E37C420316", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:594E922B06", "FEDORA:BC09D22176", "FEDORA:2CE7621B42"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "CHECK_MK_1_2_5_I4.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:31036"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-5339", "UB:CVE-2014-2330", "UB:CVE-2014-2331", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-5338", "UB:CVE-2014-5340"]}, {"type": "cve", "idList": ["CVE-2014-5339", "CVE-2014-5338", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-5340", "CVE-2014-2332", "CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61961", "SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2019-05-29T18:37:13", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2019-05-29T18:37:13", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310868379", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11895\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868379\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:17 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11895\");\n script_tag(name:\"summary\", value:\"Check the version of check-mk\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310868317", "hash": "2948fd383c4461a27a867a214a68c287", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "The remote host is missing an update for the ", "published": "2014-10-01T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-05-29T18:37:33", "history": [{"bulletin": {"id": "OPENVAS:1361412562310868317", "hash": "09518a3938363a7bae01df707416b56ea118ad9bae92cf6e2dca26e9e068793e", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-09-01T23:54:45", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2018-09-01T23:54:45", "references": [{"idList": ["OPENVAS:1361412562310867855", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-10972\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 5, "lastseen": "2018-09-01T23:54:45"}, {"bulletin": {"id": "OPENVAS:1361412562310868317", "hash": "cde3ba325e43dc2aadd5e09a6bd929997ff65eadb0d4b949e666215e5d7f1442", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-08-30T19:23:56", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-10972\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:23:56"}, {"bulletin": {"id": "OPENVAS:1361412562310868317", "hash": "80ca812f1bfdb462dd4beeb65454a6edd80936458d6efa8c003dd0fe348853ff", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-25T10:48:59", "history": [], "viewCount": 1, "enchantments": {"score": {"modified": "2017-07-25T10:48:59", "value": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:N/"}}, "objectVersion": "1.4", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-10972\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:48:59"}, {"bulletin": {"id": "OPENVAS:1361412562310868317", "hash": "982ed4e20d31b0bef6ed267c53da8f8a2252b1f8bf90ebea2d6c2abe2fc13a34", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "The remote host is missing an update for the ", "published": "2014-10-01T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-03-18T14:37:54", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-03-18T14:37:54", "references": [{"idList": ["OPENVAS:1361412562310867855", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-10972\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2019-03-18T14:37:54"}, {"bulletin": {"id": "OPENVAS:1361412562310868317", "hash": "bb2998ddd0a46821f08165e2235ab9b8eba379225f1ca53683451c3222befb97", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-10972", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868317", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["2014-10972", "https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-02T21:09:43", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 2798 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 13:57:39 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-10972\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:09:43"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:E37C420316", "FEDORA:2CE7621B42", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:2A62D211DC"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5339"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-5340", "UB:CVE-2014-5338", "UB:CVE-2014-5339"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2019-05-29T18:37:33", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2019-05-29T18:37:33", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310868317", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-10972\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868317\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 17:00:35 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-10972\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-10972\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/139066.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310868229", "hash": "4ae0cc1573a5cf0f427a23331817e5c9", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "The remote host is missing an update for the ", "published": "2014-10-01T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-05-29T18:37:14", "history": [{"bulletin": {"id": "OPENVAS:1361412562310868229", "hash": "625199abe6f02f719e776d4770a01e04b43b1e1263abee6c6f20e9353a546ea6", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "The remote host is missing an update for the ", "published": "2014-10-01T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-03-18T14:37:04", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-03-18T14:37:04", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2019-03-18T14:37:04"}, {"bulletin": {"id": "OPENVAS:1361412562310868229", "hash": "24ccbc702ec12a0e95adfffd31ad679edc67b1077e0a2618579a69933b5d89fb", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-09-01T23:53:39", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-09-01T23:53:39", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-11082\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 5, "lastseen": "2018-09-01T23:53:39"}, {"bulletin": {"id": "OPENVAS:1361412562310868229", "hash": "24ccbc702ec12a0e95adfffd31ad679edc67b1077e0a2618579a69933b5d89fb", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-04-09T11:11:04", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-11082\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-04-09T11:11:04"}, {"bulletin": {"id": "OPENVAS:1361412562310868229", "hash": "53df4a5b41d41cf16fbdf01c324b9b4ee0f923313218d93756352a06744e0e35", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-25T10:48:15", "history": [], "viewCount": 0, "enchantments": {"score": {"modified": "2017-07-25T10:48:15", "value": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:N/"}}, "objectVersion": "1.4", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-11082\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:48:15"}, {"bulletin": {"id": "OPENVAS:1361412562310868229", "hash": "dc9f1ebeb08a7da89a5eb03fa579e3396b14e8967a49bf71e88b4c2f54bc51a9", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11082", "description": "Check for the Version of check-mk", "published": "2014-10-01T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868229", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html", "2014-11082"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-08-30T19:23:27", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 9373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:57:18 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name: \"FEDORA\", value: \"2014-11082\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:23:27"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:E37C420316", "FEDORA:2CE7621B42", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:2A62D211DC"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5339"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-5340", "UB:CVE-2014-5338", "UB:CVE-2014-5339"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2019-05-29T18:37:14", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2019-05-29T18:37:14", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310868229", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11082\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868229\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-01 16:57:39 +0530 (Wed, 01 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11082\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'check-mk'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~1.