home *** CD-ROM | disk | FTP | other *** search

---

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2004-065.nasl

< prev

next >

Wrap

Text File  |  2005-01-14  |  3KB  |  121 lines

---

1. #
2. # (C) Tenable Network Security
3. #
4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2004:065
5. #
6.  
7.  
8. if ( ! defined_func("bn_random") ) exit(0);
9. if(description)
10. {
11.  script_id(14164);
12.  script_bugtraq_id(10508);
13.  script_version ("$Revision: 1.3 $");
14.  script_cve_id("CAN-2004-0492");
15.  
16.  name["english"] = "MDKSA-2004:065: apache";
17.  
18.  script_name(english:name["english"]);
19.  
20.  desc["english"] = "
21. The remote host is missing the patch for the advisory MDKSA-2004:065 (apache).
22.  
23.  
24. A buffer overflow vulnerability was found by George Guninski in Apache's
25. mod_proxy module, which can be exploited by a remote user to potentially execute
26. arbitrary code with the privileges of an httpd child process (user apache). This
27. can only be exploited, however, if mod_proxy is actually in use.
28. It is recommended that you stop Apache prior to updating and then restart it
29. again once the update is complete ('service httpd stop' and 'service httpd
30. start' respectively).
31.  
32.  
33. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:065
34. Risk factor : High";
35.  
36.  
37.  
38.  script_description(english:desc["english"]);
39.  
40.  summary["english"] = "Check for the version of the apache package";
41.  script_summary(english:summary["english"]);
42.  
43.  script_category(ACT_GATHER_INFO);
44.  
45.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
46.  family["english"] = "Mandrake Local Security Checks";
47.  script_family(english:family["english"]);
48.  
49.  script_dependencies("ssh_get_info.nasl");
50.  script_require_keys("Host/Mandrake/rpm-list");
51.  exit(0);
52. }
53.  
54. include("rpm.inc");
55. if ( rpm_check( reference:"apache-1.3.29-1.2.100mdk", release:"MDK10.0", yank:"mdk") )
56. {
57.  security_hole(0);
58.  exit(0);
59. }
60. if ( rpm_check( reference:"apache-devel-1.3.29-1.2.100mdk", release:"MDK10.0", yank:"mdk") )
61. {
62.  security_hole(0);
63.  exit(0);
64. }
65. if ( rpm_check( reference:"apache-modules-1.3.29-1.2.100mdk", release:"MDK10.0", yank:"mdk") )
66. {
67.  security_hole(0);
68.  exit(0);
69. }
70. if ( rpm_check( reference:"apache-source-1.3.29-1.2.100mdk", release:"MDK10.0", yank:"mdk") )
71. {
72.  security_hole(0);
73.  exit(0);
74. }
75. if ( rpm_check( reference:"apache-1.3.27-8.3.91mdk", release:"MDK9.1", yank:"mdk") )
76. {
77.  security_hole(0);
78.  exit(0);
79. }
80. if ( rpm_check( reference:"apache-devel-1.3.27-8.3.91mdk", release:"MDK9.1", yank:"mdk") )
81. {
82.  security_hole(0);
83.  exit(0);
84. }
85. if ( rpm_check( reference:"apache-modules-1.3.27-8.3.91mdk", release:"MDK9.1", yank:"mdk") )
86. {
87.  security_hole(0);
88.  exit(0);
89. }
90. if ( rpm_check( reference:"apache-source-1.3.27-8.3.91mdk", release:"MDK9.1", yank:"mdk") )
91. {
92.  security_hole(0);
93.  exit(0);
94. }
95. if ( rpm_check( reference:"apache-1.3.28-3.3.92mdk", release:"MDK9.2", yank:"mdk") )
96. {
97.  security_hole(0);
98.  exit(0);
99. }
100. if ( rpm_check( reference:"apache-devel-1.3.28-3.3.92mdk", release:"MDK9.2", yank:"mdk") )
101. {
102.  security_hole(0);
103.  exit(0);
104. }
105. if ( rpm_check( reference:"apache-modules-1.3.28-3.3.92mdk", release:"MDK9.2", yank:"mdk") )
106. {
107.  security_hole(0);
108.  exit(0);
109. }
110. if ( rpm_check( reference:"apache-source-1.3.28-3.3.92mdk", release:"MDK9.2", yank:"mdk") )
111. {
112.  security_hole(0);
113.  exit(0);
114. }
115. if (rpm_exists(rpm:"apache-", release:"MDK10.0")
116.  || rpm_exists(rpm:"apache-", release:"MDK9.1")
117.  || rpm_exists(rpm:"apache-", release:"MDK9.2") )
118. {
119.  set_kb_item(name:"CAN-2004-0492", value:TRUE);
120. }
121.