[Openvas-commits] r593 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Thu Jan 17 22:36:27 CET 2008
Author: jan
Date: 2008-01-17 22:36:24 +0100 (Thu, 17 Jan 2008)
New Revision: 593
Added:
trunk/openvas-plugins/scripts/deb_300_1.nasl
trunk/openvas-plugins/scripts/deb_301_1.nasl
trunk/openvas-plugins/scripts/deb_302_1.nasl
trunk/openvas-plugins/scripts/deb_303_1.nasl
trunk/openvas-plugins/scripts/deb_304_1.nasl
trunk/openvas-plugins/scripts/deb_305_1.nasl
trunk/openvas-plugins/scripts/deb_306_1.nasl
trunk/openvas-plugins/scripts/deb_307_1.nasl
trunk/openvas-plugins/scripts/deb_308_1.nasl
trunk/openvas-plugins/scripts/deb_309_1.nasl
trunk/openvas-plugins/scripts/deb_310_1.nasl
trunk/openvas-plugins/scripts/deb_311_1.nasl
trunk/openvas-plugins/scripts/deb_312_1.nasl
trunk/openvas-plugins/scripts/deb_313_1.nasl
trunk/openvas-plugins/scripts/deb_314_1.nasl
trunk/openvas-plugins/scripts/deb_315_1.nasl
trunk/openvas-plugins/scripts/deb_316_1.nasl
trunk/openvas-plugins/scripts/deb_317_1.nasl
trunk/openvas-plugins/scripts/deb_318_1.nasl
trunk/openvas-plugins/scripts/deb_319_1.nasl
trunk/openvas-plugins/scripts/deb_320_1.nasl
trunk/openvas-plugins/scripts/deb_321_1.nasl
trunk/openvas-plugins/scripts/deb_322_1.nasl
trunk/openvas-plugins/scripts/deb_323_1.nasl
trunk/openvas-plugins/scripts/deb_324_1.nasl
trunk/openvas-plugins/scripts/deb_325_1.nasl
trunk/openvas-plugins/scripts/deb_326_1.nasl
trunk/openvas-plugins/scripts/deb_327_1.nasl
trunk/openvas-plugins/scripts/deb_328_1.nasl
trunk/openvas-plugins/scripts/deb_329_1.nasl
trunk/openvas-plugins/scripts/deb_330_1.nasl
trunk/openvas-plugins/scripts/deb_331_1.nasl
trunk/openvas-plugins/scripts/deb_332_1.nasl
trunk/openvas-plugins/scripts/deb_333_1.nasl
trunk/openvas-plugins/scripts/deb_334_1.nasl
trunk/openvas-plugins/scripts/deb_335_1.nasl
trunk/openvas-plugins/scripts/deb_336_1.nasl
trunk/openvas-plugins/scripts/deb_337_1.nasl
trunk/openvas-plugins/scripts/deb_338_1.nasl
trunk/openvas-plugins/scripts/deb_339_1.nasl
trunk/openvas-plugins/scripts/deb_340_1.nasl
trunk/openvas-plugins/scripts/deb_341_1.nasl
trunk/openvas-plugins/scripts/deb_342_1.nasl
trunk/openvas-plugins/scripts/deb_343_1.nasl
trunk/openvas-plugins/scripts/deb_344_1.nasl
trunk/openvas-plugins/scripts/deb_345_1.nasl
trunk/openvas-plugins/scripts/deb_346_1.nasl
trunk/openvas-plugins/scripts/deb_347_1.nasl
trunk/openvas-plugins/scripts/deb_348_1.nasl
trunk/openvas-plugins/scripts/deb_349_1.nasl
trunk/openvas-plugins/scripts/deb_350_1.nasl
trunk/openvas-plugins/scripts/deb_351_1.nasl
trunk/openvas-plugins/scripts/deb_352_1.nasl
trunk/openvas-plugins/scripts/deb_353_1.nasl
trunk/openvas-plugins/scripts/deb_354_1.nasl
trunk/openvas-plugins/scripts/deb_355_1.nasl
trunk/openvas-plugins/scripts/deb_356_1.nasl
trunk/openvas-plugins/scripts/deb_357_1.nasl
trunk/openvas-plugins/scripts/deb_358_1.nasl
trunk/openvas-plugins/scripts/deb_359_1.nasl
trunk/openvas-plugins/scripts/deb_360_1.nasl
trunk/openvas-plugins/scripts/deb_361_1.nasl
trunk/openvas-plugins/scripts/deb_362_1.nasl
trunk/openvas-plugins/scripts/deb_363_1.nasl
trunk/openvas-plugins/scripts/deb_364_1.nasl
trunk/openvas-plugins/scripts/deb_365_1.nasl
trunk/openvas-plugins/scripts/deb_366_1.nasl
trunk/openvas-plugins/scripts/deb_367_1.nasl
trunk/openvas-plugins/scripts/deb_368_1.nasl
trunk/openvas-plugins/scripts/deb_369_1.nasl
trunk/openvas-plugins/scripts/deb_370_1.nasl
trunk/openvas-plugins/scripts/deb_371_1.nasl
trunk/openvas-plugins/scripts/deb_372_1.nasl
trunk/openvas-plugins/scripts/deb_373_1.nasl
trunk/openvas-plugins/scripts/deb_374_1.nasl
trunk/openvas-plugins/scripts/deb_376_1.nasl
trunk/openvas-plugins/scripts/deb_377_1.nasl
trunk/openvas-plugins/scripts/deb_378_1.nasl
trunk/openvas-plugins/scripts/deb_379_1.nasl
trunk/openvas-plugins/scripts/deb_380_1.nasl
trunk/openvas-plugins/scripts/deb_381_1.nasl
trunk/openvas-plugins/scripts/deb_382_1.nasl
trunk/openvas-plugins/scripts/deb_382_2.nasl
trunk/openvas-plugins/scripts/deb_382_3.nasl
trunk/openvas-plugins/scripts/deb_383_1.nasl
trunk/openvas-plugins/scripts/deb_383_2.nasl
trunk/openvas-plugins/scripts/deb_384_1.nasl
trunk/openvas-plugins/scripts/deb_385_1.nasl
trunk/openvas-plugins/scripts/deb_386_1.nasl
trunk/openvas-plugins/scripts/deb_387_1.nasl
trunk/openvas-plugins/scripts/deb_388_1.nasl
trunk/openvas-plugins/scripts/deb_389_1.nasl
trunk/openvas-plugins/scripts/deb_390_1.nasl
trunk/openvas-plugins/scripts/deb_391_1.nasl
trunk/openvas-plugins/scripts/deb_392_1.nasl
trunk/openvas-plugins/scripts/deb_393_1.nasl
trunk/openvas-plugins/scripts/deb_394_1.nasl
trunk/openvas-plugins/scripts/deb_395_1.nasl
trunk/openvas-plugins/scripts/deb_396_1.nasl
trunk/openvas-plugins/scripts/deb_397_1.nasl
trunk/openvas-plugins/scripts/deb_398_1.nasl
trunk/openvas-plugins/scripts/deb_399_1.nasl
Modified:
trunk/openvas-plugins/ChangeLog
Log:
* scripts/deb_300_1.nasl, scripts/deb_301_1.nasl,
scripts/deb_302_1.nasl, scripts/deb_303_1.nasl, scripts/deb_304_1.nasl,
scripts/deb_305_1.nasl, scripts/deb_306_1.nasl, scripts/deb_307_1.nasl,
scripts/deb_308_1.nasl, scripts/deb_309_1.nasl, scripts/deb_310_1.nasl,
scripts/deb_311_1.nasl, scripts/deb_312_1.nasl, scripts/deb_313_1.nasl,
scripts/deb_314_1.nasl, scripts/deb_315_1.nasl, scripts/deb_316_1.nasl,
scripts/deb_317_1.nasl, scripts/deb_318_1.nasl, scripts/deb_319_1.nasl,
scripts/deb_320_1.nasl, scripts/deb_321_1.nasl, scripts/deb_322_1.nasl,
scripts/deb_323_1.nasl, scripts/deb_324_1.nasl, scripts/deb_325_1.nasl,
scripts/deb_326_1.nasl, scripts/deb_327_1.nasl, scripts/deb_328_1.nasl,
scripts/deb_329_1.nasl, scripts/deb_330_1.nasl, scripts/deb_331_1.nasl,
scripts/deb_332_1.nasl, scripts/deb_333_1.nasl, scripts/deb_334_1.nasl,
scripts/deb_335_1.nasl, scripts/deb_336_1.nasl, scripts/deb_337_1.nasl,
scripts/deb_338_1.nasl, scripts/deb_339_1.nasl, scripts/deb_340_1.nasl,
scripts/deb_341_1.nasl, scripts/deb_342_1.nasl, scripts/deb_343_1.nasl,
scripts/deb_344_1.nasl, scripts/deb_345_1.nasl, scripts/deb_346_1.nasl,
scripts/deb_347_1.nasl, scripts/deb_348_1.nasl, scripts/deb_349_1.nasl,
scripts/deb_350_1.nasl, scripts/deb_351_1.nasl, scripts/deb_352_1.nasl,
scripts/deb_353_1.nasl, scripts/deb_354_1.nasl, scripts/deb_355_1.nasl,
scripts/deb_356_1.nasl, scripts/deb_357_1.nasl, scripts/deb_358_1.nasl,
scripts/deb_359_1.nasl, scripts/deb_360_1.nasl, scripts/deb_361_1.nasl,
scripts/deb_362_1.nasl, scripts/deb_363_1.nasl, scripts/deb_364_1.nasl,
scripts/deb_365_1.nasl, scripts/deb_366_1.nasl, scripts/deb_367_1.nasl,
scripts/deb_368_1.nasl, scripts/deb_369_1.nasl, scripts/deb_370_1.nasl,
scripts/deb_371_1.nasl, scripts/deb_372_1.nasl, scripts/deb_373_1.nasl,
scripts/deb_374_1.nasl, scripts/deb_376_1.nasl, scripts/deb_377_1.nasl,
scripts/deb_378_1.nasl, scripts/deb_379_1.nasl, scripts/deb_380_1.nasl,
scripts/deb_381_1.nasl, scripts/deb_382_1.nasl, scripts/deb_382_2.nasl,
scripts/deb_382_3.nasl, scripts/deb_383_1.nasl, scripts/deb_383_2.nasl,
scripts/deb_384_1.nasl, scripts/deb_385_1.nasl, scripts/deb_386_1.nasl,
scripts/deb_387_1.nasl, scripts/deb_388_1.nasl, scripts/deb_389_1.nasl,
scripts/deb_390_1.nasl, scripts/deb_391_1.nasl, scripts/deb_392_1.nasl,
scripts/deb_393_1.nasl, scripts/deb_394_1.nasl, scripts/deb_395_1.nasl,
scripts/deb_396_1.nasl, scripts/deb_397_1.nasl, scripts/deb_398_1.nasl,
scripts/deb_399_1.nasl: New. Contributed by Thomas Reinke.
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/ChangeLog 2008-01-17 21:36:24 UTC (rev 593)
@@ -1,5 +1,43 @@
2008-01-17 Jan-Oliver Wagner <jan-oliver.wagner at intevation.de>
+ * scripts/deb_300_1.nasl, scripts/deb_301_1.nasl,
+ scripts/deb_302_1.nasl, scripts/deb_303_1.nasl, scripts/deb_304_1.nasl,
+ scripts/deb_305_1.nasl, scripts/deb_306_1.nasl, scripts/deb_307_1.nasl,
+ scripts/deb_308_1.nasl, scripts/deb_309_1.nasl, scripts/deb_310_1.nasl,
+ scripts/deb_311_1.nasl, scripts/deb_312_1.nasl, scripts/deb_313_1.nasl,
+ scripts/deb_314_1.nasl, scripts/deb_315_1.nasl, scripts/deb_316_1.nasl,
+ scripts/deb_317_1.nasl, scripts/deb_318_1.nasl, scripts/deb_319_1.nasl,
+ scripts/deb_320_1.nasl, scripts/deb_321_1.nasl, scripts/deb_322_1.nasl,
+ scripts/deb_323_1.nasl, scripts/deb_324_1.nasl, scripts/deb_325_1.nasl,
+ scripts/deb_326_1.nasl, scripts/deb_327_1.nasl, scripts/deb_328_1.nasl,
+ scripts/deb_329_1.nasl, scripts/deb_330_1.nasl, scripts/deb_331_1.nasl,
+ scripts/deb_332_1.nasl, scripts/deb_333_1.nasl, scripts/deb_334_1.nasl,
+ scripts/deb_335_1.nasl, scripts/deb_336_1.nasl, scripts/deb_337_1.nasl,
+ scripts/deb_338_1.nasl, scripts/deb_339_1.nasl, scripts/deb_340_1.nasl,
+ scripts/deb_341_1.nasl, scripts/deb_342_1.nasl, scripts/deb_343_1.nasl,
+ scripts/deb_344_1.nasl, scripts/deb_345_1.nasl, scripts/deb_346_1.nasl,
+ scripts/deb_347_1.nasl, scripts/deb_348_1.nasl, scripts/deb_349_1.nasl,
+ scripts/deb_350_1.nasl, scripts/deb_351_1.nasl, scripts/deb_352_1.nasl,
+ scripts/deb_353_1.nasl, scripts/deb_354_1.nasl, scripts/deb_355_1.nasl,
+ scripts/deb_356_1.nasl, scripts/deb_357_1.nasl, scripts/deb_358_1.nasl,
+ scripts/deb_359_1.nasl, scripts/deb_360_1.nasl, scripts/deb_361_1.nasl,
+ scripts/deb_362_1.nasl, scripts/deb_363_1.nasl, scripts/deb_364_1.nasl,
+ scripts/deb_365_1.nasl, scripts/deb_366_1.nasl, scripts/deb_367_1.nasl,
+ scripts/deb_368_1.nasl, scripts/deb_369_1.nasl, scripts/deb_370_1.nasl,
+ scripts/deb_371_1.nasl, scripts/deb_372_1.nasl, scripts/deb_373_1.nasl,
+ scripts/deb_374_1.nasl, scripts/deb_376_1.nasl, scripts/deb_377_1.nasl,
+ scripts/deb_378_1.nasl, scripts/deb_379_1.nasl, scripts/deb_380_1.nasl,
+ scripts/deb_381_1.nasl, scripts/deb_382_1.nasl, scripts/deb_382_2.nasl,
+ scripts/deb_382_3.nasl, scripts/deb_383_1.nasl, scripts/deb_383_2.nasl,
+ scripts/deb_384_1.nasl, scripts/deb_385_1.nasl, scripts/deb_386_1.nasl,
+ scripts/deb_387_1.nasl, scripts/deb_388_1.nasl, scripts/deb_389_1.nasl,
+ scripts/deb_390_1.nasl, scripts/deb_391_1.nasl, scripts/deb_392_1.nasl,
+ scripts/deb_393_1.nasl, scripts/deb_394_1.nasl, scripts/deb_395_1.nasl,
+ scripts/deb_396_1.nasl, scripts/deb_397_1.nasl, scripts/deb_398_1.nasl,
+ scripts/deb_399_1.nasl: New. Contributed by Thomas Reinke.