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}, {"id": "OPENVAS:1361412562310868373", "hash": "d54d5099beca768185788cc2843033c6", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-05-29T18:37:23", "history": [{"bulletin": {"id": "OPENVAS:1361412562310868373", "hash": "3c5d638352402e1b4158303f458604fe162af92faff47ca7f3c1f527453806cd", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-18T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-08-02T10:49:17", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 6750 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-18 11:56:47 +0200 (Tue, 18 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11929\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2017-08-02T10:49:17"}, {"bulletin": {"id": "OPENVAS:1361412562310868373", "hash": "f67ace63dc494eb80b96448b33be2b84c4aa90fc89213b06dad53b6fb15530c4", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-25T10:48:55", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 6629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11929\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-25T10:48:55"}, {"bulletin": {"id": "OPENVAS:1361412562310868373", "hash": "e454076230722f846949f2b150d52ff0450fb99b87ba0c9277b00c68fd006758", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2016-03-08T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2017-07-02T21:09:41", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 2796 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-03-08 13:49:17 +0100 (Tue, 08 Mar 2016) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11929\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_summary(\"Check for the Version of check-mk\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:09:41"}, {"bulletin": {"id": "OPENVAS:1361412562310868373", "hash": "cdd61ecfa1ff12e584639a4a478809b1deaa2dad663f6afc2dd6594742d6fc5c", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2019-03-18T14:37:29", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-03-18T14:37:29", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "CHECK_MK_1_2_5_I4.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name:\"summary\", value:\"Check the version of check-mk\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2019-03-18T14:37:29"}, {"bulletin": {"id": "OPENVAS:1361412562310868373", "hash": "45e901260be9cea7b3c3dcb757c0b300fa669f1d380ec037f47d7617d659c42c", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for check-mk FEDORA-2014-11929", "description": "Check the version of check-mk", "published": "2014-10-11T00:00:00", "modified": "2017-07-18T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310868373", "reporter": "Copyright (C) 2014 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html", "2014-11929"], "cvelist": ["CVE-2014-2332", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2329", "CVE-2014-5338"], "lastseen": "2018-08-30T19:23:40", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 6750 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-18 11:56:47 +0200 (Tue, 18 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name: \"summary\", value: \"Check the version of check-mk\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"check-mk is a general purpose Nagios-plugin for retrieving data. It adopts a\nnew approach for collecting data from operating systems and network components.\nIt obsoletes NRPE, check_by_ssh, NSClient, and check_snmp and it has many\nbenefits, the most important are a significant reduction of CPU usage on\nthe Nagios host and an automatic inventory of items to be checked on hosts.\n\");\n script_tag(name: \"affected\", value: \"check-mk on Fedora 19\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2014-11929\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:23:40"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:E37C420316", "FEDORA:2CE7621B42", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:2A62D211DC"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5340", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-5339"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-5340", "UB:CVE-2014-5338", "UB:CVE-2014-5339"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61961", "SSV:61960"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2019-05-29T18:37:23", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2019-05-29T18:37:23", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310868373", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for check-mk FEDORA-2014-11929\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.868373\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-10-11 05:57:08 +0200 (Sat, 11 Oct 2014)\");\n script_cve_id(\"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\", \"CVE-2014-2330\",\n \"CVE-2014-2331\", \"CVE-2014-2329\", \"CVE-2014-2332\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for check-mk FEDORA-2014-11929\");\n script_tag(name:\"summary\", value:\"Check the version of check-mk\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"check-mk on Fedora 19\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC19\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"check-mk\", rpm:\"check-mk~1.2.4p5~2.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": []}], "nessus": [{"id": "FEDORA_2014-5139.NASL", "hash": "3999b33ad8f09c5627eaa6b3192f207d", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://www.nessus.org/u?c92986b3", "https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-19T12:50:38", "history": [{"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "db0f4b51d2041c7d68ce7afdf4b18aa441c107eb4e5c36ea5a7ff52f85ddb4d5", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=73694", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2018-09-02T00:04:43", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73694);\n script_version(\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:32:18 $\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-09-02T00:04:43", "differentElements": ["modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "c80165984799639a20b85ec84d1991897bcce2a09e87c5003337e8fe364e46a5", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2018-12-05T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=73694", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2018-12-08T03:56:22", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/12/05 20:31:22\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-12-08T03:56:22", "differentElements": ["cvss", "description", "href", "modified", "reporter"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "561f7fc0b43b16924e359f70ddc10e7535d37de64d3c9b4f7b4ed229ea2eb984", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-10-28T20:11:38", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2019-10-28T20:11:38", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}]}, "score": {"modified": "2019-10-28T20:11:38", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/12/05 20:31:22\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T20:11:38", "differentElements": ["modified", "reporter", "sourceData"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "81e0669dae94bef93da740791d01237a1e856b8eaff57ca7a0c7be0b8b6487af", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2014-04-25T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-03-17T23:22:47", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"modified": "2020-03-17T23:22:47", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}], "rev": 2}, "score": {"modified": "2020-03-17T23:22:47", "rev": 2, "value": 6.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-03-17T23:22:47", "differentElements": ["reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "e1acd45b53127a4ac4b18192cfe4d80a486c8537ccb59d9d0d85781fe28cfa6d", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2014-04-25T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-01-12T10:12:42", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:42", "references": [{"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:42", "rev": 2, "value": 6.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:42", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "09c40c8552a67bcade6d4a0e3a42cfee", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2014-04-25T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?c92986b3"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-07-28T23:33:39", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:867735", "OPENVAS:867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867855"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "fedora", "idList": ["FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:3F3E622B6A"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11929.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11895.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2330", "UB:CVE-2014-2329", "UB:CVE-2014-2331", "UB:CVE-2014-2332"]}, {"type": "cve", "idList": ["CVE-2014-2331", "CVE-2014-2330", "CVE-2014-2332", "CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61960", "SSV:61946", "SSV:61961"]}], "modified": "2021-07-28T23:33:39", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-07-28T23:33:39", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:33:39", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-5139.NASL", "hash": "44b73714fa9e250493678824416d8f45", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/73694", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "http://www.nessus.org/u?c92986b3", "https://bugzilla.redhat.com/show_bug.cgi?id=1080303"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-11T14:15:39", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310867720", "OPENVAS:867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868317", "OPENVAS:867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310867862"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "fedora", "idList": ["FEDORA:2A62D211DC", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:53F0A22028"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-6818.NASL", "CHECK_MK_1_2_3_I5.