From scm-commit at wald.intevation.org Wed Apr 1 00:20:57 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 00:20:57 +0200 (CEST) Subject: [Openvas-commits] r2967 - trunk/winslad Message-ID: <20090331222057.363CE4079A@pyrosoma.intevation.org> Author: doj Date: 2009-04-01 00:20:56 +0200 (Wed, 01 Apr 2009) New Revision: 2967 Removed: trunk/winslad/init.cpp trunk/winslad/init.h trunk/winslad/util.cpp trunk/winslad/util.h trunk/winslad/xml.h Modified: trunk/winslad/Makefile trunk/winslad/client.cpp trunk/winslad/config.h trunk/winslad/debug.h trunk/winslad/main.cpp trunk/winslad/struct.h trunk/winslad/xml.cpp Log: moved code around Modified: trunk/winslad/Makefile =================================================================== --- trunk/winslad/Makefile 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/Makefile 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,7 +1,7 @@ # This is a GNU Makefile and part of Microsoft Windows SLAD EXE=sladd.exe -OBJ=main.o init.o xml.o util.o client.o path.o readn.o writen.o +OBJ=main.o xml.o client.o path.o readn.o writen.o CXX=mingw32-g++ CC=$(CXX) Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/client.cpp 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,3 +1,26 @@ +/* Microsoft Windows SLAD Version 1.0 + + Description: Windows Security Local Audit Daemon/Distributor runs + local security checks for later evaluation by OpenVAS. + Authors: Dirk Jagdmann + + Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH + Hornemannstr. 11-13, 31137 Hildesheim, Germany + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2 or later, + as published by the Free Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +*/ + #define WIN32_LEAN_AND_MEAN 1 #include @@ -56,7 +79,7 @@ return 0; } -std::string plugin2filename(const std::string& p) +static std::string plugin2filename(const std::string& p) { std::string fn; foreach(p, c) @@ -69,7 +92,7 @@ return fn; } -std::string filename2plugin(const std::string& fn) +static std::string filename2plugin(const std::string& fn) { std::string p; foreach(fn, c) @@ -157,13 +180,218 @@ return 0; } +static int start_plugin(slad_plugin_t * p, slad_plugin_set_t * s, slad_plugin_entry_t * e, sladd_config_t * config) +{ +#if 0 + char path[256]; + char * argv[MAX_ARGV], * cmdline; + int argc, i; + char msg[MAX_MSG]; + sladd_job_t * job = NULL; + struct stat statbuf; + pid_t pid; + struct passwd * passwd = NULL; + struct group * group = NULL; + char pluginname[1024]; + + snprintf (pluginname, sizeof(pluginname), "%s:%s:%s", p->name, s->name, e->name); + + for (job = jobs; job; job = job->next) + if (!strcasecmp (pluginname, job->pluginid)) + break; + + if (job) { + write (socket, MSG_ALREADY, strlen (MSG_ALREADY)); + return -1; + } + + strcpy (path, config->pluginpath); + if (p->path) { + strcat (path, "/"); + strcat (path, p->path); + } + strcat (path, "/"); + strcat (path, e->binary); + + if (stat (path, &statbuf)) { + snprintf (msg, sizeof(msg), MSG_CANTRUN " - stat(%s): %s\n", + path, strerror (errno)); + write (socket, msg, strlen (msg)); + return -1; + } + if (!S_ISREG (statbuf.st_mode)) { + snprintf (msg, sizeof(msg), MSG_CANTRUN " - %s is not a regular file\n", path); + write (socket, msg, strlen (msg)); + return -1; + } + if (!(statbuf.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) { + snprintf (msg, sizeof(msg), MSG_CANTRUN " - %s is not executable\n", path); + write (socket, msg, strlen (msg)); + return -1; + } + + argv[0] = path; + for (argc = 1, cmdline = e->cmdline; argc < MAX_ARGV - 1; cmdline = NULL) + if (!(argv[argc++] = strtok (cmdline, " \t\n"))) + break; + argv[MAX_ARGV-1] = NULL; + + if (e->runasuser) + passwd = getpwnam (e->runasuser); + if (e->runasgroup) + group = getgrnam (e->runasgroup); + +#ifdef DOJDEBUG + switch (pid = commfork (socket, pluginname)) { +#else + switch (pid = commfork (pluginname)) { +#endif + + case 0: + if (group) + setgid (group->gr_gid); + if (passwd) + setuid (passwd->pw_uid); + /* no provileged operations after this point */ + for (i=3; i < FD_SETSIZE; i++) + close (i); + PRINTF("execvp(%s) pid=%i\n", argv[0], getpid()); + execvp (argv[0], argv); + snprintf (msg, sizeof(msg), "execvp(): %s\n", strerror (errno)); + write (socket, msg, strlen (msg)); + _exit(1); + case -1: + write (socket, MSG_CANTRUN " - fork error\n", strlen (MSG_CANTRUN)+14); + return -1; + break; + default: + snprintf (msg, sizeof(msg), "%s %s\n", MSG_OK, p->desc); + write (socket, msg, strlen (msg)); + return 0; + } + } + +#else + return 0; +#endif +} + +static void findplugin (const std::string& pluginName, sladd_config_t * config, + slad_plugin_t ** plugin, slad_plugin_set_t ** set, + slad_plugin_entry_t ** entry) +{ + char * tmpstring, * pname, * sname, * ename = NULL; + int p_num = 0, s_num = 0, e_num = 0; + int len; + + *plugin = NULL; + *set = NULL; + *entry = NULL; + + if (!(config->plugins)) + { + PRINTF("findplugin(): could not find any plugins\n"); + return; + } + + pname = tmpstring = strdup (pluginName.c_str()); + if (!pname) + { + PRINTF("findplugin(): could not strdup command\n"); + return; + } + + len = strlen (pname); + // strip white spaces at the beginning + while (*pname && isspace(*pname)) { + len--; + pname++; + } + // strip white spaces at the end + while (len && isspace (pname[len-1])) { + len--; + pname[len] = 0; + } + + sname = strchr (pname, ':'); + if (sname) { + *sname = 0; + sname++; + + ename = strchr (sname, ':'); + if (ename) { + *ename = 0; + ename++; + } + } + + for (p_num = 0; (*plugin = config->plugins[p_num]); p_num++) + if (!strcasecmp ((*plugin)->name, pname)) { + if (!sname) + return; + for (s_num = 0; (*set = (*plugin)->sets[s_num]); s_num++) + if (!strcasecmp ((*set)->name, sname)) { + if (!ename) return; + for (e_num = 0; (*entry = (*set)->entries[e_num]); e_num++) + if (!strcasecmp ((*entry)->name, ename)) { + free (tmpstring); + return; + } + } + } + + free (tmpstring); +} + +static int cl_run(sladd_config_t * config) +{ + slad_plugin_t * p = NULL; + slad_plugin_set_t * s = NULL; + slad_plugin_entry_t * e = NULL; + + if(config->arg.empty()) + { + printf(MSG_CANTQUEUE ": no plugin name\n"); + return -1; + } + + findplugin (config->arg, config, &p, &s, &e); + + if (!p) + { + printf(MSG_NOPLUGIN ": did not find the plugin\n"); + return -1; + } + if (!s) + s = (p->sets)[0]; + if (!s) + { + printf(MSG_NOPLUGIN": did not find a set\n"); + return -1; + } + + if (e) + return start_plugin (p, s, e, config); + + if (!(s->entries)[0]) + { + printf(MSG_NOPLUGIN ": did not find entries\n"); + return -1; + } + + for (int e_num = 0; (e = s->entries[e_num]); e_num++) + start_plugin (p, s, e, config); + + return 0; +} + /* Externally visible entry point from main () */ int run_client (sladd_config_t * config) { switch (config->command) { case 'r': - return 0; + return cl_run(config); case 's': return cl_show (config); default: Modified: trunk/winslad/config.h =================================================================== --- trunk/winslad/config.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/config.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,3 +1,26 @@ +/* Microsoft Windows SLAD Version 1.0 + + Description: Windows Security Local Audit Daemon/Distributor runs + local security checks for later evaluation by OpenVAS. + Authors: Dirk Jagdmann + + Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH + Hornemannstr. 11-13, 31137 Hildesheim, Germany + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2 or later, + as published by the Free Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +*/ + #ifndef __config_h_included__ #define __config_h_included__ Modified: trunk/winslad/debug.h =================================================================== --- trunk/winslad/debug.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/debug.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,3 +1,26 @@ +/* Microsoft Windows SLAD Version 1.0 + + Description: Windows Security Local Audit Daemon/Distributor runs + local security checks for later evaluation by OpenVAS. + Authors: Dirk Jagdmann + + Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH + Hornemannstr. 11-13, 31137 Hildesheim, Germany + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2 or later, + as published by the Free Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +*/ + #ifndef DEBUG__H #define DEBUG__H Deleted: trunk/winslad/init.cpp =================================================================== --- trunk/winslad/init.cpp 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/init.cpp 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,175 +0,0 @@ -#include -#include -#include -#include -#include -#include -#include -#include -#include -#include -#define __GNU_SOURCE -#include "getopt.h" - -#include "debug.h" -#include "config.h" -#include "xml.h" -#include "struct.h" -#include "path.hpp" - -sladd_config_t::sladd_config_t() : - pluginpath(SLADD_PLUGIN_PATH), - resultpath(SLADD_RESULT_PATH), - command(0), - plugins(NULL) -{ - char * envvar; - - envvar = getenv ("SLADD_PLUGIN_PATH"); - if (envvar) - pluginpath = envvar; - envvar = getenv ("SLADD_RESULT_PATH"); - if (envvar) - resultpath = envvar; -} - -static void print_help(char *arg0) -{ - assert(arg0); - - printf ("Usage: %s [OPTION...]