home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2004-086.nasl < prev    next >
Text File  |  2005-01-14  |  7KB  |  232 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2004:086
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(14335);
  12.  script_bugtraq_id(10991, 11186, 11552);
  13.  script_version ("$Revision: 1.6 $");
  14.  script_cve_id("CAN-2004-0689", "CAN-2004-0690", "CAN-2004-0721", "CAN-2004-0746");
  15.  
  16.  name["english"] = "MDKSA-2004:086: kdelibs/kdebase";
  17.  
  18.  script_name(english:name["english"]);
  19.  
  20.  desc["english"] = "
  21. The remote host is missing the patch for the advisory MDKSA-2004:086 (kdelibs/kdebase).
  22.  
  23.  
  24. A number of vulnerabilities were discovered in KDE that are corrected with these
  25. update packages.
  26. The integrity of symlinks used by KDE are not ensured and as a result can be
  27. abused by local attackers to create or truncate arbitrary files or to prevent
  28. KDE applications from functioning correctly (CAN-2004-0689).
  29. The DCOPServer creates temporary files in an insecure manner. These temporary
  30. files are used for authentication-related purposes, so this could potentially
  31. allow a local attacker to compromise the account of any user running a KDE
  32. application (CAN-2004-0690). Note that only KDE 3.2.x is affected by this
  33. vulnerability.
  34. The Konqueror web browser allows websites to load web pages into a frame of any
  35. other frame-based web page that the user may have open. This could potentially
  36. allow a malicious website to make Konqueror insert its own frames into the page
  37. of an otherwise trusted website (CAN-2004-0721).
  38. The Konqueror web browser also allows websites to set cookies for certain
  39. country-specific top-level domains. This can be done to make Konqueror send the
  40. cookies to all other web sites operating under the same domain, which can be
  41. abused to become part of a session fixation attack. All country-specific
  42. secondary top-level domains that use more than 2 characters in the secondary
  43. part of the domain name, and that use a secondary part other than com, net, mil,
  44. org, gove, edu, or int are affected (CAN-2004-0746).
  45.  
  46.  
  47. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:086
  48. Risk factor : High";
  49.  
  50.  
  51.  
  52.  script_description(english:desc["english"]);
  53.  
  54.  summary["english"] = "Check for the version of the kdelibs/kdebase package";
  55.  script_summary(english:summary["english"]);
  56.  
  57.  script_category(ACT_GATHER_INFO);
  58.  
  59.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  60.  family["english"] = "Mandrake Local Security Checks";
  61.  script_family(english:family["english"]);
  62.  
  63.  script_dependencies("ssh_get_info.nasl");
  64.  script_require_keys("Host/Mandrake/rpm-list");
  65.  exit(0);
  66. }
  67.  
  68. include("rpm.inc");
  69. if ( rpm_check( reference:"kdebase-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  70. {
  71.  security_hole(0);
  72.  exit(0);
  73. }
  74. if ( rpm_check( reference:"kdebase-common-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  75. {
  76.  security_hole(0);
  77.  exit(0);
  78. }
  79. if ( rpm_check( reference:"kdebase-kate-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  80. {
  81.  security_hole(0);
  82.  exit(0);
  83. }
  84. if ( rpm_check( reference:"kdebase-kdeprintfax-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  85. {
  86.  security_hole(0);
  87.  exit(0);
  88. }
  89. if ( rpm_check( reference:"kdebase-kdm-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  90. {
  91.  security_hole(0);
  92.  exit(0);
  93. }
  94. if ( rpm_check( reference:"kdebase-kmenuedit-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  95. {
  96.  security_hole(0);
  97.  exit(0);
  98. }
  99. if ( rpm_check( reference:"kdebase-konsole-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  100. {
  101.  security_hole(0);
  102.  exit(0);
  103. }
  104. if ( rpm_check( reference:"kdebase-nsplugins-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  105. {
