Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2004-127.NASL
HistoryNov 05, 2004 - 12:00 a.m.

Mandrake Linux Security Advisory : libxml/libxml2 (MDKSA-2004:127)

2004-11-0500:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
13

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.134

Percentile

95.6%

JSON

Multiple buffer overflows were reported in the libxml XML parsing library. These vulnerabilities may allow remote attackers to execute arbitrary code via a long FTP URL that is not properly handled by the xmlNanoFTPScanURL() function, a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy() function, and other overflows in the code that resolves names via DNS.

The updated packages have been patched to prevent these issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2004:127. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(15638);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2004-0989");
  script_xref(name:"MDKSA", value:"2004:127");

  script_name(english:"Mandrake Linux Security Advisory : libxml/libxml2 (MDKSA-2004:127)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple buffer overflows were reported in the libxml XML parsing
library. These vulnerabilities may allow remote attackers to execute
arbitrary code via a long FTP URL that is not properly handled by the
xmlNanoFTPScanURL() function, a long proxy URL containing FTP data
that is not properly handled by the xmlNanoFTPScanProxy() function,
and other overflows in the code that resolves names via DNS.

The updated packages have been patched to prevent these issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.securityfocus.com/archive/1/379383/2004-10-24/2004-10-30/0"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64xml1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64xml1-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64xml2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64xml2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64xml2-python");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml1-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml2-python");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libxml2-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2004/11/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2004/11/05");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64xml1-1.8.17-6.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64xml1-devel-1.8.17-6.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64xml2-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64xml2-devel-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64xml2-python-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libxml1-1.8.17-6.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libxml1-devel-1.8.17-6.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libxml2-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libxml2-devel-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libxml2-python-2.6.6-1.1.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"libxml2-utils-2.6.6-1.1.100mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64xml1-1.8.17-7.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64xml1-devel-1.8.17-7.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64xml2-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64xml2-devel-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64xml2-python-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libxml1-1.8.17-7.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libxml1-devel-1.8.17-7.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libxml2-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libxml2-devel-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libxml2-python-2.6.13-1.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"libxml2-utils-2.6.13-1.1.101mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64xml1-1.8.17-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64xml1-devel-1.8.17-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64xml2-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64xml2-devel-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64xml2-python-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libxml1-1.8.17-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libxml1-devel-1.8.17-5.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libxml2-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libxml2-devel-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libxml2-python-2.5.11-1.3.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"libxml2-utils-2.5.11-1.3.92mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxlib64xml1p-cpe:/a:mandriva:linux:lib64xml1
mandrivalinuxlib64xml1-develp-cpe:/a:mandriva:linux:lib64xml1-devel
mandrivalinuxlib64xml2p-cpe:/a:mandriva:linux:lib64xml2
mandrivalinuxlib64xml2-develp-cpe:/a:mandriva:linux:lib64xml2-devel
mandrivalinuxlib64xml2-pythonp-cpe:/a:mandriva:linux:lib64xml2-python
mandrivalinuxlibxml1p-cpe:/a:mandriva:linux:libxml1
mandrivalinuxlibxml1-develp-cpe:/a:mandriva:linux:libxml1-devel
mandrivalinuxlibxml2p-cpe:/a:mandriva:linux:libxml2
mandrivalinuxlibxml2-develp-cpe:/a:mandriva:linux:libxml2-devel
mandrivalinuxlibxml2-pythonp-cpe:/a:mandriva:linux:libxml2-python
Rows per page:
1-10 of 141

Related

debian 2
openvas 13
nessus 12
cvelist 1
freebsd 1
ubuntucve 1
nvd 1
cve 1
debiancve 1
redhat 2
ubuntu 1
gentoo 1
osv 1
centos 1
fedora 2
suse 1
debian
debian
[SECURITY] [DSA 582-1] New libxml packages fix arbitrary code execution
2004-11-02 17:03:22
[SECURITY] [DSA 582-1] New libxml packages fix arbitrary code execution
2004-11-02 17:03:22
openvas
openvas
FreeBSD Ports: libxml
2008-09-04 00:00:00
Debian: Security Advisory (DSA-582-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200411-05 (libxml2)
2008-09-24 00:00:00
nessus
nessus
RHEL 2.1 / 3 : libxml2 (RHSA-2004:615)
2004-11-13 00:00:00
Ubuntu 4.10 : libxml vulnerabilities (USN-89-1)
2006-01-15 00:00:00
FreeBSD : libxml -- remote buffer overflows (98)
2004-11-23 00:00:00
cvelist
cvelist
CVE-2004-0989
2004-10-28 04:00:00
freebsd
freebsd
libxml -- remote buffer overflows
2004-10-26 00:00:00
ubuntucve
ubuntucve
CVE-2004-0989
2005-03-01 00:00:00
nvd
nvd
CVE-2004-0989
2005-03-01 05:00:00
cve
cve
CVE-2004-0989
2005-03-01 05:00:00
debiancve
debiancve
CVE-2004-0989
2005-03-01 05:00:00
redhat
redhat
(RHSA-2004:615) libxml2 security update
2004-11-12 00:00:00
(RHSA-2004:650) libxml security update
2004-12-16 00:00:00
ubuntu
ubuntu
XML library vulnerabilities
2005-02-28 00:00:00
gentoo
gentoo
libxml2: Remotely exploitable buffer overflow
2004-11-02 00:00:00
osv
osv
libxml - buffer overflow
2004-11-02 00:00:00
centos
centos
libxml security update
2005-05-27 13:28:28
fedora
fedora
[SECURITY] Fedora 10 Update: libxml-1.8.17-24.fc10
2009-08-15 08:20:49
[SECURITY] Fedora 11 Update: libxml-1.8.17-24.fc11
2009-08-15 08:18:18
suse
suse
potential remote buffer overflow in samba
2004-11-15 22:07:05

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.134

Percentile

95.6%

JSON
Related for MANDRAKE_MDKSA-2004-127.NASL
debian2openvas13nessus12cvelist1freebsd1ubuntucve1nvd1cve1debiancve1redhat2ubuntu1gentoo1osv1centos1fedora2suse1