home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2003-002.nasl < prev    next >
Text File  |  2005-01-14  |  2KB  |  83 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2003:002
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(13987);
  12.  script_bugtraq_id(6475);
  13.  script_version ("$Revision: 1.3 $");
  14.  script_cve_id("CAN-2002-1384");
  15.  
  16.  name["english"] = "MDKSA-2003:002: xpdf";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2003:002 (xpdf).
  22.  
  23.  
  24. The pdftops filter found in both the xpdf and CUPS packages suffers from an
  25. integer overflow that can be exploited to gain the privilege of the victim user.
  26.  
  27.  
  28. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002
  29. Risk factor : High";
  30.  
  31.  
  32.  
  33.  script_description(english:desc["english"]);
  34.  
  35.  summary["english"] = "Check for the version of the xpdf package";
  36.  script_summary(english:summary["english"]);
  37.  
  38.  script_category(ACT_GATHER_INFO);
  39.  
  40.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  41.  family["english"] = "Mandrake Local Security Checks";
  42.  script_family(english:family["english"]);
  43.  
  44.  script_dependencies("ssh_get_info.nasl");
  45.  script_require_keys("Host/Mandrake/rpm-list");
  46.  exit(0);
  47. }
  48.  
  49. include("rpm.inc");
  50. if ( rpm_check( reference:"xpdf-1.01-4.2mdk", release:"MDK7.2", yank:"mdk") )
  51. {
  52.  security_hole(0);
  53.  exit(0);
  54. }
  55. if ( rpm_check( reference:"xpdf-1.01-4.1mdk", release:"MDK8.0", yank:"mdk") )
  56. {
  57.  security_hole(0);
  58.  exit(0);
  59. }
  60. if ( rpm_check( reference:"xpdf-1.01-4.1mdk", release:"MDK8.1", yank:"mdk") )
  61. {
  62.  security_hole(0);
  63.  exit(0);
  64. }
  65. if ( rpm_check( reference:"xpdf-1.01-4.1mdk", release:"MDK8.2", yank:"mdk") )
  66. {
  67.  security_hole(0);
  68.  exit(0);
  69. }
  70. if ( rpm_check( reference:"xpdf-1.01-4.1mdk", release:"MDK9.0", yank:"mdk") )
  71. {
  72.  security_hole(0);
  73.  exit(0);
  74. }
  75. if (rpm_exists(rpm:"xpdf-", release:"MDK7.2")
  76.  || rpm_exists(rpm:"xpdf-", release:"MDK8.0")
  77.  || rpm_exists(rpm:"xpdf-", release:"MDK8.1")
  78.  || rpm_exists(rpm:"xpdf-", release:"MDK8.2")
  79.  || rpm_exists(rpm:"xpdf-", release:"MDK9.0") )
  80. {
  81.  set_kb_item(name:"CAN-2002-1384", value:TRUE);
  82. }
  83.