home *** CD-ROM | disk | FTP | other *** search

---

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2002-032.nasl

< prev

next >

Wrap

Text File  |  2005-01-14  |  3KB  |  110 lines

---

1. #
2. # (C) Tenable Network Security
3. #
4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2002:032
5. #
6.  
7.  
8. if ( ! defined_func("bn_random") ) exit(0);
9. if(description)
10. {
11.  script_id(13938);
12.  script_version ("$Revision: 1.2 $");
13.  
14.  name["english"] = "MDKSA-2002:032: tcpdump";
15.  
16.  script_name(english:name["english"]);
17.  
18.  desc["english"] = "
19. The remote host is missing the patch for the advisory MDKSA-2002:032 (tcpdump).
20.  
21.  
22. Several buffer overflows were found in the tcpdump package by FreeBSD developers
23. during a code audit, in versions prior to 3.5. However, newer versions of
24. tcpdump, including 3.6.2, are also vulnerable to another buffer overflow in the
25. AFS RPC decoding functions, which was discovered by Nick Cleaton. These
26. vulnerabilities could be used by a remote attacker to crash the the tcpdump
27. process or possibly even be exploited to execute arbitrary code as the user
28. running tcpdump, which is usually root.
29. The newer libpcap 0.6 has also been audited to make it more safe by implementing
30. better buffer boundary checks in several functions.
31.  
32.  
33. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:032
34. Risk factor : High";
35.  
36.  
37.  
38.  script_description(english:desc["english"]);
39.  
40.  summary["english"] = "Check for the version of the tcpdump package";
41.  script_summary(english:summary["english"]);
42.  
43.  script_category(ACT_GATHER_INFO);
44.  
45.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
46.  family["english"] = "Mandrake Local Security Checks";
47.  script_family(english:family["english"]);
48.  
49.  script_dependencies("ssh_get_info.nasl");
50.  script_require_keys("Host/Mandrake/rpm-list");
51.  exit(0);
52. }
53.  
54. include("rpm.inc");
55. if ( rpm_check( reference:"libpcap-0.6.2-3.2mdk", release:"MDK7.1", yank:"mdk") )
56. {
57.  security_hole(0);
58.  exit(0);
59. }
60. if ( rpm_check( reference:"libpcap-devel-0.6.2-3.2mdk", release:"MDK7.1", yank:"mdk") )
61. {
62.  security_hole(0);
63.  exit(0);
64. }
65. if ( rpm_check( reference:"tcpdump-3.6.2-2.2mdk", release:"MDK7.1", yank:"mdk") )
66. {
67.  security_hole(0);
68.  exit(0);
69. }
70. if ( rpm_check( reference:"libpcap-0.6.2-3.2mdk", release:"MDK7.2", yank:"mdk") )
71. {
72.  security_hole(0);
73.  exit(0);
74. }
75. if ( rpm_check( reference:"libpcap-devel-0.6.2-3.2mdk", release:"MDK7.2", yank:"mdk") )
76. {
77.  security_hole(0);
78.  exit(0);
79. }
80. if ( rpm_check( reference:"tcpdump-3.6.2-2.2mdk", release:"MDK7.2", yank:"mdk") )
81. {
82.  security_hole(0);
83.  exit(0);
84. }
85. if ( rpm_check( reference:"libpcap0-0.6.2-3.1mdk", release:"MDK8.0", yank:"mdk") )
86. {
87.  security_hole(0);
88.  exit(0);
89. }
90. if ( rpm_check( reference:"libpcap0-devel-0.6.2-3.1mdk", release:"MDK8.0", yank:"mdk") )
91. {
92.  security_hole(0);
93.  exit(0);
94. }
95. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.0", yank:"mdk") )
96. {
97.  security_hole(0);
98.  exit(0);
99. }
100. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.1", yank:"mdk") )
101. {
102.  security_hole(0);
103.  exit(0);
104. }
105. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.2", yank:"mdk") )
106. {
107.  security_hole(0);
108.  exit(0);
109. }
110.