Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1556.NASL
HistoryApr 28, 2008 - 12:00 a.m.

Debian DSA-1556-2 : perl - heap buffer overflow

2008-04-2800:00:00
This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.014

Percentile

86.2%

JSON

It has been discovered that the Perl interpreter may encounter a buffer overflow condition when compiling certain regular expressions containing Unicode characters. This also happens if the offending characters are contained in a variable reference protected by the \Q…\E quoting construct. When encountering this condition, the Perl interpreter typically crashes, but arbitrary code execution cannot be ruled out.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-1556. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(32057);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2008-1927");
  script_bugtraq_id(28928);
  script_xref(name:"DSA", value:"1556");

  script_name(english:"Debian DSA-1556-2 : perl - heap buffer overflow");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It has been discovered that the Perl interpreter may encounter a
buffer overflow condition when compiling certain regular expressions
containing Unicode characters. This also happens if the offending
characters are contained in a variable reference protected by the
\Q...\E quoting construct. When encountering this condition, the Perl
interpreter typically crashes, but arbitrary code execution cannot be
ruled out."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=454792"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2008/dsa-1556"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the perl packages.

For the stable distribution (etch), this problem has been fixed in
version 5.8.8-7etch3."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:perl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/04/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/04/28");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"4.0", prefix:"libcgi-fast-perl", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"libperl-dev", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"libperl5.8", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl-base", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl-debug", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl-doc", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl-modules", reference:"5.8.8-7etch3")) flag++;
if (deb_check(release:"4.0", prefix:"perl-suid", reference:"5.8.8-7etch3")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Related

debian 2
openvas 33
nessus 16
debiancve 1
gentoo 1
redhat 2
seebug 1
osv 1
veracode 1
prion 1
centos 1
ubuntucve 1
oraclelinux 1
nvd 1
cvelist 1
securityvulns 2
cve 1
fedora 2
ubuntu 2
vmware 2
debian
debian
[SECURITY] [DSA 1556-2] New perl packages fix denial of service
2008-04-27 09:19:22
[SECURITY] [DSA 1556-1] New perl packages fix denial of service
2008-04-24 19:44:12
openvas
openvas
CentOS Update for perl CESA-2008:0522 centos3 x86_64
2009-02-27 00:00:00
CentOS Update for perl CESA-2008:0522 centos4 x86_64
2009-02-27 00:00:00
Oracle: Security Advisory (ELSA-2008-0522)
2015-10-08 00:00:00
nessus
nessus
CentOS 3 / 4 / 5 : perl (CESA-2008:0522)
2008-06-16 00:00:00
Mandriva Linux Security Advisory : perl (MDVSA-2008:100)
2009-04-23 00:00:00
Oracle Linux 3 / 4 / 5 : perl (ELSA-2008-0522)
2013-07-12 00:00:00
debiancve
debiancve
CVE-2008-1927
2008-04-24 05:05:00
gentoo
gentoo
Perl: Execution of arbitrary code
2008-05-20 00:00:00
redhat
redhat
(RHSA-2008:0532) Important: perl security update
2008-06-17 00:00:00
(RHSA-2008:0522) Important: perl security update
2008-06-11 00:00:00
seebug
seebug
Perl Unicode β€œ\Q...\Eβ€ζ­£εˆ™θ‘¨θΎΎεΌηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2008-04-28 00:00:00
osv
osv
perl - denial of service
2008-04-24 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:25:28
prion
prion
Double free
2008-04-24 05:05:00
centos
centos
perl security update
2008-06-12 13:28:43
ubuntucve
ubuntucve
CVE-2008-1927
2008-04-24 00:00:00
oraclelinux
oraclelinux
perl security update
2008-06-11 00:00:00
nvd
nvd
CVE-2008-1927
2008-04-24 05:05:00
cvelist
cvelist
CVE-2008-1927
2008-04-23 17:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1556-1] New perl packages fix denial of service
2008-04-25 00:00:00
perl buffer overflow
2008-04-25 00:00:00
cve
cve
CVE-2008-1927
2008-04-24 05:05:00
fedora
fedora
[SECURITY] Fedora 8 Update: perl-5.8.8-39.fc8
2008-04-29 20:58:56
[SECURITY] Fedora 7 Update: perl-5.8.8-29.fc7
2008-04-29 20:59:30
ubuntu
ubuntu
Perl vulnerabilities
2008-12-24 00:00:00
Perl regression
2009-01-15 00:00:00
vmware
vmware
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.014

Percentile

86.2%

JSON
Related for DEBIAN_DSA-1556.NASL
debian2openvas33nessus16debiancve1gentoo1redhat2seebug1osv1veracode1prion1centos1ubuntucve1oraclelinux1nvd1cvelist1securityvulns2cve1fedora2ubuntu2vmware2