\n", basename (arg0)); - printf ("-p, --pluginpath=%-21s plug-in directory\n", SLADD_PLUGIN_PATH); - printf ("-R, --resultpath=%-21s results directory\n", SLADD_RESULT_PATH); - printf ("-s, --show=plugins|jobs| display status\n" - "-r, --run=pluginid run a job\n" - "-h, --help display this help\n"); - - _exit (0); -} - -static void init_cmdline (int argc, char ** argv, sladd_config_t *config) -{ - assert(config); - assert(argv); - assert(argc>0); - - std::string show, pluginpath, command; - int option_index = 0; - - static const struct option long_options[] = { - {"pluginpath", 1, NULL, 'p'}, - {"resultpath", 1, NULL, 'R'}, - {"show", 1, NULL, 's'}, - {"run", 1, NULL, 'r'}, - {"help", 0, NULL, 'h'}, - {NULL, 0, NULL, 0} - }; - - while (1) - { - int i = getopt_long (argc, argv, "hp:R:r:s:", long_options, &option_index); - if (i == -1) - break; - - switch (i) { - case 'h': - print_help (argv[0]); /* never returns */ - break; - case 'p': - config->pluginpath = optarg; - break; - case 'R': - config->resultpath=optarg; - break; - case 'r': - command = optarg; - break; - case 's': - show = optarg; - break; - } - } - - if (!show.empty()) - { - config->command = 's'; - config->arg = show; - } - else if (!command.empty()) - { - config->command = 'r'; - config->arg = command; - } - - if (!config->command) - print_help (argv[0]); -} - -static int init_plugins (sladd_config_t *config) -{ - assert(config); - - struct stat statbuf; - if (stat (config->pluginpath.c_str(), &statbuf) < 0) - { - PRINTF("init_plugins(): stat(%s) error\n", config->pluginpath.c_str()); - return -1; - } - if (!S_ISDIR (statbuf.st_mode)) - { - PRINTF("init_plugins(): pluginpath is not a directory\n"); - return -1; - } - - DIR *dir = opendir (config->pluginpath.c_str()); - if (!dir) - { - PRINTF("can't opendir() plugin directory %s: %s\n", config->pluginpath.c_str(), strerror (errno)); - return -1; - } - - struct dirent * entry; - while ((entry = readdir (dir))) - { - if(! strcmp(entry->d_name, ".")) continue; - if(! strcmp (entry->d_name, "..")) continue; - - std::string tmppath=config->pluginpath+'\\'+entry->d_name; - if (!stat (tmppath.c_str(), &statbuf) && S_ISDIR (statbuf.st_mode)) - { - tmppath+="\\plugin.xml"; - if (!stat (tmppath.c_str(), &statbuf) && S_ISREG (statbuf.st_mode)) - { - if(load_plugin (tmppath.c_str(), config) < 0) - { - PRINTF("could not load %s\n", tmppath.c_str()); - } - } - } - } - - closedir (dir); - - return 0; -} - -sladd_config_t* init(int argc, char ** argv) -{ - sladd_config_t *config = new sladd_config_t; - init_cmdline (argc, argv, config); - if(init_plugins (config) < 0) - { - PRINTF("could not init plugins\n"); - delete config; - return NULL; - } - - if(!doj::mkdir(config->resultpath)) - { - PRINTF("could not create result directory: %s\n", config->resultpath.c_str()); - delete config; - return NULL; - } - - return config; -} Deleted: trunk/winslad/init.h =================================================================== --- trunk/winslad/init.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/init.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,8 +0,0 @@ -#ifndef __init_h_included__ -#define __init_h_included__ - -#include "struct.h" - -sladd_config_t * init (int argc, char ** argv); - -#endif Modified: trunk/winslad/main.cpp =================================================================== --- trunk/winslad/main.cpp 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/main.cpp 2009-03-31 22:20:56 UTC (rev 2967) @@ -21,13 +21,186 @@ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. */ +#include +#include +#include +#include +#include +#include +#include +#include +#include +#include +#define __GNU_SOURCE +#include "getopt.h" + #include "debug.h" -#include "init.h" +#include "config.h" +#include "struct.h" +#include "path.hpp" #include int run_client (sladd_config_t * config); +int load_plugin (const char * cfgname, sladd_config_t * config); +sladd_config_t::sladd_config_t() : + pluginpath(SLADD_PLUGIN_PATH), + resultpath(SLADD_RESULT_PATH), + command(0), + plugins(NULL) +{ + char * envvar; + + envvar = getenv ("SLADD_PLUGIN_PATH"); + if (envvar) + pluginpath = envvar; + envvar = getenv ("SLADD_RESULT_PATH"); + if (envvar) + resultpath = envvar; +} + +static void print_help(char *arg0) +{ + assert(arg0); + + printf ("Usage: %s [OPTION...]\n", basename (arg0)); + printf ("-p, --pluginpath=%-21s plug-in directory\n", SLADD_PLUGIN_PATH); + printf ("-R, --resultpath=%-21s results directory\n", SLADD_RESULT_PATH); + printf ("-s, --show=plugins|jobs| display status\n" + "-r, --run=pluginid run a job\n" + "-h, --help display this help\n"); + + _exit (0); +} + +static void init_cmdline (int argc, char ** argv, sladd_config_t *config) +{ + assert(config); + assert(argv); + assert(argc>0); + + std::string show, pluginpath, command; + int option_index = 0; + + static const struct option long_options[] = { + {"pluginpath", 1, NULL, 'p'}, + {"resultpath", 1, NULL, 'R'}, + {"show", 1, NULL, 's'}, + {"run", 1, NULL, 'r'}, + {"help", 0, NULL, 'h'}, + {NULL, 0, NULL, 0} + }; + + while (1) + { + int i = getopt_long (argc, argv, "hp:R:r:s:", long_options, &option_index); + if (i == -1) + break; + + switch (i) { + case 'h': + print_help (argv[0]); /* never returns */ + break; + case 'p': + config->pluginpath = optarg; + break; + case 'R': + config->resultpath=optarg; + break; + case 'r': + command = optarg; + break; + case 's': + show = optarg; + break; + } + } + + if (!show.empty()) + { + config->command = 's'; + config->arg = show; + } + else if (!command.empty()) + { + config->command = 'r'; + config->arg = command; + } + + if (!config->command) + print_help (argv[0]); +} + +static int init_plugins (sladd_config_t *config) +{ + assert(config); + + struct stat statbuf; + if (stat (config->pluginpath.c_str(), &statbuf) < 0) + { + PRINTF("init_plugins(): stat(%s) error\n", config->pluginpath.c_str()); + return -1; + } + if (!S_ISDIR (statbuf.st_mode)) + { + PRINTF("init_plugins(): pluginpath is not a directory\n"); + return -1; + } + + DIR *dir = opendir (config->pluginpath.c_str()); + if (!dir) + { + PRINTF("can't opendir() plugin directory %s: %s\n", config->pluginpath.c_str(), strerror (errno)); + return -1; + } + + struct dirent * entry; + while ((entry = readdir (dir))) + { + if(! strcmp(entry->d_name, ".")) continue; + if(! strcmp (entry->d_name, "..")) continue; + + std::string tmppath=config->pluginpath+'\\'+entry->d_name; + if (!stat (tmppath.c_str(), &statbuf) && S_ISDIR (statbuf.st_mode)) + { + tmppath+="\\plugin.xml"; + if (!stat (tmppath.c_str(), &statbuf) && S_ISREG (statbuf.st_mode)) + { + if(load_plugin (tmppath.c_str(), config) < 0) + { + PRINTF("could not load %s\n", tmppath.c_str()); + } + } + } + } + + closedir (dir); + + return 0; +} + +static sladd_config_t* init(int argc, char ** argv) +{ + sladd_config_t *config = new sladd_config_t; + init_cmdline (argc, argv, config); + if(init_plugins (config) < 0) + { + PRINTF("could not init plugins\n"); + delete config; + return NULL; + } + + if(!doj::mkdir(config->resultpath)) + { + PRINTF("could not create result directory: %s\n", config->resultpath.c_str()); + delete config; + return NULL; + } + + return config; +} + int main (int argc, char ** argv) { try { Modified: trunk/winslad/struct.h =================================================================== --- trunk/winslad/struct.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/struct.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,3 +1,26 @@ +/* Microsoft Windows SLAD Version 1.0 + + Description: Windows Security Local Audit Daemon/Distributor runs + local security checks for later evaluation by OpenVAS. + Authors: Dirk Jagdmann + + Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH + Hornemannstr. 11-13, 31137 Hildesheim, Germany + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2 or later, + as published by the Free Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +*/ + #ifndef __struct_h_included__ #define __struct_h_included__ Deleted: trunk/winslad/util.cpp =================================================================== --- trunk/winslad/util.cpp 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/util.cpp 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,88 +0,0 @@ -#include -#include -#include -#include - -#include "debug.h" -#include "struct.h" - -int enqueue (void *** array, void * data) { - int elements = 0; - - if (*array) - for (elements = 0; array[0][elements]; elements++); - void **tmp = (void**) realloc (*array, (elements+2) * sizeof (void *)); - if (tmp) { - *array = tmp; - (*array)[elements] = data; - (*array)[elements+1] = NULL; - return 0; - } else - return 1; -} - -void findplugin (const char * command, sladd_config_t * config, - slad_plugin_t ** plugin, slad_plugin_set_t ** set, - slad_plugin_entry_t ** entry) { - char * tmpstring, * pname, * sname, * ename = NULL; - int p_num = 0, s_num = 0, e_num = 0; - int len; - - *plugin = NULL; - *set = NULL; - *entry = NULL; - - if (!(config->plugins)) - { - PRINTF("findplugin(): could not find any plugins\n"); - return; - } - - pname = tmpstring = strdup (command); - if (!pname) - { - PRINTF("findplugin(): could not strdup command\n"); - return; - } - - len = strlen (pname); - // strip white spaces at the beginning - while (*pname && isspace(*pname)) { - len--; - pname++; - } - // strip white spaces at the end - while (len && isspace (pname[len-1])) { - len--; - pname[len] = 0; - } - - sname = strchr (pname, ':'); - if (sname) { - *sname = 0; - sname++; - - ename = strchr (sname, ':'); - if (ename) { - *ename = 0; - ename++; - } - } - - for (p_num = 0; (*plugin = config->plugins[p_num]); p_num++) - if (!strcasecmp ((*plugin)->name, pname)) { - if (!sname) - return; - for (s_num = 0; (*set = (*plugin)->sets[s_num]); s_num++) - if (!strcasecmp ((*set)->name, sname)) { - if (!ename) return; - for (e_num = 0; (*entry = (*set)->entries[e_num]); e_num++) - if (!strcasecmp ((*entry)->name, ename)) { - free (tmpstring); - return; - } - } - } - - free (tmpstring); -} Deleted: trunk/winslad/util.h =================================================================== --- trunk/winslad/util.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/util.