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-2332"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-2330"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61961", "SSV:61945", "SSV:61946"]}], "modified": "2021-08-11T14:15:39", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-08-11T14:15:39", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-04-15T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:15:39", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:1E5B7227FF", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:53F0A22028"]}, {"type": "openvas", "idList": ["OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11929.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2331", "CVE-2014-2330", "CVE-2014-2332"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2331", "UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2330"]}, {"type": "seebug", "idList": ["SSV:61961", "SSV:61960", "SSV:61946", "SSV:61945"]}], "modified": "2021-08-19T12:50:38", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-08-19T12:50:38", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73694", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5139.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73694);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5139\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-1.fc19 (2014-5139)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132044.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c92986b3\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-04-15T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-5194.NASL", "hash": "e468df2cce28674b68961bef8d943c6d", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2331", "http://www.nessus.org/u?24dafeed", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-19T12:50:38", "history": [{"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "779806790c1a341407aff9a0d4d14626c4b13445f186d200c98bf79a93678df7", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 8.5, "vector": "AV:NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=73697", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2017-10-29T13:41:44", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73697);\n script_version(\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:32:18 $\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2017-10-29T13:41:44", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "596971b1f5e31a841d1f755954391c2297484a0d15d21c301ec8f9271efd184b", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-12-13T07:03:59", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T07:03:59", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}]}, "score": {"modified": "2019-12-13T07:03:59", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/12/05 20:31:22\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T07:03:59", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "e18af7768831c3fdc6486f3a42c828b657f98215ad93d7a1d5697f36bcba1e63", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-01-01T07:07:22", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-01-01T07:07:22", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}]}, "score": {"modified": "2020-01-01T07:07:22", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/12/05 20:31:22\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T07:07:22", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "a2c3849600db729d4a341ce2221e1859e44b2b3ce9da0425d58f79a14f4e218f", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-02-01T07:09:50", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-02-01T07:09:50", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}]}, "score": {"modified": "2020-02-01T07:09:50", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/12/05 20:31:22\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T07:09:50", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "cb01a9189b5e04cd14cc872b01d030d7575515d24c2cd6fd7413e0fbdb0f07cb", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2014-04-25T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-01-12T10:12:42", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:42", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332", "UB:CVE-2014-2331", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:42", "rev": 2, "value": 6.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:42", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "189047dc1159800a65f5ed19d76eaf72", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2014-04-25T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1080303", "http://www.nessus.org/u?24dafeed"], "cvelist": ["CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-07-28T23:33:39", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310868379", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868317", "OPENVAS:867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "nessus", "idList": ["FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "fedora", "idList": ["FEDORA:2A62D211DC", "FEDORA:BC09D22176", "FEDORA:53F0A22028", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:1E5B7227FF"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2331", "CVE-2014-2330", "CVE-2014-2332"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2331", "UB:CVE-2014-2332", "UB:CVE-2014-2330", "UB:CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61960", "SSV:61945", "SSV:61961"]}], "modified": "2021-07-28T23:33:39", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-07-28T23:33:39", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:33:39", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-5194.NASL", "hash": "aba99b4bd5d996644abfa243200c0d9b", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)", "description": "New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-04-25T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 8.5, "vector": "AV:N/AC:M/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/73697", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "http://www.nessus.org/u?24dafeed", "https://bugzilla.redhat.com/show_bug.cgi?id=1080303"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-11T14:15:39", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:3F3E622B6A", "FEDORA:0667C2255E"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868317", "OPENVAS:867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "nessus", "idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5139.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-10972.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2331", "CVE-2014-2332", "CVE-2014-2330", "CVE-2014-2329"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2331", "UB:CVE-2014-2332", "UB:CVE-2014-2330"]}, {"type": "seebug", "idList": ["SSV:61961", "SSV:61960", "SSV:61945", "SSV:61946"]}], "modified": "2021-08-11T14:15:39", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-08-11T14:15:39", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-04-15T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:15:39", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "fedora", "idList": ["FEDORA:53F0A22028", "FEDORA:594E922B06", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:3F3E622B6A", "FEDORA:BC09D22176", "FEDORA:C1D6124450"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868379", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "nessus", "idList": ["FEDORA_2014-11895.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11929.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2330", "CVE-2014-2331", "CVE-2014-2332", "CVE-2014-2329"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2331", "UB:CVE-2014-2330", "UB:CVE-2014-2329", "UB:CVE-2014-2332"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945", "SSV:61960", "SSV:61961"]}], "modified": "2021-08-19T12:50:38", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-08-19T12:50:38", "rev": 2}}, "objectVersion": "1.6", "pluginID": "73697", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-5194.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(73697);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-2331\", \"CVE-2014-2332\");\n script_bugtraq_id(66389, 66391, 66394, 66396);\n script_xref(name:\"FEDORA\", value:\"2014-5194\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-1.fc20 (2014-5194)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release. Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332 Fixes CVEs :\n\n - CVE-2014-2329\n\n - CVE-2014-2330\n\n - CVE-2014-2331\n\n - CVE-2014-2332\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1080303\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-April/132069.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?24dafeed\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-1.