home *** CD-ROM | disk | FTP | other *** search

---

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2002-069.nasl

< prev

next >

Wrap

Text File  |  2005-01-14  |  3KB  |  100 lines

---

1. #
2. # (C) Tenable Network Security
3. #
4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2002:069
5. #
6.  
7.  
8. if ( ! defined_func("bn_random") ) exit(0);
9. if(description)
10. {
11.  script_id(13969);
12.  script_version ("$Revision: 1.2 $");
13.  script_cve_id("CAN-2002-0838");
14.  
15.  name["english"] = "MDKSA-2002:069: gv";
16.  
17.  script_name(english:name["english"]);
18.  
19.  desc["english"] = "
20. The remote host is missing the patch for the advisory MDKSA-2002:069 (gv).
21.  
22.  
23. A buffer overflow was discovered in gv versions 3.5.8 and earlier by Zen Parse.
24. The problem is triggered by scanning a file and can be exploited by an attacker
25. sending a malformed PostScript or PDF file. This would result in arbitrary code
26. being executed with the privilege of the user viewing the file. ggv uses code
27. derived from gv and has the same vulnerability. These updates provide patched
28. versions of gv and ggv to fix the vulnerabilities.
29.  
30.  
31. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:069
32. Risk factor : High";
33.  
34.  
35.  
36.  script_description(english:desc["english"]);
37.  
38.  summary["english"] = "Check for the version of the gv package";
39.  script_summary(english:summary["english"]);
40.  
41.  script_category(ACT_GATHER_INFO);
42.  
43.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
44.  family["english"] = "Mandrake Local Security Checks";
45.  script_family(english:family["english"]);
46.  
47.  script_dependencies("ssh_get_info.nasl");
48.  script_require_keys("Host/Mandrake/rpm-list");
49.  exit(0);
50. }
51.  
52. include("rpm.inc");
53. if ( rpm_check( reference:"ggv-1.1.0-1.1mdk", release:"MDK8.0", yank:"mdk") )
54. {
55.  security_hole(0);
56.  exit(0);
57. }
58. if ( rpm_check( reference:"gv-3.5.8-18.1mdk", release:"MDK8.0", yank:"mdk") )
59. {
60.  security_hole(0);
61.  exit(0);
62. }
63. if ( rpm_check( reference:"ggv-1.1.0-1.1mdk", release:"MDK8.1", yank:"mdk") )
64. {
65.  security_hole(0);
66.  exit(0);
67. }
68. if ( rpm_check( reference:"gv-3.5.8-27.1mdk", release:"MDK8.1", yank:"mdk") )
69. {
70.  security_hole(0);
71.  exit(0);
72. }
73. if ( rpm_check( reference:"ggv-1.1.94-2.1mdk", release:"MDK8.2", yank:"mdk") )
74. {
75.  security_hole(0);
76.  exit(0);
77. }
78. if ( rpm_check( reference:"gv-3.5.8-27.1mdk", release:"MDK8.2", yank:"mdk") )
79. {
80.  security_hole(0);
81.  exit(0);
82. }
83. if ( rpm_check( reference:"ggv-1.99.9-1.1mdk", release:"MDK9.0", yank:"mdk") )
84. {
85.  security_hole(0);
86.  exit(0);
87. }
88. if ( rpm_check( reference:"gv-3.5.8-27.1mdk", release:"MDK9.0", yank:"mdk") )
89. {
90.  security_hole(0);
91.  exit(0);
92. }
93. if (rpm_exists(rpm:"gv-", release:"MDK8.0")
94.  || rpm_exists(rpm:"gv-", release:"MDK8.1")
95.  || rpm_exists(rpm:"gv-", release:"MDK8.2")
96.  || rpm_exists(rpm:"gv-", release:"MDK9.0") )
97. {
98.  set_kb_item(name:"CAN-2002-0838", value:TRUE);
99. }
100.