Lucene search
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2007-1095.NASLHistoryJan 06, 2010 - 12:00 a.m.
CentOS 4 / 5 : htdig (CESA-2007:1095)
2010-01-0600:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.012
Percentile
85.6%
Updated htdig packages that resolve a security issue are now available for Red Hat Enterprise Linux 4 and 5.
This update has been rated as having moderate security impact by the Red Hat Security Response Team.
The ht://Dig system is a complete World Wide Web indexing and searching system for a small domain or intranet.
A cross-site scripting flaw was discovered in a htdig search page. An attacker could construct a carefully crafted URL, which once visited by an unsuspecting user, could cause a user’s Web browser to execute malicious script in the context of the visited htdig search Web page.
(CVE-2007-6110)
Users of htdig are advised to upgrade to these updated packages, which contain backported patch to resolve this issue.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2007:1095 and
# CentOS Errata and Security Advisory 2007:1095 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(43662);
script_version("1.14");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2007-6110");
script_bugtraq_id(26610);
script_xref(name:"RHSA", value:"2007:1095");
script_name(english:"CentOS 4 / 5 : htdig (CESA-2007:1095)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote CentOS host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated htdig packages that resolve a security issue are now available
for Red Hat Enterprise Linux 4 and 5.
This update has been rated as having moderate security impact by the
Red Hat Security Response Team.
The ht://Dig system is a complete World Wide Web indexing and
searching system for a small domain or intranet.
A cross-site scripting flaw was discovered in a htdig search page. An
attacker could construct a carefully crafted URL, which once visited
by an unsuspecting user, could cause a user's Web browser to execute
malicious script in the context of the visited htdig search Web page.
(CVE-2007-6110)
Users of htdig are advised to upgrade to these updated packages, which
contain backported patch to resolve this issue."
);
# https://lists.centos.org/pipermail/centos-announce/2007-December/014477.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?7fb7e492"
);
# https://lists.centos.org/pipermail/centos-announce/2007-December/014481.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?0df5bc03"
);
# https://lists.centos.org/pipermail/centos-announce/2007-December/014482.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?bfcc7c2c"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected htdig packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(79);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:htdig");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:htdig-web");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:4");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:5");
script_set_attribute(attribute:"vuln_publication_date", value:"2007/11/23");
script_set_attribute(attribute:"patch_publication_date", value:"2007/12/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2010/01/06");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"CentOS Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^(4|5)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 4.x / 5.x", "CentOS " + os_ver);
if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);
flag = 0;
if (rpm_check(release:"CentOS-4", cpu:"ia64", reference:"htdig-3.2.0b6-4.c4")) flag++;
if (rpm_check(release:"CentOS-4", cpu:"ia64", reference:"htdig-web-3.2.0b6-4.c4")) flag++;
if (rpm_check(release:"CentOS-5", reference:"htdig-3.2.0b6-9.0.1.el5_1")) flag++;
if (rpm_check(release:"CentOS-5", reference:"htdig-web-3.2.0b6-9.0.1.el5_1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "htdig / htdig-web");
}
Related
redhat
redhat
(RHSA-2007:1095) Moderate: htdig security update
2007-12-03 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2007-1095)
2015-10-08 00:00:00
Slackware: Security Advisory (SSA:2024-206-01)
2024-07-25 00:00:00
Debian: Security Advisory (DSA-1429-1)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2007-6110
2007-11-23 00:00:00
nvd
nvd
CVE-2007-6110
2007-11-23 20:46:00
exploitdb
exploitdb
ht://Dig 3.2 - Htsearch Cross-Site Scripting
2007-11-27 00:00:00
nessus
nessus
ht://dig htsearch sort Parameter XSS
2007-11-28 00:00:00
Slackware Linux 15.0 / current htdig Vulnerability (SSA:2024-206-01)
2024-07-25 00:00:00
Fedora 7 : htdig-3.2.0b6-12.fc7 (2007-3907)
2007-11-29 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:19:19
cve
cve
CVE-2007-6110
2007-11-23 20:46:00
oraclelinux
oraclelinux
Moderate: htdig security update
2007-12-04 00:00:00
debian
debian
[SECURITY] [DSA 1429-1] New htdig packages fix cross site scripting
2007-12-11 22:11:41
fedora
fedora
[SECURITY] Fedora 8 Update: htdig-3.2.0b6-13.fc8
2007-11-29 01:46:18
[SECURITY] Fedora Core 6 Update: htdig-3.2.0b6-9.fc6
2007-12-03 15:47:07
[SECURITY] Fedora 7 Update: htdig-3.2.0b6-12.fc7
2007-11-29 01:39:58
cvelist
cvelist
CVE-2007-6110
2007-11-23 20:00:00
slackware
slackware
[slackware-security] htdig
2024-07-25 02:46:25
centos
centos
htdig security update
2007-12-03 16:39:25
debiancve
debiancve
CVE-2007-6110
2007-11-23 20:46:00
securityvulns
securityvulns
osv
osv
htdig - cross site scripting
2007-12-11 00:00:00
prion
prion
Cross site scripting
2007-11-23 20:46:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.012
Percentile
85.6%
Related for CENTOS_RHSA-2007-1095.NASL