Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1957.NASL
HistoryFeb 24, 2010 - 12:00 a.m.

Debian DSA-1957-1 : aria2 - buffer overflow

2010-02-2400:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.069 Low

EPSS

Percentile

93.9%

JSON

It was discovered that aria2, a high speed download utility, is prone to a buffer overflow in the DHT routing code, which might lead to the execution of arbitrary code.

The oldstable distribution (etch) is not affected by this problem.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-1957. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(44822);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2009-3575");
  script_xref(name:"DSA", value:"1957");

  script_name(english:"Debian DSA-1957-1 : aria2 - buffer overflow");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that aria2, a high speed download utility, is prone
to a buffer overflow in the DHT routing code, which might lead to the
execution of arbitrary code.

The oldstable distribution (etch) is not affected by this problem."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551070"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2009/dsa-1957"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the aria2 packages.

For the stable distribution (lenny), this problem has been fixed in
version 0.14.0-1+lenny1. Binaries for powerpc, arm, ia64 and hppa will
be provided once they are available."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:aria2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:5.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/12/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/02/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"5.0", prefix:"aria2", reference:"0.14.0-1+lenny1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxaria2p-cpe:/a:debian:debian_linux:aria2
debiandebian_linux5.0cpe:/o:debian:debian_linux:5.0

Related

openvas 8
nvd 1
debiancve 1
fedora 1
ubuntucve 1
prion 1
securityvulns 1
nessus 4
debian 1
cve 1
osv 1
cvelist 1
gentoo 1
openvas
openvas
Debian Security Advisory DSA 1957-1 (aria2)
2009-12-30 00:00:00
Mandrake Security Advisory MDVSA-2009:226 (aria2)
2009-09-15 00:00:00
Debian: Security Advisory (DSA-1957-1)
2009-12-30 00:00:00
nvd
nvd
CVE-2009-3575
2009-10-07 17:30:00
debiancve
debiancve
CVE-2009-3575
2009-10-07 17:30:00
fedora
fedora
[SECURITY] Fedora 10 Update: aria2-1.3.1-2.fc10
2009-10-09 03:38:55
ubuntucve
ubuntucve
CVE-2009-3575
2009-10-07 00:00:00
prion
prion
Buffer overflow
2009-10-07 17:30:00
securityvulns
securityvulns
aria2 download manager buffer overflow
2009-09-10 00:00:00
nessus
nessus
Fedora 10 : aria2-1.3.1-2.fc10 (2009-10344)
2009-10-09 00:00:00
openSUSE Security Update : aria2 (aria2-1400)
2009-10-19 00:00:00
Mandriva Linux Security Advisory : aria2 (MDVSA-2009:226)
2009-09-10 00:00:00
debian
debian
[SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution
2009-12-28 09:58:08
cve
cve
CVE-2009-3575
2009-10-07 17:30:00
osv
osv
aria2 - arbitrary code execution
2009-12-28 00:00:00
cvelist
cvelist
CVE-2009-3575
2009-10-07 17:00:00
gentoo
gentoo
aria2: Multiple vulnerabilities
2010-01-13 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.069 Low

EPSS

Percentile

93.9%

JSON
Related for DEBIAN_DSA-1957.NASL
openvas8nvd1debiancve1fedora1ubuntucve1prion1securityvulns1nessus4debian1cve1osv1cvelist1gentoo1