Lucene search
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2005-045.NASLHistoryFeb 18, 2005 - 12:00 a.m.
Mandrake Linux Security Advisory : kdelibs (MDKSA-2005:045)
2005-02-1800:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
22
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.811
Percentile
98.4%
A bug in the way kioslave handles URL-encoded newline (%0a) characters before the FTP command was discovered. Because of this, it is possible that a specially crafted URL could be used to execute any ftp command on a remote server, or even send unsolicited email.
As well, Davide Madrisan discovered that dcopidlng created temporary files in an insecure manner.
The updated packages are patched to deal with these issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandrake Linux Security Advisory MDKSA-2005:045.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(17140);
script_version("1.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2004-1165", "CVE-2005-0365");
script_xref(name:"MDKSA", value:"2005:045");
script_name(english:"Mandrake Linux Security Advisory : kdelibs (MDKSA-2005:045)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mandrake Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"A bug in the way kioslave handles URL-encoded newline (%0a) characters
before the FTP command was discovered. Because of this, it is possible
that a specially crafted URL could be used to execute any ftp command
on a remote server, or even send unsolicited email.
As well, Davide Madrisan discovered that dcopidlng created temporary
files in an insecure manner.
The updated packages are patched to deal with these issues."
);
script_set_attribute(
attribute:"see_also",
value:"http://bugs.kde.org/show_bug.cgi?id=97608"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kde.org/info/security/advisory-20050101-1.txt"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kdelibs-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");
script_set_attribute(attribute:"patch_publication_date", value:"2005/02/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2005/02/18");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK10.0", reference:"kdelibs-common-3.2-36.10.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64kdecore4-3.2-36.10.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64kdecore4-devel-3.2-36.10.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libkdecore4-3.2-36.10.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libkdecore4-devel-3.2-36.10.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kdelibs-common-3.2.3-103.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64kdecore4-3.2.3-103.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"x86_64", reference:"lib64kdecore4-devel-3.2.3-103.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libkdecore4-3.2.3-103.1.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"libkdecore4-devel-3.2.3-103.1.101mdk", yank:"mdk")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mandriva | linux | kdelibs-common | p-cpe:/a:mandriva:linux:kdelibs-common |
| mandriva | linux | lib64kdecore4 | p-cpe:/a:mandriva:linux:lib64kdecore4 |
| mandriva | linux | lib64kdecore4-devel | p-cpe:/a:mandriva:linux:lib64kdecore4-devel |
| mandriva | linux | libkdecore4 | p-cpe:/a:mandriva:linux:libkdecore4 |
| mandriva | linux | libkdecore4-devel | p-cpe:/a:mandriva:linux:libkdecore4-devel |
| mandrakesoft | mandrake_linux | 10.0 | cpe:/o:mandrakesoft:mandrake_linux:10.0 |
| mandrakesoft | mandrake_linux | 10.1 | cpe:/o:mandrakesoft:mandrake_linux:10.1 |
Related
ubuntucve
ubuntucve
CVE-2004-1165
2005-01-10 00:00:00
CVE-2005-0365
2005-05-02 00:00:00
cvelist
cvelist
CVE-2004-1165
2004-12-10 05:00:00
CVE-2005-0365
2005-02-11 05:00:00
nessus
nessus
GLSA-200501-18 : KDE FTP KIOslave: Command injection
2005-02-14 00:00:00
Mandrake Linux Security Advisory : kdelibs (MDKSA-2004:160)
2005-01-02 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200501-18 (konqueror)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200501-18 (konqueror)
2008-09-24 00:00:00
Debian Security Advisory DSA 631-1 (kdelibs)
2008-01-17 00:00:00
osv
osv
kdelibs - unsanitised input
2005-01-10 00:00:00
gentoo
gentoo
KDE dcopidlng: Insecure temporary file creation
2005-03-07 00:00:00
KDE FTP KIOslave: Command injection
2005-01-11 00:00:00
cve
cve
CVE-2005-0365
2005-05-02 04:00:00
CVE-2004-1165
2005-01-10 05:00:00
debian
debian
freebsd
freebsd
kdelibs3 -- konqueror FTP command injection vulnerability
2004-12-01 00:00:00
kdelibs -- insecure temporary file creation
2005-01-21 00:00:00
nvd
nvd
CVE-2004-1165
2005-01-10 05:00:00
CVE-2005-0365
2005-05-02 04:00:00
redhat
redhat
(RHSA-2005:065) kdelibs security update
2005-02-15 00:00:00
(RHSA-2005:325) kdelibs security update
2005-03-23 00:00:00
(RHSA-2005:009) kdelibs, kdebase security update
2005-02-10 00:00:00
securityvulns
securityvulns
Multiple KDE Security Advisories (2005-03-16)
2005-03-17 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.811
Percentile
98.4%
Related for MANDRAKE_MDKSA-2005-045.NASL