Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20130530_LIBTIRPC_ON_SL6_X.NASL
HistoryMay 31, 2013 - 12:00 a.m.

Scientific Linux Security Update : libtirpc on SL6.x i386/srpm/x86_64 (20130530)

2013-05-3100:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.171 Low

EPSS

Percentile

96.1%

JSON

A flaw was found in the way libtirpc decoded RPC requests. A specially- crafted RPC request could cause libtirpc to attempt to free a buffer provided by an application using the library, even when the buffer was not dynamically allocated. This could cause an application using libtirpc, such as rpcbind, to crash. (CVE-2013-1950)

All running applications using libtirpc must be restarted for the update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(66709);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2013-1950");

  script_name(english:"Scientific Linux Security Update : libtirpc on SL6.x i386/srpm/x86_64 (20130530)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A flaw was found in the way libtirpc decoded RPC requests. A
specially- crafted RPC request could cause libtirpc to attempt to free
a buffer provided by an application using the library, even when the
buffer was not dynamically allocated. This could cause an application
using libtirpc, such as rpcbind, to crash. (CVE-2013-1950)

All running applications using libtirpc must be restarted for the
update to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1305&L=scientific-linux-errata&T=0&P=2418
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?0c24f903"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected libtirpc, libtirpc-debuginfo and / or
libtirpc-devel packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libtirpc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libtirpc-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libtirpc-devel");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/07/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/05/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/05/31");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL6", reference:"libtirpc-0.2.1-6.el6_4")) flag++;
if (rpm_check(release:"SL6", reference:"libtirpc-debuginfo-0.2.1-6.el6_4")) flag++;
if (rpm_check(release:"SL6", reference:"libtirpc-debuginfo-0.2.1-6.el6_4")) flag++;
if (rpm_check(release:"SL6", reference:"libtirpc-devel-0.2.1-6.el6_4")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libtirpc / libtirpc-debuginfo / libtirpc-devel");
}
VendorProductVersionCPE
fermilabscientific_linuxlibtirpcp-cpe:/a:fermilab:scientific_linux:libtirpc
fermilabscientific_linuxlibtirpc-debuginfop-cpe:/a:fermilab:scientific_linux:libtirpc-debuginfo
fermilabscientific_linuxlibtirpc-develp-cpe:/a:fermilab:scientific_linux:libtirpc-devel
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

nessus 8
f5 2
openvas 6
veracode 1
debiancve 1
ubuntucve 1
cve 1
redhat 2
prion 1
packetstorm 1
fedora 1
nvd 1
oraclelinux 1
amazon 1
centos 1
zdt 1
cvelist 1
nessus
nessus
Fedora 19 : libtirpc-0.2.3-2.fc19 (2013-6262)
2013-04-29 00:00:00
Oracle Linux 6 : libtirpc (ELSA-2013-0884)
2013-07-12 00:00:00
F5 Networks BIG-IP : libtirpc vulnerability (K19157044)
2016-02-19 00:00:00
f5
f5
K19157044 : libtirpc vulnerability CVE-2013-1950
2016-02-18 00:00:00
SOL19157044 - libtirpc vulnerability CVE-2013-1950
2016-02-18 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-199)
2015-09-08 00:00:00
RedHat Update for libtirpc RHSA-2013:0884-01
2013-05-31 00:00:00
Oracle: Security Advisory (ELSA-2013-0884)
2015-10-06 00:00:00
veracode
veracode
Denial Of Service (Dos)
2019-01-15 08:54:20
debiancve
debiancve
CVE-2013-1950
2013-07-09 17:55:00
ubuntucve
ubuntucve
CVE-2013-1950
2013-07-09 00:00:00
cve
cve
CVE-2013-1950
2013-07-09 17:55:00
redhat
redhat
(RHSA-2013:0884) Moderate: libtirpc security update
2013-05-30 00:00:00
(RHSA-2013:1076) Important: rhev-hypervisor6 security and bug fix update
2013-07-16 00:00:00
prion
prion
Design/Logic Flaw
2013-07-09 17:55:00
packetstorm
packetstorm
rpcbind CALLIT UDP Crash
2013-07-17 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: libtirpc-0.2.3-2.fc19
2013-04-27 03:14:23
nvd
nvd
CVE-2013-1950
2013-07-09 17:55:00
oraclelinux
oraclelinux
libtirpc security update
2013-05-30 00:00:00
amazon
amazon
Medium: libtirpc
2013-06-11 22:45:00
centos
centos
libtirpc security update
2013-05-30 20:28:52
zdt
zdt
rpcbind (CALLIT Procedure) UDP Crash PoC
2013-07-16 00:00:00
cvelist
cvelist
CVE-2013-1950
2013-07-09 17:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.171 Low

EPSS

Percentile

96.1%

JSON
Related for SL_20130530_LIBTIRPC_ON_SL6_X.NASL
nessus8f52openvas6veracode1debiancve1ubuntucve1cve1redhat2prion1packetstorm1fedora1nvd1oraclelinux1amazon1centos1zdt1cvelist1