Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20090206_GSTREAMER_PLUGINS_ON_SL3_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : gstreamer-plugins on SL3.x, SL4.x i386/x86_64

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.086

Percentile

94.5%

JSON

An array indexing error was found in the GStreamer’s QuickTime media file format decoding plug-in. An attacker could create a carefully-crafted QuickTime media .mov file that would cause an application using GStreamer to crash or, potentially, execute arbitrary code if played by a victim. (CVE-2009-0397, CVE-2009-0398)

After installing the update, all applications using GStreamer (such as nautilus-media) must be restarted for the changes to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60531);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-0397", "CVE-2009-0398");

  script_name(english:"Scientific Linux Security Update : gstreamer-plugins on SL3.x, SL4.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An array indexing error was found in the GStreamer's QuickTime media
file format decoding plug-in. An attacker could create a
carefully-crafted QuickTime media .mov file that would cause an
application using GStreamer to crash or, potentially, execute
arbitrary code if played by a victim. (CVE-2009-0397, CVE-2009-0398)

After installing the update, all applications using GStreamer (such as
nautilus-media) must be restarted for the changes to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0902&L=scientific-linux-errata&T=0&P=1790
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?ec05855b"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected gstreamer-plugins and / or gstreamer-plugins-devel
packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/02/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL3", reference:"gstreamer-plugins-0.6.0-19")) flag++;
if (rpm_check(release:"SL3", reference:"gstreamer-plugins-devel-0.6.0-19")) flag++;

if (rpm_check(release:"SL4", reference:"gstreamer-plugins-0.8.5-1.EL.2")) flag++;
if (rpm_check(release:"SL4", reference:"gstreamer-plugins-devel-0.8.5-1.EL.2")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Related

openvas 29
nessus 17
centos 2
cvelist 2
prion 2
nvd 2
redhat 3
checkpoint_advisories 1
ubuntucve 2
oraclelinux 3
cve 2
veracode 1
osv 1
debian 2
freebsd 1
ubuntu 1
gentoo 1
openvas
openvas
RedHat Security Advisory RHSA-2009:0269
2009-02-10 00:00:00
CentOS Security Advisory CESA-2009:0269 (gstreamer-plugins)
2009-02-10 00:00:00
Mandrake Security Advisory MDVSA-2009:086 (gstreamer-plugins)
2009-04-06 00:00:00
nessus
nessus
CentOS 3 : gstreamer-plugins (CESA-2009:0269)
2009-02-06 00:00:00
Oracle Linux 3 : gstreamer-plugins (ELSA-2009-0269)
2013-07-12 00:00:00
RHEL 3 : gstreamer-plugins (RHSA-2009:0269)
2009-02-09 00:00:00
centos
centos
gstreamer security update
2009-02-06 14:26:37
gstreamer security update
2009-02-06 14:59:06
cvelist
cvelist
CVE-2009-0398
2009-02-03 11:00:00
CVE-2009-0397
2009-02-03 11:00:00
prion
prion
Design/Logic Flaw
2009-02-03 11:30:00
Heap overflow
2009-02-03 11:30:00
nvd
nvd
CVE-2009-0398
2009-02-03 11:30:00
CVE-2009-0397
2009-02-03 11:30:00
redhat
redhat
(RHSA-2009:0270) Important: gstreamer-plugins security update
2009-02-06 00:00:00
(RHSA-2009:0269) Important: gstreamer-plugins security update
2009-02-06 00:00:00
(RHSA-2009:0271) Important: gstreamer-plugins-good security update
2009-02-06 00:00:00
checkpoint_advisories
checkpoint_advisories
GStreamer QuickTime File Parsing Multiple Heap Overflows (CVE-2009-0398)
2010-07-20 00:00:00
ubuntucve
ubuntucve
CVE-2009-0398
2009-02-03 00:00:00
CVE-2009-0397
2009-02-03 00:00:00
oraclelinux
oraclelinux
gstreamer-plugins security update
2009-02-06 00:00:00
gstreamer-plugins security update
2009-02-06 00:00:00
gstreamer-plugins-good security update
2009-02-06 00:00:00
cve
cve
CVE-2009-0398
2009-02-03 11:30:00
CVE-2009-0397
2009-02-03 11:30:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:06
osv
osv
gst-plugins-bad0.10 - multiple vulnerabilities
2009-03-02 00:00:00
debian
debian
[SECURITY] [DSA 1729-1] New gst-plugins-bad0.10 packages fix multiple vulnerabilities
2009-03-02 20:38:00
[SECURITY] [DSA 1729-1] New gst-plugins-bad0.10 packages fix multiple vulnerabilities
2009-03-02 20:38:00
freebsd
freebsd
gstreamer-plugins-good -- multiple memory overflows
2009-01-22 00:00:00
ubuntu
ubuntu
GStreamer Good Plugins vulnerabilities
2009-03-16 00:00:00
gentoo
gentoo
GStreamer plug-ins: User-assisted execution of arbitrary code
2009-07-12 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.086

Percentile

94.5%

JSON
Related for SL_20090206_GSTREAMER_PLUGINS_ON_SL3_X.NASL
openvas29nessus17centos2cvelist2prion2nvd2redhat3checkpoint_advisories1ubuntucve2oraclelinux3cve2veracode1osv1debian2freebsd1ubuntu1gentoo1