+
+2008-01-17 Jan-Oliver Wagner <jan-oliver.wagner at intevation.de>
+
* scripts/deb_200_1.nasl, scripts/deb_201_1.nasl, scripts/deb_202_1.nasl,
scripts/deb_202_2.nasl, scripts/deb_203_1.nasl, scripts/deb_204_1.nasl,
scripts/deb_205_1.nasl, scripts/deb_206_1.nasl, scripts/deb_207_1.nasl,
Added: trunk/openvas-plugins/scripts/deb_300_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_300_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_300_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 300-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53372);
+ script_cve_id("CVE-2003-0167");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 300-1 (balsa)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to balsa
+announced via advisory DSA 300-1.
+
+Byrial Jensen discovered a couple of off-by-one buffer overflow in the
+IMAP code of Mutt, a text-oriented mail reader supporting IMAP, MIME,
+GPG, PGP and threading. This code is imported in the Balsa package.
+This problem could potentially allow a remote malicious IMAP server to
+cause a denial of service (crash) and possibly execute arbitrary code
+via a specially crafted mail folder.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.2.4-2.2.
+
+The old stable distribution (potato) does not seem to be affected by
+this problem.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you upgrade your balsa package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20300-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 300-1 (balsa)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"balsa", ver:"1.2.4-2.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_301_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_301_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_301_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,100 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 301-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53593);
+ script_bugtraq_id(3594);
+ script_cve_id("CVE-2001-0928");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 301-1 (libgtop)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to libgtop
+announced via advisory DSA 301-1.
+
+The gtop daemon, used for monitoring remote machines, contains a
+buffer overflow which could be used by an attacker to execute
+arbitrary code with the privileges of the daemon process. If started
+as root, the daemon process drops root privileges, assuming uid and
+gid 99 by default.
+
+This bug was previously fixed in DSA-098, but one of the patches was
+not carried over to later versions of libgtop.
+
+For the stable distribution (woody), this problem has been fixed in
+version 1.0.13-3.1.
+
+For the old stable distribution (potato), this problem was fixed in
+DSA-098.
+
+For the unstable distribution (sid), this problem has been fixed in
+version 1.0.13-4.
+
+We recommend that you update your libgtop package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20301-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 301-1 (libgtop)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libgtop-daemon", ver:"1.0.13-3.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgtop-dev", ver:"1.0.13-3.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgtop1", ver:"1.0.13-3.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_302_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_302_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_302_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 302-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53594);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 302-1 (fuzz)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to fuzz
+announced via advisory DSA 302-1.
+
+Joey Hess discovered that fuzz, a software stress-testing tool,
+creates a temporary file without taking appropriate security
+precautions. This bug could allow an attacker to gain the privileges
+of the user invoking fuzz, excluding root (fuzz does not allow itself
+to be invoked as root).
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.6-6woody1.
+
+The old stable distribution (potato) does not contain a fuzz package.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your fuzz package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20302-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 302-1 (fuzz)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"fuzz", ver:"0.6-6woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_303_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_303_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_303_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,120 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 303-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53595);
+ script_cve_id("CVE-2003-0073", "CVE-2003-0150");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 303-1 (mysql)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mysql
+announced via advisory DSA 303-1.
+
+CVE-2003-0073: The mysql package contains a bug whereby dynamically
+allocated memory is freed more than once, which could be deliberately
+triggered by an attacker to cause a crash, resulting in a denial of
+service condition. In order to exploit this vulnerability, a valid
+username and password combination for access to the MySQL server is
+required.
+
+CVE-2003-0150: The mysql package contains a bug whereby a malicious
+user, granted certain permissions within mysql, could create a
+configuration file which would cause the mysql server to run as root,
+or any other user, rather than the mysql user.
+
+For the stable distribution (woody) both problems have been fixed in
+version 3.23.49-8.4.
+
+The old stable distribution (potato) is only affected by
+CVE-2003-0150, and this has been fixed in version 3.22.32-6.4.
+
+For the unstable distribution (sid), CVE-2003-0073 was fixed in
+version 4.0.12-2, and CVE-2003-0150 will be fixed soon.
+
+We recommend that you update your mysql package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20303-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 303-1 (mysql)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mysql-common", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-doc", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmysqlclient10", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmysqlclient10-dev", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-client", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-server", ver:"3.23.49-8.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-doc", ver:"3.22.32-6.4", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-client", ver:"3.22.32-6.4", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-server", ver:"3.22.32-6.4", rls:"DEB2.2")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_304_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_304_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_304_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 304-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53596);
+ script_cve_id("CVE-2003-0188");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 304-1 (lv)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to lv
+announced via advisory DSA 304-1.
+
+Leonard Stiles discovered that lv, a multilingual file viewer, would
+read options from a configuration file in the current directory.
+Because such a file could be placed there by a malicious user, and lv
+configuration options can be used to execute commands, this
+represented a security vulnerability. An attacker could gain the
+privileges of the user invoking lv, including root.
+
+For the stable distribution (woody) this problem has been fixed in
+version 4.49.4-7woody2.
+
+For the old stable distribution (potato) this problem has been fixed
+in version 4.49.3-4potato2.
+
+For the unstable distribution (sid) this problem is fixed in version
+4.49.5-2.
+
+We recommend that you update your lv package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20304-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 304-1 (lv)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"lv", ver:"4.49.3-4potato2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"lv", ver:"4.49.4-7woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_305_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_305_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_305_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,98 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 305-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53597);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 305-1 (sendmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to sendmail
+announced via advisory DSA 305-1.
+
+Paul Szabo discovered bugs in three scripts included in the sendmail
+package where temporary files were created insecurely (expn,
+checksendmail and doublebounce.pl). These bugs could allow an
+attacker to gain the privileges of a user invoking the script
+(including root).
+
+For the stable distribution (woody) these problems have been fixed in
+version 8.12.3-6.4.
+
+For the old stable distribution (potato) these problems have been fixed
+in version 8.9.3-26.1.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 8.12.9-2.
+
+We recommend that you update your sendmail package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20305-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 305-1 (sendmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"sendmail-doc", ver:"8.12.3-6.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmilter-dev", ver:"8.12.3-6.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"sendmail", ver:"8.12.3-6.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"sendmail", ver:"8.9.3-26.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_306_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_306_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_306_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,104 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 306-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53373);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 306-1 (ircii-pana)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ircii-pana
+announced via advisory DSA 306-1.
+
+Timo Sirainen discovered several problems in BitchX, a popular client
+for Internet Relay Chat (IRC). A malicious server could craft special
+reply strings, triggering the client to write beyond buffer boundaries
+or allocate a negative amount of memory. This could lead to a denial
+of service if the client only crashes, but may also lead to executing
+of arbitrary code under the user id of the chatting user.
+
+For the stable distribution (woody) these problems have been fixed in
+version 1.0-0c19-1.1.
+
+For the old stable distribution (potato) these problems have been
+fixed in version 1.0-0c16-2.1.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 1.0-0c19-8.
+
+We recommend that you upgrade your BitchX package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20306-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 306-1 (ircii-pana)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"bitchx", ver:"1.0-0c16-2.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-gtk", ver:"1.0-0c16-2.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-dev", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-gtk", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-ssl", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_307_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_307_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_307_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,104 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 307-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53598);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 307-1 (ircii-pana)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ircii-pana
+announced via advisory DSA 307-1.
+
+Timo Sirainen discovered several problems in BitchX, a popular client
+for Internet Relay Chat (IRC). A malicious server could craft special
+reply strings, triggering the client to write beyond buffer boundaries
+or allocate a negative amount of memory. This could lead to a denial
+of service if the client only crashes, but may also lead to executing
+of arbitrary code under the user id of the chatting user.
+
+For the stable distribution (woody) these problems have been fixed in
+version 1.0-0c19-1.1.
+
+For the old stable distribution (potato) these problems have been
+fixed in version 1.0-0c16-2.1.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 1.0-0c19-8.
+
+We recommend that you upgrade your BitchX package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20307-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 307-1 (ircii-pana)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"bitchx", ver:"1.0-0c16-2.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-gtk", ver:"1.0-0c16-2.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-dev", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-gtk", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"bitchx-ssl", ver:"1.0-0c19-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_308_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_308_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_308_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 308-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53599);
+ script_cve_id("CVE-1999-1332", "CVE-2003-0367");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 308-1 (gzip)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to gzip
+announced via advisory DSA 308-1.
+
+Paul Szabo discovered that znew, a script included in the gzip
+package, creates its temporary files without taking precautions to
+avoid a symlink attack (CVE-2003-0367).
+
+The gzexe script has a similar vulnerability which was patched in an
+earlier release but inadvertently reverted.
+
+For the stable distribution (woody) both problems have been fixed in
+version 1.3.2-3woody1.
+
+For the old stable distribution (potato) CVE-2003-0367 has been fixed
+in version 1.2.4-33.2. This version is not vulnerable to
+CVE-1999-1332 due to an earlier patch.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your gzip package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20308-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 308-1 (gzip)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gzip", ver:"1.3.2-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gzip", ver:"1.2.4-33.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_309_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_309_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_309_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 309-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53753);
+ script_cve_id("CVE-2003-0382");
+ script_bugtraq_id(7708);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 309-1 (eterm)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to eterm
+announced via advisory DSA 309-1.
+
+'bazarr' discovered that eterm is vulnerable to a buffer overflow of
+the ETERMPATH environment variable. This bug can be exploited to gain
+the privileges of the group 'utmp' on a system where eterm is
+installed.
+
+For the stable distribution (woody), this problem has been fixed in
+version 0.9.2-0pre2002042903.1.
+
+The old stable distribution (potato) is not affected by this bug.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your eterm package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20309-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 309-1 (eterm)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"eterm", ver:"0.9.2-0pre2002042903.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_310_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_310_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_310_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,99 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 310-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53600);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 310-1 (xaos)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xaos
+announced via advisory DSA 310-1.
+
+XaoS, a program for displaying fractal images, is installed setuid
+root on certain architectures in order to use svgalib, which requires
+access to the video hardware. However, it is not designed for secure
+setuid execution, and can be exploited to gain root privileges.
+
+In these updated packages, the setuid bit has been removed from the
+xaos binary. Users who require the svgalib functionality should grant
+these privileges only to a trusted group.
+
+This vulnerability is exploitable in version 3.0-18 (potato) on i386
+and alpha architectures, and in version 3.0-23 (woody) on the i386
+architecture only.
+
+For the stable distribution (woody) this problem has been fixed in
+version 3.0-23woody1.
+
+For the old stable distribution (potato) this problem has been fixed
+in version 3.0-18potato1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 3.1r-4.
+
+We recommend that you update your xaos package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20310-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 310-1 (xaos)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xaos", ver:"3.0-18potato1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xaos", ver:"3.0-23woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_311_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_311_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_311_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,186 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 311-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53694);
+ script_cve_id("CVE-2002-0429", "CVE-2003-0001", "CVE-2003-0127", "CVE-2003-0244", "CVE-2003-0246", "CVE-2003-0247", "CVE-2003-0248", "CVE-2003-0364");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 311-1 (kernel)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kernel
+announced via advisory DSA 311-1.
+
+A number of vulnerabilities have been discovered in the Linux kernel.
+
+For a more detailed description of the problems addressed,
+please visit the referenced security advisory.
+
+This advisory covers only the i386 (Intel IA32) architectures. Other
+architectures will be covered by separate advisories.
+
+For the stable distribution (woody) on the i386 architecture, these
+problems have been fixed in kernel-source-2.4.18 version 2.4.18-9,
+kernel-image-2.4.18-1-i386 version 2.4.18-8, and
+kernel-image-2.4.18-i386bf version 2.4.18-5woody1.
+
+For the unstable distribution (sid) these problems are fixed in the
+2.4.20 series kernels based on Debian sources.
+
+We recommend that you update your kernel packages.
+
+If you are using the kernel installed by the installation system when
+the 'bf24' option is selected (for a 2.4.x kernel), you should install
+the kernel-image-2.4.18-bf2.4 package. If you installed a different
+kernel-image package after installation, you should install the
+corresponding 2.4.18-1 kernel. You may use the table below as a
+guide.
+
+| If 'uname -r' shows: | Install this package:
+- ------------------------------------------------------
+| 2.4.18-bf2.4 | kernel-image-2.4.18-bf2.4
+| 2.4.18-386 | kernel-image-2.4.18-1-386
+| 2.4.18-586tsc | kernel-image-2.4.18-1-586tsc
+| 2.4.18-686 | kernel-image-2.4.18-1-686
+| 2.4.18-686-smp | kernel-image-2.4.18-1-686-smp
+| 2.4.18-k6 | kernel-image-2.4.18-1-k6
+| 2.4.18-k7 | kernel-image-2.4.18-1-k7
+
+NOTE: that this kernel is not binary compatible with the previous
+version. For this reason, the kernel has a different version number
+and will not be installed automatically as part of the normal upgrade
+process. Any custom modules will need to be rebuilt in order to work
+with the new kernel. New PCMCIA modules are provided for all of the
+above kernels.
+
+NOTE: A system reboot will be required immediately after the upgrade
+in order to replace the running kernel. Remember to read carefully
+and follow the instructions given during the kernel upgrade process.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20311-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 311-1 (kernel)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-386", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-586tsc", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-686", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-686-smp", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-k6", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-k7", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-386", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-586tsc", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-686", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-686-smp", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-k6", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-k7", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-386", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-586tsc", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-686", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-686-smp", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-k6", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-k7", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-bf2.4", ver:"2.4.18-5woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-bf2.4", ver:"2.4.18-5woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-doc-2.4.18", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-source-2.4.18", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"pcmcia-modules-2.4.18-bf2.4", ver:"3.1.33-6woody1k5woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_312_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_312_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_312_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,137 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 312-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53601);
+ script_cve_id("CVE-2002-0429", "CVE-2003-0001", "CVE-2003-0127", "CVE-2003-0244", "CVE-2003-0246", "CVE-2003-0247", "CVE-2003-0248", "CVE-2003-0364");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 312-1 (kernel-patch-2.4.18-powerpc)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kernel-patch-2.4.18-powerpc
+announced via advisory DSA 312-1.
