Lucene search
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2004-033.NASLHistoryJul 31, 2004 - 12:00 a.m.
Mandrake Linux Security Advisory : xine-ui (MDKSA-2004:033)
2004-07-3100:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
15
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.1%
Shaun Colley discovered a temporary file vulnerability in the xine-check script packaged in xine-ui. This problem could allow local attackers to overwrite arbitrary files with the privileges of the user invoking the script.
The updated packages change the location of where temporary files are written to prevent this attack.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandrake Linux Security Advisory MDKSA-2004:033.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(14132);
script_version("1.17");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2004-0372");
script_xref(name:"MDKSA", value:"2004:033");
script_name(english:"Mandrake Linux Security Advisory : xine-ui (MDKSA-2004:033)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mandrake Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Shaun Colley discovered a temporary file vulnerability in the
xine-check script packaged in xine-ui. This problem could allow local
attackers to overwrite arbitrary files with the privileges of the user
invoking the script.
The updated packages change the location of where temporary files are
written to prevent this attack."
);
script_set_attribute(
attribute:"solution",
value:"Update the affected xine-ui, xine-ui-aa and / or xine-ui-fb packages."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:xine-ui");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:xine-ui-aa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:xine-ui-fb");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.2");
script_set_attribute(attribute:"patch_publication_date", value:"2004/04/19");
script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/31");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"xine-ui-0.9.23-3.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"xine-ui-aa-0.9.23-3.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"xine-ui-fb-0.9.23-3.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"xine-ui-0.9.22-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"xine-ui-aa-0.9.22-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"xine-ui-fb-0.9.22-5.1.92mdk", yank:"mdk")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mandriva | linux | xine-ui-aa | p-cpe:/a:mandriva:linux:xine-ui-aa |
| mandriva | linux | xine-ui-fb | p-cpe:/a:mandriva:linux:xine-ui-fb |
| mandrakesoft | mandrake_linux | 10.0 | cpe:/o:mandrakesoft:mandrake_linux:10.0 |
| mandrakesoft | mandrake_linux | 9.2 | cpe:/o:mandrakesoft:mandrake_linux:9.2 |
| mandriva | linux | xine-ui | p-cpe:/a:mandriva:linux:xine-ui |
Related
nessus
nessus
osv
osv
xine-ui - insecure temporary file creation
2004-04-06 00:00:00
cvelist
cvelist
CVE-2004-0372
2004-03-27 05:00:00
securityvulns
securityvulns
openvas
openvas
Debian Security Advisory DSA 477-1 (xine-ui)
2008-01-17 00:00:00
FreeBSD Ports: xine
2008-09-04 00:00:00
Debian Security Advisory DSA 477-1 (xine-ui)
2008-01-17 00:00:00
nvd
nvd
CVE-2004-0372
2004-04-15 04:00:00
cve
cve
CVE-2004-0372
2004-04-15 04:00:00
debian
debian
debiancve
debiancve
CVE-2004-0372
2004-04-15 04:00:00
gentoo
gentoo
Multiple vulnerabilities in xine
2004-04-27 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for MANDRAKE_MDKSA-2004-033.NASL