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-04-15T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "4074a127c280f85cd7e577d31f9a7f06", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2 prior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected by multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit these, via a specially crafted request, to execute arbitrary script code in a user's browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote attacker to delete arbitrary files via a request to an unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2019-11-13T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.4, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "https://www.securityfocus.com/archive/1/531656", "https://www.securityfocus.com/archive/1/531594"], "cvelist": ["CVE-2014-2329", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-19T12:36:23", "history": [{"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "ea7f6511c4f48a96ccdfe53c85cb9f4337bc32c3e4144e52483af0f468b8e1bb", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2 prior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected by multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit these, via a specially crafted request, to execute arbitrary script code in a user's browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote attacker to delete arbitrary files via a request to an unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2018-11-15T00:00:00", "cvss": {"score": 5.5, "vector": "AV:NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=101086", "reporter": "Tenable", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2018-11-16T17:04:07", "history": [], "viewCount": 4, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.4\");\n script_cvs_date(\"Date: 2018/11/15 20:50:16\");\n\n script_cve_id(\n \"CVE-2014-2329\",\n \"CVE-2014-2332\"\n );\n script_bugtraq_id(\n 66391,\n 66396\n );\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-11-16T17:04:07", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "a79ac84bcefeaf47879e19c36597a771d758de71edeacd0c12d7f32d80ebfa41", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user", "published": "2017-06-28T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-12-13T06:46:04", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2019-12-13T06:46:04", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["CVE-2014-2332", "CVE-2014-2329"], "type": "cve"}]}, "score": {"modified": "2019-12-13T06:46:04", "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T06:46:04", "differentElements": ["cvss3", "modified"], "edition": 2}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "67d03ac7e4206c5fad317aa9fd4f17d6bc73bbfeafd397866598ce577c8fbd48", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user", "published": "2017-06-28T00:00:00", "modified": "2020-04-02T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.4, "vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-04-01T06:53:41", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2020-04-01T06:53:41", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["CVE-2014-2332", "CVE-2014-2329"], "type": "cve"}], "rev": 2}, "score": {"modified": "2020-04-01T06:53:41", "rev": 2, "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-04-01T06:53:41", "differentElements": ["description", "modified"], "edition": 3}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "d6c43a018d926f50b0a60f243f5bd7bbc5a4e5103b0e9e96e65c2c10beadb5dc", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2020-12-02T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.4, "vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-12-01T09:37:45", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2020-12-01T09:37:45", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["CVE-2014-2332", "CVE-2014-2329"], "type": "cve"}], "rev": 2}, "score": {"modified": "2020-12-01T09:37:45", "rev": 2, "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-12-01T09:37:45", "differentElements": ["cvss2", "cvss3", "modified"], "edition": 4}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "29911b142e03f594a036967d1bbed69ad12812d15515e03425ef25c993d86176", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2021-07-02T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 5.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-07-28T22:51:25", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"modified": "2021-07-28T22:51:25", "references": [{"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SSV:61945", "SSV:61946"], "type": "seebug"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332"], "type": "ubuntucve"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["CVE-2014-2332", "CVE-2014-2329"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-07-28T22:51:25", "rev": 2, "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:51:25", "differentElements": ["modified"], "edition": 5}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "9f9d66588cc075acf0807a07657ecbdb", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2021-08-02T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 5.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.securityfocus.com/archive/1/531594", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2332", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-08-01T06:54:09", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2332", "CVE-2014-2329"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2332", "UB:CVE-2014-2329"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61946"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868379", "OPENVAS:1361412562310867855", "OPENVAS:867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868229", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "nessus", "idList": ["FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-5139.NASL"]}, {"type": "fedora", "idList": ["FEDORA:0667C2255E", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:53F0A22028", "FEDORA:594E922B06", "FEDORA:BC09D22176"]}], "modified": "2021-08-01T06:54:09", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-08-01T06:54:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-01T06:54:09", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "CHECK_MK_1_2_3_I5.NASL", "hash": "bbf058d930476958b45c623c5f5e92fa", "type": "nessus", "bulletinFamily": "scanner", "title": "Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities", "description": "The version of Check_MK running on the remote web server is 1.2.2 prior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected by multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit these, via a specially crafted request, to execute arbitrary script code in a user's browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote attacker to delete arbitrary files via a request to an unspecified link. (CVE-2014-2332)", "published": "2017-06-28T00:00:00", "modified": "2019-11-13T00:00:00", "cvss": {"score": 5.5, "vector": "AV:N/AC:L/Au:S/C:N/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.4, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nessus/101086", "reporter": "This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2332", "https://www.securityfocus.com/archive/1/531594", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "https://www.securityfocus.com/archive/1/531656"], "cvelist": ["CVE-2014-2329", "CVE-2014-2332"], "immutableFields": [], "lastseen": "2021-08-11T13:58:12", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2014-2332", "UB:CVE-2014-2329"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2332"]}, {"type": "seebug", "idList": ["SSV:61946", "SSV:61945"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310867720", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "fedora", "idList": ["FEDORA:BC09D22176", "FEDORA:53F0A22028", "FEDORA:594E922B06", "FEDORA:0667C2255E", "FEDORA:C1D6124450", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:1E5B7227FF"]}, {"type": "nessus", "idList": ["FEDORA_2014-5139.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11895.NASL"]}], "modified": "2021-08-11T13:58:12", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-08-11T13:58:12", "rev": 2}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-03-24T00:00:00", "vulnerabilityPublicationDate": "2014-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-11T13:58:12", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2332", "CVE-2014-2329"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2332"]}, {"type": "seebug", "idList": ["SSV:61945", "SSV:61946"]}, {"type": "fedora", "idList": ["FEDORA:BC09D22176", "FEDORA:0667C2255E", "FEDORA:2A62D211DC", "FEDORA:3F3E622B6A", "FEDORA:53F0A22028", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:1E5B7227FF"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868373", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:867735", "OPENVAS:1361412562310867862"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "nessus", "idList": ["FEDORA_2014-5194.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11929.NASL"]}], "modified": "2021-08-19T12:36:23", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-08-19T12:36:23", "rev": 2}}, "objectVersion": "1.6", "pluginID": "101086", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101086);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2019/11/13\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2332\");\n script_bugtraq_id(66391, 66396);\n\n script_name(english:\"Check_MK 1.2.2 < 1.2.2p3 / 1.2.3 < 1.2.3i5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks for the product and version in the about page.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"An IT monitoring application running on the remote host is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Check_MK running on the remote web server is 1.2.2\nprior to 1.2.2p3 or 1.2.3 prior to 1.2.3i5. It is, therefore, affected\nby multiple vulnerabilities :\n\n - Multiple cross-site script (XSS) vulnerabilities exist\n due to improper validation of user-supplied input before\n returning it to users. An unauthenticated, remote\n attacker can exploit these, via a specially crafted\n request, to execute arbitrary script code in a user's\n browser session. (CVE-2014-2329)\n\n - A flaw exists that allows an authenticated, remote\n attacker to delete arbitrary files via a request to an\n unspecified link. (CVE-2014-2332)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531594\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.securityfocus.com/archive/1/531656\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:check_mk_project:check_mk\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"check_mk_detect_webui.nbin\");\n script_require_ports(\"Services/www\", 80, 443);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nport = get_http_port(default:80);\napp = vcf::get_app_info(app:\"Check_MK\", webapp:TRUE, port:port);\nflags = make_array(\"xss\", TRUE);\nif (app.version !