home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2002-032.nasl < prev    next >
Encoding:
Text File  |  2005-01-14  |  2.9 KB  |  110 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2002:032
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(13938);
  12.  script_version ("$Revision: 1.2 $");
  13.  
  14.  name["english"] = "MDKSA-2002:032: tcpdump";
  15.  
  16.  script_name(english:name["english"]);
  17.  
  18.  desc["english"] = "
  19. The remote host is missing the patch for the advisory MDKSA-2002:032 (tcpdump).
  20.  
  21.  
  22. Several buffer overflows were found in the tcpdump package by FreeBSD developers
  23. during a code audit, in versions prior to 3.5. However, newer versions of
  24. tcpdump, including 3.6.2, are also vulnerable to another buffer overflow in the
  25. AFS RPC decoding functions, which was discovered by Nick Cleaton. These
  26. vulnerabilities could be used by a remote attacker to crash the the tcpdump
  27. process or possibly even be exploited to execute arbitrary code as the user
  28. running tcpdump, which is usually root.
  29. The newer libpcap 0.6 has also been audited to make it more safe by implementing
  30. better buffer boundary checks in several functions.
  31.  
  32.  
  33. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:032
  34. Risk factor : High";
  35.  
  36.  
  37.  
  38.  script_description(english:desc["english"]);
  39.  
  40.  summary["english"] = "Check for the version of the tcpdump package";
  41.  script_summary(english:summary["english"]);
  42.  
  43.  script_category(ACT_GATHER_INFO);
  44.  
  45.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  46.  family["english"] = "Mandrake Local Security Checks";
  47.  script_family(english:family["english"]);
  48.  
  49.  script_dependencies("ssh_get_info.nasl");
  50.  script_require_keys("Host/Mandrake/rpm-list");
  51.  exit(0);
  52. }
  53.  
  54. include("rpm.inc");
  55. if ( rpm_check( reference:"libpcap-0.6.2-3.2mdk", release:"MDK7.1", yank:"mdk") )
  56. {
  57.  security_hole(0);
  58.  exit(0);
  59. }
  60. if ( rpm_check( reference:"libpcap-devel-0.6.2-3.2mdk", release:"MDK7.1", yank:"mdk") )
  61. {
  62.  security_hole(0);
  63.  exit(0);
  64. }
  65. if ( rpm_check( reference:"tcpdump-3.6.2-2.2mdk", release:"MDK7.1", yank:"mdk") )
  66. {
  67.  security_hole(0);
  68.  exit(0);
  69. }
  70. if ( rpm_check( reference:"libpcap-0.6.2-3.2mdk", release:"MDK7.2", yank:"mdk") )
  71. {
  72.  security_hole(0);
  73.  exit(0);
  74. }
  75. if ( rpm_check( reference:"libpcap-devel-0.6.2-3.2mdk", release:"MDK7.2", yank:"mdk") )
  76. {
  77.  security_hole(0);
  78.  exit(0);
  79. }
  80. if ( rpm_check( reference:"tcpdump-3.6.2-2.2mdk", release:"MDK7.2", yank:"mdk") )
  81. {
  82.  security_hole(0);
  83.  exit(0);
  84. }
  85. if ( rpm_check( reference:"libpcap0-0.6.2-3.1mdk", release:"MDK8.0", yank:"mdk") )
  86. {
  87.  security_hole(0);
  88.  exit(0);
  89. }
  90. if ( rpm_check( reference:"libpcap0-devel-0.6.2-3.1mdk", release:"MDK8.0", yank:"mdk") )
  91. {
  92.  security_hole(0);
  93.  exit(0);
  94. }
  95. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.0", yank:"mdk") )
  96. {
  97.  security_hole(0);
  98.  exit(0);
  99. }
  100. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.1", yank:"mdk") )
  101. {
  102.  security_hole(0);
  103.  exit(0);
  104. }
  105. if ( rpm_check( reference:"tcpdump-3.6.2-2.1mdk", release:"MDK8.2", yank:"mdk") )
  106. {
  107.  security_hole(0);
  108.  exit(0);
  109. }
  110.