+
+A number of vulnerabilities have been discovered in the Linux kernel.
+
+- - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for
+Linux kernels 2.4.18 and earlier on x86 systems allow local users to
+kill arbitrary processes via a a binary compatibility interface
+(lcall)
+
+- - CVE-2003-0001: Multiple ethernet Network Interface Card (NIC) device
+drivers do not pad frames with null bytes, which allows remote
+attackers to obtain information from previous packets or kernel
+memory by using malformed packets
+
+- - CVE-2003-0127: The kernel module loader allows local users to gain
+root privileges by using ptrace to attach to a child process that is
+spawned by the kernel
+
+- - CVE-2003-0244: The route cache implementation in Linux 2.4, and the
+Netfilter IP conntrack module, allows remote attackers to cause a
+denial of service (CPU consumption) via packets with forged source
+addresses that cause a large number of hash table collisions related
+to the PREROUTING chain
+
+- - CVE-2003-0246: The ioperm system call in Linux kernel 2.4.20 and
+earlier does not properly restrict privileges, which allows local
+users to gain read or write access to certain I/O ports.
+
+- - CVE-2003-0247: vulnerability in the TTY layer of the Linux kernel
+2.4 allows attackers to cause a denial of service ('kernel oops')
+
+- - CVE-2003-0248: The mxcsr code in Linux kernel 2.4 allows attackers
+to modify CPU state registers via a malformed address.
+
+- - CVE-2003-0364: The TCP/IP fragment reassembly handling in the Linux
+kernel 2.4 allows remote attackers to cause a denial of service (CPU
+consumption) via certain packets that cause a large number of hash
+table collisions
+
+This advisory covers only the powerpc architecture. Other
+architectures will be covered by separate advisories.
+
+For the stable distribution (woody) on the powerpc architecture, these
+problems have been fixed in version 2.4.18-1woody1.
+
+For the unstable distribution (sid) these problems are fixed in
+version 2.4.20-2.
+
+We recommend that you update your kernel packages.
+
+NOTE: A system reboot will be required immediately after the upgrade
+in order to replace the running kernel. Remember to read carefully
+and follow the instructions given during the kernel upgrade process.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20312-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 312-1 (kernel-patch-2.4.18-powerpc)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kernel-patch-2.4.18-powerpc", ver:"2.4.18-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18", ver:"2.4.18-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-newpmac", ver:"2.4.18-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-powerpc", ver:"2.4.18-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-powerpc-smp", ver:"2.4.18-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_313_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_313_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_313_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,99 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 313-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53602);
+ script_cve_id("CVE-2003-0356", "CVE-2003-0357");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 313-1 (ethereal)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ethereal
+announced via advisory DSA 313-1.
+
+Timo Sirainen discovered several vulnerabilities in ethereal, a
+network traffic analyzer. These include one-byte buffer overflows in
+the AIM, GIOP Gryphon, OSPF, PPTP, Quake, Quake2, Quake3, Rsync, SMB,
+SMPP, and TSP dissectors, and integer overflows in the Mount and PPP
+dissectors.
+
+For the stable distribution (woody) these problems have been fixed in
+version 0.9.4-1woody4.
+
+The old stable distribution (potato) does not appear to contain these
+vulnerabilities.
+
+For the unstable distribution (sid) these problems are fixed in version
+0.9.12-1.
+
+We recommend that you update your ethereal package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20313-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 313-1 (ethereal)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ethereal", ver:"0.9.4-1woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ethereal-common", ver:"0.9.4-1woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ethereal-dev", ver:"0.9.4-1woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"tethereal", ver:"0.9.4-1woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_314_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_314_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_314_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 314-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53603);
+ script_cve_id("CVE-2003-0380");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 314-1 (atftp)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to atftp
+announced via advisory DSA 314-1.
+
+Rick Patel discovered that atftpd is vulnerable to a buffer overflow
+when a long filename is sent to the server. An attacker could exploit
+this bug remotely to execute arbitrary code on the server.
+
+For the stable distribution (woody), this problem has been fixed in
+version 0.6.1.1.0woody1.
+
+The old stable distribution (potato) does not contain an atftp
+package.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your atftp package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20314-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 314-1 (atftp)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"atftp", ver:"0.6.0woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"atftpd", ver:"0.6.0woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_315_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_315_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_315_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 315-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53604);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 315-1 (gnocatan)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to gnocatan
+announced via advisory DSA 315-1.
+
+Bas Wijnen discovered that the gnocatan server is vulnerable to
+several buffer overflows which could be exploited to execute arbitrary
+code on the server system
+
+For the stable distribution (woody), this problem has been fixed in
+version 0.6.1-5woody2.
+
+The old stable distribution (potato) does not contain a gnocatan package.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your gnocatan package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20315-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 315-1 (gnocatan)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gnocatan-data", ver:"0.6.1-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnocatan-help", ver:"0.6.1-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnocatan-client", ver:"0.6.1-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnocatan-server", ver:"0.6.1-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_316_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_316_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_316_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,108 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 316-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53605);
+ script_cve_id("CVE-2003-0358", "CVE-2003-0359");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 316-1 (nethack)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to nethack
+announced via advisory DSA 316-1.
+
+The nethack package is vulnerable to a buffer overflow exploited via a
+long '-s' command line option. This vulnerability could be used by an
+attacker to gain gid 'games' on a system where nethack is installed.
+
+Additionally, some setgid binaries in the nethack package have
+incorrect permissions, which could allow a user who gains gid 'games'
+to replace these binaries, potentially causing other users to execute
+malicious code when they run nethack.
+
+For the stable distribution (woody) these problems have been fixed in
+version 3.4.0-3.0woody3.
+
+For the old stable distribution (potato) problem xxx has been fixed in
+version 3.3.0-7potato1.
+
+For the unstable distribution (sid) these problems are fixed in
+version 3.4.1-1.
+
+We recommend that you update your nethack package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20316-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 316-1 (nethack)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"nethack", ver:"3.3.0-7potato1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nethack", ver:"3.4.0-3.0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nethack-common", ver:"3.4.0-3.0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nethack-gnome", ver:"3.4.0-3.0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nethack-qt", ver:"3.4.0-3.0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nethack-x11", ver:"3.4.0-3.0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_317_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_317_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_317_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,114 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 317-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53606);
+ script_cve_id("CVE-2003-0195");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 317-1 (cupsys)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to cupsys
+announced via advisory DSA 317-1.
+
+The CUPS print server in Debian is vulnerable to a denial of service
+when an HTTP request is received without being properly terminated.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.1.14-5.
+
+For the old stable distribution (potato) this problem has been fixed
+in version 1.0.4-12.2.
+
+For the unstable distribution (sid) these problems are fixed in
+version 1.1.19final-1.
+
+We recommend that you update your cupsys package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20317-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 317-1 (cupsys)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"cupsys", ver:"1.0.4-12.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.0.4-12.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys1", ver:"1.0.4-12.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys1-dev", ver:"1.0.4-12.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-pstoraster", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.1.14-5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_318_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_318_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_318_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 318-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53607);
+ script_cve_id("CVE-2003-0366");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 318-1 (lyskom-server)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to lyskom-server
+announced via advisory DSA 318-1.
+
+Calle Dybedahl discovered a bug in lyskom-server which could result in
+a denial of service where an unauthenticated user could cause the
+server to become unresponsive as it processes a large query.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0.6-1woody1.
+
+The old stable distribution (potato) does not contain a lyskom-server package.
+
+For the unstable distribution (sid) this problem is fixed in version
+2.0.7-2.
+
+We recommend that you update your lyskom-server package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20318-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 318-1 (lyskom-server)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"lyskom-server", ver:"2.0.6-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_319_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_319_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_319_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,192 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 319-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53608);
+ script_bugtraq_id(6915);
+ script_cve_id("CVE-2003-0101");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 319-1 (webmin)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to webmin
+announced via advisory DSA 319-1.
+
+miniserv.pl in the webmin package does not properly handle
+metacharacters, such as line feeds and carriage returns, in
+Base64-encoded strings used in Basic authentication. This
+vulnerability allows remote attackers to spoof a session ID, and
+thereby gain root privileges.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.94-7woody1.
+
+The old stable distribution (potato) does not contain a webmin package.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.070-1.
+
+We recommend that you update your webmin package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20319-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 319-1 (webmin)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"webmin-apache", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-bind8", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-burner", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-cluster-software", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-cluster-useradmin", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-core", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-cpan", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-dhcpd", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-exports", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-fetchmail", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-heartbeat", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-inetd", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-jabber", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-lpadmin", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-mon", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-mysql", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-nis", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-postfix", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-postgresql", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-ppp", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-qmailadmin", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-quota", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-raid", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-samba", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-sendmail", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-software", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-squid", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-sshd", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-ssl", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-status", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-stunnel", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-wuftpd", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-xinetd", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"webmin-grub", ver:"0.94-7woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_320_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_320_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_320_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,91 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 320-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53609);
+ script_cve_id("CVE-2003-0427");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 320-1 (mikmod)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mikmod
+announced via advisory DSA 320-1.
+
+Ingo Saitz discovered a bug in mikmod whereby a long filename inside
+an archive file can overflow a buffer when the archive is being read
+by mikmod.
+
+For the stable distribution (woody) this problem has been fixed in
+version 3.1.6-4woody3.
+
+For old stable distribution (potato) this problem has been fixed in
+version 3.1.6-2potato3.
+
+For the unstable distribution (sid) this problem is fixed in version
+3.1.6-6.
+
+We recommend that you update your mikmod package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20320-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 320-1 (mikmod)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mikmod", ver:"3.1.6-2potato3", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mikmod", ver:"3.1.6-4woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_321_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_321_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_321_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 321-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53610);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 321-1 (radiusd-cistron)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to radiusd-cistron
+announced via advisory DSA 321-1.
+
+radiusd-cistron contains a bug allowing a buffer overflow when a long
+NAS-Port attribute is received. This could allow a remote attacker to
+execute arbitrary code on the with the privileges of the RADIUS daemon
+(usually root).
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.6.6-1woody1.
+
+For the old stable distribution (potato), this problem will be fixed
+in a later advisory.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your radiusd-cistron package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20321-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 321-1 (radiusd-cistron)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"radiusd-cistron", ver:"1.6.6-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_322_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_322_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_322_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,93 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 322-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53611);
+ script_cve_id("CVE-2003-0435");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 322-1 (typespeed)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to typespeed
+announced via advisory DSA 322-1.
+
+typespeed is a game which challenges the player to type words
+correctly and quickly. It contains a network play mode which allows
+players on different systems to play competitively. The network code
+contains a buffer overflow which could allow a remote attacker to
+execute arbitrary code under the privileges of the user invoking
+typespeed, in addition to gid games.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.4.1-2.2.
+
+For the old stable distribution (potato) this problem has been fixed
+in version 0.4.0-5.2.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your typespeed package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20322-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 322-1 (typespeed)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"typespeed", ver:"0.4.0-5.2", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"typespeed", ver:"0.4.1-2.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_323_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_323_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_323_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,92 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 323-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53612);
+ script_cve_id("CVE-2003-0381");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 323-1 (noweb)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to noweb
+announced via advisory DSA 323-1.
+
+Jakob Lell discovered a bug in the 'noroff' script included in noweb
+whereby a temporary file was created insecurely. During a review,
+several other instances of this problem were found and fixed. Any of
+these bugs could be exploited by a local user to overwrite arbitrary
+files owned by the user invoking the script.
+
+For the stable distribution (woody) these problems have been fixed in
+version 2.9a-7.3.
+
+For old stable distribution (potato) this problem has been fixed in
+version 2.9a-5.1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your noweb package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20323-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 323-1 (noweb)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"nowebm", ver:"2.9a-5.1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nowebm", ver:"2.9a-7.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_324_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_324_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_324_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,123 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 324-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53613);
+ script_cve_id("CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0432");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 324-1 (ethereal)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ethereal
+announced via advisory DSA 324-1.
+
+Several of the packet dissectors in ethereal contain string handling
+bugs which could be exploited using a maliciously crafted packet to
+cause ethereal to consume excessive amounts of memory, crash, or
+execute arbitrary code.
+
+These vulnerabilites were announced in the following Ethereal security
+advisory:
+
+http://www.ethereal.com/appnotes/enpa-sa-00010.html
+
+Ethereal 0.9.4 in Debian 3.0 (woody) is affected by most of the
+problems described in the advisory, including:
+
+* The DCERPC dissector could try to allocate too much memory
+while trying to decode an NDR string.
+* Bad IPv4 or IPv6 prefix lengths could cause an overflow in the
+OSI dissector.
+* The tvb_get_nstringz0() routine incorrectly handled a
+zero-length buffer size.
+* The BGP, WTP, DNS, 802.11, ISAKMP, WSP, CLNP, and ISIS
+dissectors handled strings improperly.
+
+The following problems do NOT affect this version:
+
+* The SPNEGO dissector could segfault while parsing an invalid
+ASN.1 value.
+* The RMI dissector handled strings improperly
+
+as these modules are not present.
+
+For the stable distribution (woody) these problems have been fixed in
+version 0.9.4-1woody5.
+
+The old stable distribution (potato) these problems will be fixed in a
+future advisory.
+
+For the unstable distribution (sid) these problems are fixed in
+version 0.9.13-1.
+
+We recommend that you update your ethereal package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20324-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 324-1 (ethereal)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ethereal", ver:"0.9.4-1woody5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ethereal-common", ver:"0.9.4-1woody5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ethereal-dev", ver:"0.9.4-1woody5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"tethereal", ver:"0.9.4-1woody5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_325_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_325_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_325_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 325-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53614);
+ script_cve_id("CVE-2003-0438");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 325-1 (eldav)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to eldav
+announced via advisory DSA 325-1.
+
+eldav, a WebDAV client for Emacs, creates temporary files without
+taking appropriate security precautions. This vulnerability could be
+exploited by a local user to create or overwrite files with the
+privileges of the user running emacs and eldav.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.0.20020411-1woody1.
+
+The old stable distribution (potato) does not contain an eldav
+package.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 0.7.2-1.
+
+We recommend that you update your eldav package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20325-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 325-1 (eldav)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"eldav", ver:"0.0.20020411-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_326_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_326_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_326_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 326-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53615);
+ script_bugtraq_id(7988);
+ script_cve_id("CVE-2003-0441");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 326-1 (orville-write)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to orville-write
+announced via advisory DSA 326-1.
+
+Orville Write, a replacement for the standard write(1) command,
+contains a number of buffer overflows. These could be exploited to
+gain either gid tty or root privileges, depending on the configuration
+selected when the package is installed.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.53-4woody1.