~ \"^[0-9.]+(([ib][0-9]+)?(p[0-9]+)?)?$\")\n audit(AUDIT_UNKNOWN_WEB_APP_VER, app.app, build_url(port:app.port, qs:app.path));\nvcf::check_mk::initialize();\n\nconstraints = \n[\n {\"min_version\" : \"1.2.2\", \"fixed_version\" : \"1.2.2p3\"},\n {\"min_version\" : \"1.2.3\", \"fixed_version\" : \"1.2.3i5\"}\n];\n\nvcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_WARNING, strict:FALSE, flags:flags);\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:check_mk_project:check_mk"], "solution": "Upgrade to Check_MK version 1.2.2p3 / 1.2.3i5 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-03-24T00:00:00", "vulnerabilityPublicationDate": "2014-03-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-6818.NASL", "hash": "206475b128d30a8da533a54c90aa26c4", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74389", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?046c9cc4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0243", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330"], "immutableFields": [], "lastseen": "2021-08-19T12:49:28", "history": [{"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "6fee0c7f87f1899087aa5e31f055ecc459018996871a4e1369c50e429426f035", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2018-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=74389", "reporter": "Tenable", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2018-09-26T22:39:47", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-09-26T22:39:47", "differentElements": ["description"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "b3e79fe1b0649a6bda803f4044362512027243389318ba6f6138537dda96e73f", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2018-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=74389", "reporter": "Tenable", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-01-16T20:18:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-01-16T20:18:31", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL"], "type": "nessus"}]}, "score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-01-16T20:18:31", "differentElements": ["description"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "6fee0c7f87f1899087aa5e31f055ecc459018996871a4e1369c50e429426f035", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2018-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=74389", "reporter": "Tenable", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-02-21T01:21:16", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-02-21T01:21:16", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL"], "type": "nessus"}]}, "score": {"modified": "2019-02-21T01:21:16", "value": 5.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-02-21T01:21:16", "differentElements": ["cvss", "description", "href", "modified", "reporter"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "c2900527ee22cc40cb95b14ec70e56db234e99b5e483fddc88db15b1e57d3513", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/74389", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2019-12-13T07:04:01", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-12-13T07:04:01", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL"], "type": "nessus"}]}, "score": {"modified": "2019-12-13T07:04:01", "value": 5.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T07:04:01", "differentElements": ["cvss3", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "1fddd13cd7497364cb37a305a78636b562aa91fdcd6726e7e0b60f74ae6d6015", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2014-06-10T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74389", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-01-12T10:12:52", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:52", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:52", "rev": 2, "value": 5.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:52", "differentElements": ["cvss2", "cvss3"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "b187115001c7c09a30198353e881c83f", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2014-06-10T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/74389", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?046c9cc4", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-07-28T23:33:52", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-0243", "UB:CVE-2014-2330"]}, {"type": "nessus", "idList": ["CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11895.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867862", "OPENVAS:867735", "OPENVAS:1361412562310868373", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868317"]}, {"type": "fedora", "idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:BC09D22176", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:53F0A22028", "FEDORA:3F3E622B6A"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-07-28T23:33:52", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-07-28T23:33:52", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:33:52", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-6818.NASL", "hash": "122ca84c86b1de1cd7d8447b59ec3909", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74389", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "http://www.nessus.org/u?046c9cc4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0243"], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330"], "immutableFields": [], "lastseen": "2021-08-11T14:14:22", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-0243", "UB:CVE-2014-2330"]}, {"type": "cve", "idList": ["CVE-2014-0243", "CVE-2014-2330", "CVE-2014-2329"]}, {"type": "nessus", "idList": ["CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5139.NASL", "CHECK_MK_1_2_3_I5.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868317", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:0667C2255E"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:VULN:13733"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-08-11T14:14:22", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-08-11T14:14:22", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.8"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2014-05-28T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:14:22", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2330", "CVE-2014-2329", "CVE-2014-0243"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-0243", "UB:CVE-2014-2329", "UB:CVE-2014-2330"]}, {"type": "nessus", "idList": ["FEDORA_2014-5139.NASL", "FEDORA_2014-6810.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_3_I5.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "fedora", "idList": ["FEDORA:594E922B06", "FEDORA:0667C2255E", "FEDORA:BC09D22176", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:C1D6124450", "FEDORA:3F3E622B6A", "FEDORA:53F0A22028"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:867720", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:VULN:13786"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-08-19T12:49:28", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-08-19T12:49:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74389", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6818.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74389);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6818\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?046c9cc4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p2-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.8"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2014-05-28T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-6810.NASL", "hash": "a906886a6a65a1a1178e32faa5f7751a", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://www.nessus.org/u?e2c8fc0b", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0243", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330"], "immutableFields": [], "lastseen": "2021-08-19T12:49:28", "history": [{"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "9c996994ccfc148154da1fa1c75204a3c90608f0cf8240114e54c5cc04ab2ad2", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=74388", "reporter": "Tenable", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2016-09-26T17:23:07", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74388);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:40:32 $\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2016-09-26T17:23:07", "differentElements": ["cpe"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "0966f5fb352a2b990248ca3984b8106e1085100cc3a78fd9f3c7265807d2ee44", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=74388", "reporter": "Tenable", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2017-10-29T13:33:11", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74388);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:40:32 $\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2017-10-29T13:33:11", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "b7f27268edd8f2d7dd8b85b3a572ccec808da3482b83af37a8d029bf2a2781ee", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-01-01T07:07:23", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-01-01T07:07:23", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}]}, "score": {"modified": "2020-01-01T07:07:23", "value": 5.