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,11 +0,0 @@ -#ifndef __util_h_included__ -#define __util_h_included__ - -#include "struct.h" - -int enqueue (void *** array, void * data); -void findplugin (const char * command, sladd_config_t * config, - slad_plugin_t ** plugin, slad_plugin_set_t ** set, - slad_plugin_entry_t ** entry); - -#endif Modified: trunk/winslad/xml.cpp =================================================================== --- trunk/winslad/xml.cpp 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/xml.cpp 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,3 +1,26 @@ +/* Microsoft Windows SLAD Version 1.0 + + Description: Windows Security Local Audit Daemon/Distributor runs + local security checks for later evaluation by OpenVAS. + Authors: Dirk Jagdmann + + Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH + Hornemannstr. 11-13, 31137 Hildesheim, Germany + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2 or later, + as published by the Free Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +*/ + #include #include #include @@ -7,7 +30,6 @@ #include "debug.h" #include "struct.h" -#include "util.h" #ifndef XMLCALL #define XMLCALL @@ -64,6 +86,23 @@ ST_PLUGINSETENTRYRUNASGROUP }; +static int enqueue (void *** array, void * data) +{ + int elements = 0; + + if (*array) + for (elements = 0; array[0][elements]; elements++); + void **tmp = (void**) realloc (*array, (elements+2) * sizeof (void *)); + if (tmp) + { + *array = tmp; + (*array)[elements] = data; + (*array)[elements+1] = NULL; + return 0; + } + return 1; +} + const char * getattr (const char * name, const char ** attr) { int i; Deleted: trunk/winslad/xml.h =================================================================== --- trunk/winslad/xml.h 2009-03-31 21:50:25 UTC (rev 2966) +++ trunk/winslad/xml.h 2009-03-31 22:20:56 UTC (rev 2967) @@ -1,8 +0,0 @@ -#ifndef __xml_h_included__ -#define __xml_h_included__ - -#include "struct.h" - -int load_plugin (const char * cfgname, sladd_config_t * config); - -#endif From scm-commit at wald.intevation.org Wed Apr 1 02:34:43 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 02:34:43 +0200 (CEST) Subject: [Openvas-commits] r2968 - in trunk/winslad: . john Message-ID: <20090401003443.73AC94079E@pyrosoma.intevation.org> Author: doj Date: 2009-04-01 02:34:42 +0200 (Wed, 01 Apr 2009) New Revision: 2968 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp trunk/winslad/john/plugin.xml trunk/winslad/struct.h Log: plugins can be executed Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-03-31 22:20:56 UTC (rev 2967) +++ trunk/winslad/TODO.txt 2009-04-01 00:34:42 UTC (rev 2968) @@ -4,14 +4,5 @@ + http://www.kpym.com/2/kpym/index.htm + http://www.itefix.no/i2/taxonomy/term/33 -- Ausführungsergebnisse werden als File gespeichert -- Prozess starten, chdir to work directory, stdout nach file umleiten - + http://support.microsoft.com/kb/q190351/ - + http://www.codeproject.com/KB/threads/redir.aspx - + http://www.codeproject.com/KB/threads/consolepipe.aspx - + CreateFile http://msdn.microsoft.com/en-us/library/aa363858(VS.85).aspx - - nach start ausgabe von "200" - beim Start check ob Ergebnis schon vorliegt, wenn ja ausgabe von "403" - File wird mit "R:" geschrieben - nach Beenden des Programs nach "T:" umbenannt +- background Prozess +- find correct path to cmd.exe Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-03-31 22:20:56 UTC (rev 2967) +++ trunk/winslad/client.cpp 2009-04-01 00:34:42 UTC (rev 2968) @@ -37,6 +37,31 @@ #include "foreach.hpp" #include "path.hpp" +/** Displays the error number and corresponding message. + @author: http://support.microsoft.com/kb/q190351/ +*/ +void DisplayError(char *pszAPI) +{ + LPVOID lpvMessageBuffer; + CHAR szPrintBuffer[512]; + DWORD nCharsWritten; + + FormatMessage( + FORMAT_MESSAGE_ALLOCATE_BUFFER|FORMAT_MESSAGE_FROM_SYSTEM, + NULL, GetLastError(), + MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), + (LPTSTR)&lpvMessageBuffer, 0, NULL); + + wsprintf(szPrintBuffer, + "ERROR: API = %s.\n error code = %d.\n message = %s.\n", + pszAPI, GetLastError(), (char *)lpvMessageBuffer); + + WriteConsole(GetStdHandle(STD_OUTPUT_HANDLE),szPrintBuffer, + lstrlen(szPrintBuffer),&nCharsWritten,NULL); + + LocalFree(lpvMessageBuffer); +} + static int show_plugins (sladd_config_t * config) { assert(config); @@ -182,98 +207,150 @@ static int start_plugin(slad_plugin_t * p, slad_plugin_set_t * s, slad_plugin_entry_t * e, sladd_config_t * config) { + if(!p) return -1; + if(!e) return -2; + if(!config) return -3; + + const std::string pluginName=std::string(p->name)+':'+s->name+':'+e->name; + const std::string pluginPath=config->pluginpath+'\\'+p->path; #if 0 - char path[256]; - char * argv[MAX_ARGV], * cmdline; - int argc, i; - char msg[MAX_MSG]; - sladd_job_t * job = NULL; - struct stat statbuf; - pid_t pid; - struct passwd * passwd = NULL; - struct group * group = NULL; - char pluginname[1024]; + PRINTF("pluginName: %s\n", pluginName.c_str()); + PRINTF("path: %s\n", pluginPath.c_str()); + PRINTF("binary: %s\n", e->binary); + PRINTF("cmdline: %s\n", e->cmdline); +#endif - snprintf (pluginname, sizeof(pluginname), "%s:%s:%s", p->name, s->name, e->name); + std::string resultFN=std::string("R$")+plugin2filename(pluginName); + const std::string resultPath=config->resultpath+'\\'+resultFN; + resultFN[0]='T'; + const std::string finishedPath=config->resultpath+'\\'+resultFN; - for (job = jobs; job; job = job->next) - if (!strcasecmp (pluginname, job->pluginid)) - break; + // check if result file already exists + if(doj::isFile(finishedPath)) + { + printf(MSG_ALREADY); + return 1; + } - if (job) { - write (socket, MSG_ALREADY, strlen (MSG_ALREADY)); - return -1; - } + // \todo create background process + if(0) + { - strcpy (path, config->pluginpath); - if (p->path) { - strcat (path, "/"); - strcat (path, p->path); - } - strcat (path, "/"); - strcat (path, e->binary); - if (stat (path, &statbuf)) { - snprintf (msg, sizeof(msg), MSG_CANTRUN " - stat(%s): %s\n", - path, strerror (errno)); - write (socket, msg, strlen (msg)); - return -1; - } - if (!S_ISREG (statbuf.st_mode)) { - snprintf (msg, sizeof(msg), MSG_CANTRUN " - %s is not a regular file\n", path); - write (socket, msg, strlen (msg)); - return -1; - } - if (!(statbuf.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) { - snprintf (msg, sizeof(msg), MSG_CANTRUN " - %s is not executable\n", path); - write (socket, msg, strlen (msg)); - return -1; - } + printf(MSG_OK); + return 0; + } - argv[0] = path; - for (argc = 1, cmdline = e->cmdline; argc < MAX_ARGV - 1; cmdline = NULL) - if (!(argv[argc++] = strtok (cmdline, " \t\n"))) - break; - argv[MAX_ARGV-1] = NULL; + std::string cmd; - if (e->runasuser) - passwd = getpwnam (e->runasuser); - if (e->runasgroup) - group = getgrnam (e->runasgroup); + // check for batch files + LPCTSTR lpApplicationName=NULL; + const std::string binary=e->binary; + if(binary.size()>4 && binary[binary.size()-4]=='.') + { + std::string ext; + ext+=static_cast(tolower(binary[binary.size()-3])); + ext+=static_cast(tolower(binary[binary.size()-2])); + ext+=static_cast(tolower(binary[binary.size()-1])); + if(ext=="bat" || ext=="cmd" || ext=="btm") + { + // \todo find correct path to cmd.exe + lpApplicationName="c:\\windows\\system32\\cmd.exe"; + cmd="/c "; + } + } -#ifdef DOJDEBUG - switch (pid = commfork (socket, pluginname)) { -#else - switch (pid = commfork (pluginname)) { + cmd+=pluginPath+'\\'+e->binary+' '+e->cmdline; +#if 0 + PRINTF("%s %s > %s\n", + lpApplicationName ? lpApplicationName : "", + cmd.c_str(), + resultFN.c_str()); #endif - case 0: - if (group) - setgid (group->gr_gid); - if (passwd) - setuid (passwd->pw_uid); - /* no provileged operations after this point */ - for (i=3; i < FD_SETSIZE; i++) - close (i); - PRINTF("execvp(%s) pid=%i\n", argv[0], getpid()); - execvp (argv[0], argv); - snprintf (msg, sizeof(msg), "execvp(): %s\n", strerror (errno)); - write (socket, msg, strlen (msg)); - _exit(1); - case -1: - write (socket, MSG_CANTRUN " - fork error\n", strlen (MSG_CANTRUN)+14); + // Info on creating console processes with redirected handles: http://support.microsoft.com/kb/q190351/ + + // Info on CreateFile: http://msdn.microsoft.com/en-us/library/aa363858(VS.85).aspx + + // enable the file to be inherited + SECURITY_ATTRIBUTES SecAttr; memset(&SecAttr, 0, sizeof(SecAttr)); + SecAttr.nLength=sizeof(SecAttr); + SecAttr.bInheritHandle=TRUE; + + // open result file for writing + HANDLE result_h=CreateFile( + resultPath.c_str(), + GENERIC_WRITE, + FILE_SHARE_READ, + &SecAttr, + CREATE_ALWAYS, + FILE_ATTRIBUTE_NORMAL, + NULL // hTemplateFile + ); + if(result_h == INVALID_HANDLE_VALUE) + { + DisplayError("CreateFile"); + PRINTF("CreateFile(%s) failed\n", resultPath.c_str()); return -1; - break; - default: - snprintf (msg, sizeof(msg), "%s %s\n", MSG_OK, p->desc); - write (socket, msg, strlen (msg)); + } + + // Info on CreateProcess: http://msdn.microsoft.com/en-us/library/ms682425(VS.85).aspx + + // set result file as STDOUT, STDERR for new Process + STARTUPINFO StartupInfo; memset(&StartupInfo, 0, sizeof(StartupInfo)); + StartupInfo.dwFlags=STARTF_USESTDHANDLES; + StartupInfo.hStdInput=GetStdHandle(STD_INPUT_HANDLE); + StartupInfo.hStdOutput=result_h; + StartupInfo.hStdError=result_h; + + PROCESS_INFORMATION ProcInfo; memset(&ProcInfo, 0, sizeof(ProcInfo)); + + bool runSuccess=false; + + if(CreateProcess( + lpApplicationName, + strdup(cmd.c_str()), // I know, memory leak here, but for this one-shot program it is not relevant + NULL, // LPSECURITY_ATTRIBUTES lpProcessAttributes, + NULL, // LPSECURITY_ATTRIBUTES lpThreadAttributes, + TRUE, // bInheritHandles, + NORMAL_PRIORITY_CLASS, // dwCreationFlags, + NULL, // lpEnvironment, + pluginPath.c_str(), // lpCurrentDirectory, + &StartupInfo, + &ProcInfo + ) + ) + { + PRINTF("Created Process %i ; Thread %i\n", ProcInfo.dwProcessId, ProcInfo.dwThreadId); + + // Wait until child process exits. + WaitForSingleObject( ProcInfo.hProcess, INFINITE ); + + // Close process and thread handles. + CloseHandle( ProcInfo.hProcess ); + CloseHandle( ProcInfo.hThread ); + + runSuccess=true; + } + else + DisplayError("CreateProcess"); + + // close result file + if(!CloseHandle(result_h)) + DisplayError("CloseHandle"); + + // if child process executed successfully, rename result file + if(runSuccess) + { + // rename result file to indicate this job is done + unlink(finishedPath.c_str()); + rename(resultPath.c_str(), finishedPath.c_str()); return 0; } - } -#else - return 0; -#endif + // delete (empty) result file + unlink(resultPath.c_str()); + return 1; } static void findplugin (const std::string& pluginName, sladd_config_t * config, Modified: trunk/winslad/john/plugin.xml =================================================================== --- trunk/winslad/john/plugin.xml 2009-03-31 22:20:56 UTC (rev 2967) +++ trunk/winslad/john/plugin.xml 2009-04-01 00:34:42 UTC (rev 2968) @@ -1,7 +1,7 @@ - + Execute John-the-Ripper to find weak user passwords Fast-Crack - tries only usernames and variations of these Modified: trunk/winslad/struct.h =================================================================== --- trunk/winslad/struct.h 2009-03-31 22:20:56 UTC (rev 2967) +++ trunk/winslad/struct.h 2009-04-01 00:34:42 UTC (rev 2968) @@ -38,8 +38,6 @@ #define MSG_CANTRUN "500 internal error" #define MSG_MAXCONNS "501 Connection limit reached\n" -#define RECVBUFSIZE 1024 - /* * A plugin entry is the atom of a slad plugin. It contains the necessary * information to run a plugin. @@ -98,33 +96,4 @@ sladd_config_t(); }; -#if 0 - -/* - * Information about a job - */ - -typedef struct sladd_job { - pid_t pid; /* Pid the job is running at */ - int running; /* 0=completed, 1=forked, 2=exec'ed */ - int socket; /* The socket for reading data */ - char * pluginid; /* The plugin this belongs to */ - char * output; /* The output the program had */ - int outputlen; /* Length of output */ - struct sladd_job * next; /* For linked list usage */ -} sladd_job_t; - -/* - * A structure for the information related to command connections - */ - -typedef struct receive_buffer { - int socket; /* The socket accept() gave */ - char recvbuf[RECVBUFSIZE]; /* A receive buffer in case of fragments */ - int recvlen; /* The number of characters buffered */ - time_t last_event; /* time() of the last event on the socket */ -} receive_buffer_t; - #endif - -#endif From scm-commit at wald.intevation.org Wed Apr 1 08:30:08 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 08:30:08 +0200 (CEST) Subject: [Openvas-commits] r2969 - in trunk/openvas-manager: . src/tests Message-ID: <20090401063008.8F56A407B0@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-01 08:30:08 +0200 (Wed, 01 Apr 2009) New Revision: 2969 Modified: trunk/openvas-manager/ChangeLog trunk/openvas-manager/src/tests/CMakeLists.txt Log: * src/tests/CMakeLists.txt: Added missing GLIB_CFLAGS to target properties. Modified: trunk/openvas-manager/ChangeLog =================================================================== --- trunk/openvas-manager/ChangeLog 2009-04-01 00:34:42 UTC (rev 2968) +++ trunk/openvas-manager/ChangeLog 2009-04-01 06:30:08 UTC (rev 2969) @@ -1,3 +1,7 @@ +2009-04-01 Michael Wiegand + + * src/tests/CMakeLists.txt: Added missing GLIB_CFLAGS to target properties. + 2009-03-31 Matthew Mundell * src/tests/common.c (env_authenticate): Remove RATS annotation. Modified: trunk/openvas-manager/src/tests/CMakeLists.txt =================================================================== --- trunk/openvas-manager/src/tests/CMakeLists.txt 2009-04-01 00:34:42 UTC (rev 2968) +++ trunk/openvas-manager/src/tests/CMakeLists.txt 2009-04-01 06:30:08 UTC (rev 2969) @@ -284,25 +284,25 @@ add_executable (strip_space_0 strip_space_0.c) target_link_libraries (strip_space_0 string) -set_target_properties (strip_space_0 PROPERTIES COMPILE_FLAGS "-I ..") +set_target_properties (strip_space_0 PROPERTIES COMPILE_FLAGS "-I .. ${GLIB_CFLAGS}") set_target_properties (strip_space_0 PROPERTIES LINK_FLAGS "${GLIB_LDFLAGS}") ADD_TEST (strip_space_0 strip_space_0) add_executable (strip_space_1 strip_space_1.c) target_link_libraries (strip_space_1 string) -set_target_properties (strip_space_1 PROPERTIES COMPILE_FLAGS "-I ..") +set_target_properties (strip_space_1 PROPERTIES COMPILE_FLAGS "-I .. ${GLIB_CFLAGS}") set_target_properties (strip_space_1 PROPERTIES LINK_FLAGS "${GLIB_LDFLAGS}") ADD_TEST (strip_space_1 strip_space_1) add_executable (strip_space_2 strip_space_2.c) target_link_libraries (strip_space_2 string) -set_target_properties (strip_space_2 PROPERTIES COMPILE_FLAGS "-I ..") +set_target_properties (strip_space_2 PROPERTIES COMPILE_FLAGS "-I .. ${GLIB_CFLAGS}") set_target_properties (strip_space_2 PROPERTIES LINK_FLAGS "${GLIB_LDFLAGS}") ADD_TEST (strip_space_2 strip_space_2) add_executable (strip_space_3 strip_space_3.c) target_link_libraries (strip_space_3 string) -set_target_properties (strip_space_3 PROPERTIES COMPILE_FLAGS "-I ..") +set_target_properties (strip_space_3 PROPERTIES COMPILE_FLAGS "-I .. ${GLIB_CFLAGS}") set_target_properties (strip_space_3 PROPERTIES LINK_FLAGS "${GLIB_LDFLAGS}") ADD_TEST (strip_space_3 strip_space_3) From scm-commit at wald.intevation.org Wed Apr 1 09:12:10 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 09:12:10 +0200 (CEST) Subject: [Openvas-commits] r2970 - trunk/openvas-plugins/scripts Message-ID: <20090401071210.A9859407B2@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-01 09:11:42 +0200 (Wed, 01 Apr 2009) New Revision: 2970 Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl Log: Minor changes, just set the script name Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-01 06:30:08 UTC (rev 2969) +++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-01 07:11:42 UTC (rev 2970) @@ -2,7 +2,7 @@ # $Id$ # Description: This script ensure that the Sybase AEServer management console is running # -# sybase_easerver_mgmt_detect.nasl +# remote-detect-sybase-easerver-mgmt.nasl # # Author: # Christian Eric Edjenguele Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl 2009-04-01 06:30:08 UTC (rev 2969) +++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl 2009-04-01 07:11:42 UTC (rev 2970) @@ -2,7 +2,7 @@ # $Id$ # Description: This script ensure that the Sybase EAServer is installed and running # -# sybase_easerver_detect.nasl +# remote-detect-sybase-easerver.nasl # # Author: # Christian Eric Edjenguele From scm-commit at wald.intevation.org Wed Apr 1 09:55:41 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 09:55:41 +0200 (CEST) Subject: [Openvas-commits] r2971 - in trunk/openvas-libraries: . libopenvas Message-ID: <20090401075541.5CB20407A6@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 09:55:40 +0200 (Wed, 01 Apr 2009) New Revision: 2971 Modified: trunk/openvas-libraries/ChangeLog trunk/openvas-libraries/libopenvas/store.c Log: Reformatting and documentation work in store module. * libopenvas/store.c: Reformatting, doc. Modified: trunk/openvas-libraries/ChangeLog =================================================================== --- trunk/openvas-libraries/ChangeLog 2009-04-01 07:11:42 UTC (rev 2970) +++ trunk/openvas-libraries/ChangeLog 2009-04-01 07:55:40 UTC (rev 2971) @@ -1,3 +1,9 @@ +2009-04-01 Felix Wolfsteller + + Reformatting and documentation work in store module. + + * libopenvas/store.c: Reformatting, doc. + 2009-03-31 Felix Wolfsteller Disabled checking for non-printable chars when posting security Modified: trunk/openvas-libraries/libopenvas/store.c =================================================================== --- trunk/openvas-libraries/libopenvas/store.c 2009-04-01 07:11:42 UTC (rev 2970) +++ trunk/openvas-libraries/libopenvas/store.c 2009-04-01 07:55:40 UTC (rev 2971) @@ -1,6 +1,6 @@ /* OpenVAS * $Id$ - * Description: Undocumented module. + * Description: Functions related to plugin cache and. * * Authors: * Renaud Deraison (Original pre-fork development) @@ -23,6 +23,19 @@ * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. */ +/** @file + * OpenVAS-Server employs a plugin cache to avoid parsing all known nvts at + * start-up. + * + * The cache consists of a .desc file for each script (e.g. cache file of + * nvts/xyz.nasl is nvts/xyz.nas.desc). + * + * The cache is used as followed: give the store a file path (store_load_plugin) + * and receive the plugin as arglist. Under nice conditions the information + * contained in the cache file can be used. Under not so nice conditions, the + * script will be parsed and a new cache file will be written. + */ + #include #include #include @@ -43,19 +56,18 @@ #include "plugutils_internal.h" /*-----------------------------------------------------------------------------*/ -static char * arglist2str(struct arglist * arg) +static char * +arglist2str(struct arglist * arg) { char * ret; int sz; - - - + if(arg == NULL) return estrdup(""); - + if(arg->name == NULL) return estrdup(""); - + sz = (strlen(arg->name) + 1) * 10; ret = emalloc(sz); strncpy(ret, arg->name, sz - 1); @@ -64,14 +76,14 @@ return ret; while(arg->next != NULL) - { + { if(arg->name == NULL) return ret; if(strlen(arg->name) + 3 + strlen(ret) >= sz ) - { - sz = strlen(arg->name) + 3 + strlen(ret) * 2; - ret = erealloc(ret, sz); - } + { + sz = strlen(arg->name) + 3 + strlen(ret) * 2; + ret = erealloc(ret, sz); + } strncat(ret, ", ", sz - 1); /* RATS: ignore */ strncat(ret, arg->name, sz - 1); /* RATS: ignore */ arg = arg->next; @@ -92,8 +104,7 @@ } ret = emalloc ( sizeof(struct arglist) ); - - + while((t = strchr(str, ',')) != NULL) { t[0] = 0; @@ -108,15 +119,16 @@ while(str[0]==' ')str++; if(str[0] != '\0') arg_add_value(ret, str, ARG_INT, 0, (void*)1); - return ret; } /** - * Copies content of one string into the other. + * @brief Copies content of one string into the other. + * * Does not check nul-termination. + * * @param str Source string, might be NULL. * @param dst Destination string. * @param sz max number of bytes to copy into dst. @@ -126,23 +138,25 @@ */ static int safe_copy(char * str, char * dst, int sz, char * path, char * item) { - if(str == NULL) /* empty strings are OK */ + if (str == NULL) /* empty strings are OK */ { - dst[0] = '\0'; - return 0; + dst[0] = '\0'; + return 0; } - - if(strlen(str) >= sz) - { - fprintf(stderr, "openvas-libraries/libopenvas/store.c: %s has a too long %s (%ld)\n", path, item, (long)strlen(str)); - return -1; - } + + if (strlen(str) >= sz) + { + fprintf(stderr, "openvas-libraries/libopenvas/store.c: %s has a too long %s (%ld)\n", path, item, (long)strlen(str)); + return -1; + } strcpy(dst, str); /* RATS: ignore */ return 0; } -/* - * store_dir holds the directory name for the cache. If run with older +/** + * @brief Holds the directory name for the cache. + * + * If run with older * installations of OpenVAS (<=2.0.0), then it is initialized with * the NVT directory (server preference "plugins_folder") * and appends "/.desc/". For newer versions it is the directory @@ -162,7 +176,8 @@ * In any other case than 0 @ref store_dir is * not set and a error is printed to stderr */ -int store_init(char * dir) +int +store_init (const char * dir) { struct stat st; int i = 0; @@ -172,7 +187,8 @@ return -3; } - for (;i < sizeof(store_dir) && dir[i];i ++) ; + for (;i < sizeof(store_dir) && dir[i];i ++) + ; if (i == sizeof(store_dir)) { fprintf(stderr, "store_init(): path too long with more than %d characters\n", i); @@ -184,7 +200,7 @@ return -2; } - strncpy(store_dir, dir, sizeof(store_dir)); + strncpy (store_dir, dir, sizeof(store_dir)); return 0; } @@ -195,8 +211,11 @@ * Don't use this method anymore. It is here only for legacy to be compatible with * openvas-server <= 2.0.0. * The new method to use is @ref store_init . + * + * @return Always 0. */ -int store_init_sys(char * dir) +int +store_init_sys (char * dir) { snprintf(store_dir, sizeof(store_dir), "%s/.desc", dir); /* RATS: ignore */ if((mkdir(store_dir, 0755) < 0) && (errno != EEXIST)) @@ -204,7 +223,7 @@ fprintf(stderr, "mkdir(%s) : %s\n", store_dir, strerror(errno)); return -1; } - + return 0; } @@ -234,30 +253,31 @@ * @return -1 upon failure, 0 for success. */ -static int store_get_plugin_f(struct plugin * plugin, struct pprefs * pprefs, - gchar * desc_file) +static int +store_get_plugin_f (struct plugin * plugin, struct pprefs * pprefs, + gchar * desc_file) { int fd; struct plugin * p; struct stat st; int len; - + bzero(plugin, sizeof(*plugin)); plugin->id = -1; - + if(desc_file == NULL || desc_file[0] == '\0') return -1; fd = open(desc_file, O_RDONLY); if(fd < 0) return -1; - + if(fstat(fd, &st) < 0) - { + { perror("fstat "); close(fd); return -1; - } + } if(st.st_size == 0) { @@ -274,10 +294,8 @@ return -1; } - bcopy(p, plugin, sizeof(struct plugin)); - if(p->has_prefs && pprefs != NULL) { bcopy((char*)p + sizeof(struct plugin), pprefs, sizeof(struct pprefs) * MAX_PREFS); @@ -313,122 +331,122 @@ * * @return Pointer to plugin as arglist or NULL. */ -struct arglist * store_load_plugin(char * dir, char * file, - struct arglist * prefs) +struct arglist * +store_load_plugin (char * dir, char * file, struct arglist * prefs) { - gchar * dummy = g_build_filename(store_dir, file, NULL); - gchar * desc_file = g_strconcat(dummy, ".desc", NULL); - gchar * plug_file = g_build_filename(dir, file, NULL); - gchar * asc_file = g_strconcat(dummy, ".asc", NULL); - struct plugin p; - struct pprefs pp[MAX_PREFS]; - - struct arglist * ret; - int i; - struct stat stat_plug, - stat_desc, - stat_asc; - struct arglist * al; - - g_free(dummy); + gchar * dummy = g_build_filename (store_dir, file, NULL); + gchar * desc_file = g_strconcat (dummy, ".desc", NULL); + gchar * plug_file = g_build_filename (dir, file, NULL); + gchar * asc_file = g_strconcat (dummy, ".asc", NULL); + struct plugin p; + struct pprefs pp[MAX_PREFS]; - if (desc_file == NULL || asc_file == NULL || plug_file == NULL) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); - return NULL; // g_build_filename failed - } + struct arglist * ret; + struct arglist * al; - bzero(pp, sizeof(pp)); + struct stat stat_plug; + struct stat stat_desc; + struct stat stat_asc; - /* Plugin and cache file have to exist */ - if ( stat(plug_file, &stat_plug) < 0 || stat(desc_file, &stat_desc) < 0) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); - return NULL; - } + int i; - /* - * Look if the plugin (.nasl/.oval etc) or the signature (.asc) is newer than - * the description (.desc). If that's the case also make sure that - * the plugin and signatures mtime is not in the future... - */ - if( stat_plug.st_mtime > stat_desc.st_mtime - && stat_asc.st_mtime > stat_desc.st_mtime ) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); - return NULL; - } + g_free (dummy); - /* - * Look if a signature file (.asc) exists. If so and it is newer than - * the description (.desc) (and the mtime is not in the future), return NULL. - */ - if( stat(asc_file, &stat_asc) - && stat_asc.st_mtime > stat_desc.st_mtime - && stat_asc.st_mtime <= time(NULL) ) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); - return NULL; - } + if (desc_file == NULL || asc_file == NULL || plug_file == NULL) + { + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); + return NULL; // g_build_filename failed + } - if((store_get_plugin_f(&p, pp, desc_file) < 0) || - (p.magic != MAGIC) || - (p.oid == NULL)) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); - return NULL; - } + bzero(pp, sizeof(pp)); - ret = emalloc(sizeof(struct arglist)); - plug_set_oid(ret, p.oid); - plug_set_category(ret, p.category); - plug_set_cachefile(ret, desc_file); - plug_set_path(ret, p.path); - plug_set_family(ret, p.family, NULL); - plug_set_sign_key_ids(ret, p.sign_key_ids); + /* Plugin and cache file have to exist */ + if (stat(plug_file, &stat_plug) < 0 || stat(desc_file, &stat_desc) < 0) + { + g_free(desc_file); + g_free(asc_file); + g_free(plug_file); + return NULL; + } - al = str2arglist(p.required_ports); - if ( al != NULL ) arg_add_value(ret, "required_ports", ARG_ARGLIST, -1, al); + /* Look if the plugin (.nasl/.oval etc) or the signature (.asc) is newer than + * the description (.desc). If that's the case also make sure that + * the plugin and signatures mtime is not in the future... */ + if ( stat_plug.st_mtime > stat_desc.st_mtime + || stat_asc.st_mtime > stat_desc.st_mtime) + { + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); + return NULL; + } - al = str2arglist(p.required_keys); - if ( al != NULL ) arg_add_value(ret, "required_keys", ARG_ARGLIST, -1, al); + /* Look if a signature file (.asc) exists. If so and it is newer than + * the description (.desc) (and the mtime is not in the future), return NULL. */ + if (stat(asc_file, &stat_asc) + && stat_asc.st_mtime > stat_desc.st_mtime + && stat_asc.st_mtime <= time(NULL) ) + { + g_free(desc_file); + g_free(asc_file); + g_free(plug_file); + return NULL; + } - al = str2arglist(p.required_udp_ports); - if ( al != NULL ) arg_add_value(ret, "required_udp_ports", ARG_ARGLIST, -1, al) -; + if ((store_get_plugin_f(&p, pp, desc_file) < 0) || + (p.magic != MAGIC) || + (p.oid == NULL)) + { + g_free(desc_file); + g_free(asc_file); + g_free(plug_file); + return NULL; + } - al = str2arglist(p.excluded_keys); - if ( al != NULL ) arg_add_value(ret, "excluded_keys", ARG_ARGLIST, -1, al); + ret = emalloc (sizeof(struct arglist)); + plug_set_oid (ret, p.oid); + plug_set_category (ret, p.category); + plug_set_cachefile (ret, desc_file); + plug_set_path (ret, p.path); + plug_set_family (ret, p.family, NULL); + plug_set_sign_key_ids (ret, p.sign_key_ids); - al = str2arglist(p.dependencies); - if ( al != NULL ) arg_add_value(ret, "DEPENDENCIES", ARG_ARGLIST, -1, al); + al = str2arglist (p.required_ports); + if (al != NULL) arg_add_value (ret, "required_ports", ARG_ARGLIST, -1, al); - - if ( p.timeout != 0 ) arg_add_value(ret, "TIMEOUT", ARG_INT, -1, GSIZE_TO_POINTER(p.timeout)); + al = str2arglist (p.required_keys); + if (al != NULL) arg_add_value (ret, "required_keys", ARG_ARGLIST, -1, al); - arg_add_value(ret, "NAME", ARG_STRING, strlen(p.name), estrdup(p.name)); + al = str2arglist (p.required_udp_ports); + if (al != NULL) arg_add_value (ret, "required_udp_ports", ARG_ARGLIST, -1, al); + al = str2arglist (p.excluded_keys); + if (al != NULL) arg_add_value (ret, "excluded_keys", ARG_ARGLIST, -1, al); - arg_add_value(ret, "preferences", ARG_ARGLIST, -1, prefs); - - if(p.has_prefs) - { - for(i=0;pp[i].type[0] != '\0';i++) - { - _add_plugin_preference(prefs, p.name, pp[i].name, pp[i].type, pp[i].dfl); - } - } + al = str2arglist (p.dependencies); + if (al != NULL) arg_add_value (ret, "DEPENDENCIES", ARG_ARGLIST, -1, al); - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); + if (p.timeout != 0) arg_add_value (ret, "TIMEOUT", ARG_INT, -1, GSIZE_TO_POINTER(p.timeout)); - return ret; + arg_add_value (ret, "NAME", ARG_STRING, strlen(p.name), estrdup(p.name)); + + arg_add_value (ret, "preferences", ARG_ARGLIST, -1, prefs); + + if (p.has_prefs) + { + for (i=0; pp[i].type[0] != '\0'; i++) + { + _add_plugin_preference (prefs, p.name, pp[i].name, pp[i].type, pp[i].dfl); + } + } + + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); + + return ret; } /** @@ -440,7 +458,8 @@ * or "x.oval". It can also be something like * "subdir1/subdir2/scriptname.nasl"). */ -void store_plugin(struct arglist * plugin, char * file) +void +store_plugin (struct arglist * plugin, char * file) { gchar * dummy = g_build_filename(store_dir, file, NULL); gchar * desc_file = g_strconcat(dummy, ".desc", NULL); @@ -561,13 +580,13 @@ if( arglist != NULL ) { char * p_name = plug_get_name(plugin); - + while(arglist->next != NULL) { char * name = arglist->name; char * dfl = arglist->value; char * type, * str; - + type = arglist->name; str = strchr(type, '/'); str[0] = '\0'; @@ -579,8 +598,7 @@ e = safe_copy(dfl, pp[num_plugin_prefs].dfl, sizeof(pp[num_plugin_prefs].dfl), path, "preference-default"); if(e < 0) return; num_plugin_prefs ++; - - + if(num_plugin_prefs >= MAX_PREFS) { fprintf(stderr, "%s: too many preferences\n", path); @@ -592,7 +610,7 @@ } } - if(num_plugin_prefs > 0) + if (num_plugin_prefs > 0) plug.has_prefs = 1; fd = open(desc_file, O_RDWR|O_CREAT|O_TRUNC, 0644); @@ -625,13 +643,14 @@ /*---------------------------------------------------------------------*/ -char * store_fetch_path(struct arglist * desc) +char * +store_fetch_path (struct arglist * desc) { - char * fname = plug_get_cachefile(desc); - static struct plugin p; - - store_get_plugin(&p, fname); - return p.path; + char * fname = plug_get_cachefile (desc); + static struct plugin p; + + store_get_plugin (&p, fname); + return p.path; } char * store_fetch_version(struct arglist * desc) @@ -735,10 +754,10 @@ char * fname = plug_get_cachefile(desc); static struct plugin p; struct arglist * ret; - + store_get_plugin(&p, fname); ret = str2arglist(p.required_keys); - return ret; + return ret; } struct arglist * store_fetch_excluded_keys(struct arglist * desc) @@ -746,36 +765,36 @@ char * fname = plug_get_cachefile(desc); static struct plugin p; struct arglist * ret; - + store_get_plugin(&p, fname); ret = str2arglist(p.excluded_keys); - return ret; + return ret; } struct arglist * store_fetch_required_ports(struct arglist * desc) { - char * fname = plug_get_cachefile(desc); + char * fname = plug_get_cachefile (desc); static struct plugin p; struct arglist * ret; - - store_get_plugin(&p, fname); - ret = str2arglist(p.required_ports); - return ret; + + store_get_plugin (&p, fname); + ret = str2arglist (p.required_ports); + return ret; } -struct arglist * store_fetch_required_udp_ports(struct arglist * desc) +struct arglist * +store_fetch_required_udp_ports (struct arglist * desc) { - char * fname = plug_get_cachefile(desc); - static struct plugin p; - struct arglist * ret; - - store_get_plugin(&p, fname); - ret = str2arglist(p.required_udp_ports); - return ret; + char * fname = plug_get_cachefile (desc); + static struct plugin p; + struct arglist * ret; + store_get_plugin (&p, fname); + ret = str2arglist (p.required_udp_ports); + return ret; } - + /*---------------------------------------------------------------------*/ #if 0 From scm-commit at wald.intevation.org Wed Apr 1 11:28:38 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 11:28:38 +0200 (CEST) Subject: [Openvas-commits] r2972 - in trunk/openvas-server: . openvasd Message-ID: <20090401092838.1F57C407F4@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 11:28:37 +0200 (Wed, 01 Apr 2009) New Revision: 2972 Modified: trunk/openvas-server/ChangeLog trunk/openvas-server/openvasd/openvasd.c Log: Added todos and fixmes in openvasd module, reformatting, doc. * openvasd/openvasd.c: Cosmetics, doc, reformatting, todos and fixmes. Modified: trunk/openvas-server/ChangeLog =================================================================== --- trunk/openvas-server/ChangeLog 2009-04-01 07:55:40 UTC (rev 2971) +++ trunk/openvas-server/ChangeLog 2009-04-01 09:28:37 UTC (rev 2972) @@ -1,3 +1,9 @@ +2009-04-01 Felix Wolfsteller + + Added todos and fixmes in openvasd module, reformatting, doc. + + * openvasd/openvasd.c: Cosmetics, doc, reformatting, todos and fixmes. + 2009-03-20 Michael Wiegand * openvasd/pluginscheduler.c (hash_fill_deps): Improved searching for Modified: trunk/openvas-server/openvasd/openvasd.c =================================================================== --- trunk/openvas-server/openvasd/openvasd.c 2009-04-01 07:55:40 UTC (rev 2971) +++ trunk/openvas-server/openvasd/openvasd.c 2009-04-01 09:28:37 UTC (rev 2972) @@ -50,6 +50,7 @@ #include #include +// FIXME: These are not needed, are they? int deny_severity = LOG_WARNING; int allow_severity = LOG_NOTICE; @@ -86,6 +87,7 @@ /** * Globals that should not be touched */ +// TODO rename (g_ suggest owned by glib) int g_max_hosts = 15; int g_max_checks = 10; struct arglist * g_options = NULL; @@ -93,6 +95,7 @@ pid_t bpf_server_pid; pid_t nasl_server_pid; +// TODO rename (g_ suggest owned by glib) int g_iana_socket; struct arglist * g_plugins; struct arglist * g_preferences; @@ -118,7 +121,6 @@ - static struct in_addr* convert_ip_addresses (char * ips) { @@ -128,12 +130,11 @@ int num = 0; int num_allocated = 256; char * orig; - + ips = orig = estrdup(ips); - + ret = emalloc((num_allocated + 1) * sizeof(struct in_addr)); - - + while ( ( t = strchr(ips, ',')) != NULL ) { t[0] = '\0'; @@ -184,25 +185,21 @@ static void dump_cfg_specs (struct arglist *prefs) { - while(prefs && prefs->next) - { - printf("%s = %s\n", prefs->name, (char*)prefs->value); - prefs = prefs->next; - } + while (prefs && prefs->next) + { + printf ("%s = %s\n", prefs->name, (char*)prefs->value); + prefs = prefs->next; + } } static void -arg_replace_value(arglist, name, type, length, value) - struct arglist * arglist; - char * name; - int type; - int length; - void * value; +arg_replace_value (struct arglist * arglist, char * name, int type, int length, + void * value) { - if(arg_get_type(arglist, name)<0) - arg_add_value(arglist, name, type, length, value); - else - arg_set_value(arglist, name, length, value); + if(arg_get_type(arglist, name)<0) + arg_add_value(arglist, name, type, length, value); + else + arg_set_value(arglist, name, length, value); } @@ -224,12 +221,12 @@ if ((fd = open ("/dev/tty", O_RDWR)) >= 0) { /* detach from any controlling terminal */ -#ifdef TIOCNOTTY +#ifdef TIOCNOTTY ioctl (fd, TIOCNOTTY) ; #endif close (fd); } - + /* no input, anymore: provide an empty-file substitute */ if ((fd = open ("/dev/null", O_RDONLY)) < 0) { log_write ("Cannot open /dev/null (%s) -- aborting\n",strerror (errno)); @@ -289,10 +286,10 @@ { if(strchr(orig_argv[0], '/') != NULL ) path = orig_argv[0]; - else + else { path = find_in_path("openvasd", 0); - if( path == NULL ) + if (path == NULL) { log_write("Could not re-start openvasd - not found\n"); _exit(1); @@ -311,8 +308,7 @@ } static void -sighup(i) - int i; +sighup (int i) { log_write("Caught HUP signal - reconfiguring openvasd\n"); restart = 1; @@ -364,13 +360,10 @@ } #endif - - /* - * Close the server thread - it is useless for us now - */ + /* Close the server thread - it is useless for us now */ close (g_iana_socket); - - if (ovas_server_ctx != NULL) /* ssl_ver != "NONE" */ + + if (ovas_server_ctx != NULL) /* ssl_ver != "NONE" */ { soc2 = ovas_server_context_attach(ovas_server_ctx, soc); if (soc2 < 0) @@ -407,10 +400,10 @@ if(((perms = auth_check_user(globals, asciiaddr, x509_dname))==BAD_LOGIN_ATTEMPT)|| !perms) { - auth_printf(globals, "Bad login attempt !\n"); - log_write("bad login attempt from %s\n", + auth_printf(globals, "Bad login attempt !\n"); + log_write("bad login attempt from %s\n", asciiaddr); - efree(&asciiaddr); + efree(&asciiaddr); goto shutdown_and_exit; } else { @@ -434,13 +427,13 @@ /* become process group leader and the like ... */ start_daemon_mode(); -wait : +wait : #ifdef ENABLE_SAVE_TESTS if(arg_get_value(globals, "RESTORE-SESSION")) arg_set_value(globals, "RESTORE-SESSION", sizeof(int),(void*)2); else arg_add_value(globals, "RESTORE-SESSION", ARG_INT, sizeof(int),(void*)2); -#endif +#endif comm_wait_order(globals); preferences_reset_cache(); plugins_set_ntp_caps(plugins, arg_get_value(globals, "ntp_caps")); @@ -449,14 +442,14 @@ e = attack_network(globals); ntp_1x_timestamp_scan_ends(globals); if(e < 0) - EXIT(0); + EXIT(0); comm_terminate(globals); if(arg_get_value(prefs, "ntp_keep_communication_alive")) { log_write("user %s : Kept alive connection", (char*)arg_get_value(globals, "user")); goto wait; - } + } } shutdown_and_exit: @@ -468,7 +461,7 @@ close(soc); } - /* kill left overs */ + /* Kill left overs */ end_daemon_mode(); EXIT(0); } @@ -477,12 +470,12 @@ static void main_loop () { - char *cert, *key, *passwd, *ca_file, *s, *ssl_ver; + char *cert, *key, *passwd, *ca_file, *s, *ssl_ver; int force_pubkey_auth; char *old_addr = 0, *asciiaddr = 0; time_t last = 0; int count = 0; - + setproctitle("waiting for incoming connections"); /* catch dead children */ nessus_signal(SIGCHLD, sighand_chld); @@ -498,7 +491,7 @@ ssl_ver = preferences_get_string(g_preferences, "ssl_version"); if (ssl_ver == NULL || *ssl_ver == '\0') ssl_ver = SSL_VER_DEF_NAME; - + if (strcasecmp(ssl_ver, "NONE") != 0) { if (nessus_SSL_init(NULL) < 0) @@ -506,11 +499,9 @@ fprintf(stderr, "Could not initialize openvas SSL!\n"); exit(1); } - /* - * In case the code is changed and main_loop is called several time, - * we initialize ssl_ctx only once - */ + /* In case the code is changed and main_loop is called several time, + * we initialize ssl_ctx only once */ if (ovas_server_ctx == NULL) { int encaps = -1; @@ -583,25 +574,29 @@ struct arglist * globals; struct arglist * my_plugins, * my_preferences; struct openvas_rules * my_rules; - - if(restart != 0) restart_openvasd(); + if (restart != 0) restart_openvasd (); + wait_for_children1(); /* prevent from an io table overflow attack against nessus */ if (asciiaddr != 0) { time_t now = time (0); /* did we reach the max nums of connect/secs ? */ - if (last == now) { - if (++ count > OPENVASD_CONNECT_RATE) { - sleep (OPENVASD_CONNECT_BLOCKER); - last = 0 ; - } - } else { - count = 0 ; - last = now ; - } - + if (last == now) + { + if (++ count > OPENVASD_CONNECT_RATE) + { + sleep (OPENVASD_CONNECT_BLOCKER); + last = 0 ; + } + } + else + { + count = 0 ; + last = now ; + } + if (old_addr != 0) { /* detect whether sombody logs in more than once in a row */ if (strcmp (old_addr, asciiaddr) == 0 && @@ -612,28 +607,28 @@ old_addr = 0 ; /* currently done by efree, as well */ } } - old_addr = asciiaddr ; - asciiaddr = 0 ; + old_addr = asciiaddr; + asciiaddr = 0; - soc = accept(g_iana_socket, (struct sockaddr *)(&address), &lg_address); - if(soc == -1)continue; + soc = accept (g_iana_socket, (struct sockaddr *)(&address), &lg_address); + if (soc == -1) continue; asciiaddr = estrdup(inet_ntoa(address.sin_addr)); -#ifdef USE_LIBWRAP +#ifdef USE_LIBWRAP { char host_name[1024]; - + hg_get_name_from_ip(address.sin_addr, host_name, sizeof(host_name)); - if(!