+
+The old stable distribution (potato) does not contain an orville-write
+package.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+See Debian bug report #170747.
+
+We recommend that you update your orville-write package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20326-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 326-1 (orville-write)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"orville-write", ver:"2.53-4woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_327_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_327_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_327_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 327-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53616);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 327-1 (xbl)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xbl
+announced via advisory DSA 327-1.
+
+Steve Kemp discovered several buffer overflows in xbl, a game, which
+can be triggered by long command line arguments. This vulnerability
+could be exploited by a local attacker to gain gid 'games'.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.0k-3woody1.
+
+For the old stable distribution (potato) this problem has been fixed
+in version 1.0i-7potato1.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.0k-5.
+
+We recommend that you update your xbl package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20327-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 327-1 (xbl)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xbl", ver:"1.0i-7potato1", rls:"DEB2.2")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xbl", ver:"1.0k-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_328_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_328_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_328_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 328-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53617);
+ script_bugtraq_id(7990);
+ script_cve_id("CVE-2003-0445");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 328-1 (webfs)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to webfs
+announced via advisory DSA 328-1.
+
+webfs, a lightweight HTTP server for static content, contains a buffer
+overflow whereby a long Request-URI in an HTTP request could cause
+arbitrary code to be executed.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.17.1.
+
+The old stable distribution (potato) does not contain a webfs package.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your webfs package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20328-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 328-1 (webfs)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"webfs", ver:"1.17.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_329_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_329_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_329_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 329-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53618);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 329-1 (osh)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to osh
+announced via advisory DSA 329-1.
+
+Steve Kemp discovered that osh, a shell intended to restrict the
+actions of the user, contains two buffer overflows, in processing
+environment variables and file redirections. These vulnerabilities
+could be used to execute arbitrary code, overriding any restrictions
+placed on the shell.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.7-11woody1.
+
+The old stable distribution (potato) is affected by this problem, and
+may be fixed in a future advisory on a time-available basis.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.7-12.
+
+We recommend that you update your osh package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20329-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 329-1 (osh)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"osh", ver:"1.7-11woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_330_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_330_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_330_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,92 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 330-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53619);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 330-1 (tcptraceroute)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to tcptraceroute
+announced via advisory DSA 330-1.
+
+tcptraceroute is a setuid-root program which drops root privileges
+after obtaining a file descriptor used for raw packet capture.
+However, it did not fully relinquish all privileges, and in the event
+of an exploitable vulnerability, root privileges could be regained.
+
+No current exploit is known, but this safeguard is being repaired in
+order to provide a measure of containment in the event that an
+exploitable flaw should be discovered.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.2-2.
+
+The old stable distribution (potato) does not contain a tcptraceroute
+package.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.4-4.
+
+We recommend that you update your tcptraceroute package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20330-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 330-1 (tcptraceroute)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"tcptraceroute", ver:"1.2-2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_331_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_331_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_331_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,102 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 331-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53620);
+ script_cve_id("CVE-2003-0455");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 331-1 (imagemagick)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to imagemagick
+announced via advisory DSA 331-1.
+
+imagemagick's libmagick library, under certain circumstances, creates
+temporary files without taking appropriate security precautions. This
+vulnerability could be exploited by a local user to create or
+overwrite files with the privileges of another user who is invoking a
+program using this library.
+
+For the stable distribution (woody) this problem has been fixed in
+version 4:5.4.4.5-1woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 4:5.5.7-1.
+
+We recommend that you update your imagemagick package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20331-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 331-1 (imagemagick)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"imagemagick", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmagick++5", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmagick++5-dev", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmagick5", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmagick5-dev", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perlmagick", ver:"5.4.4.5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_332_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_332_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_332_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,155 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 332-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53621);
+ script_cve_id("CVE-2002-0429", "CVE-2003-0001", "CVE-2003-0127", "CVE-2003-0244", "CVE-2003-0246", "CVE-2003-0247", "CVE-2003-0248", "CVE-2003-0364");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 332-1 (kernel-source-2.4.17, kernel-patch-2.4.17-mips)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kernel-source-2.4.17, kernel-patch-2.4.17-mips
+announced via advisory DSA 332-1.
+
+A number of vulnerabilities have been discovered in the Linux kernel.
+
+- - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for
+Linux kernels 2.4.18 and earlier on x86 systems allow local users to
+kill arbitrary processes via a a binary compatibility interface
+(lcall)
+
+- - CVE-2003-0001: Multiple ethernet Network Interface Card (NIC) device
+drivers do not pad frames with null bytes, which allows remote
+attackers to obtain information from previous packets or kernel
+memory by using malformed packets
+
+- - CVE-2003-0127: The kernel module loader allows local users to gain
+root privileges by using ptrace to attach to a child process that is
+spawned by the kernel
+
+- - CVE-2003-0244: The route cache implementation in Linux 2.4, and the
+Netfilter IP conntrack module, allows remote attackers to cause a
+denial of service (CPU consumption) via packets with forged source
+addresses that cause a large number of hash table collisions related
+to the PREROUTING chain
+
+- - CVE-2003-0246: The ioperm system call in Linux kernel 2.4.20 and
+earlier does not properly restrict privileges, which allows local
+users to gain read or write access to certain I/O ports.
+
+- - CVE-2003-0247: vulnerability in the TTY layer of the Linux kernel
+2.4 allows attackers to cause a denial of service ('kernel oops')
+
+- - CVE-2003-0248: The mxcsr code in Linux kernel 2.4 allows attackers
+to modify CPU state registers via a malformed address.
+
+- - CVE-2003-0364: The TCP/IP fragment reassembly handling in the Linux
+kernel 2.4 allows remote attackers to cause a denial of service (CPU
+consumption) via certain packets that cause a large number of hash
+table collisions
+
+This advisory provides corrected source code for Linux 2.4.17, and
+corrected binary kernel images for the mips and mipsel architectures.
+Other versions and architectures will be covered by separate
+advisories.
+
+For the stable distribution (woody), these problems have been fixed in
+kernel-source-2.4.17 version 2.4.17-1woody1 and
+kernel-patch-2.4.17-mips version 2.4.17-0.020226.2.woody2.
+
+For the unstable distribution (sid) these problems are fixed in
+kernel-source-2.4.20 version 2.4.20-8.
+
+We recommend that you update your kernel packages.
+
+NOTE: A system reboot will be required immediately after the upgrade
+in order to replace the running kernel. Remember to read carefully
+and follow the instructions given during the kernel upgrade process.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20332-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 332-1 (kernel-source-2.4.17, kernel-patch-2.4.17-mips)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kernel-patch-2.4.17-mips", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.17", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.17-r4k-ip22", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.17-r5k-ip22", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.17-r3k-kn02", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.17-r4k-kn04", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mips-tools", ver:"2.4.17-0.020226.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-doc-2.4.17", ver:"2.4.17-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-source-2.4.17", ver:"2.4.17-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mkcramfs", ver:"2.4.17-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_333_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_333_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_333_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 333-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53622);
+ script_bugtraq_id(5356);
+ script_cve_id("CVE-2002-0391");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 333-1 (acm)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to acm
+announced via advisory DSA 333-1.
+
+acm, a multi-player aerial combat simulation, uses a network protocol
+based on the same RPC implementation used in many C libraries. This
+implementation was found to contain an integer overflow vulnerability
+which could be exploited to execute arbitrary code.
+
+For the stable distribution (woody) this problem has been fixed in
+version 5.0-3.woody.1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 5.0-10.
+
+We recommend that you update your acm package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20333-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 333-1 (acm)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"acm", ver:"5.0-3.woody.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_334_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_334_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_334_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 334-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53623);
+ script_cve_id("CVE-2003-0454");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 334-1 (xgalaga)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xgalaga
+announced via advisory DSA 334-1.
+
+Steve Kemp discovered several buffer overflows in xgalaga, a game,
+which can be triggered by a long HOME environment variable. This
+vulnerability could be exploited by a local attacker to gain gid
+'games'.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0.34-19woody1.
+
+For the unstable distribution (sid) this problem is fixed in version
+2.0.34-22.
+
+We recommend that you update your xgalaga package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20334-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 334-1 (xgalaga)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xgalaga", ver:"2.0.34-19woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_335_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_335_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_335_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 335-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53624);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 335-1 (mantis)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mantis
+announced via advisory DSA 335-1.
+
+mantis, a PHP/MySQL web based bug tracking system, stores the password
+used to access its database in a configuration file which is
+world-readable. This could allow a local attacker to read the
+password and gain read/write access to the database.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.17.1-3.
+
+For the old stable distribution (potato) does not contain a mantis
+package.
+
+For the unstable distribution (sid) this problem is fixed in version
+0.17.5-6.
+
+We recommend that you update your mantis package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20335-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 335-1 (mantis)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mantis", ver:"0.17.1-3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_336_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_336_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_336_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,152 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 336-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53625);
+ script_cve_id("CVE-2002-0429", "CVE-2003-0001", "CVE-2003-0127", "CVE-2003-0244", "CVE-2003-0246", "CVE-2003-0247", "CVE-2003-0248", "CVE-2003-0364");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 336-1 (kernel-source-2.2.20, kernel-image-2.2.20-i386)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kernel-source-2.2.20, kernel-image-2.2.20-i386
+announced via advisory DSA 336-1.
+
+A number of vulnerabilities have been discovered in the Linux kernel.
+
+- - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for
+Linux kernels 2.4.18 and earlier on x86 systems allow local users to
+kill arbitrary processes via a a binary compatibility interface
+(lcall)
+
+- - CVE-2003-0001: Multiple ethernet Network Interface Card (NIC) device
+drivers do not pad frames with null bytes, which allows remote
+attackers to obtain information from previous packets or kernel
+memory by using malformed packets
+
+- - CVE-2003-0127: The kernel module loader allows local users to gain
+root privileges by using ptrace to attach to a child process that is
+spawned by the kernel
+
+- - CVE-2003-0244: The route cache implementation in Linux 2.4, and the
+Netfilter IP conntrack module, allows remote attackers to cause a
+denial of service (CPU consumption) via packets with forged source
+addresses that cause a large number of hash table collisions related
+to the PREROUTING chain
+
+- - CVE-2003-0246: The ioperm system call in Linux kernel 2.4.20 and
+earlier does not properly restrict privileges, which allows local
+users to gain read or write access to certain I/O ports.
+
+- - CVE-2003-0247: vulnerability in the TTY layer of the Linux kernel
+2.4 allows attackers to cause a denial of service ('kernel oops')
+
+- - CVE-2003-0248: The mxcsr code in Linux kernel 2.4 allows attackers
+to modify CPU state registers via a malformed address.
+
+- - CVE-2003-0364: The TCP/IP fragment reassembly handling in the Linux
+kernel 2.4 allows remote attackers to cause a denial of service (CPU
+consumption) via certain packets that cause a large number of hash
+table collisions
+
+This advisory provides updated 2.2.20 kernel source, and binary kernel
+images for the i386 architecture. Other architectures and kernel
+versions will be covered by separate advisories.
+
+For the stable distribution (woody) on the powerpc architecture, these
+problems have been fixed in kernel-source-2.2.20 version
+2.2.20-5woody2 and kernel-image-i386 version 2.2.20-5woody3.
+
+For the unstable distribution (sid) these problems are fixed in
+kernel-source-2.2.25 and kernel-image-2.2.25-i386 version 2.2.25-2.
+
+We recommend that you update your kernel packages.
+
+NOTE: A system reboot will be required immediately after the upgrade
+in order to replace the running kernel. Remember to read carefully
+and follow the instructions given during the kernel upgrade process.
+
+NOTE: These kernels are not binary-compatible with the previous
+version. Any loadable modules will need to be recompiled in order to
+work with the new kernel.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20336-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 336-1 (kernel-source-2.2.20, kernel-image-2.2.20-i386)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kernel-doc-2.2.20", ver:"2.2.20-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-source-2.2.20", ver:"2.2.20-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.2.20", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.2.20-compact", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.2.20-idepci", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.2.20", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.2.20-compact", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.2.20-idepci", ver:"2.2.20-5woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_337_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_337_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_337_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 337-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53626);
+ script_cve_id("CVE-2003-0440");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 337-1 (semi, wemi)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to semi, wemi
+announced via advisory DSA 337-1.
+
+semi, a MIME library for GNU Emacs, does not take appropriate
+security precautions when creating temporary files. This bug could
+potentially be exploited to overwrite arbitrary files with the
+privileges of the user running Emacs and semi, potentially with
+contents supplied by the attacker.
+
+wemi is a fork of semi, and contains the same bug.
+
+For the stable distribution (woody) this problem has been fixed in
+semi version 1.14.3.cvs.2001.08.10-1woody2 and wemi version
+1.14.0.20010802wemiko-1.3.
+
+For the unstable distribution (sid) this problem has been fixed in
+semi version 1.14.5+20030609-1. The unstable distribution does not
+contain a wemi package.
+
+We recommend that you update your semi and wemi packages.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20337-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 337-1 (semi, wemi)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"semi", ver:"1.14.3.cvs.2001.08.10-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"wemi", ver:"1.14.0.20010802wemiko-1.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_338_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_338_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_338_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 338-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53627);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 338-1 (x-face-el)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to x-face-el
+announced via advisory DSA 338-1.
+
+x-face-el, a decoder for images included inline in X-Face email
+headers, does not take appropriate security precautions when creating
+temporary files. This bug could potentially be exploited to overwrite
+arbitrary files with the privileges of the user running Emacs and
+x-face-el, potentially with contents supplied by the attacker.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.3.6.19-1woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.3.6.23-1.
+
+We recommend that you update your x-face-el package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20338-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 338-1 (x-face-el)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"x-face-el", ver:"1.3.6.19-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_339_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_339_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_339_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,98 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 339-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53628);
+ script_cve_id("CVE-2003-0440");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 339-1 (semi, wemi)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to semi, wemi
+announced via advisory DSA 339-1.
+
+NOTE: due to a combination of administrative problems, this advisory
+was erroneously released with the identifier 'DSA-337-1'. DSA-337-1
+correctly refers to an earlier advisory regarding gtksee.
+
+semi, a MIME library for GNU Emacs, does not take appropriate
+security precautions when creating temporary files. This bug could
+potentially be exploited to overwrite arbitrary files with the
+privileges of the user running Emacs and semi, potentially with
+contents supplied by the attacker.
+
+wemi is a fork of semi, and contains the same bug.
+
+For the stable distribution (woody) this problem has been fixed in
+semi version 1.14.3.cvs.2001.08.10-1woody2 and wemi version
+1.14.0.20010802wemiko-1.3.