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T07:07:23", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "f27653adccc3d5a765a044f88d68324882e0aedf3e72d520c0c40790565a8dc0", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2020-02-01T07:09:52", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-02-01T07:09:52", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}]}, "score": {"modified": "2020-02-01T07:09:52", "value": 5.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/09/24 9:27:18\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T07:09:52", "differentElements": ["cvss3", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "3d603651ed1f179b3e883def9e79b6b30136b5f1cb2a7f5e4867a3ba60a69463", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2014-06-10T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-01-12T10:12:52", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:52", "references": [{"idList": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2014-2329", "UB:CVE-2014-2330", "UB:CVE-2014-0243"], "type": "ubuntucve"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["PACKETSTORM:126857"], "type": "packetstorm"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:52", "rev": 2, "value": 5.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:52", "differentElements": ["cvss2", "cvss3"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "916b4dbd7711afe8260f7e1b4a4fd380", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": " - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2014-06-10T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?e2c8fc0b", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669"], "cvelist": ["CVE-2014-2330", "CVE-2014-0243", "CVE-2014-2329"], "immutableFields": [], "lastseen": "2021-07-28T23:33:52", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-0243"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2330", "UB:CVE-2014-2329", "UB:CVE-2014-0243"]}, {"type": "nessus", "idList": ["FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11929.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868379", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867855", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310868317", "OPENVAS:867735"]}, {"type": "fedora", "idList": ["FEDORA:2A62D211DC", "FEDORA:BC09D22176", "FEDORA:53F0A22028", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:1E5B7227FF"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30760"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-07-28T23:33:52", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-07-28T23:33:52", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:33:52", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-6810.NASL", "hash": "290765730a5985939923ebef5f402ddd", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)", "description": "- Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-06-10T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 5.5, "vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}, "href": "https://www.tenable.com/plugins/nessus/74388", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "https://bugzilla.redhat.com/show_bug.cgi?id=1101669", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0243", "http://www.nessus.org/u?e2c8fc0b"], "cvelist": ["CVE-2014-0243", "CVE-2014-2329", "CVE-2014-2330"], "immutableFields": [], "lastseen": "2021-08-11T14:14:22", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-0243", "CVE-2014-2330", "CVE-2014-2329"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-0243", "UB:CVE-2014-2330"]}, {"type": "nessus", "idList": ["CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "CHECK_MK_1_2_3_I5.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "fedora", "idList": ["FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:0667C2255E"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310868317", "OPENVAS:867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13786", "SECURITYVULNS:DOC:30627", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:VULN:13733"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-08-11T14:14:22", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-08-11T14:14:22", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.8"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2014-05-28T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:14:22", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2330", "CVE-2014-2329", "CVE-2014-0243"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-0243", "UB:CVE-2014-2329", "UB:CVE-2014-2330"]}, {"type": "nessus", "idList": ["FEDORA_2014-5139.NASL", "CHECK_MK_AGENT_LINUX_FILE_DISCLOSURE.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11082.NASL", "CHECK_MK_1_2_3_I5.NASL"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "fedora", "idList": ["FEDORA:594E922B06", "FEDORA:0667C2255E", "FEDORA:BC09D22176", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:C1D6124450", "FEDORA:3F3E622B6A", "FEDORA:53F0A22028"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:867720", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867855"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30760", "SECURITYVULNS:VULN:13786"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:126857"]}], "modified": "2021-08-19T12:49:28", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-08-19T12:49:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "74388", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-6810.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(74388);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-0243\", \"CVE-2014-2329\", \"CVE-2014-2330\");\n script_xref(name:\"FEDORA\", value:\"2014-6810\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - Install the mk-job binary on /usr/bin.\n\n - Make sure the proper permissions are given to\n /var/lib/check_mk_agent/job to prevent any hard or\n symlink to be created by a normal user and pointing to\n any file on the filesystem exposing it on the\n check-mk-agent output being run as root.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1101669\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134166.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e2c8fc0b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/05/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p2-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.8"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2014-05-28T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-11929.NASL", "hash": "4cd5132589fdafb57e1c1017bbed6c62", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5338"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "immutableFields": [], "lastseen": "2021-08-19T12:48:05", "history": [{"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "1a6c79955f3910cb117447eef83ecdac6692abd03006e1ea89d9c75139a2c611", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=78249", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2018-08-30T19:52:10", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78249);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:06:08 $\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-08-30T19:52:10", "differentElements": ["cvss", "modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "6a0fc9eee39bd82e99c0e4ace0e03650f66011140928850121392e38419d3374", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2018-12-05T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=78249", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-02-21T01:22:31", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-02-21T01:22:31", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-02-21T01:22:31", "value": 6.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-02-21T01:22:31", "differentElements": ["cvss", "description", "href", "modified", "reporter"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "0aedc1433ac1aee3ea66c3651042ce4fd6fb31b51583f62ac5f25d7da0bd038d", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that", "published": "2014-10-11T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-10-28T20:11:33", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-10-28T20:11:33", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-10-28T20:11:33", "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T20:11:33", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "442387dd86736adb22b834569a39e86fc2ee869834586bb4bb80bdd808efaf7e", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that", "published": "2014-10-11T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-12-13T07:03:52", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-12-13T07:03:52", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T07:03:52", "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T07:03:52", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "21efa009773245cf504ff89e46f7bbece6883d020d518887e0e05521f96fffb2", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2014-10-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2021-01-12T10:12:06", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:06", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:06", "rev": 2, "value": 6.