Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.FEDORA_2007-4658.NASL
HistoryDec 24, 2007 - 12:00 a.m.

Fedora 7 : bind-9.4.2-2.fc7 (2007-4658)

2007-12-2400:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
14

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

30.3%

JSON

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2007-4658.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(29764);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2007-6283");
  script_xref(name:"FEDORA", value:"2007-4658");

  script_name(english:"Fedora 7 : bind-9.4.2-2.fc7 (2007-4658)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - fixed address of L.ROOT-SERVERS.NET (#411141)

    - CVE-2007-6283

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=411141"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=423061"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2007-December/006133.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?af9e71d5"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");
  script_cwe_id(200);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-chroot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-sdb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:bind-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:caching-nameserver");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:7");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/12/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/12/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 7.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC7", reference:"bind-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-chroot-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-debuginfo-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-devel-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-libs-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-sdb-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"bind-utils-9.4.2-2.fc7")) flag++;
if (rpm_check(release:"FC7", reference:"caching-nameserver-9.4.2-2.fc7")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chroot / bind-debuginfo / bind-devel / bind-libs / etc");
}
VendorProductVersionCPE
fedoraprojectfedorabind-libsp-cpe:/a:fedoraproject:fedora:bind-libs
fedoraprojectfedorabind-sdbp-cpe:/a:fedoraproject:fedora:bind-sdb
fedoraprojectfedorabind-utilsp-cpe:/a:fedoraproject:fedora:bind-utils
fedoraprojectfedoracaching-nameserverp-cpe:/a:fedoraproject:fedora:caching-nameserver
fedoraprojectfedora7cpe:/o:fedoraproject:fedora:7
fedoraprojectfedorabindp-cpe:/a:fedoraproject:fedora:bind
fedoraprojectfedorabind-chrootp-cpe:/a:fedoraproject:fedora:bind-chroot
fedoraprojectfedorabind-debuginfop-cpe:/a:fedoraproject:fedora:bind-debuginfo
fedoraprojectfedorabind-develp-cpe:/a:fedoraproject:fedora:bind-devel

Related

fedora 5
openvas 13
prion 1
cve 1
nvd 1
nessus 10
ubuntucve 1
cvelist 1
debiancve 1
veracode 1
redhat 1
oraclelinux 1
fedora
fedora
[SECURITY] Fedora 8 Update: bind-9.5.0-20.b1.fc8
2007-12-20 19:49:29
[SECURITY] Fedora 8 Update: bind-9.5.0-23.b1.fc8
2008-01-22 16:01:26
[SECURITY] Fedora 8 Update: bind-9.5.0-28.P1.fc8
2008-07-09 21:48:40
openvas
openvas
Fedora Update for bind FEDORA-2007-4655
2009-02-27 00:00:00
Fedora Update for bind FEDORA-2007-4655
2009-02-27 00:00:00
RedHat Update for bind RHSA-2008:0300-02
2009-03-06 00:00:00
prion
prion
Input validation
2007-12-18 01:46:00
cve
cve
CVE-2007-6283
2007-12-18 01:46:00
nvd
nvd
CVE-2007-6283
2007-12-18 01:46:00
nessus
nessus
Fedora 8 : bind-9.5.0-20.b1.fc8 (2007-4655)
2007-12-24 00:00:00
Fedora 8 : bind-9.5.0-23.b1.fc8 (2008-0903)
2008-01-27 00:00:00
RHEL 5 : bind (RHSA-2008:0300)
2008-05-22 00:00:00
ubuntucve
ubuntucve
CVE-2007-6283
2007-12-18 00:00:00
cvelist
cvelist
CVE-2007-6283
2007-12-18 01:00:00
debiancve
debiancve
CVE-2007-6283
2007-12-18 01:46:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:28:30
redhat
redhat
(RHSA-2008:0300) Moderate: bind security, bug fix, and enhancement update
2008-05-20 00:00:00
oraclelinux
oraclelinux
bind security, bug fix, and enhancement update
2008-05-30 00:00:00

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

30.3%

JSON
Related for FEDORA_2007-4658.NASL
fedora5openvas13prion1cve1nvd1nessus10ubuntucve1cvelist1debiancve1veracode1redhat1oraclelinux1