home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2003-058.nasl < prev    next >
Text File  |  2005-01-14  |  4KB  |  140 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2003:058-1
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(14042);
  12.  script_version ("$Revision: 1.3 $");
  13.  script_cve_id("CAN-2003-0289");
  14.  
  15.  name["english"] = "MDKSA-2003:058-1: cdrecord";
  16.  
  17.  script_name(english:name["english"]);
  18.  
  19.  desc["english"] = "
  20. The remote host is missing the patch for the advisory MDKSA-2003:058-1 (cdrecord).
  21.  
  22.  
  23. A vulnerability in cdrecord was discovered that can be used to obtain root
  24. access because Mandrake Linux ships with the cdrecord binary suid root and sgid
  25. cdwriter.
  26. Updated packages are provided that fix this vulnerability. You may also elect to
  27. remove the suid and sgid bits from cdrecord manually, which can be done by
  28. executing, as root:
  29. chmod ug-s /usr/bin/cdrecord
  30. This is not required to protect yourself from this particular vulnerability,
  31. however.
  32. Update:
  33. Two additional format string problems were discovered by Olaf Kirch and an
  34. updated patch has been applied to fix those problems as well.
  35.  
  36.  
  37. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:058-1
  38. Risk factor : High";
  39.  
  40.  
  41.  
  42.  script_description(english:desc["english"]);
  43.  
  44.  summary["english"] = "Check for the version of the cdrecord package";
  45.  script_summary(english:summary["english"]);
  46.  
  47.  script_category(ACT_GATHER_INFO);
  48.  
  49.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  50.  family["english"] = "Mandrake Local Security Checks";
  51.  script_family(english:family["english"]);
  52.  
  53.  script_dependencies("ssh_get_info.nasl");
  54.  script_require_keys("Host/Mandrake/rpm-list");
  55.  exit(0);
  56. }
  57.  
  58. include("rpm.inc");
  59. if ( rpm_check( reference:"cdrecord-1.11-0.a31.1.3mdk", release:"MDK8.2", yank:"mdk") )
  60. {
  61.  security_hole(0);
  62.  exit(0);
  63. }
  64. if ( rpm_check( reference:"cdrecord-cdda2wav-1.11-0.a31.1.3mdk", release:"MDK8.2", yank:"mdk") )
  65. {
  66.  security_hole(0);
  67.  exit(0);
  68. }
  69. if ( rpm_check( reference:"cdrecord-devel-1.11-0.a31.1.3mdk", release:"MDK8.2", yank:"mdk") )
  70. {
  71.  security_hole(0);
  72.  exit(0);
  73. }
  74. if ( rpm_check( reference:"cdrecord-dvdhack-1.11-0.a31.1.3mdk", release:"MDK8.2", yank:"mdk") )
  75. {
  76.  security_hole(0);
  77.  exit(0);
  78. }
  79. if ( rpm_check( reference:"mkisofs-1.15-0.a31.1.3mdk", release:"MDK8.2", yank:"mdk") )
  80. {
  81.  security_hole(0);
  82.  exit(0);
  83. }
  84. if ( rpm_check( reference:"cdrecord-1.11-0.a32.3mdk", release:"MDK9.0", yank:"mdk") )
  85. {
  86.  security_hole(0);
  87.  exit(0);
  88. }
  89. if ( rpm_check( reference:"cdrecord-cdda2wav-1.11-0.a32.3mdk", release:"MDK9.0", yank:"mdk") )
  90. {
  91.  security_hole(0);
  92.  exit(0);
  93. }
  94. if ( rpm_check( reference:"cdrecord-devel-1.11-0.a32.3mdk", release:"MDK9.0", yank:"mdk") )
  95. {
  96.  security_hole(0);
  97.  exit(0);
  98. }
  99. if ( rpm_check( reference:"cdrecord-dvdhack-1.11-0.a32.3mdk", release:"MDK9.0", yank:"mdk") )
  100. {
  101.  security_hole(0);
  102.  exit(0);
  103. }
  104. if ( rpm_check( reference:"mkisofs-1.15-0.a32.3mdk", release:"MDK9.0", yank:"mdk") )
  105. {
  106.  security_hole(0);
  107.  exit(0);
  108. }
  109. if ( rpm_check( reference:"cdrecord-2.0-2.2mdk", release:"MDK9.1", yank:"mdk") )
  110. {
  111.  security_hole(0);
  112.  exit(0);
  113. }
  114. if ( rpm_check( reference:"cdrecord-cdda2wav-2.0-2.2mdk", release:"MDK9.1", yank:"mdk") )
  115. {
  116.  security_hole(0);
  117.  exit(0);
  118. }
  119. if ( rpm_check( reference:"cdrecord-devel-2.0-2.2mdk", release:"MDK9.1", yank:"mdk") )
  120. {
  121.  security_hole(0);
  122.  exit(0);
  123. }
  124. if ( rpm_check( reference:"cdrecord-dvdhack-2.0-2.2mdk", release:"MDK9.1", yank:"mdk") )
  125. {
  126.  security_hole(0);
  127.  exit(0);
  128. }
  129. if ( rpm_check( reference:"mkisofs-2.0-2.2mdk", release:"MDK9.1", yank:"mdk") )
  130. {
  131.  security_hole(0);
  132.  exit(0);
  133. }
  134. if (rpm_exists(rpm:"cdrecord-", release:"MDK8.2")
  135.  || rpm_exists(rpm:"cdrecord-", release:"MDK9.0")
  136.  || rpm_exists(rpm:"cdrecord-", release:"MDK9.1") )
  137. {
  138.  set_kb_item(name:"CAN-2003-0289", value:TRUE);
  139. }
  140.