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:06", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "7a5cf7f2f47f6264702b773143914c9b", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2014-10-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?c1899a33"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2021-07-28T23:32:51", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["FEDORA_2014-11160.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11895.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-5338", "UB:CVE-2014-5339", "UB:CVE-2014-2329", "UB:CVE-2014-5340", "UB:CVE-2014-2330"]}, {"type": "cve", "idList": ["CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5339", "CVE-2014-5338"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867855"]}, {"type": "fedora", "idList": ["FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:E37C420316", "FEDORA:3F3E622B6A"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-07-28T23:32:51", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-07-28T23:32:51", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:32:51", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-11929.NASL", "hash": "c54ed40ecbcf6a891d5123770e396b80", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78249", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5340", "http://www.nessus.org/u?c1899a33", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5339"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "immutableFields": [], "lastseen": "2021-08-11T14:12:26", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["FEDORA_2014-11160.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11896.NASL", "FEDORA_2014-5194.NASL", "CHECK_MK_1_2_5_I4.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-5338", "UB:CVE-2014-2330", "UB:CVE-2014-5339", "UB:CVE-2014-5340"]}, {"type": "cve", "idList": ["CVE-2014-5339", "CVE-2014-2329", "CVE-2014-5340", "CVE-2014-5338", "CVE-2014-2330"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867720", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868317", "OPENVAS:867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868379"]}, {"type": "fedora", "idList": ["FEDORA:2A62D211DC", "FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:53F0A22028"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-08-11T14:12:26", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-11T14:12:26", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-10-01T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:12:26", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11896.NASL", "FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-5338"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-5340", "UB:CVE-2014-2330", "UB:CVE-2014-5339", "UB:CVE-2014-2329", "UB:CVE-2014-5338"]}, {"type": "fedora", "idList": ["FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:1E5B7227FF", "FEDORA:E37C420316", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:2CE7621B42"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-08-19T12:48:05", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-19T12:48:05", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78249", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11929.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78249);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11929\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-2.fc19 (2014-11929)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140304.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c1899a33\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-2.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:19"], "solution": "Update the affected check-mk package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-10-01T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-11895.NASL", "hash": "e9c5b8239e6f00de2b473f1d9faa5854", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5339", "http://www.nessus.org/u?a13d3cff", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5338"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "immutableFields": [], "lastseen": "2021-08-19T12:48:20", "history": [{"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "5bc6769a51cbb89d34cbe6cb2e6f78147e3fb935b1ba3ad57804434250e86c2d", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=78247", "reporter": "Tenable", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2016-09-26T17:24:13", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78247);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:06:08 $\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": [], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2016-09-26T17:24:13", "differentElements": ["cpe", "cvss"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "c3b5fe6db8b3771fc84edca01d861ab7729970bd1f8e6883e8e7dc8c639e6a08", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=78247", "reporter": "Tenable", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2018-08-30T19:36:51", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78247);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2015/10/19 22:06:08 $\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-08-30T19:36:51", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "07ccc8d8e3a90c32a42bc0c01927c813934d5b368b04983ca781757fff0f8da3", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that", "published": "2014-10-11T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-12-13T07:03:52", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T07:03:52", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T07:03:52", "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T07:03:52", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "c82b961398cf59d813a814410636eb54eb9f16d30d1ffb9d787f7f81c7d0a2a7", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that", "published": "2014-10-11T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2020-01-01T07:07:15", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-01-01T07:07:15", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2020-01-01T07:07:15", "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T07:07:15", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "63315f6e99a83e8caa18739e9fb0460c58703184f0fec13543013514c5fe2c07", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2014-10-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2021-01-12T10:12:05", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:05", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:05", "rev": 2, "value": 6.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-12T10:12:05", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "660efccc023c5a52a6f351bce0562416", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2014-10-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?a13d3cff", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2021-07-28T23:32:51", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["FEDORA_2014-11160.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-5139.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-5338", "UB:CVE-2014-5339", "UB:CVE-2014-2329", "UB:CVE-2014-5340", "UB:CVE-2014-2330"]}, {"type": "cve", "idList": ["CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5339", "CVE-2014-5338"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867720", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:867735", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867855"]}, {"type": "fedora", "idList": ["FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:1E5B7227FF", "FEDORA:BC09D22176", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:E37C420316", "FEDORA:3F3E622B6A"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:30627"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-07-28T23:32:51", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-07-28T23:32:51", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T23:32:51", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "FEDORA_2014-11895.NASL", "hash": "7625412c83c3330d2e94bee3d910c296", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)", "description": "Do not require any other shell than bash since that's the default shell for the Fedora / RHEL distributions New upstream release providing many security fixes. New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-10-11T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78247", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5339", "http://www.nessus.org/u?a13d3cff"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "immutableFields": [], "lastseen": "2021-08-11T14:12:37", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["FEDORA_2014-11160.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11896.NASL", "FEDORA_2014-5194.NASL", "CHECK_MK_1_2_5_I4.NASL"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-2329", "UB:CVE-2014-5338", "UB:CVE-2014-2330", "UB:CVE-2014-5339", "UB:CVE-2014-5340"]}, {"type": "cve", "idList": ["CVE-2014-5339", "CVE-2014-2329", "CVE-2014-5340", "CVE-2014-5338", "CVE-2014-2330"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310867735", "OPENVAS:1361412562310868229", "OPENVAS:1361412562310867720", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310868317", "OPENVAS:867735", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868379"]}, {"type": "fedora", "idList": ["FEDORA:2A62D211DC", "FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:3F3E622B6A", "FEDORA:594E922B06", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:C1D6124450", "FEDORA:0667C2255E", "FEDORA:53F0A22028"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30627", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-08-11T14:12:37", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-11T14:12:37", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-10-01T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:12:37", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11896.