Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2324.NASL
HistoryOct 21, 2011 - 12:00 a.m.

Debian DSA-2324-1 : wireshark - programming error

2011-10-2100:00:00
This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.973

Percentile

99.9%

JSON

The Microsoft Vulnerability Research group discovered that insecure load path handling could lead to execution of arbitrary Lua script code.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2324. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(56571);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2011-3360");
  script_bugtraq_id(49528);
  script_xref(name:"DSA", value:"2324");

  script_name(english:"Debian DSA-2324-1 : wireshark - programming error");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The Microsoft Vulnerability Research group discovered that insecure
load path handling could lead to execution of arbitrary Lua script
code."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/wireshark"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2011/dsa-2324"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the wireshark packages.

For the oldstable distribution (lenny), this problem has been fixed in
version 1.0.2-3+lenny15. This build will be released shortly.

For the stable distribution (squeeze), this problem has been fixed in
version 1.2.11-6+squeeze4."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Wireshark console.lua Pre-Loading Script Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:'White_Phosphorus');

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:5.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/10/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/10/21");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"5.0", prefix:"wireshark", reference:"1.0.2-3+lenny15")) flag++;
if (deb_check(release:"6.0", prefix:"tshark", reference:"1.2.11-6+squeeze4")) flag++;
if (deb_check(release:"6.0", prefix:"wireshark", reference:"1.2.11-6+squeeze4")) flag++;
if (deb_check(release:"6.0", prefix:"wireshark-common", reference:"1.2.11-6+squeeze4")) flag++;
if (deb_check(release:"6.0", prefix:"wireshark-dbg", reference:"1.2.11-6+squeeze4")) flag++;
if (deb_check(release:"6.0", prefix:"wireshark-dev", reference:"1.2.11-6+squeeze4")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Related

openvas 8
ubuntucve 1
metasploit 1
zdt 1
cvelist 1
saint 4
prion 1
checkpoint_advisories 1
msvr 1
d2 1
debiancve 1
nvd 1
exploitdb 1
packetstorm 1
debian 1
cve 1
nessus 10
securityvulns 2
gentoo 1
openvas
openvas
Wireshark Lua Script File Arbitrary Code Execution Vulnerability (Windows)
2011-10-04 00:00:00
Wireshark Lua Script File Arbitrary Code Execution Vulnerability - Windows
2011-10-04 00:00:00
Debian Security Advisory DSA 2324-1 (wireshark)
2012-02-11 00:00:00
ubuntucve
ubuntucve
CVE-2011-3360
2011-09-20 00:00:00
metasploit
metasploit
Wireshark console.lua Pre-Loading Script Execution
2011-11-19 03:24:48
zdt
zdt
Wireshark console.lua pre-loading vulnerability
2011-11-18 00:00:00
cvelist
cvelist
CVE-2011-3360
2011-09-20 10:00:00
saint
saint
Wireshark Lua Untrusted Search Path vulnerability
2011-11-25 00:00:00
Wireshark Lua Untrusted Search Path vulnerability
2011-11-25 00:00:00
Wireshark Lua Untrusted Search Path vulnerability
2011-11-25 00:00:00
prion
prion
Design/Logic Flaw
2011-09-20 10:55:00
checkpoint_advisories
checkpoint_advisories
Wireshark Insecure Search Path Script Execution (CVE-2011-3360)
2012-03-26 00:00:00
msvr
msvr
Vulnerability in Wireshark Allows For Arbitrary Script Execution
2011-11-15 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_WIRESHARK
2011-09-20 10:55:00
debiancve
debiancve
CVE-2011-3360
2011-09-20 10:55:04
nvd
nvd
CVE-2011-3360
2011-09-20 10:55:04
exploitdb
exploitdb
Wireshark - console.lua pre-loading (Metasploit)
2011-11-19 00:00:00
packetstorm
packetstorm
Wireshark 1.6 console.lua Pre-Load / Execution
2011-11-20 00:00:00
debian
debian
[SECURITY] [DSA 2324-1] wireshark security update
2011-10-20 19:45:59
cve
cve
CVE-2011-3360
2011-09-20 10:55:04
nessus
nessus
Wireshark 1.4.x < 1.4.9 Multiple Vulnerabilities
2011-09-12 00:00:00
Oracle Solaris Third-Party Patch Update : wireshark (denial_of_service_vulnerability_in)
2015-01-19 00:00:00
Mandriva Linux Security Advisory : wireshark (MDVSA-2011:138)
2012-09-06 00:00:00
securityvulns
securityvulns
[ MDVSA-2011:138 ] wireshark
2011-10-01 00:00:00
Wireshark multiple security vulnerabilities
2011-10-01 00:00:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2011-10-09 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.973

Percentile

99.9%

JSON
Related for DEBIAN_DSA-2324.NASL
openvas8ubuntucve1metasploit1zdt1cvelist1saint4prion1checkpoint_advisories1msvr1d21debiancve1nvd1exploitdb1packetstorm1debian1cve1nessus10securityvulns2gentoo1