+
+For the unstable distribution (sid) this problem has been fixed in
+semi version 1.14.5+20030609-1. The unstable distribution does not
+contain a wemi package.
+
+We recommend that you update your semi and wemi packages.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20339-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 339-1 (semi, wemi)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"semi", ver:"1.14.3.cvs.2001.08.10-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"wemi", ver:"1.14.0.20010802wemiko-1.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_340_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_340_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_340_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 340-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53629);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 340-1 (x-face-el)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to x-face-el
+announced via advisory DSA 340-1.
+
+NOTE: due to a combination of administrative problems, this advisory
+was erroneously released with the identifier 'DSA-338-1'. DSA-338-1
+correctly refers to an earlier advisory regarding proftpd.
+
+x-face-el, a decoder for images included inline in X-Face email
+headers, does not take appropriate security precautions when creating
+temporary files. This bug could potentially be exploited to overwrite
+arbitrary files with the privileges of the user running Emacs and
+x-face-el, potentially with contents supplied by the attacker.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.3.6.19-1woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.3.6.23-1.
+
+We recommend that you update your x-face-el package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20340-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 340-1 (x-face-el)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"x-face-el", ver:"1.3.6.19-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_341_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_341_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_341_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 341-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53630);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 341-1 (liece)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to liece
+announced via advisory DSA 341-1.
+
+liece, an IRC client for Emacs, does not take appropriate security
+precautions when creating temporary files. This bug could potentially
+be exploited to overwrite arbitrary files with the privileges of the
+user running Emacs and liece, potentially with contents supplied
+by the attacker.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0+0.20020217cvs-2.1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 2.0+0.20030527cvs-1.
+
+We recommend that you update your liece package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20341-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 341-1 (liece)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"liece", ver:"2.0+0.20020217cvs-2.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"liece-dcc", ver:"2.0+0.20020217cvs-2.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_342_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_342_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_342_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,95 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 342-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53631);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 342-1 (mozart)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mozart
+announced via advisory DSA 342-1.
+
+mozart, a development platform based on the Oz language, includes MIME
+configuration data which specifies that Oz applications should be
+passed to the Oz interpreter for execution. This means that file
+managers, web browsers, and other programs which honor the mailcap
+file could automatically execute Oz programs downloaded from untrusted
+sources. Thus, a malicious Oz program could execute arbitrary code
+under the uid of a user running a MIME-aware client program if the
+user selected a file (for example, choosing a link in a web browser).
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.2.3.20011204-3woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.2.5.20030212-2.
+
+We recommend that you update your mozart package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20342-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 342-1 (mozart)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mozart-doc-html", ver:"1.2.3.20011204-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mozart", ver:"1.2.3.20011204-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mozart-contrib", ver:"1.2.3.20011204-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_343_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_343_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_343_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,93 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 343-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53632);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 343-1 (skk, ddskk)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to skk, ddskk
+announced via advisory DSA 343-1.
+
+skk (Simple Kana to Kanji conversion program), does not take
+appropriate security precautions when creating temporary files. This
+bug could potentially be exploited to overwrite arbitrary files with
+the privileges of the user running Emacs and skk.
+
+ddskk is derived from the same code, and contains the same bug.
+
+For the stable distribution (woody) this problem has been fixed in
+skk version 10.62a-4woody1 and ddskk version 11.6.rel.0-2woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+ddskk version 12.1.cvs.20030622-1, and skk will be fixed soon.
+
+We recommend that you update your skk and ddskk package-.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20343-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 343-1 (skk, ddskk)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"skk", ver:"10.62a-4woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"skkserv", ver:"10.62a-4woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ddskk", ver:"11.6.rel.0-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_344_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_344_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_344_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,85 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 344-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53633);
+ script_bugtraq_id(7550);
+ script_cve_id("CVE-2003-0282");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 344-1 (unzip)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to unzip
+announced via advisory DSA 344-1.
+
+A directory traversal vulnerability in UnZip 5.50 allows attackers to
+bypass a check for relative pathnames ('../') by placing certain invalid
+characters between the two '.' characters.
+
+For the stable distribution (woody) this problem has been fixed in
+version 5.50-1woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your unzip package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20344-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 344-1 (unzip)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"unzip", ver:"5.50-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_345_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_345_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_345_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 345-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53634);
+ script_cve_id("CVE-2003-0535", "CVE-2003-0451");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 345-1 (xbl)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xbl
+announced via advisory DSA 345-1.
+
+Another buffer overflow was discovered in xbl, distinct from the one
+addressed in DSA-327 (CVE-2003-0451), involving the -display command
+line option. This vulnerability could be exploited by a local
+attacker to gain gid 'games'.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.0k-3woody2.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.0k-6.
+
+We recommend that you update your xbl package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20345-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 345-1 (xbl)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xbl", ver:"1.0k-3woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_346_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_346_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_346_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 346-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53635);
+ script_cve_id("CVE-2003-0536");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 346-1 (phpsysinfo)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to phpsysinfo
+announced via advisory DSA 346-1.
+
+Albert Puigsech Galicia <ripe at 7a69ezine.org> reported that phpsysinfo,
+a web-based program to display status information about the system,
+contains two vulnerabilities which could allow local files to be read,
+or arbitrary PHP code to be executed, under the privileges of the web
+server process (usually www-data). These vulnerabilities require
+access to a writable directory on the system in order to be exploited.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0-3woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+See Debian bug #200543.
+
+We recommend that you update your phpsysinfo package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20346-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 346-1 (phpsysinfo)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"phpsysinfo", ver:"2.0-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_347_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_347_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_347_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,93 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 347-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53636);
+ script_cve_id("CVE-2003-0515");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 347-1 (teapop)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to teapop
+announced via advisory DSA 347-1.
+
+teapop, a POP-3 server, includes modules for authenticating users
+against a PostgreSQL or MySQL database. These modules do not properly
+escape user-supplied strings before using them in SQL queries. This
+vulnerability could be exploited to execute arbitrary SQL under the
+privileges of the database user as which teapop has authenticated.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.3.4-1woody2.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 0.3.5-2.
+
+We recommend that you update your teapop package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20347-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 347-1 (teapop)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"teapop", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"teapop-mysql", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"teapop-pgsql", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_348_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_348_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_348_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,93 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 348-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53637);
+ script_cve_id("CVE-2003-0515");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 348-1 (teapop)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to teapop
+announced via advisory DSA 348-1.
+
+teapop, a POP-3 server, includes modules for authenticating users
+against a PostgreSQL or MySQL database. These modules do not properly
+escape user-supplied strings before using them in SQL queries. This
+vulnerability could be exploited to execute arbitrary SQL under the
+privileges of the database user as which teapop has authenticated.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.3.4-1woody2.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 0.3.5-2.
+
+We recommend that you update your teapop package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20348-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 348-1 (teapop)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"teapop", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"teapop-mysql", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"teapop-pgsql", ver:"0.3.4-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_349_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_349_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_349_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,93 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 349-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53638);
+ script_bugtraq_id(8179);
+ script_cve_id("CVE-2003-0252");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 349-1 (nfs-utils)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to nfs-utils
+announced via advisory DSA 349-1.
+
+The logging code in nfs-utils contains an off-by-one buffer overrun
+when adding a newline to the string being logged. This vulnerability
+may allow an attacker to execute arbitrary code or cause a denial of
+service condition by sending certain RPC requests.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1:1.0-2woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1:1.0.3-2.
+
+We recommend that you update your nfs-utils package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20349-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 349-1 (nfs-utils)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"nfs-common", ver:"1.0-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nfs-kernel-server", ver:"1.0-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"nhfsstone", ver:"1.0-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_350_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_350_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_350_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,92 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 350-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53639);
+ script_cve_id("CVE-2003-0358", "CVE-2003-0359");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 350-1 (falconseye)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to falconseye
+announced via advisory DSA 350-1.
+
+The falconseye package is vulnerable to a buffer overflow exploited
+via a long '-s' command line option. This vulnerability could be used
+by an attacker to gain gid 'games' on a system where falconseye is
+installed.
+
+Note that falconseye does not contain the file permission error
+CVE-2003-0359 which affected some other nethack packages.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.9.3-7woody3.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.9.3-9.
+
+We recommend that you update your falconseye package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20350-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 350-1 (falconseye)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"falconseye-data", ver:"1.9.3-7woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"falconseye", ver:"1.9.3-7woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_351_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_351_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_351_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,138 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 351-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53640);
+ script_bugtraq_id(7761);
+ script_cve_id("CVE-2003-0442");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 351-1 (php4)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to php4
+announced via advisory DSA 351-1.
+
+The transparent session ID feature in the php4 package does not
+properly escape user-supplied input before inserting it into the
+generated HTML page. An attacker could use this vulnerability to
+execute embedded scripts within the context of the generated page.
+
+For the stable distribution (woody) this problem has been fixed in
+version 4:4.1.2-6woody3.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+Refer to Debian bug #200736.
+
+We recommend that you update your php4 package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20351-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 351-1 (php4)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"php4-dev", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-pear", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"caudium-php4", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-cgi", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-curl", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-domxml", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-gd", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-imap", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-ldap", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-mcal", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-mhash", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-mysql", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-odbc", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-recode", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-snmp", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-sybase", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php4-xslt", ver:"4.1.2-6woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_352_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_352_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_352_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 352-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53641);
+ script_cve_id("CVE-2003-0596");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 352-1 (fdclone)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to fdclone
+announced via advisory DSA 352-1.
+
+fdclone creates a temporary directory in /tmp as a workspace.
+However, if this directory already exists, the existing directory is
+used instead, regardless of its ownership or permissions. This would
+allow an attacker to gain access to fdclone's temporary files and
+their contents, or replace them with other files under the attacker's
+control.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.00a-1woody3.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 2.04-1.
+
+We recommend that you update your fdclone package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20352-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 352-1 (fdclone)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"fdclone", ver:"2.00a-1woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_353_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_353_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_353_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 353-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53642);
+ script_cve_id("CVE-2003-0606");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 353-1 (sup)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to sup
+announced via advisory DSA 353-1.
+
+sup, a package used to maintain collections of files in identical
+versions across machines, fails to take appropriate security
+precautions when creating temporary files. A local attacker could
+exploit this vulnerability to overwrite arbitrary files with the
+privileges of the user running sup.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.8-8woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.8-9.
+
+We recommend that you update your sup package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20353-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 353-1 (sup)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"sup", ver:"1.8-8woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_354_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_354_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_354_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 354-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53643);
+ script_bugtraq_id(8307);
+ script_cve_id("CVE-2003-0607");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 354-1 (xconq)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xconq
+announced via advisory DSA 354-1.
+
+Steve Kemp discovered a buffer overflow in xconq, in processing the
+USER environment variable. In the process of fixing this bug, a
+similar problem was discovered with the DISPLAY environment
+variable. This vulnerability could be exploited by a local attacker
+to gain gid 'games'.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 7.4.1-2woody2.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+Refer to Debian bug #202963.
+
+We recommend that you update your xconq package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20354-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 354-1 (xconq)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xconq-common", ver:"7.4.1-2woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xconq-doc", ver:"7.4.1-2woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xconq", ver:"7.4.1-2woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_355_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_355_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_355_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 355-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53644);
+ script_bugtraq_id(8288);
+ script_cve_id("CVE-2003-0614");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 355-1 (gallery)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to gallery
+announced via advisory DSA 355-1.
+
+Larry Nguyen discovered a cross site scripting vulnerability in gallery,
+a web-based photo album written in php. This security flaw can allow a
+malicious user to craft a URL that executes Javascript code on your
+website.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.25-8woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.3.4-3.
+
+We recommend that you update your gallery package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20355-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 355-1 (gallery)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gallery", ver:"1.2.5-8woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_356_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_356_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_356_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 356-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53645);
+ script_bugtraq_id(8312);
+ script_cve_id("CVE-2003-0611");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 356-1 (xtokkaetama)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xtokkaetama
+announced via advisory DSA 356-1.
+
+Steve Kemp discovered two buffer overflows in xtokkaetama, a puzzle
+game, when processing the -display command line option and the
+XTOKKAETAMADIR environment variable. These vulnerabilities could be
+exploited by a local attacker to gain gid 'games'.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.0b-6woody1.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.0b-8.
+
+We recommend that you update your xtokkaetama package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20356-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 356-1 (xtokkaetama)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xtokkaetama", ver:"1.0b-6woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_357_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_357_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_357_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 357-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53646);
+ script_bugtraq_id(8315);
+ script_cve_id("CVE-2003-0466");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 357-1 (wu-ftpd)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to wu-ftpd
+announced via advisory DSA 357-1.
+
+iSEC Security Research reports that wu-ftpd contains an off-by-one bug
+in the fb_realpath function which could be exploited by a logged-in user
+(local or anonymous) to gain root privileges. A demonstration exploit is
+reportedly available.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 2.6.2-3woody1.
+
+For the unstable distribution (sid) an update will be available shortly.
+
+We recommend you upgrade your wu-ftpd package immediately.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20357-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 357-1 (wu-ftpd)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"wu-ftpd-academ", ver:"2.6.2-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"wu-ftpd", ver:"2.6.2-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_358_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_358_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_358_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,175 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 358-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53647);
+ if(NASL_LEVEL>=2191) {
+ script_cve_id("CVE-2003-0461", "CVE-2003-0462", "CVE-2003-0476", "CVE-2003-0501", "CVE-2003-0550", "CVE-2003-0551", "CVE-2003-0552", "CVE-2003-0018", "CVE-2003-0619");
+ } else {
+ script_cve_id("CVE-2003-0461", "CVE-2003-0462", "CVE-2003-0476", "CVE-2003-0501", "CVE-2003-0550", "CVE-2003-0551", "CVE-2003-0552", "CVE-2003-0018");
+ }
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 358-1 (linux-kernel-i386, linux-kernel-alpha)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to linux-kernel-i386, linux-kernel-alpha
+announced via advisory DSA 358-1.
+
+A number of vulnerabilities have been discovered in the Linux kernel.
+
+For a more detailed description of the problems addressed,
+please visit the referenced security advisory.
+
+This advisory covers only the i386 and alpha architectures. Other
+architectures will be covered by separate advisories.
+
+For the stable distribution (woody) on the i386 architecture, these
+problems have been fixed in kernel-source-2.4.18 version 2.4.18-11,
+kernel-image-2.4.18-1-i386 version 2.4.18-9, and
+kernel-image-2.4.18-i386bf version 2.4.18-5woody2.
+
+For the stable distribution (woody) on the alpha architecture, these
+problems have been fixed in kernel-source-2.4.18 version 2.4.18-11 and
+kernel-image-2.4.18-1-alpha version 2.4.18-8.
