home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2002-068.nasl < prev    next >
Text File  |  2005-01-14  |  6KB  |  219 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2002:068
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(13968);
  12.  script_bugtraq_id(5847, 5884, 5887, 5995, 5996);
  13.  script_version ("$Revision: 1.4 $");
  14.  script_cve_id("CAN-2002-0839", "CAN-2002-0840", "CAN-2002-0843");
  15.  
  16.  name["english"] = "MDKSA-2002:068: apache";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2002:068 (apache).
  22.  
  23.  
  24. A number of vulnerabilities were discovered in Apache versions prior to 1.3.27.
  25. The first is regarding the use of shared memory (SHM) in Apache. An attacker
  26. that is able to execute code as the UID of the webserver (typically 'apache') is
  27. able to send arbitrary processes a USR1 signal as root. Using this
  28. vulnerability, the attacker can also cause the Apache process to continously
  29. span more children processes, thus causing a local DoS. Another vulnerability
  30. was discovered by Matthew Murphy regarding a cross site scripting vulnerability
  31. in the standard 404 error page. Finally, some buffer overflows were found in the
  32. 'ab' benchmark program that is included with Apache.
  33. All of these vulnerabilities were fixed in Apache 1.3.27; the packages provided
  34. have these fixes applied.
  35.  
  36.  
  37. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:068
  38. Risk factor : High";
  39.  
  40.  
  41.  
  42.  script_description(english:desc["english"]);
  43.  
  44.  summary["english"] = "Check for the version of the apache package";
  45.  script_summary(english:summary["english"]);
  46.  
  47.  script_category(ACT_GATHER_INFO);
  48.  
  49.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  50.  family["english"] = "Mandrake Local Security Checks";
  51.  script_family(english:family["english"]);
  52.  
  53.  script_dependencies("ssh_get_info.nasl");
  54.  script_require_keys("Host/Mandrake/rpm-list");
  55.  exit(0);
  56. }
  57.  
  58. include("rpm.inc");
  59. if ( rpm_check( reference:"apache-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  60. {
  61.  security_hole(0);
  62.  exit(0);
  63. }
  64. if ( rpm_check( reference:"apache-common-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  65. {
  66.  security_hole(0);
  67.  exit(0);
  68. }
  69. if ( rpm_check( reference:"apache-devel-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  70. {
  71.  security_hole(0);
  72.  exit(0);
  73. }
  74. if ( rpm_check( reference:"apache-manual-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  75. {
  76.  security_hole(0);
  77.  exit(0);
  78. }
  79. if ( rpm_check( reference:"apache-modules-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  80. {
  81.  security_hole(0);
  82.  exit(0);
  83. }
  84. if ( rpm_check( reference:"apache-source-1.3.22-10.2mdk", release:"MDK7.2", yank:"mdk") )
  85. {
  86.  security_hole(0);
  87.  exit(0);
  88. }
  89. if ( rpm_check( reference:"apache-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  90. {
  91.  security_hole(0);
  92.  exit(0);
  93. }
  94. if ( rpm_check( reference:"apache-common-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  95. {
  96.  security_hole(0);
  97.  exit(0);
  98. }
  99. if ( rpm_check( reference:"apache-devel-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  100. {
  101.  security_hole(0);
  102.  exit(0);
  103. }
  104. if ( rpm_check( reference:"apache-manual-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  105. {
  106.  security_hole(0);
  107.  exit(0);
  108. }
  109. if ( rpm_check( reference:"apache-modules-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  110. {
  111.  security_hole(0);
  112.  exit(0);
  113. }
  114. if ( rpm_check( reference:"apache-source-1.3.22-10.2mdk", release:"MDK8.0", yank:"mdk") )
  115. {
  116.  security_hole(0);
  117.  exit(0);
  118. }
  119. if ( rpm_check( reference:"apache-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  120. {
  121.  security_hole(0);
  122.  exit(0);
  123. }
  124. if ( rpm_check( reference:"apache-common-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  125. {
  126.  security_hole(0);
  127.  exit(0);
  128. }
  129. if ( rpm_check( reference:"apache-devel-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  130. {
  131.  security_hole(0);
  132.  exit(0);
  133. }
  134. if ( rpm_check( reference:"apache-manual-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  135. {
  136.  security_hole(0);
  137.  exit(0);
  138. }
  139. if ( rpm_check( reference:"apache-modules-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  140. {
  141.  security_hole(0);
  142.  exit(0);
  143. }
  144. if ( rpm_check( reference:"apache-source-1.3.22-10.2mdk", release:"MDK8.1", yank:"mdk") )
  145. {
  146.  security_hole(0);
  147.  exit(0);
  148. }
  149. if ( rpm_check( reference:"apache-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  150. {
  151.  security_hole(0);
  152.  exit(0);
  153. }
  154. if ( rpm_check( reference:"apache-common-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  155. {
  156.  security_hole(0);
  157.  exit(0);
  158. }
  159. if ( rpm_check( reference:"apache-devel-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  160. {
  161.  security_hole(0);
  162.  exit(0);
  163. }
  164. if ( rpm_check( reference:"apache-manual-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  165. {
  166.  security_hole(0);
  167.  exit(0);
  168. }
  169. if ( rpm_check( reference:"apache-modules-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  170. {
  171.  security_hole(0);
  172.  exit(0);
  173. }
  174. if ( rpm_check( reference:"apache-source-1.3.23-4.2mdk", release:"MDK8.2", yank:"mdk") )
  175. {
  176.  security_hole(0);
  177.  exit(0);
  178. }
  179. if ( rpm_check( reference:"apache-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  180. {
  181.  security_hole(0);
  182.  exit(0);
  183. }
  184. if ( rpm_check( reference:"apache-common-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  185. {
  186.  security_hole(0);
  187.  exit(0);
  188. }
  189. if ( rpm_check( reference:"apache-devel-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  190. {
  191.  security_hole(0);
  192.  exit(0);
  193. }
  194. if ( rpm_check( reference:"apache-manual-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  195. {
  196.  security_hole(0);
  197.  exit(0);
  198. }
  199. if ( rpm_check( reference:"apache-modules-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  200. {
  201.  security_hole(0);
  202.  exit(0);
  203. }
  204. if ( rpm_check( reference:"apache-source-1.3.26-6.1mdk", release:"MDK9.0", yank:"mdk") )
  205. {
  206.  security_hole(0);
  207.  exit(0);
  208. }
  209. if (rpm_exists(rpm:"apache-", release:"MDK7.2")
  210.  || rpm_exists(rpm:"apache-", release:"MDK8.0")
  211.  || rpm_exists(rpm:"apache-", release:"MDK8.1")
  212.  || rpm_exists(rpm:"apache-", release:"MDK8.2")
  213.  || rpm_exists(rpm:"apache-", release:"MDK9.0") )
  214. {
  215.  set_kb_item(name:"CAN-2002-0839", value:TRUE);
  216.  set_kb_item(name:"CAN-2002-0840", value:TRUE);
  217.  set_kb_item(name:"CAN-2002-0843", value:TRUE);
  218. }
  219.