Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 Tenable Network Security, Inc.SUSE_11_0_LIBWSMAN-DEVEL-080814.NASL
HistoryJul 21, 2009 - 12:00 a.m.

openSUSE Security Update : libwsman-devel (libwsman-devel-157)

2009-07-2100:00:00
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.
www.tenable.com
18

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.176

Percentile

96.2%

JSON

This update of openwsman fixes several security vulnerabilities found by the SuSE Security-Team :

  • remote buffer overflows while decoding the HTTP basic authentication header (CVE-2008-2234)

  • a possible SSL session replay attack affecting the client (depending on the configuration) (CVE-2008-2233)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update libwsman-devel-157.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(40053);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2008-2233", "CVE-2008-2234");
  script_xref(name:"IAVB", value:"2008-B-0064");

  script_name(english:"openSUSE Security Update : libwsman-devel (libwsman-devel-157)");
  script_summary(english:"Check for the libwsman-devel-157 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of openwsman fixes several security vulnerabilities found
by the SuSE Security-Team :

  - remote buffer overflows while decoding the HTTP basic
    authentication header (CVE-2008-2234)

  - a possible SSL session replay attack affecting the
    client (depending on the configuration) (CVE-2008-2233)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=373693"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libwsman-devel packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_cwe_id(94, 119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libwsman-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libwsman1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:openwsman-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:openwsman-python");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:openwsman-ruby");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:openwsman-server");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/08/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/07/21");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.0)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.0", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.0", reference:"libwsman-devel-2.0.0-3.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"libwsman1-2.0.0-3.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"openwsman-client-2.0.0-3.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"openwsman-python-2.0.0-3.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"openwsman-ruby-2.0.0-3.3") ) flag++;
if ( rpm_check(release:"SUSE11.0", reference:"openwsman-server-2.0.0-3.3") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openwsman");
}
VendorProductVersionCPE
novellopensuselibwsman-develp-cpe:/a:novell:opensuse:libwsman-devel
novellopensuselibwsman1p-cpe:/a:novell:opensuse:libwsman1
novellopensuseopenwsman-clientp-cpe:/a:novell:opensuse:openwsman-client
novellopensuseopenwsman-pythonp-cpe:/a:novell:opensuse:openwsman-python
novellopensuseopenwsman-rubyp-cpe:/a:novell:opensuse:openwsman-ruby
novellopensuseopenwsman-serverp-cpe:/a:novell:opensuse:openwsman-server
novellopensuse11.0cpe:/o:novell:opensuse:11.0

Related

seebug 1
nessus 2
securityvulns 2
vmware 2
nvd 2
cvelist 2
prion 2
cve 2
saint 4
checkpoint_advisories 3
openvas 1
suse 1
seebug
seebug
Openwsmanๅคšไธช่ฟœ็จ‹ๅฎ‰ๅ…จๆผๆดž
2008-08-20 00:00:00
nessus
nessus
openSUSE 10 Security Update : libwsman-devel (libwsman-devel-5531)
2008-08-22 00:00:00
VMSA-2008-0015 : Updated ESXi and ESX 3.5 packages address critical security issue in openwsman
2011-02-17 00:00:00
securityvulns
securityvulns
VMSA-2008-0015 Updated ESXi and ESX 3.5 packages address critical security issue in openwsman
2008-09-20 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2008-09-20 00:00:00
vmware
vmware
Updated ESXi and ESX 3.5 packages address critical security issue in openwsman
2008-09-18 00:00:00
Updated ESXi and ESX 3.5 packages address critical security issue in openwsman
2008-09-18 00:00:00
nvd
nvd
CVE-2008-2233
2008-08-18 17:41:00
CVE-2008-2234
2008-08-18 17:41:00
cvelist
cvelist
CVE-2008-2233
2008-08-18 17:15:00
CVE-2008-2234
2008-08-18 17:15:00
prion
prion
Code injection
2008-08-18 17:41:00
Buffer overflow
2008-08-18 17:41:00
cve
cve
CVE-2008-2233
2008-08-18 17:41:00
CVE-2008-2234
2008-08-18 17:41:00
saint
saint
Openwsman HTTP Basic Authentication buffer overflow
2008-10-17 00:00:00
Openwsman HTTP Basic Authentication buffer overflow
2008-10-17 00:00:00
Openwsman HTTP Basic Authentication buffer overflow
2008-10-17 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against openwsman HTTP Basic Authentication Buffer Overflow
2008-11-14 00:00:00
Openwsman HTTP Basic Authentication Buffer Overflow (CVE-2008-2234)
2010-06-14 00:00:00
Preemptive Protection against Free Download Manager Remote Control Server
2009-02-04 00:00:00
openvas
openvas
SuSE Update for openwsman SUSE-SA:2008:041
2009-01-23 00:00:00
suse
suse
remote code execution in openwsman
2008-08-14 18:02:43

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.176

Percentile

96.2%

JSON
Related for SUSE_11_0_LIBWSMAN-DEVEL-080814.NASL
seebug1nessus2securityvulns2vmware2nvd2cvelist2prion2cve2saint4checkpoint_advisories3openvas1suse1