Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1480-1.NASL
HistoryJun 19, 2012 - 12:00 a.m.

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : raptor vulnerability (USN-1480-1)

2012-06-1900:00:00
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON

Timothy D. Morgan discovered that Raptor would unconditionally load XML external entities. If a user were tricked into opening a specially crafted document in an application linked against Raptor, an attacker could possibly obtain access to arbitrary files on the user’s system or potentially execute arbitrary code with the privileges of the user invoking the program.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1480-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(59567);
  script_version("1.9");
  script_cvs_date("Date: 2019/09/19 12:54:28");

  script_cve_id("CVE-2012-0037");
  script_bugtraq_id(52681);
  script_xref(name:"USN", value:"1480-1");

  script_name(english:"Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : raptor vulnerability (USN-1480-1)");
  script_summary(english:"Checks dpkg output for updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Ubuntu host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Timothy D. Morgan discovered that Raptor would unconditionally load
XML external entities. If a user were tricked into opening a specially
crafted document in an application linked against Raptor, an attacker
could possibly obtain access to arbitrary files on the user's system
or potentially execute arbitrary code with the privileges of the user
invoking the program.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/1480-1/"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libraptor1 package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libraptor1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.04");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/06/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/06/19");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04|11\.04|11\.10|12\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04 / 11.04 / 11.10 / 12.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"10.04", pkgname:"libraptor1", pkgver:"1.4.21-1ubuntu1.1")) flag++;
if (ubuntu_check(osver:"11.04", pkgname:"libraptor1", pkgver:"1.4.21-2ubuntu0.1")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"libraptor1", pkgver:"1.4.21-5ubuntu0.1")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"libraptor1", pkgver:"1.4.21-7ubuntu0.1")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libraptor1");
}
VendorProductVersionCPE
canonicalubuntu_linuxlibraptor1p-cpe:/a:canonical:ubuntu_linux:libraptor1
canonicalubuntu_linux10.04cpe:/o:canonical:ubuntu_linux:10.04:-:lts
canonicalubuntu_linux11.04cpe:/o:canonical:ubuntu_linux:11.04
canonicalubuntu_linux11.10cpe:/o:canonical:ubuntu_linux:11.10
canonicalubuntu_linux12.04cpe:/o:canonical:ubuntu_linux:12.04:-:lts

Related

nessus 28
openvas 31
debian 1
cve 1
securityvulns 3
ubuntu 2
veracode 1
freebsd 1
redhat 2
fedora 4
prion 1
cvelist 1
ubuntucve 1
seebug 1
centos 2
rosalinux 1
nvd 1
oraclelinux 1
gentoo 2
nessus
nessus
RHEL 5 : openoffice.org (RHSA-2012:0411)
2012-03-23 00:00:00
RHEL 4 : openoffice.org (Unpatched Vulnerability)
2024-06-03 00:00:00
Scientific Linux Security Update : raptor on SL6.x i386/x86_64 (20120322)
2012-08-01 00:00:00
openvas
openvas
RedHat Update for raptor RHSA-2012:0410-01
2012-07-09 00:00:00
Mandriva Update for raptor MDVSA-2012:061 (raptor)
2012-08-03 00:00:00
CentOS Update for openoffice.org-base CESA-2012:0411 centos5
2012-07-30 00:00:00
debian
debian
[SECURITY] [DSA 2438-1] raptor security update
2012-03-22 16:44:46
cve
cve
CVE-2012-0037
2012-06-17 03:41:40
securityvulns
securityvulns
[SECURITY] [DSA 2438-1] raptor security update
2012-03-26 00:00:00
CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation &#40;Multiple office products affected&#41;
2012-04-02 00:00:00
raptor library &#40;libreoffice / openoffice&#41; file injection
2012-04-02 00:00:00
ubuntu
ubuntu
Raptor vulnerability
2012-06-18 00:00:00
Raptor vulnerability
2013-07-08 00:00:00
veracode
veracode
XML External Entity Expansion
2020-04-10 01:12:37
freebsd
freebsd
raptor/raptor2 -- XXE in RDF/XML File Interpretation
2012-03-24 00:00:00
redhat
redhat
(RHSA-2012:0411) Important: openoffice.org security update
2012-03-22 00:00:00
(RHSA-2012:0410) Important: raptor security update
2012-03-22 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: raptor2-2.0.7-1.fc17
2012-04-12 02:56:09
[SECURITY] Fedora 17 Update: raptor-1.4.21-12.fc17
2012-07-30 22:27:56
[SECURITY] Fedora 16 Update: raptor-1.4.21-12.fc16
2012-07-30 22:30:12
prion
prion
Xxe
2012-06-17 03:41:00
cvelist
cvelist
CVE-2012-0037
2012-06-17 01:00:00
ubuntucve
ubuntucve
CVE-2012-0037
2012-03-22 00:00:00
seebug
seebug
OpenOffice ODF文档信息泄露漏洞
2012-03-23 00:00:00
centos
centos
openoffice.org security update
2012-03-23 18:34:12
raptor security update
2012-03-22 20:07:09
rosalinux
rosalinux
Advisory ROSA-SA-2021-1961
2021-07-02 18:04:27
nvd
nvd
CVE-2012-0037
2012-06-17 03:41:40
oraclelinux
oraclelinux
raptor security update
2012-03-22 00:00:00
gentoo
gentoo
LibreOffice: Multiple vulnerabilities
2012-09-24 00:00:00
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

0.004 Low

EPSS

Percentile

74.8%

JSON
Related for UBUNTU_USN-1480-1.NASL
nessus28openvas31debian1cve1securityvulns3ubuntu2veracode1freebsd1redhat2fedora4prion1cvelist1ubuntucve1seebug1centos2rosalinux1nvd1oraclelinux1gentoo2