+
+For the unstable distribution (sid) these problems are fixed in
+kernel-source-2.4.20 version 2.4.20-9.
+
+We recommend that you update your kernel packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20358-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 358-1 (linux-kernel-i386, linux-kernel-alpha)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-386", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-586tsc", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-686", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-686-smp", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-k6", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-k7", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-386", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-586tsc", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-686", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-686-smp", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-k6", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-k7", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-386", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-586tsc", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-686", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-686-smp", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-k6", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-pcmcia-modules-2.4.18-1-k7", ver:"2.4.18-9", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-bf2.4", ver:"2.4.18-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-bf2.4", ver:"2.4.18-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-generic", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-headers-2.4.18-1-smp", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-generic", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-image-2.4.18-1-smp", ver:"2.4.18-8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-doc-2.4.18", ver:"2.4.18-11", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kernel-source-2.4.18", ver:"2.4.18-11", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_359_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_359_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_359_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 359-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53648);
+ script_cve_id("CVE-2003-0630");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 359-1 (atari800)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to atari800
+announced via advisory DSA 359-1.
+
+Steve Kemp discovered multiple buffer overflows in atari800, an Atari
+emulator. In order to directly access graphics hardware, one of the
+affected programs is setuid root. A local attacker could exploit this
+vulnerability to gain root privileges.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.2.2-1woody2.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+Refer to Debian bug #203707.
+
+We recommend that you update your atari800 package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20359-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 359-1 (atari800)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"atari800", ver:"1.2.2-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_360_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_360_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_360_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,95 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 360-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53649);
+ script_cve_id("CVE-2003-0581", "CVE-2003-0625");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 360-1 (xfstt)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xfstt
+announced via advisory DSA 360-1.
+
+xfstt, a TrueType font server for the X window system was found to
+contain two classes of vulnerabilities:
+
+- - CVE-2003-0581: a remote attacker could send requests crafted to
+trigger any of several buffer overruns, causing a denial of service or
+possibly executing arbitrary code on the server with the privileges
+of the 'nobody' user.
+
+- - CVE-2003-0625: certain invalid data sent during the connection
+handshake could allow a remote attacker to read certain regions of
+memory belonging to the xfstt process. This information could be
+used for fingerprinting, or to aid in exploitation of a different
+vulnerability.
+
+For the current stable distribution (woody) these problems have been
+fixed in version 1.2.1-3.
+
+For the unstable distribution (sid), CVE-2003-0581 is fixed in xfstt
+1.5-1, and CVE-2003-0625 will be fixed soon.
+
+We recommend that you update your xfstt package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20360-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 360-1 (xfstt)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xfstt", ver:"1.2.1-3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_361_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_361_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_361_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,130 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 361-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53650);
+ script_cve_id("CVE-2003-0459", "CVE-2003-0370");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 361-1 (kdelibs)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kdelibs
+announced via advisory DSA 361-1.
+
+Two vulnerabilities were discovered in kdelibs:
+
+- - CVE-2003-0459: KDE Konqueror for KDE 3.1.2 and earlier does not
+remove authentication credentials from URLs of the
+'user:password at host' form in the HTTP-Referer header, which could
+allow remote web sites to steal the credentials for pages that link
+to the sites.
+
+- - CVE-2003-0370: Konqueror Embedded and KDE 2.2.2 and earlier does not
+validate the Common Name (CN) field for X.509 Certificates, which
+could allow remote attackers to spoof certificates via a
+man-in-the-middle attack.
+
+These vulnerabilities are described in the following security
+advisories from KDE:
+
+http://www.kde.org/info/security/advisory-20030729-1.txt
+http://www.kde.org/info/security/advisory-20030602-1.txt
+
+For the current stable distribution (woody) these problems have been
+fixed in version 2.2.2-13.woody.8.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 4:3.1.3-1.
+
+We recommend that you update your kdelibs package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20361-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 361-1 (kdelibs)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kdelibs3-doc", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdelibs-dev", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdelibs3", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdelibs3-bin", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdelibs3-cups", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libarts", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libarts-alsa", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libarts-dev", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libkmid", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libkmid-alsa", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libkmid-dev", ver:"2.2.2-13.woody.8", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_362_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_362_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_362_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 362-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53651);
+ script_cve_id("CVE-2003-0617");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 362-1 (mindi)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mindi
+announced via advisory DSA 362-1.
+
+mindi, a program for creating boot/root disks, does not take
+appropriate security precautions when creating temporary files. This
+bug could potentially be exploited to overwrite arbitrary files with
+the privileges of the user running mindi.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.58.r5-1woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+Refer to Debian bug #203825.
+
+We recommend that you update your mindi package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20362-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 362-1 (mindi)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mindi", ver:"0.58.r5-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_363_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_363_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_363_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,108 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 363-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53652);
+ script_cve_id("CVE-2003-0468", "CVE-2003-0540");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 363-1 (postfix)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to postfix
+announced via advisory DSA 363-1.
+
+The postfix mail transport agent in Debian 3.0 contains two
+vulnerabilities:
+
+CVE-2003-0468: Postfix would allow an attacker to bounce-scan private
+networks or use the daemon as a DDoS tool by forcing the daemon to
+connect to an arbitrary service at an arbitrary IP address and
+either receiving a bounce message or observing queue operations to
+infer the status of the delivery attempt.
+
+CVE-2003-0540: a malformed envelope address can 1) cause the queue
+manager to lock up until an entry is removed from the queue and 2)
+lock up the smtp listener leading to a denial of service
+
+For the current stable distribution (woody) these problems have been
+fixed in version 1.1.11-0.woody3.
+
+For the unstable distribution (sid) these problems will be fixed soon.
+
+We recommend that you update your postfix package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20363-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 363-1 (postfix)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"postfix-dev", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postfix-doc", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postfix", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postfix-ldap", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postfix-mysql", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postfix-pcre", ver:"1.1.11-0.woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_364_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_364_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_364_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,106 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 364-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53653);
+ script_cve_id("CVE-2003-0620", "CVE-2003-0645");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 364-1 (man-db)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to man-db
+announced via advisory DSA 364-1.
+
+man-db provides the standard man(1) command on Debian systems. During
+configuration of this package, the administrator is asked whether
+man(1) should run setuid to a dedicated user ('man') in order to
+provide a shared cache of preformatted manual pages. The default is
+for man(1) NOT to be setuid, and in this configuration no known
+vulnerability exists. However, if the user explicitly requests setuid
+operation, a local attacker could exploit either of the following bugs to
+execute arbitrary code as the 'man' user.
+
+Again, these vulnerabilities do not affect the default configuration,
+where man is not setuid.
+
+- - CVE-2003-0620: Multiple buffer overflows in man-db 2.4.1 and
+earlier, when installed setuid, allow local users to gain privileges
+via (1) MANDATORY_MANPATH, MANPATH_MAP, and MANDB_MAP arguments to
+add_to_dirlist in manp.c, (2) a long pathname to ult_src in
+ult_src.c, (3) a long .so argument to test_for_include in ult_src.c,
+(4) a long MANPATH environment variable, or (5) a long PATH
+environment variable.
+
+- - CVE-2003-0645: Certain DEFINE directives in ~/.manpath, which
+contained commands to be executed, would be honored even when
+running setuid, allowing any user to execute commands as the
+'man' user.
+
+For the current stable distribution (woody), these problems have been
+fixed in version 2.3.20-18.woody.2.
+
+For the unstable distribution (sid), these problems have been fixed in
+version 2.4.1-12.
+
+We recommend that you update your man-db package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20364-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 364-1 (man-db)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"man-db", ver:"2.3.20-18.woody.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_365_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_365_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_365_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,238 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 365-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53695);
+ script_cve_id("CVE-2003-0504", "CVE-2003-0599", "CVE-2003-0657");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 365-1 (phpgroupware)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to phpgroupware
+announced via advisory DSA 365-1.
+
+Several vulnerabilities have been discovered in phpgroupware:
+
+- - CVE-2003-0504: Multiple cross-site scripting (XSS) vulnerabilities
+in Phpgroupware 0.9.14.003 (aka webdistro) allow remote attackers to
+insert arbitrary HTML or web script, as demonstrated with a request
+to index.php in the addressbook module.
+
+- - CVE-2003-0599: Unknown vulnerability in the Virtual File System
+(VFS) capability for phpGroupWare 0.9.16preRC and versions before
+0.9.14.004 with unknown implications, related to the VFS path being
+under the web document root.
+
+- - CVE-2003-0657: Multiple SQL injection vulnerabilities in the infolog
+module of phpgroupware could allow remote attackers to execute
+arbitrary SQL statements.
+
+For the stable distribution (woody), these problems have been fixed in
+version 0.9.14-0.RC3.2.woody2.
+
+For the unstable distribution (sid), these problems will be fixed
+soon. Refer to Debian bug #201980.
+
+We recommend that you update your phpgroupware package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20365-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 365-1 (phpgroupware)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"phpgroupware-addressbook", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-admin", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-api-doc", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-api", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-bookkeeping", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-bookmarks", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-brewer", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-calendar", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-chat", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-chora", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-comic", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-core-doc", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-core", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-developer-tools", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-dj", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-eldaptir", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-email", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-filemanager", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-forum", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-ftp", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-headlines", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-hr", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-img", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-infolog", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-inv", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-manual", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-messenger", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-napster", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-news-admin", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-nntp", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-notes", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-phonelog", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-phpsysinfo", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-phpwebhosting", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-polls", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-preferences", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-projects", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-registration", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-setup", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-skel", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-soap", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-stocks", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-todo", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-tts", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-wap", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-weather", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware-xmlrpc", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"phpgroupware", ver:"0.9.14-0.RC3.2.woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_366_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_366_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_366_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 366-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53654);
+ script_bugtraq_id(8350);
+ script_cve_id("CVE-2003-0656");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 366-1 (eroaster)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to eroaster
+announced via advisory DSA 366-1.
+
+eroaster, a frontend for burning CD-R media using cdrecord, does not
+take appropriate security precautions when creating a temporary file
+for use as a lockfile. This bug could potentially be exploited to
+overwrite arbitrary files with the privileges of the user running
+eroaster.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.1.0.0.3-2woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 2.2.0-0.5-1.
+
+We recommend that you update your eroaster package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20366-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 366-1 (eroaster)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"eroaster", ver:"2.1.0.0.3-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_367_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_367_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_367_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,85 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 367-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53655);
+ script_cve_id("CVE-2003-0652");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 367-1 (xtokkaetama)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xtokkaetama
+announced via advisory DSA 367-1.
+
+Another buffer overflow was discovered in xtokkaetama, involving the
+'-nickname' command line option. This vulnerability could be
+exploited by a local attacker to gain gid 'games'.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.0b-6woody2.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.0b-9.
+
+We recommend that you update your xtokkaetama package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20367-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 367-1 (xtokkaetama)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xtokkaetama", ver:"1.0b-6woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_368_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_368_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_368_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,91 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 368-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53656);
+ script_bugtraq_id(8370);
+ script_cve_id("CVE-2003-0649");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 368-1 (xpcd)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xpcd
+announced via advisory DSA 368-1.
+
+Steve Kemp discovered a buffer overflow in xpcd-svga which can be
+triggered by a long HOME environment variable. This vulnerability
+could be exploited by a local attacker to gain root privileges.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.08-8woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your xpcd package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20368-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 368-1 (xpcd)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"xpcd", ver:"2.08-8woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xpcd-gimp", ver:"2.08-8woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xpcd-svga", ver:"2.08-8woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_369_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_369_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_369_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,91 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 369-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53657);
+ script_cve_id("CVE-2003-0613");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 369-1 (zblast)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to zblast
+announced via advisory DSA 369-1.
+
+Steve Kemp discovered a buffer overflow in zblast-svgalib, when saving
+the high score file. This vulnerability could be exploited by a local
+user to gain gid 'games', if they can achieve a high score.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.2pre-5woody2.
+
+For the unstable distribution (sid) this problem is fixed in version
+1.2.1-7.
+
+We recommend that you update your zblast package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20369-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 369-1 (zblast)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"zblast-data", ver:"1.2pre-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"zblast-x11", ver:"1.2pre-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"zblast-svgalib", ver:"1.2pre-5woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_370_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_370_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_370_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 370-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53658);
+ script_cve_id("CVE-2003-0672");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 370-1 (pam-pgsql)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to pam-pgsql
+announced via advisory DSA 370-1.
+
+Florian Zumbiehl reported a vulnerability in pam-pgsql whereby the
+username to be used for authentication is used as a format string when
+writing a log message. This vulnerability may allow an attacker to
+execute arbitrary code with the privileges of the program requesting
+PAM authentication.
+
+For the stable distribution (woody) this problem has been fixed in
+version 0.5.2-3woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 0.5.2-7.
+
+We recommend that you update your pam-pgsql package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20370-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 370-1 (pam-pgsql)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libpam-pgsql", ver:"0.5.2-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_371_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_371_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_371_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,113 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 371-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53659);
+ script_bugtraq_id(8231);
+ script_cve_id("CVE-2003-0615");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 371-1 (perl)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to perl
+announced via advisory DSA 371-1.
+
+A cross-site scripting vulnerability exists in the start_form()
+function in CGI.pm. This function outputs user-controlled data into
+the action attribute of a form element without sanitizing it, allowing
+a remote user to execute arbitrary web script within the context of
+the generated page. Any program which uses this function in the
+CGI.pm module may be affected.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 5.6.1-8.3.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 5.8.0-19.
+
+We recommend that you update your perl package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20371-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 371-1 (perl)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libcgi-fast-perl", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl-doc", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl-modules", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libperl-dev", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libperl5.6", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl-base", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl-debug", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"perl-suid", ver:"5.6.1-8.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_372_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_372_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_372_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 372-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53660);
+ script_bugtraq_id(8400);
+ script_cve_id("CVE-2003-0685");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 372-1 (netris)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to netris
+announced via advisory DSA 372-1.
+
+Shaun Colley discovered a buffer overflow vulnerability in netris, a
+network version of a popular puzzle game. A netris client connecting
+to an untrusted netris server could be sent an unusually long data
+packet, which would be copied into a fixed-length buffer without
+bounds checking. This vulnerability could be exploited to gain the
+priviliges of the user running netris in client mode, if they connect
+to a hostile netris server.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 0.5-4woody1.
+
+For the unstable distribution (sid) this problem is fixed in version
+0.52-1.
+
+We recommend that you update your netris package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20372-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 372-1 (netris)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"netris", ver:"0.5-4woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_373_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_373_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_373_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 373-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53661);
+ script_bugtraq_id(8436);
+ script_cve_id("CVE-2003-0654");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 373-1 (autorespond)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to autorespond
+announced via advisory DSA 373-1.
