Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20070501_GDM_ON_SL4.NASLHistoryAug 01, 2012 - 12:00 a.m.
Scientific Linux Security Update : gdm on SL4 i386/x86_64
2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
9.6%
Marcus Meissner discovered a race condition issue in the way Gdm modifies the permissions on the .ICEauthority file. A local attacker could exploit this flaw to gain privileges. Due to the nature of the flaw, however, a successful exploitation was unlikely. (CVE-2006-1057)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(60166);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2006-1057");
script_name(english:"Scientific Linux Security Update : gdm on SL4 i386/x86_64");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Marcus Meissner discovered a race condition issue in the way Gdm
modifies the permissions on the .ICEauthority file. A local attacker
could exploit this flaw to gain privileges. Due to the nature of the
flaw, however, a successful exploitation was unlikely. (CVE-2006-1057)"
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind0705&L=scientific-linux-errata&T=0&P=747
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?e966e7f0"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"patch_publication_date", value:"2007/05/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL4", reference:"audit-1.0.15-3.EL4")) flag++;
if (rpm_check(release:"SL4", reference:"audit-libs-1.0.15-3.EL4")) flag++;
if (rpm_check(release:"SL4", reference:"audit-libs-devel-1.0.15-3.EL4")) flag++;
if (rpm_check(release:"SL4", reference:"gdm-2.6.0.5-7.rhel4.15")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
debian
debian
[SECURITY] [DSA 1040-1] New gdm packages fix local root exploit
2006-04-24 07:04:24
[SECURITY] [DSA 1040-1] New gdm packages fix local root exploit
2006-04-24 07:04:24
openvas
openvas
Debian: Security Advisory (DSA-1040-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1040-1 (gdm)
2008-01-17 00:00:00
nvd
nvd
CVE-2006-1057
2006-04-25 01:02:00
cvelist
cvelist
CVE-2006-1057
2006-04-25 01:00:00
nessus
nessus
Fedora Core 5 : gdm-2.14.1-1.fc5.2 (2006-338)
2006-04-21 00:00:00
RHEL 4 : gdm (RHSA-2007:0286)
2007-05-02 00:00:00
Ubuntu 5.04 / 5.10 : gdm vulnerabilitiy (USN-278-1)
2006-05-13 00:00:00
ubuntu
ubuntu
gdm vulnerability
2006-05-04 00:00:00
redhat
redhat
(RHSA-2007:0286) Low: gdm security and bug fix update
2007-05-01 00:00:00
cve
cve
CVE-2006-1057
2006-04-25 01:02:00
oraclelinux
oraclelinux
Low: gdm security and bug fix update
2007-05-17 00:00:00
prion
prion
Race condition
2006-04-25 01:02:00
centos
centos
gdm security update
2007-05-04 22:41:48
veracode
veracode
Privilege Escalation
2020-04-10 00:17:49
ubuntucve
ubuntucve
CVE-2006-1057
2006-04-25 00:00:00
securityvulns
securityvulns
3.7 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
9.6%
Related for SL_20070501_GDM_ON_SL4.NASL