  106.  security_hole(0);
  107.  exit(0);
  108. }
  109. if ( rpm_check( reference:"kdebase-progs-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  110. {
  111.  security_hole(0);
  112.  exit(0);
  113. }
  114. if ( rpm_check( reference:"kdelibs-common-3.2-36.3.100mdk", release:"MDK10.0", yank:"mdk") )
  115. {
  116.  security_hole(0);
  117.  exit(0);
  118. }
  119. if ( rpm_check( reference:"libkdebase4-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  120. {
  121.  security_hole(0);
  122.  exit(0);
  123. }
  124. if ( rpm_check( reference:"libkdebase4-devel-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  125. {
  126.  security_hole(0);
  127.  exit(0);
  128. }
  129. if ( rpm_check( reference:"libkdebase4-kate-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  130. {
  131.  security_hole(0);
  132.  exit(0);
  133. }
  134. if ( rpm_check( reference:"libkdebase4-konsole-3.2-79.2.100mdk", release:"MDK10.0", yank:"mdk") )
  135. {
  136.  security_hole(0);
  137.  exit(0);
  138. }
  139. if ( rpm_check( reference:"libkdecore4-3.2-36.3.100mdk", release:"MDK10.0", yank:"mdk") )
  140. {
  141.  security_hole(0);
  142.  exit(0);
  143. }
  144. if ( rpm_check( reference:"libkdecore4-devel-3.2-36.3.100mdk", release:"MDK10.0", yank:"mdk") )
  145. {
  146.  security_hole(0);
  147.  exit(0);
  148. }
  149. if ( rpm_check( reference:"kdebase-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  150. {
  151.  security_hole(0);
  152.  exit(0);
  153. }
  154. if ( rpm_check( reference:"kdebase-common-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  155. {
  156.  security_hole(0);
  157.  exit(0);
  158. }
  159. if ( rpm_check( reference:"kdebase-kate-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  160. {
  161.  security_hole(0);
  162.  exit(0);
  163. }
  164. if ( rpm_check( reference:"kdebase-kdeprintfax-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  165. {
  166.  security_hole(0);
  167.  exit(0);
  168. }
  169. if ( rpm_check( reference:"kdebase-kdm-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  170. {
  171.  security_hole(0);
  172.  exit(0);
  173. }
  174. if ( rpm_check( reference:"kdebase-konsole-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  175. {
  176.  security_hole(0);
  177.  exit(0);
  178. }
  179. if ( rpm_check( reference:"kdebase-nsplugins-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  180. {
  181.  security_hole(0);
  182.  exit(0);
  183. }
  184. if ( rpm_check( reference:"kdebase-progs-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  185. {
  186.  security_hole(0);
  187.  exit(0);
  188. }
  189. if ( rpm_check( reference:"kdelibs-common-3.1.3-35.3.92mdk", release:"MDK9.2", yank:"mdk") )
  190. {
  191.  security_hole(0);
  192.  exit(0);
  193. }
  194. if ( rpm_check( reference:"libkdebase4-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  195. {
  196.  security_hole(0);
  197.  exit(0);
  198. }
  199. if ( rpm_check( reference:"libkdebase4-devel-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  200. {
  201.  security_hole(0);
  202.  exit(0);
  203. }
  204. if ( rpm_check( reference:"libkdebase4-kate-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  205. {
  206.  security_hole(0);
  207.  exit(0);
  208. }
  209. if ( rpm_check( reference:"libkdebase4-konsole-3.1.3-79.2.92mdk", release:"MDK9.2", yank:"mdk") )
  210. {
  211.  security_hole(0);
  212.  exit(0);
  213. }
  214. if ( rpm_check( reference:"libkdecore4-3.1.3-35.3.92mdk", release:"MDK9.2", yank:"mdk") )
  215. {
  216.  security_hole(0);
  217.  exit(0);
  218. }
  219. if ( rpm_check( reference:"libkdecore4-devel-3.1.3-35.3.92mdk", release:"MDK9.2", yank:"mdk") )
  220. {
  221.  security_hole(0);
  222.  exit(0);
  223. }
  224. if (rpm_exists(rpm:"kdelibs-", release:"MDK10.0")
  225.  || rpm_exists(rpm:"kdelibs-", release:"MDK9.2") )
  226. {
  227.  set_kb_item(name:"CAN-2004-0689", value:TRUE);
  228.  set_kb_item(name:"CAN-2004-0690", value:TRUE);
  229.  set_kb_item(name:"CAN-2004-0721", value:TRUE);
  230.  set_kb_item(name:"CAN-2004-0746", value:TRUE);
  231. }
  232.