+
+Christian Jaeger discovered a buffer overflow in autorespond, an email
+autoresponder used with qmail. This vulnerability could potentially
+be exploited by a remote attacker to gain the privileges of a user who
+has configured qmail to forward messages to autorespond. This
+vulnerability is currently not believed to be exploitable due to
+incidental limits on the length of the problematic input, but there
+may be situations in which these limits do not apply.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0.2-2woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your autorespond package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20373-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 373-1 (autorespond)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"autorespond", ver:"2.0.2-2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_374_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_374_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_374_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 374-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53696);
+ script_cve_id("CVE-2003-0686");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 374-1 (libpam-smb)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to libpam-smb
+announced via advisory DSA 374-1.
+
+libpam-smb is a PAM authentication module which makes it possible to
+authenticate users against a password database managed by Samba or a
+Microsoft Windows server. If a long password is supplied, this can
+cause a buffer overflow which could be exploited to execute arbitrary
+code with the privileges of the process which invokes PAM services.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.1.6-1.1woody1.
+
+For the unstable distribution (sid) does not contain a libpam-smb
+package.
+
+We recommend that you update your libpam-smb package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20374-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 374-1 (libpam-smb)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libpam-smb", ver:"1.1.6-1.1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_376_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_376_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_376_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 376-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53662);
+ script_cve_id("CVE-2003-0743");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 376-1 (exim exim-tls)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to exim exim-tls
+announced via advisory DSA 376-1.
+
+A buffer overflow exists in exim, which is the standard mail transport
+agent in Debian. By supplying a specially crafted HELO or EHLO
+command, an attacker could cause a constant string to be written past
+the end of a buffer allocated on the heap. This vulnerability is not
+believed at this time to be exploitable to execute arbitrary code.
+
+For the stable distribution (woody) this problem has been fixed in
+exim version 3.35-1woody1 and exim-tls version 3.35-3woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+exim version 3.36-8. The unstable distribution does not contain an
+exim-tls package.
+
+We recommend that you update your exim or exim-tls package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20376-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 376-1 (exim exim-tls)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"exim", ver:"3.35-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"eximon", ver:"3.35-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"exim-tls", ver:"3.35-3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_377_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_377_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_377_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,95 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 377-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53663);
+ script_cve_id("CVE-1999-0997");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 377-1 (wu-ftpd)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to wu-ftpd
+announced via advisory DSA 377-1.
+
+wu-ftpd, an FTP server, implements a feature whereby multiple files
+can be fetched in the form of a dynamically constructed archive file,
+such as a tar archive. The names of the files to be included are
+passed as command line arguments to tar, without protection against
+them being interpreted as command-line options. GNU tar supports
+several command line options which can be abused, by means of this
+vulnerability, to execute arbitrary programs with the privileges of
+the wu-ftpd process.
+
+Georgi Guninski pointed out that this vulnerability exists in Debian
+woody.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.6.2-3woody2.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your wu-ftpd package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20377-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 377-1 (wu-ftpd)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"wu-ftpd-academ", ver:"2.6.2-3woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"wu-ftpd", ver:"2.6.2-3woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_378_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_378_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_378_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,96 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 378-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53664);
+ script_cve_id("CVE-2003-0705", "CVE-2003-0706");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 378-1 (mah-jong)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mah-jong
+announced via advisory DSA 378-1.
+
+Nicolas Boullis discovered two vulnerabilities in mah-jong, a
+network-enabled game.
+
+- CVE-2003-0705 (buffer overflow)
+
+This vulnerability could be exploited by a remote attacker to
+execute arbitrary code with the privileges of the user running the
+mah-jong server.
+
+- - CVE-2003-0706 (denial of service)
+
+This vulnerability could be exploited by a remote attacker to cause
+the mah-jong server to enter a tight loop and stop responding to
+commands.
+
+For the stable distribution (woody) these problems have been fixed in
+version 1.4-2.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 1.5.6-2.
+
+We recommend that you update your mah-jong package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20378-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 378-1 (mah-jong)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mah-jong", ver:"1.4-2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_379_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_379_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_379_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,145 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 379-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53374);
+ script_cve_id("CVE-2003-0773", "CVE-2003-0774", "CVE-2003-0775", "CVE-2003-0776", "CVE-2003-0777", "CVE-2003-0778");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 379-1 (sane-backends)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to sane-backends
+announced via advisory DSA 379-1.
+
+Alexander Hvostov, Julien Blache and Aurelien Jarno discovered several
+security-related problems in the sane-backends package, which contains
+an API library for scanners including a scanning daemon (in the
+package libsane) that can be remotely exploited. Thes problems allow
+a remote attacker to cause a segfault fault and/or consume arbitrary
+amounts of memory. The attack is successful, even if the attacker's
+computer isn't listed in saned.conf.
+
+You are only vulnerable if you actually run saned e.g. in xinetd or
+inetd. If the entries in the configuration file of xinetd or inetd
+respectively are commented out or do not exist, you are safe.
+
+Try telnet localhost 6566 on the server that may run saned. If you
+get connection refused saned is not running and you are safe.
+
+The Common Vulnerabilities and Exposures project identifies the
+following problems:
+
+CVE-2003-0773:
+
+saned checks the identity (IP address) of the remote host only
+after the first communication took place (SANE_NET_INIT). So
+everyone can send that RPC, even if the remote host is not allowed
+to scan (not listed in saned.conf).
+
+CVE-2003-0774:
+
+saned lacks error checking nearly everywhere in the code. So
+connection drops are detected very late. If the drop of the
+connection isn't detected, the access to the internal wire buffer
+leaves the limits of the allocated memory. So random memory after
+the wire buffer is read which will be followed by a segmentation
+fault.
+
+CVE-2003-0775:
+
+If saned expects strings, it mallocs the memory necessary to store
+the complete string after it receives the size of the string. If
+the connection was dropped before transmitting the size, malloc
+will reserve an arbitrary size of memory. Depending on that size
+and the amount of memory available either malloc fails (->saned
+quits nicely) or a huge amount of memory is allocated. Swapping and
+and OOM measures may occur depending on the kernel.
+
+CVE-2003-0776:
+
+saned doesn't check the validity of the RPC numbers it gets before
+getting the parameters.
+
+CVE-2003-0777:
+
+If debug messages are enabled and a connection is dropped,
+non-null-terminated strings may be printed and segamentation faults
+may occur.
+
+CVE-2003-0778:
+
+It's possible to allocate an arbitrary amount of memory on the
+server running saned even if the connection isn't dropped. At the
+moment this can not easily be fixed according to the author.
+Better limit the total amount of memory saned may use (ulimit).
+
+For the stable distribution (woody) this problem has been
+fixed in version 1.0.7-4.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.0.11-1 and later.
+
+We recommend that you upgrade your libsane packages.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20379-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 379-1 (sane-backends)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libsane", ver:"1.0.7-4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libsane-dev", ver:"1.0.7-4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_380_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_380_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_380_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,229 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 380-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53665);
+ script_cve_id("CVE-2003-0063", "CVE-2003-0071", "CVE-2002-0164", "CVE-2003-0730");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 380-1 (xfree86)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to xfree86
+announced via advisory DSA 380-1.
+
+Four vulnerabilities have been discovered in XFree86.
+
+For a more detailed description of the problems addressed,
+please visit the referenced security advisory.
+
+For the stable distribution (woody) these problems have been fixed in
+version 4.1.0-16woody1.
+
+For the unstable distribution (sid) all problems except CVE-2003-0730
+are fixed in version 4.2.1-11. CVE-2003-0730 will be fixed in
+4.2.1-12, currently in preparation.
+
+We recommend that you update your xfree86 package.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20380-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 380-1 (xfree86)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"x-window-system", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-100dpi-transcoded", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-100dpi", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-75dpi-transcoded", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-75dpi", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-base-transcoded", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-base", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-cyrillic", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-pex", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfonts-scalable", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfree86-common", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlib6g-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlib6g", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xspecs", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"lbxproxy", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libdps-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libdps1", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libdps1-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw6", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw6-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw6-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw7", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw7-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libxaw7-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"proxymngr", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"twm", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"x-window-system-core", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xbase-clients", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xdm", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfs", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xfwp", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibmesa-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibmesa3", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibmesa3-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibosmesa-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibosmesa3", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibosmesa3-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibs", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibs-dbg", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibs-dev", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xlibs-pic", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xmh", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xnest", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xprt", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xserver-common", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xserver-xfree86", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xterm", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xutils", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xvfb", ver:"4.1.0-16woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_381_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_381_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_381_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,107 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 381-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53666);
+ script_bugtraq_id(8590);
+ script_cve_id("CVE-2003-0780");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 381-1 (mysql)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to mysql
+announced via advisory DSA 381-1.
+
+MySQL, a popular relational database system, contains a buffer
+overflow condition which could be exploited by a user who has
+permission to execute 'ALTER TABLE' commands on the tables in the
+'mysql' database. If successfully exploited, this vulnerability
+could allow the attacker to execute arbitrary code with the
+privileges of the mysqld process (by default, user 'mysql'). Since
+the 'mysql' database is used for MySQL's internal record keeping, by
+default the mysql administrator 'root' is the only user with
+permission to alter its tables.
+
+For the stable distribution (woody) this problem has been fixed in
+version 3.23.49-8.5.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+Refer to Debian bug #210403.
+
+We recommend that you update your mysql package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20381-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 381-1 (mysql)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"mysql-common", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-doc", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmysqlclient10", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmysqlclient10-dev", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-client", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mysql-server", ver:"3.23.49-8.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_382_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_382_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_382_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 382-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53697);
+ script_bugtraq_id(8628);
+ script_cve_id("CVE-2003-0693");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 382-1 (ssh)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ssh
+announced via advisory DSA 382-1.
+
+A bug has been found in OpenSSH's buffer handling where a buffer could
+be marked as grown when the actual reallocation failed.
+
+This bug has been fixed in upstream version 3.7. For the Debian stable
+distribution this bug has eeb fixed in version 1:3.4p1-1.1 .
+
+Please note that if a machine is setup to install packages from
+proposed-updates it will not automatically install this update.
+
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20382-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 382-1 (ssh)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssh", ver:"3.4p1-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ssh-askpass-gnome", ver:"3.4p1-1.1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_382_2.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_382_2.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_382_2.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 382-2
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53698);
+ script_cve_id("CVE-2003-0693", "CVE-2003-0695");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 382-2 (ssh)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ssh
+announced via advisory DSA 382-2.
+
+This advisory is an addition to the earlier DSA-382-1 advisory: two more
+buffer handling problems have been found in addition to the one
+described in DSA-382-1. It is not known if these bugs are exploitable,
+but as a precaution an upgrade is advised.
+
+For the Debian stable distribution these bugs have been fixed in version
+1:3.4p1-1.woody.2 .
+
+Please note that if a machine is setup to install packages from
+proposed-updates it will not automatically install this update.
+
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20382-2
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 382-2 (ssh)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssh-askpass-gnome", ver:"3.4p1-1.woody.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ssh", ver:"3.4p1-1.woody.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_382_3.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_382_3.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_382_3.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,84 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 382-3
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53699);
+ script_cve_id("CVE-2003-0693", "CVE-2003-0695", "CVE-2003-0682");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 382-3 (ssh)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ssh
+announced via advisory DSA 382-3.
+
+This advisory is an addition to the earlier DSA-382-1 and DSA-382-3
+advisories: Solar Designer found four more bugs in OpenSSH that may be
+exploitable.
+
+For the Debian stable distribution these bugs have been fixed in version
+1:3.4p1-1.woody.3 .
+
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20382-3
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 382-3 (ssh)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssh-askpass-gnome", ver:"3.4p1-1.woody.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"ssh", ver:"3.4p1-1.woody.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_383_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_383_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_383_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,81 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 383-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53667);
+ script_cve_id("CVE-2003-0693", "CVE-2003-0695");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 383-1 (ssh-krb5)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ssh-krb5
+announced via advisory DSA 383-1.
+
+Several bugs have been found in OpenSSH's buffer handling. It is not
+known if these bugs are exploitable, but as a precaution an upgrade is
+advised.
+
+For the Debian stable distribution these bugs have been fixed in version
+1:3.4p1-0woody3 .
+
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20383-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 383-1 (ssh-krb5)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssh-krb5", ver:"3.4p1-0woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_383_2.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_383_2.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_383_2.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,80 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 383-2
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53700);
+ script_cve_id("CVE-2003-0693", "CVE-2003-0695", "CVE-2003-0682");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 383-2 (ssh-krb5)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ssh-krb5
+announced via advisory DSA 383-2.
+
+This advisory is an addition to the earlier DSA-383-1 advisory: Solar
+Designer found four more bugs in OpenSSH that may be exploitable.
+
+For the Debian stable distribution these bugs have been fixed in version
+1:3.4p1-0woody4 .
+
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20383-2
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 383-2 (ssh-krb5)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssh-krb5", ver:"3.4p1-0woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_384_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_384_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_384_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,106 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 384-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53668);
+ script_cve_id("CVE-2003-0681", "CVE-2003-0694");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 384-1 (sendmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to sendmail
+announced via advisory DSA 384-1.
+
+Two vulnerabilities were reported in sendmail.
+
+- CVE-2003-0681
+
+A 'potential buffer overflow in ruleset parsing' for Sendmail
+8.12.9, when using the nonstandard rulesets (1) recipient (2),
+final, or (3) mailer-specific envelope recipients, has unknown
+consequences.
+
+- CVE-2003-0694
+
+The prescan function in Sendmail 8.12.9 allows remote attackers to
+execute arbitrary code via buffer overflow attacks, as demonstrated
+using the parseaddr function in parseaddr.c.
+
+For the stable distribution (woody) these problems have been fixed in
+sendmail version 8.12.3-6.6 and sendmail-wide version
+8.12.3+3.5Wbeta-5.5.
+
+For the unstable distribution (sid) these problems have been fixed in
+sendmail version 8.12.10-1.
+
+We recommend that you update your sendmail package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20384-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 384-1 (sendmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"sendmail-doc", ver:"8.12.3-6.6", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libmilter-dev", ver:"8.12.3-6.6", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"sendmail", ver:"8.12.3-6.6", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"sendmail-wide", ver:"8.12.3+3.5Wbeta-5.5", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_385_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_385_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_385_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 385-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53669);
+ script_cve_id("CVE-2003-0783");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 385-1 (hztty)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to hztty
+announced via advisory DSA 385-1.