(hosts_ctl("openvasd", host_name, asciiaddr, STRING_UNKNOWN))) - { - shutdown(soc, 2); - close(soc); - log_write("Connection from %s rejected by libwrap", asciiaddr); - continue; + if (!(hosts_ctl("openvasd", host_name, asciiaddr, STRING_UNKNOWN))) + { + shutdown (soc, 2); + close (soc); + log_write ("Connection from %s rejected by libwrap", asciiaddr); + continue; + } } - } -#endif - log_write("connection from %s\n", (char *)asciiaddr); +#endif + log_write ("connection from %s\n", (char *)asciiaddr); /* efree(&asciiaddr); */ @@ -654,22 +649,21 @@ my_preferences = g_preferences; arg_add_value(globals, "preferences", ARG_ARGLIST, -1, my_preferences); - + my_rules = /*rules_dup*/(g_rules); p_addr = emalloc(sizeof(struct sockaddr_in)); *p_addr = address; arg_add_value(globals, "client_address", ARG_PTR, -1, p_addr); - arg_add_value(globals, "rules", ARG_PTR, -1, my_rules); - + arg_add_value (globals, "rules", ARG_PTR, -1, my_rules); + /* we do not want to create an io thread, yet so the last argument is -1 */ - - if(create_process((process_func_t)server_thread, globals) < 0) - { - log_write("Could not fork - client won't be served"); - sleep (2); - } + if (create_process((process_func_t)server_thread, globals) < 0) + { + log_write ("Could not fork - client won't be served"); + sleep (2); + } close(soc); arg_free(globals); } @@ -677,7 +671,7 @@ /** - * Initialization of the network : + * Initialization of the network : * we setup the socket that will listen for incoming connections on port \ * on address \ (which are set to OPENVAS_IANA_OTP_PORT and INADDR_ANY by * default). @@ -688,16 +682,16 @@ * * @return 0 on success. Exit(1)s on failure. */ -static int +static int init_network (int port, int* sock, struct in_addr addr) { int option = 1; struct sockaddr_in address; - if((*sock = socket(AF_INET, SOCK_STREAM, 0))==-1) + if ((*sock = socket(AF_INET, SOCK_STREAM, 0))==-1) { - int ec = errno; + int ec = errno; log_write("socket(AF_INET): %s (errno = %d)\n", strerror(ec), ec); DO_EXIT(1); } @@ -724,11 +718,11 @@ } /** - * Initialize everything + * @brief Initialize everything. * * @param stop_early 1: do some initialization, 2: no initialization. */ -static int +static int init_openvasd (struct arglist * options, int first_pass, int stop_early, int be_quiet) { @@ -740,86 +734,90 @@ char * config_file = arg_get_value(options, "config_file"); struct in_addr * addr = arg_get_value(options, "addr"); char * str; - + preferences_init(config_file, &preferences); - + if((str = arg_get_value(preferences, "max_hosts")) != NULL) - { - g_max_hosts = atoi(str); - if( g_max_hosts <= 0 ) g_max_hosts = 15; - } - + { + g_max_hosts = atoi (str); + if (g_max_hosts <= 0) + g_max_hosts = 15; + } + if((str = arg_get_value(preferences, "max_checks")) != NULL) - { - g_max_checks = atoi(str); - if( g_max_checks <= 0 )g_max_checks = 10; - } - - - - arg_add_value(preferences, "config_file", ARG_STRING, strlen(config_file), estrdup(config_file)); - log_init(arg_get_value(preferences, "logfile")); - + { + g_max_checks = atoi(str); + if (g_max_checks <= 0) + g_max_checks = 10; + } + + arg_add_value (preferences, "config_file", ARG_STRING, strlen(config_file), estrdup(config_file)); + log_init (arg_get_value(preferences, "logfile")); + rules_init(&rules, preferences); #ifdef DEBUG_RULES rules_dump(rules); #endif - if ( stop_early == 0 ) { - if (store_init(arg_get_value(preferences, "cache_folder")) != 0) - store_init_sys(arg_get_value(preferences, "plugins_folder")); + if (stop_early == 0) + { + if (store_init (arg_get_value(preferences, "cache_folder")) != 0) + store_init_sys (arg_get_value(preferences, "plugins_folder")); - plugins = plugins_init(preferences, be_quiet); + plugins = plugins_init (preferences, be_quiet); - if ( first_pass != 0 ) - init_network(iana_port, &isck, *addr); - } - - if(first_pass && !stop_early) - { - nessus_signal(SIGSEGV, sighandler); - nessus_signal(SIGCHLD, sighand_chld); - nessus_signal(SIGTERM, sighandler); - nessus_signal(SIGINT, sighandler); - nessus_signal(SIGHUP, sighup); - nessus_signal(SIGUSR1, sighandler); /* openvasd dies, not its sons */ - nessus_signal(SIGPIPE, SIG_IGN); - } + if (first_pass != 0) + init_network(iana_port, &isck, *addr); + } - arg_replace_value(options, "isck", ARG_INT, sizeof(gpointer), GSIZE_TO_POINTER(isck)); - arg_replace_value(options, "plugins", ARG_ARGLIST, -1, plugins); - arg_replace_value(options, "rules", ARG_PTR, -1, rules); - arg_replace_value(options, "preferences", ARG_ARGLIST, -1, preferences); + if (first_pass && !stop_early) + { + nessus_signal (SIGSEGV, sighandler); + nessus_signal (SIGCHLD, sighand_chld); + nessus_signal (SIGTERM, sighandler); + nessus_signal (SIGINT, sighandler); + nessus_signal (SIGHUP, sighup); + nessus_signal (SIGUSR1, sighandler); /* openvasd dies, not its sons */ + nessus_signal (SIGPIPE, SIG_IGN); + } + arg_replace_value (options, "isck", ARG_INT, sizeof(gpointer), GSIZE_TO_POINTER(isck)); + arg_replace_value (options, "plugins", ARG_ARGLIST, -1, plugins); + arg_replace_value (options, "rules", ARG_PTR, -1, rules); + arg_replace_value (options, "preferences", ARG_ARGLIST, -1, preferences); + return(0); } -int -main(int argc, char * argv[], char * envp[]) +/** + * @brief openvasd. + * @param argc Argument count. + * @param argv Argument vector. + */ +int +main (int argc, char * argv[], char * envp[]) { int exit_early = 0; - int iana_port = -1; + int iana_port = -1; char * myself; - struct in_addr addr; + struct in_addr addr; struct in_addr * src_addrs = NULL; struct arglist * options = emalloc(sizeof(struct arglist)); int i; int be_quiet = 0; - int flag = 0; + int flag = 0; bzero(orig_argv, sizeof(orig_argv)); for(i=0; i < argc; i++) - { - if (strcmp(argv[i], "-q") == 0 || strcmp(argv[i], "--quiet") == 0) - flag ++; - orig_argv[i] = estrdup(argv[i]); - } + { + if (strcmp(argv[i], "-q") == 0 || strcmp(argv[i], "--quiet") == 0) + flag ++; + orig_argv[i] = estrdup(argv[i]); + } if (flag == 0) - { orig_argv[argc] = estrdup("-q"); - } initsetproctitle(argc, argv, envp); @@ -846,7 +844,7 @@ static gboolean gen_config = FALSE; GError *error = NULL; GOptionContext *option_context; - static GOptionEntry entries[] = + static GOptionEntry entries[] = { { "version", 'v', 0, G_OPTION_ARG_NONE, &display_version, "Display version information", NULL }, { "background", 'D', 0, G_OPTION_ARG_NONE, &do_fork, "Run in daemon mode", NULL }, @@ -914,15 +912,13 @@ } if (config_file != NULL) - { arg_add_value (options, "acc_hint", ARG_INT, sizeof(int), (void*)1); - } if (src_ip != NULL) - { - src_addrs = (struct in_addr* )convert_ip_addresses(src_ip); - socket_source_init(src_addrs); - } + { + src_addrs = (struct in_addr* )convert_ip_addresses(src_ip); + socket_source_init(src_addrs); + } if (dump_cfg) { @@ -943,13 +939,14 @@ if(exit_early == 0) bpf_server_pid = bpf_server(); + if(iana_port == -1) + iana_port = OPENVAS_IANA_OTP_PORT; - if(iana_port == -1)iana_port = OPENVAS_IANA_OTP_PORT; if (!config_file) - { - config_file = emalloc(strlen(OPENVASD_CONF) + 1); - strncpy(config_file, OPENVASD_CONF, strlen(OPENVASD_CONF)); - } + { + config_file = emalloc(strlen(OPENVASD_CONF) + 1); + strncpy(config_file, OPENVASD_CONF, strlen(OPENVASD_CONF)); + } arg_add_value(options, "iana_port", ARG_INT, sizeof(gpointer), GSIZE_TO_POINTER(iana_port)); arg_add_value(options, "config_file", ARG_STRING, strlen(config_file), config_file); @@ -971,30 +968,29 @@ nessus_init_svc(); if(do_fork) - { - /* - * Close stdin, stdout and stderr - */ - i = open("/dev/null", O_RDONLY, 0640); - if (dup2(i, STDIN_FILENO) != STDIN_FILENO) - fprintf(stderr, "Could not redirect stdin to /dev/null: %s\n", strerror(errno)); - if (dup2(i, STDOUT_FILENO) != STDOUT_FILENO) - fprintf(stderr, "Could not redirect stdout to /dev/null: %s\n", strerror(errno)); - if (dup2(i, STDERR_FILENO) != STDERR_FILENO) - fprintf(stderr, "Could not redirect stderr to /dev/null: %s\n", strerror(errno)); - close(i); - if(!fork()) { - setsid(); + /* Close stdin, stdout and stderr */ + i = open("/dev/null", O_RDONLY, 0640); + if (dup2(i, STDIN_FILENO) != STDIN_FILENO) + fprintf(stderr, "Could not redirect stdin to /dev/null: %s\n", strerror(errno)); + if (dup2(i, STDOUT_FILENO) != STDOUT_FILENO) + fprintf(stderr, "Could not redirect stdout to /dev/null: %s\n", strerror(errno)); + if (dup2(i, STDERR_FILENO) != STDERR_FILENO) + fprintf(stderr, "Could not redirect stderr to /dev/null: %s\n", strerror(errno)); + close(i); + exit (); + if(!fork()) + { + setsid(); + create_pid_file(); + main_loop(); + } + } + else + { create_pid_file(); main_loop(); } - } - else - { - create_pid_file(); - main_loop(); - } DO_EXIT(0); return(0); } From scm-commit at wald.intevation.org Wed Apr 1 11:41:30 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 11:41:30 +0200 (CEST) Subject: [Openvas-commits] r2973 - in trunk/openvas-libraries: . libopenvas Message-ID: <20090401094130.0AC7240807@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 