home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2003-044.nasl < prev    next >
Text File  |  2005-01-14  |  4KB  |  168 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2003:044
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(14028);
  12.  script_bugtraq_id(7295);
  13.  script_version ("$Revision: 1.3 $");
  14.  script_cve_id("CAN-2003-0196", "CAN-2003-0201");
  15.  
  16.  name["english"] = "MDKSA-2003:044: samba";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2003:044 (samba).
  22.  
  23.  
  24. An exploitable buffer overflow was discovered in the Samba server that can lead
  25. to an anonymous remote root compromise. The Samba Team also discovered some
  26. potential overflows during an internal code audit which was done in response to
  27. the previously noted buffer overflow problem.
  28. All versions of Samba prior to 2.2.8a are vulnerable. The provided updates
  29. contain a patch from the Samba Team to correct the issue.
  30. An exploit is known to exist and all Mandrake Linux users are encouraged to
  31. upgrade immediately.
  32.  
  33.  
  34. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:044
  35. Risk factor : High";
  36.  
  37.  
  38.  
  39.  script_description(english:desc["english"]);
  40.  
  41.  summary["english"] = "Check for the version of the samba package";
  42.  script_summary(english:summary["english"]);
  43.  
  44.  script_category(ACT_GATHER_INFO);
  45.  
  46.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  47.  family["english"] = "Mandrake Local Security Checks";
  48.  script_family(english:family["english"]);
  49.  
  50.  script_dependencies("ssh_get_info.nasl");
  51.  script_require_keys("Host/Mandrake/rpm-list");
  52.  exit(0);
  53. }
  54.  
  55. include("rpm.inc");
  56. if ( rpm_check( reference:"nss_wins-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  57. {
  58.  security_hole(0);
  59.  exit(0);
  60. }
  61. if ( rpm_check( reference:"samba-client-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  62. {
  63.  security_hole(0);
  64.  exit(0);
  65. }
  66. if ( rpm_check( reference:"samba-common-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  67. {
  68.  security_hole(0);
  69.  exit(0);
  70. }
  71. if ( rpm_check( reference:"samba-doc-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  72. {
  73.  security_hole(0);
  74.  exit(0);
  75. }
  76. if ( rpm_check( reference:"samba-server-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  77. {
  78.  security_hole(0);
  79.  exit(0);
  80. }
  81. if ( rpm_check( reference:"samba-swat-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  82. {
  83.  security_hole(0);
  84.  exit(0);
  85. }
  86. if ( rpm_check( reference:"samba-winbind-2.2.7a-9.2mdk", release:"MDK8.2", yank:"mdk") )
  87. {
  88.  security_hole(0);
  89.  exit(0);
  90. }
  91. if ( rpm_check( reference:"nss_wins-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  92. {
  93.  security_hole(0);
  94.  exit(0);
  95. }
  96. if ( rpm_check( reference:"samba-client-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  97. {
  98.  security_hole(0);
  99.  exit(0);
  100. }
  101. if ( rpm_check( reference:"samba-common-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  102. {
  103.  security_hole(0);
  104.  exit(0);
  105. }
  106. if ( rpm_check( reference:"samba-doc-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  107. {
  108.  security_hole(0);
  109.  exit(0);
  110. }
  111. if ( rpm_check( reference:"samba-server-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  112. {
  113.  security_hole(0);
  114.  exit(0);
  115. }
  116. if ( rpm_check( reference:"samba-swat-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  117. {
  118.  security_hole(0);
  119.  exit(0);
  120. }
  121. if ( rpm_check( reference:"samba-winbind-2.2.7a-9.2mdk", release:"MDK9.0", yank:"mdk") )
  122. {
  123.  security_hole(0);
  124.  exit(0);
  125. }
  126. if ( rpm_check( reference:"nss_wins-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  127. {
  128.  security_hole(0);
  129.  exit(0);
  130. }
  131. if ( rpm_check( reference:"samba-client-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  132. {
  133.  security_hole(0);
  134.  exit(0);
  135. }
  136. if ( rpm_check( reference:"samba-common-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  137. {
  138.  security_hole(0);
  139.  exit(0);
  140. }
  141. if ( rpm_check( reference:"samba-doc-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  142. {
  143.  security_hole(0);
  144.  exit(0);
  145. }
  146. if ( rpm_check( reference:"samba-server-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  147. {
  148.  security_hole(0);
  149.  exit(0);
  150. }
  151. if ( rpm_check( reference:"samba-swat-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  152. {
  153.  security_hole(0);
  154.  exit(0);
  155. }
  156. if ( rpm_check( reference:"samba-winbind-2.2.7a-9.2mdk", release:"MDK9.1", yank:"mdk") )
  157. {
  158.  security_hole(0);
  159.  exit(0);
  160. }
  161. if (rpm_exists(rpm:"samba-", release:"MDK8.2")
  162.  || rpm_exists(rpm:"samba-", release:"MDK9.0")
  163.  || rpm_exists(rpm:"samba-", release:"MDK9.1") )
  164. {
  165.  set_kb_item(name:"CAN-2003-0196", value:TRUE);
  166.  set_kb_item(name:"CAN-2003-0201", value:TRUE);
  167. }
  168.