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-6818.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11082.NASL", "FEDORA_2014-11160.NASL"]}, {"type": "cve", "idList": ["CVE-2014-2329", "CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-5338"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2014-5340", "UB:CVE-2014-2330", "UB:CVE-2014-5339", "UB:CVE-2014-2329", "UB:CVE-2014-5338"]}, {"type": "fedora", "idList": ["FEDORA:53F0A22028", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:2A62D211DC", "FEDORA:0667C2255E", "FEDORA:1E5B7227FF", "FEDORA:E37C420316", "FEDORA:594E922B06", "FEDORA:C1D6124450", "FEDORA:2CE7621B42"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310868373", "OPENVAS:1361412562310868379", "OPENVAS:867720", "OPENVAS:1361412562310867862", "OPENVAS:1361412562310868317", "OPENVAS:1361412562310867855", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310867735"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930", "SECURITYVULNS:VULN:13733", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"]}, {"type": "seebug", "idList": ["SSV:61960", "SSV:61946"]}, {"type": "redhat", "idList": ["RHSA-2015:1495"]}], "modified": "2021-08-19T12:48:20", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-19T12:48:20", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78247", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11895.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(78247);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11895\");\n\n script_name(english:\"Fedora 20 : check-mk-1.2.4p5-2.fc20 (2014-11895)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Do not require any other shell than bash since that's the default\nshell for the Fedora / RHEL distributions New upstream release\nproviding many security fixes. New upstream release providing many\nsecurity fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-October/140348.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a13d3cff\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"check-mk-1.2.4p5-2.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:check-mk", "cpe:/o:fedoraproject:fedora:20"], "solution": "Update the affected check-mk package.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2014-10-01T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "FEDORA_2014-11082.NASL", "hash": "6fea7d281b034337035fba8262e5e033", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2021-01-11T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2330", "https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5339", "http://www.nessus.org/u?596642c4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5338"], "cvelist": ["CVE-2014-2329", "CVE-2014-2330", "CVE-2014-5338", "CVE-2014-5339", "CVE-2014-5340"], "immutableFields": [], "lastseen": "2021-08-19T12:48:39", "history": [{"bulletin": {"id": "FEDORA_2014-11082.NASL", "hash": "e6791ab5efa9f5ef146259d15aa46f22e46224ff930bd95bebf09a45ed273cbc", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2019-10-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?596642c4"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-10-28T20:11:33", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-10-28T20:11:33", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-10-28T20:11:33", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "77930", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11082.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(77930);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?596642c4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-10-28T20:11:33", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "FEDORA_2014-11082.NASL", "hash": "e0da8fef1c9bd0a231c839f28be6a9265e059a26d0c5fe6098583a4840ac0ab1", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?596642c4"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2019-12-13T07:03:52", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T07:03:52", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T07:03:52", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "77930", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11082.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(77930);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?596642c4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T07:03:52", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "FEDORA_2014-11082.NASL", "hash": "497d9f56fd112dc9fc98fffd5ece788168c6c76d0bdc3d479ffcd1f4c2524132", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?596642c4"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2020-01-01T07:07:15", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-01-01T07:07:15", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2020-01-01T07:07:15", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "77930", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11082.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(77930);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?596642c4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T07:07:15", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "FEDORA_2014-11082.NASL", "hash": "f54efa91a19f14a1d81a95418b81a4118a31525b6d4c14647075d1657a7f4898", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?596642c4"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2020-02-01T07:09:43", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2020-02-01T07:09:43", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}]}, "score": {"modified": "2020-02-01T07:09:43", "value": 6.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "77930", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11082.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(77930);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/12/05 20:31:21\");\n\n script_cve_id(\"CVE-2014-2329\", \"CVE-2014-2330\", \"CVE-2014-5338\", \"CVE-2014-5339\", \"CVE-2014-5340\");\n script_bugtraq_id(69309, 69310, 69312);\n script_xref(name:\"FEDORA\", value:\"2014-11082\");\n\n script_name(english:\"Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1132337\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2014-September/138714.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?596642c4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected check-mk package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:check-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/09/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"check-mk-1.2.4p5-1.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"check-mk\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:check-mk"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T07:09:43", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "FEDORA_2014-11082.NASL", "hash": "96331b1ced0131af73faf2f6bf39f15373739dacbf63f1a7e47f757b11a6de0a", "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 19 : check-mk-1.2.4p5-1.fc19 (2014-11082)", "description": "New upstream release providing many security fixes.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2014-09-29T00:00:00", "modified": "2014-09-29T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/77930", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1132337", "http://www.nessus.org/u?596642c4"], "cvelist": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "immutableFields": [], "lastseen": "2021-01-12T10:12:03", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-12T10:12:03", "references": [{"idList": ["CVE-2014-5339", "CVE-2014-2330", "CVE-2014-5340", "CVE-2014-2329", "CVE-2014-5338"], "type": "cve"}, {"idList": ["FEDORA:E37C420316", "FEDORA:1E5B7227FF", "FEDORA:2A62D211DC", "FEDORA:53F0A22028", "FEDORA:2CE7621B42", "FEDORA:BC09D22176", "FEDORA:3F3E622B6A", "FEDORA:C1D6124450", "FEDORA:594E922B06", "FEDORA:0667C2255E"], "type": "fedora"}, {"idList": ["FEDORA_2014-11895.NASL", "FEDORA_2014-6810.NASL", "FEDORA_2014-5139.NASL", "FEDORA_2014-11929.NASL", "FEDORA_2014-11160.NASL", "FEDORA_2014-5194.NASL", "FEDORA_2014-10972.NASL", "FEDORA_2014-11896.NASL", "CHECK_MK_1_2_5_I4.NASL", "FEDORA_2014-6818.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2014-5339", "UB:CVE-2014-5338", "UB:CVE-2014-5340", "UB:CVE-2014-2329", "UB:CVE-2014-2330"], "type": "ubuntucve"}, {"idList": ["SECURITYVULNS:VULN:13733", "SECURITYVULNS:VULN:13930", "SECURITYVULNS:DOC:31036", "SECURITYVULNS:DOC:30627"], "type": "securityvulns"}, {"idList": ["SSV:61960", "SSV:61946"], "type": "seebug"}, {"idList": ["OPENVAS:1361412562310867855", "OPENVAS:1361412562310868317", "OPENVAS:867720", "OPENVAS:1361412562310867735", "OPENVAS:1361412562310867720", "OPENVAS:1361412562310868229", "OPENVAS:867735", "OPENVAS:1361412562310868379", "OPENVAS:1361412562310868373", "OPENVAS:1361412562310867862"], "type": "openvas"}, {"idList": ["RHSA-2015:1495"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2021-01-12T10:12:03", "rev": 2, "value": 6.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "77930", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2014-11082.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(77930);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n