+
+Jens Steube reported a pair of buffer overflow vulnerabilities in
+hztty, a program to translate Chinese character encodings in a
+terminal session. These vulnerabilities could be exploited by a local
+attacker to gain root privileges on a system where hztty is installed.
+
+Additionally, hztty had been incorrectly installed setuid root, when
+it only requires the privileges of group utmp. This has also been
+corrected in this update.
+
+For the stable distribution (woody) this problem has been fixed in
+version 2.0-5.2woody1.
+
+For the unstable distribution (sid) this problem will befixed in
+version 2.0-6.
+
+We recommend that you update your hztty package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20385-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 385-1 (hztty)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"hztty", ver:"2.0-5.2woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_386_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_386_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_386_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 386-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53670);
+ script_bugtraq_id(6104);
+ script_cve_id("CVE-2002-1271");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 386-1 (libmailtools-perl)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to libmailtools-perl
+announced via advisory DSA 386-1.
+
+The SuSE security team discovered during an audit that the
+Mail::Mailer module, a Perl module used for sending email, whereby
+potentially untrusted input is passed to a program such as mailx,
+which may interpret certain escape sequences as commands to be
+executed.
+
+This bug has been fixed by removing support for programs such as mailx
+as a transport for sending mail. Instead, alternative mechanisms are
+used.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.44-1woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your libmailtools-perl package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20386-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 386-1 (libmailtools-perl)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libmailtools-perl", ver:"1.44-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"mailtools", ver:"1.44-1woody2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_387_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_387_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_387_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,89 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 387-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53671);
+ script_cve_id("CVE-2003-0805");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 387-1 (gopher)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to gopher
+announced via advisory DSA 387-1.
+
+gopherd, a gopher server from the University of Minnesota, contains a
+number of buffer overflows which could be exploited by a remote
+attacker to execute arbitrary code with the privileges of the gopherd
+process (the 'gopher' user by default).
+
+For the stable distribution (woody) this problem has been fixed in
+version 3.0.3woody1.
+
+This program has been removed from the unstable distribution (sid).
+gopherd is deprecated, and users are recommended to use PyGopherd instead.
+
+We recommend that you update your gopherd package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20387-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 387-1 (gopher)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gopher", ver:"3.0.3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gopherd", ver:"3.0.3woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_388_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_388_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_388_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,137 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 388-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53672);
+ script_cve_id("CVE-2003-0690", "CVE-2003-0692");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 388-1 (kdebase)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kdebase
+announced via advisory DSA 388-1.
+
+Two vulnerabilities were discovered in kdebase:
+
+- CVE-2003-0690
+
+KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred
+function call succeeds, which may allow attackers to gain root
+privileges by triggering error conditions within PAM modules, as
+demonstrated in certain configurations of the MIT pam_krb5 module.
+
+- CVE-2003-0692
+
+KDM in KDE 3.1.3 and earlier uses a weak session cookie generation
+algorithm that does not provide 128 bits of entropy, which allows
+attackers to guess session cookies via brute force methods and gain
+access to the user session.
+
+These vulnerabilities are described in the following security
+advisory from KDE:
+
+http://www.kde.org/info/security/advisory-20030916-1.txt
+
+For the current stable distribution (woody) these problems have been
+fixed in version 4:2.2.2-14.7.
+
+For the unstable distribution (sid) these problems will be fixed soon.
+
+We recommend that you update your kdebase package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20388-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 388-1 (kdebase)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kdebase-doc", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdewallpapers", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kate", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdebase", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdebase-audiolibs", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdebase-dev", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdebase-libs", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kdm", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"konqueror", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"konsole", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kscreensaver", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libkonq-dev", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libkonq3", ver:"2.2.2-14.7", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_389_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_389_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_389_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,91 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 389-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53673);
+ script_cve_id("CVE-2003-0785");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 389-1 (ipmasq)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ipmasq
+announced via advisory DSA 389-1.
+
+ipmasq is a package which simplifies configuration of Linux IP
+masquerading, a form of network address translation which allows a
+number of hosts to share a single public IP address. Due to use of
+certain improper filtering rules, traffic arriving on the external
+interface addressed for an internal host would be forwarded,
+regardless of whether it was associated with an established
+connection. This vulnerability could be exploited by an attacker
+capable of forwarding IP traffic with an arbitrary destination address
+to the external interface of a system with ipmasq installed.
+
+For the current stable distribution (woody) this problem has been
+fixed in version 3.5.10c.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 3.5.12.
+
+We recommend that you update your ipmasq package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20389-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 389-1 (ipmasq)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ipmasq", ver:"3.5.10c", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_390_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_390_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_390_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,84 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 390-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53674);
+ script_cve_id("CVE-2003-0830");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 390-1 (marbles)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to marbles
+announced via advisory DSA 390-1.
+
+Steve Kemp discovered a buffer overflow in marbles, when processing
+the HOME environment variable. This vulnerability could be exploited
+by a local user to gain gid 'games'.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 1.0.2-1woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your marbles package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20390-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 390-1 (marbles)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"marbles", ver:"1.0.2-1woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_391_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_391_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_391_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,85 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 391-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53675);
+ script_bugtraq_id(8716);
+ script_cve_id("CVE-2003-0828");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 391-1 (freesweep)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to freesweep
+announced via advisory DSA 391-1.
+
+Steve Kemp discovered a buffer overflow in freesweep, when processing
+several environment variables. This vulnerability could be exploited
+by a local user to gain gid 'games'.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 0.88-4woody1.
+
+For the unstable distribution (sid) this problem will be fixed soon.
+
+We recommend that you update your freesweep package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20391-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 391-1 (freesweep)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"freesweep", ver:"0.88-4woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_392_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_392_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_392_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,95 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 392-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53676);
+ script_cve_id("CVE-2003-0832", "CVE-2003-0833");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 392-1 (webfs)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to webfs
+announced via advisory DSA 392-1.
+
+Jens Steube reported two vulnerabilities in webfs, a lightweight HTTP
+server for static content.
+
+CVE-2003-0832 - When virtual hosting is enabled, a remote client
+could specify '..' as the hostname in a request, allowing retrieval
+of directory listings or files above the document root.
+
+CVE-2003-0833 - A long pathname could overflow a buffer allocated on
+the stack, allowing execution of arbitrary code. In order to exploit
+this vulnerability, it would be necessary to be able to create
+directories on the server in a location which could be accessed by
+the web server. In conjunction with CVE-2003-0832, this could be a
+world-writable directory such as /var/tmp.
+
+For the current stable distribution (woody) these problems have been fixed
+in version 1.17.2.
+
+For the unstable distribution (sid) these problems have been fixed in
+version 1.20.
+
+We recommend that you update your webfs package.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20392-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 392-1 (webfs)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"webfs", ver:"1.17.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_393_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_393_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_393_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,102 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 393-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53677);
+ script_cve_id("CVE-2003-0543", "CVE-2003-0544");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 393-1 (openssl)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to openssl
+announced via advisory DSA 393-1.
+
+Dr. Stephen Henson (steve at openssl.org), using a test suite provided by
+NISCC (www.niscc.gov.uk), discovered a number of errors in the OpenSSL
+ASN1 code. Combined with an error that causes the OpenSSL code to parse
+client certificates even when it should not, these errors can cause a
+denial of service (DoS) condition on a system using the OpenSSL code,
+depending on how that code is used. For example, even though apache-ssl
+and ssh link to OpenSSL libraries, they should not be affected by this
+vulnerability. However, other SSL-enabled applications may be
+vulnerable and an OpenSSL upgrade is recommended.
+
+For the current stable distribution (woody) these problems have been
+fixed in version 0.9.6c-2.woody.4
+
+For the unstable distribution (sid) these problems have been fixed in
+version 0.9.7c-1
+
+We recommend that you update your openssl package. Note that you will
+need to restart services which use the libssl library for this update
+to take effect.
+
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20393-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 393-1 (openssl)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"ssleay", ver:"0.9.6c-2.woody.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.6c-2.woody.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libssl0.9.6", ver:"0.9.6c-2.woody.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"openssl", ver:"0.9.6c-2.woody.4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_394_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_394_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_394_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,113 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 394-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53375);
+ script_cve_id("CVE-2003-0543", "CVE-2003-0544", "CVE-2003-0545");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 394-1 (openssl095)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to openssl095
+announced via advisory DSA 394-1.
+
+Steve Henson of the OpenSSL core team identified and prepared fixes
+for a number of vulnerabilities in the OpenSSL ASN1 code that were
+discovered after running a test suite by British National
+Infrastructure Security Coordination Centre (NISCC).
+
+A bug in OpenSSLs SSL/TLS protocol was also identified which causes
+OpenSSL to parse a client certificate from an SSL/TLS client when it
+should reject it as a protocol error.
+
+The Common Vulnerabilities and Exposures project identifies the
+following problems:
+
+CVE-2003-0543:
+
+Integer overflow in OpenSSL that allows remote attackers to cause a
+denial of service (crash) via an SSL client certificate with
+certain ASN.1 tag values.
+
+CVE-2003-0544:
+
+OpenSSL does not properly track the number of characters in certain
+ASN.1 inputs, which allows remote attackers to cause a denial of
+service (crash) via an SSL client certificate that causes OpenSSL
+to read past the end of a buffer when the long form is used.
+
+CVE-2003-0545:
+
+Double-free vulnerability allows remote attackers to cause a denial
+of service (crash) and possibly execute arbitrary code via an SSL
+client certificate with a certain invalid ASN.1 encoding. This bug
+was only present in OpenSSL 0.9.7 and is listed here only for
+reference.
+
+For the stable distribution (woody) this problem has been
+fixed in openssl095 version 0.9.5a-6.woody.3.
+
+This package is not present in the unstable (sid) or testing (sarge)
+distribution.
+
+We recommend that you upgrade your libssl095a packages and restart
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20394-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 394-1 (openssl095)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libssl095a", ver:"0.9.5a-6.woody.3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_395_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_395_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_395_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,90 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 395-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53376);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 395-1 (tomcat4)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to tomcat4
+announced via advisory DSA 395-1.
+
+Aldrin Martoq has discovered a denial of service (DoS) vulnerability in
+Apache Tomcat 4.0.x. Sending several non-HTTP requests to Tomcat's HTTP
+connector makes Tomcat reject further requests on this port until it is
+restarted.
+
+For the current stable distribution (woody) this problem has been fixed
+in version 4.0.3-3woody3.
+
+For the unstable distribution (sid) this problem does not exist in the
+current version 4.1.24-2.
+
+We recommend that you upgrade your tomcat4 packages and restart the
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20395-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 395-1 (tomcat4)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libtomcat4-java", ver:"4.0.3-3woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"tomcat4-webapps", ver:"4.0.3-3woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"tomcat4", ver:"4.0.3-3woody3", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_396_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_396_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_396_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,103 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 396-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53377);
+ script_cve_id("CVE-2002-1562", "CVE-2003-0899");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 396-1 (thttpd)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to thttpd
+announced via advisory DSA 396-1.
+
+Several vulnerabilities have been discovered in thttpd, a tiny HTTP
+server.
+
+The Common Vulnerabilities and Exposures project identifies the
+following vulnerabilities:
+
+CVE-2002-1562: Information leak
+
+Marcus Breiing discovered that if thttpd it is used for virtual
+hosting, and an attacker supplies a specially crafted ``Host:''
+header with a pathname instead of a hostname, thttpd will reveal
+information about the host system. Hence, an attacker can browse
+the entire disk.
+
+CVE-2003-0899: Arbitrary code execution
+
+Joel Soderberg and Christer Oberg discovered a remote overflow which
+allows an attacker to partially overwrite the EBP register and
+hencely execute arbitrary code.
+
+For the stable distribution (woody) these problems have been fixed in
+version 2.21b-11.2.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 2.23beta1-2.3.
+
+We recommend that you upgrade your thttpd package immediately.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20396-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 396-1 (thttpd)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"thttpd", ver:"2.21b-11.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"thttpd-util", ver:"2.21b-11.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_397_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_397_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_397_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,117 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 397-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53754);
+ script_cve_id("CVE-2003-0901");
+ script_bugtraq_id(8741);
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 397-1 (postgresql)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to postgresql
+announced via advisory DSA 397-1.
+
+Tom Lane discovered a buffer overflow in the to_ascii function in
+PostgreSQL. This allows remote attackers to execute arbitrary code on
+the host running the database.
+
+For the stable distribution (woody) this problem has been fixed in
+version 7.2.1-2woody4.
+
+The unstable distribution (sid) does not contain this problem.
+
+We recommend that you upgrade your postgresql package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20397-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 397-1 (postgresql)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"postgresql-doc", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libecpg3", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpgperl", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpgsql2", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpgtcl", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"odbc-postgresql", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"pgaccess", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postgresql", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postgresql-client", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postgresql-contrib", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"postgresql-dev", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"python-pygresql", ver:"7.2.1-2woody4", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_398_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_398_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_398_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 398-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53378);
+ script_bugtraq_id(8996);
+ script_cve_id("CVE-2003-0933");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 398-1 (conquest)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to conquest
+announced via advisory DSA 398-1.
+
+Steve Kemp discovered a buffer overflow in the environment variable
+handling of conquest, a curses based, real-time, multi-player space
+warfare game, which could lead a local attacker to gain unauthorised
+access to the group conquest.
+
+For the stable distribution (woody) this problem has been fixed in
+version 7.1.1-6woody1.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 7.2-5.
+
+We recommend that you upgrade your conquest package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20398-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 398-1 (conquest)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"conquest", ver:"7.1.1-6woody1", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_399_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_399_1.nasl 2008-01-17 21:28:10 UTC (rev 592)
+++ trunk/openvas-plugins/scripts/deb_399_1.nasl 2008-01-17 21:36:24 UTC (rev 593)
@@ -0,0 +1,87 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 399-1
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largerly excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+if(description)
+{
+ script_id(53379);
+ script_cve_id("CVE-2003-0328");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 399-1 (epic4)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to epic4
+announced via advisory DSA 399-1.
+
+Jeremy Nelson discovered a remotely exploitable buffer overflow in
+EPIC4, a popular client for Internet Relay Chat (IRC). A malicious
+server could craft a reply which triggers the client to allocate a
+negative amount of memory. This could lead to a denial of service if
+the client only crashes, but may also lead to executing of arbitrary
+code under the user id of the chatting user.
+
+For the stable distribution (woody) this problem has been fixed in
+version 1.1.2.20020219-2.2.
+
+For the unstable distribution (sid) this problem has been fixed in
+version 1.1.11.20030409-2.
+
+We recommend that you upgrade your epic4 package.
+
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20399-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 399-1 (epic4)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"epic4", ver:"1.1.2.20020219-2.2", rls:"DEB3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
More information about the Openvas-commits
mailing list