home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2004-035.nasl < prev    next >
Text File  |  2005-01-14  |  4KB  |  135 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2004:035
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(14134);
  12.  script_bugtraq_id(9619);
  13.  script_version ("$Revision: 1.3 $");
  14.  script_cve_id("CAN-2004-0186");
  15.  
  16.  name["english"] = "MDKSA-2004:035: samba";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2004:035 (samba).
  22.  
  23.  
  24. A vulnerability was discovered in samba where a local user could use the smbmnt
  25. utility, which is shipped suid root, to mount a file share from a remote server
  26. which would contain a setuid program under the control of the user. By executing
  27. this setuid program, the local user could elevate their privileges on the local
  28. system.
  29. The updated packages are patched to prevent this problem. The version of samba
  30. shipped with Mandrakelinux 10.0 does not have this problem.
  31.  
  32.  
  33. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:035
  34. Risk factor : High";
  35.  
  36.  
  37.  
  38.  script_description(english:desc["english"]);
  39.  
  40.  summary["english"] = "Check for the version of the samba package";
  41.  script_summary(english:summary["english"]);
  42.  
  43.  script_category(ACT_GATHER_INFO);
  44.  
  45.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  46.  family["english"] = "Mandrake Local Security Checks";
  47.  script_family(english:family["english"]);
  48.  
  49.  script_dependencies("ssh_get_info.nasl");
  50.  script_require_keys("Host/Mandrake/rpm-list");
  51.  exit(0);
  52. }
  53.  
  54. include("rpm.inc");
  55. if ( rpm_check( reference:"nss_wins-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  56. {
  57.  security_hole(0);
  58.  exit(0);
  59. }
  60. if ( rpm_check( reference:"samba-client-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  61. {
  62.  security_hole(0);
  63.  exit(0);
  64. }
  65. if ( rpm_check( reference:"samba-common-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  66. {
  67.  security_hole(0);
  68.  exit(0);
  69. }
  70. if ( rpm_check( reference:"samba-server-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  71. {
  72.  security_hole(0);
  73.  exit(0);
  74. }
  75. if ( rpm_check( reference:"samba-swat-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  76. {
  77.  security_hole(0);
  78.  exit(0);
  79. }
  80. if ( rpm_check( reference:"samba-winbind-2.2.7a-9.3.91mdk", release:"MDK9.1", yank:"mdk") )
  81. {
  82.  security_hole(0);
  83.  exit(0);
  84. }
  85. if ( rpm_check( reference:"libsmbclient0-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  86. {
  87.  security_hole(0);
  88.  exit(0);
  89. }
  90. if ( rpm_check( reference:"libsmbclient0-devel-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  91. {
  92.  security_hole(0);
  93.  exit(0);
  94. }
  95. if ( rpm_check( reference:"nss_wins-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  96. {
  97.  security_hole(0);
  98.  exit(0);
  99. }
  100. if ( rpm_check( reference:"samba-client-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  101. {
  102.  security_hole(0);
  103.  exit(0);
  104. }
  105. if ( rpm_check( reference:"samba-common-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  106. {
  107.  security_hole(0);
  108.  exit(0);
  109. }
  110. if ( rpm_check( reference:"samba-debug-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  111. {
  112.  security_hole(0);
  113.  exit(0);
  114. }
  115. if ( rpm_check( reference:"samba-server-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  116. {
  117.  security_hole(0);
  118.  exit(0);
  119. }
  120. if ( rpm_check( reference:"samba-swat-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  121. {
  122.  security_hole(0);
  123.  exit(0);
  124. }
  125. if ( rpm_check( reference:"samba-winbind-2.2.8a-13.1.92mdk", release:"MDK9.2", yank:"mdk") )
  126. {
  127.  security_hole(0);
  128.  exit(0);
  129. }
  130. if (rpm_exists(rpm:"samba-", release:"MDK9.1")
  131.  || rpm_exists(rpm:"samba-", release:"MDK9.2") )
  132. {
  133.  set_kb_item(name:"CAN-2004-0186", value:TRUE);
  134. }
  135.