Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.DNSMASQ_2_26.NASL
HistoryJan 18, 2018 - 12:00 a.m.

dnsmasq 2.25 DHCP Request Denial of Service (CVE-2008-3214)

2018-01-1800:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.048 Low

EPSS

Percentile

92.7%

JSON

The version of dnsmasq installed on the remote host is 2.25, and thus, is affected by a denial of service vulnerability when handling DHCP requests.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(106137);
  script_version("1.3");
  script_cvs_date("Date: 2019/11/08");

  script_cve_id("CVE-2008-3214");

  script_name(english:"dnsmasq 2.25 DHCP Request Denial of Service (CVE-2008-3214)");
  script_summary(english:"Checks the version of dnsmasq");

  script_set_attribute(attribute:"synopsis", value:
"The remote DNS / DHCP service is affected by a denial of service vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of dnsmasq installed on the remote host is 2.25, and
thus, is affected by a denial of service vulnerability when
handling DHCP requests.");
  # http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2006q1/000579.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?54ae9522");
  # http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob_plain;f=CHANGELOG.archive;hb=HEAD
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?7b18e6e8");
  script_set_attribute(attribute:"solution", value:
"Upgrade to dnsmasq 2.26 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2008-3214");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_cwe_id(20);

  script_set_attribute(attribute:"vuln_publication_date", value:"2006/01/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2006/01/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/01/18");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:thekelleys:dnsmasq");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"DNS");

  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("dns_version.nasl");
  script_require_keys("dns_server/version", "Settings/ParanoidReport");
  script_require_ports("Services/dns", 53);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

app_name = "dnsmasq";

port = get_kb_item("Services/udp/dns");
if (!port) port = 53;

if (report_paranoia < 2) audit(AUDIT_PARANOID);

# dnsmasq replies to BIND.VERSION
version = get_kb_item_or_exit("dns_server/version");
version = tolower(version);
display_version = version;

if (version !~ "dnsmasq-(v)?")
  audit(AUDIT_NOT_LISTEN, app_name, port);

version = ereg_replace(pattern:"^dnsmasq-(v)?(.*)$", replace:"\2", string:version);

if (version == '2')
  audit(AUDIT_VER_NOT_GRANULAR, app_name, port, display_version);

# only 2.25 is vuln
if (version =~ "^2\.25($|[^0-9])")
{
  report = '\n' +
    '\n  Installed version : ' + display_version +
    '\n  Fixed version     : dnsmasq-2.26' +
    '\n';
  security_report_v4(port:53, proto:"udp", severity:SECURITY_HOLE, extra:report);
}
else audit(AUDIT_LISTEN_NOT_VULN, app_name, port, version, 'udp');
VendorProductVersionCPE
thekelleysdnsmasqcpe:/a:thekelleys:dnsmasq

Related

redhatcve 2
debiancve 2
prion 2
nvd 2
ubuntucve 2
cve 2
openvas 1
cvelist 2
redhatcve
redhatcve
CVE-2008-3214
2015-10-30 09:42:57
CVE-2008-3350
2015-10-30 10:05:08
debiancve
debiancve
CVE-2008-3214
2008-07-18 16:41:00
CVE-2008-3350
2008-07-28 17:41:00
prion
prion
Design/Logic Flaw
2008-07-18 16:41:00
Code injection
2008-07-28 17:41:00
nvd
nvd
CVE-2008-3214
2008-07-18 16:41:00
CVE-2008-3350
2008-07-28 17:41:00
ubuntucve
ubuntucve
CVE-2008-3214
2008-07-18 00:00:00
CVE-2008-3350
2008-07-28 00:00:00
cve
cve
CVE-2008-3214
2008-07-18 16:41:00
CVE-2008-3350
2008-07-28 17:41:00
openvas
openvas
Dnsmasq < 2.26 DoS Vulnerability
2021-06-08 00:00:00
cvelist
cvelist
CVE-2008-3214
2008-07-18 16:00:00
CVE-2008-3350
2008-07-28 17:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.048 Low

EPSS

Percentile

92.7%

JSON
Related for DNSMASQ_2_26.NASL
redhatcve2debiancve2prion2nvd2ubuntucve2cve2openvas1cvelist2