11:41:27 +0200 (Wed, 01 Apr 2009) New Revision: 2973 Modified: trunk/openvas-libraries/ChangeLog trunk/openvas-libraries/libopenvas/store.c Log: More reformatting and documentation work in store module. * libopenvas/store.c: Reformatting, doc. Modified: trunk/openvas-libraries/ChangeLog =================================================================== --- trunk/openvas-libraries/ChangeLog 2009-04-01 09:28:37 UTC (rev 2972) +++ trunk/openvas-libraries/ChangeLog 2009-04-01 09:41:27 UTC (rev 2973) @@ -1,5 +1,11 @@ 2009-04-01 Felix Wolfsteller + More reformatting and documentation work in store module. + + * libopenvas/store.c: Reformatting, doc. + +2009-04-01 Felix Wolfsteller + Reformatting and documentation work in store module. * libopenvas/store.c: Reformatting, doc. Modified: trunk/openvas-libraries/libopenvas/store.c =================================================================== --- trunk/openvas-libraries/libopenvas/store.c 2009-04-01 09:28:37 UTC (rev 2972) +++ trunk/openvas-libraries/libopenvas/store.c 2009-04-01 09:41:27 UTC (rev 2973) @@ -28,12 +28,20 @@ * start-up. * * The cache consists of a .desc file for each script (e.g. cache file of - * nvts/xyz.nasl is nvts/xyz.nas.desc). + * nvts/xyz.nasl is nvts/xyz.nas.desc), which contains a memory dump of the + * corresponding plugin struct. * - * The cache is used as followed: give the store a file path (store_load_plugin) + * The cache is used as followed: + * + * 1. Init the store with store_init. + * + * 2. Add nvts by calling store_plugin or + * + * 3. Give the store a file path (store_load_plugin) * and receive the plugin as arglist. Under nice conditions the information * contained in the cache file can be used. Under not so nice conditions, the - * script will be parsed and a new cache file will be written. + * store returns NULL (cache is either outdated, contains error or an error + * occurred). */ #include @@ -128,15 +136,19 @@ * @brief Copies content of one string into the other. * * Does not check nul-termination. + * If it failes, an error message will be printed, that is a bit specific to + * plugin information (thus the path and item parameter). * * @param str Source string, might be NULL. * @param dst Destination string. * @param sz max number of bytes to copy into dst. * @param path Filename path for error message (!?). * @param item Description of what had to be copied for error message (!?). + * * @return 0 on success, -1 otherwise. */ -static int safe_copy(char * str, char * dst, int sz, char * path, char * item) +static int +safe_copy (char * str, char * dst, int sz, char * path, char * item) { if (str == NULL) /* empty strings are OK */ { @@ -146,10 +158,11 @@ if (strlen(str) >= sz) { - fprintf(stderr, "openvas-libraries/libopenvas/store.c: %s has a too long %s (%ld)\n", path, item, (long)strlen(str)); + fprintf(stderr, "openvas-libraries/libopenvas/store.c: %s has a too long %s (%ld)\n", path, item, (long) strlen(str)); return -1; } - strcpy(dst, str); /* RATS: ignore */ + + strcpy (dst, str); /* RATS: ignore */ return 0; } @@ -275,13 +288,13 @@ if(fstat(fd, &st) < 0) { perror("fstat "); - close(fd); + close (fd); return -1; } if(st.st_size == 0) { - close(fd); + close (fd); return 0; } @@ -290,7 +303,7 @@ if(p == MAP_FAILED || p == NULL) { perror("mmap "); - close(fd); + close (fd); return -1; } @@ -301,7 +314,7 @@ bcopy((char*)p + sizeof(struct plugin), pprefs, sizeof(struct pprefs) * MAX_PREFS); } munmap((char*)p, len); - close(fd); + close (fd); return 0; } @@ -335,9 +348,10 @@ store_load_plugin (char * dir, char * file, struct arglist * prefs) { gchar * dummy = g_build_filename (store_dir, file, NULL); + gchar * plug_file = g_build_filename (dir, file, NULL); gchar * desc_file = g_strconcat (dummy, ".desc", NULL); - gchar * plug_file = g_build_filename (dir, file, NULL); gchar * asc_file = g_strconcat (dummy, ".asc", NULL); + struct plugin p; struct pprefs pp[MAX_PREFS]; @@ -360,21 +374,21 @@ return NULL; // g_build_filename failed } - bzero(pp, sizeof(pp)); + bzero (pp, sizeof(pp)); /* Plugin and cache file have to exist */ if (stat(plug_file, &stat_plug) < 0 || stat(desc_file, &stat_desc) < 0) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); return NULL; } - /* Look if the plugin (.nasl/.oval etc) or the signature (.asc) is newer than - * the description (.desc). If that's the case also make sure that - * the plugin and signatures mtime is not in the future... */ - if ( stat_plug.st_mtime > stat_desc.st_mtime + /* Look if the plugin (.nasl/.oval etc) or the signature (.asc) is newer than + * the description (.desc). If that's the case also make sure that + * the plugin and signatures mtime is not in the future... */ + if ( stat_plug.st_mtime > stat_desc.st_mtime || stat_asc.st_mtime > stat_desc.st_mtime) { g_free (desc_file); @@ -384,14 +398,14 @@ } /* Look if a signature file (.asc) exists. If so and it is newer than - * the description (.desc) (and the mtime is not in the future), return NULL. */ - if (stat(asc_file, &stat_asc) + * the description (.desc) (and the mtime is not in the future), return NULL. */ + if ( stat (asc_file, &stat_asc) && stat_asc.st_mtime > stat_desc.st_mtime - && stat_asc.st_mtime <= time(NULL) ) + && stat_asc.st_mtime <= time (NULL) ) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); return NULL; } @@ -399,9 +413,9 @@ (p.magic != MAGIC) || (p.oid == NULL)) { - g_free(desc_file); - g_free(asc_file); - g_free(plug_file); + g_free (desc_file); + g_free (asc_file); + g_free (plug_file); return NULL; } @@ -450,8 +464,8 @@ } /** - * @brief Creates a entry in the store for data of "plugin" into cache file "file" - * which is placed in the cache directory. + * @brief Creates an entry in the store for data of "plugin" into cache file + * @brief "file" which is placed in the cache directory. * * @param plugin Data structure that contains a plugin description * @param file Name of corresponding plugin file (e.g. "x.nasl", "x.nes" @@ -461,11 +475,11 @@ void store_plugin (struct arglist * plugin, char * file) { - gchar * dummy = g_build_filename(store_dir, file, NULL); - gchar * desc_file = g_strconcat(dummy, ".desc", NULL); + gchar * dummy = g_build_filename (store_dir, file, NULL); + gchar * desc_file = g_strconcat (dummy, ".desc", NULL); // assume there is a ".desc" at the end in the store_dir path // in order to guess the path of the actual plugin: - gchar * path = g_build_filename(store_dir, "..", file, NULL); + gchar * path = g_build_filename (store_dir, "..", file, NULL); struct plugin plug; struct pprefs pp[MAX_PREFS+1]; char * str; @@ -491,15 +505,13 @@ e = safe_copy(str, plug.oid, sizeof(plug.oid), path, "oid"); if(e < 0) return; - plug.timeout = plug_get_timeout(plugin); plug.category = plug_get_category(plugin); - + str = plug_get_name(plugin); e = safe_copy(str, plug.name, sizeof(plug.name), path, "name"); if(e < 0) return; - str = _plug_get_version(plugin); e = safe_copy(str, plug.version, sizeof(plug.version), path, "version"); if(e < 0) return; @@ -518,7 +530,7 @@ if(e < 0) return; str = _plug_get_family(plugin); - e = safe_copy(str, plug.family, sizeof(plug.family), path, "family"); + e = safe_copy (str, plug.family, sizeof(plug.family), path, "family"); if(e < 0) return; str = _plug_get_cve_id(plugin); @@ -631,13 +643,14 @@ if(num_plugin_prefs > 0) write(fd, pp, sizeof(pp)); - close(fd); + close (fd); arg_set_value(plugin, "preferences", -1, NULL); arg_free_all(plugin); g_free(desc_file); g_free(path); + printf ("\nBUGME: Created cache file\n"); } /*---------------------------------------------------------------------*/ From scm-commit at wald.intevation.org Wed Apr 1 12:26:03 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 12:26:03 +0200 (CEST) Subject: [Openvas-commits] r2974 - in trunk/openvas-server: . openvasd Message-ID: <20090401102603.051F4407F7@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 12:26:03 +0200 (Wed, 01 Apr 2009) New Revision: 2974 Modified: trunk/openvas-server/ChangeLog trunk/openvas-server/openvasd/nasl_plugins.c Log: Cosmetics, reformatting, doc in nasl_plugins module. * openvasd/nasl_plugins.c: Cosmetics, doc, reformatting. Modified: trunk/openvas-server/ChangeLog =================================================================== --- trunk/openvas-server/ChangeLog 2009-04-01 09:41:27 UTC (rev 2973) +++ trunk/openvas-server/ChangeLog 2009-04-01 10:26:03 UTC (rev 2974) @@ -1,5 +1,11 @@ 2009-04-01 Felix Wolfsteller + Cosmetics, reformatting, doc in nasl_plugins module. + + * openvasd/nasl_plugins.c: Cosmetics, doc, reformatting. + +2009-04-01 Felix Wolfsteller + Added todos and fixmes in openvasd module, reformatting, doc. * openvasd/openvasd.c: Cosmetics, doc, reformatting, todos and fixmes. Modified: trunk/openvas-server/openvasd/nasl_plugins.c =================================================================== --- trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-01 09:41:27 UTC (rev 2973) +++ trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-01 10:26:03 UTC (rev 2974) @@ -40,20 +40,23 @@ /* * Initialize the nasl system */ -static pl_class_t* nasl_plugin_init(struct arglist* prefs, - struct arglist* nasl) { +static pl_class_t* nasl_plugin_init (struct arglist* prefs, + struct arglist* nasl) +{ return &nasl_plugin_class; } - static void nasl_thread(struct arglist *); -/** - * Add *one* .nasl plugin to the plugin list and return the pointer to it. +/** + * @brief Add *one* .nasl plugin to the plugin list and return the pointer to it. + * * The plugin is first attempted to be loaded from the cache (.desc) calling - * load_store_plugin. If that fails, it is parsed (via exec_nasl_script). + * store_load_plugin. If that fails, it is parsed (via exec_nasl_script) and + * added to the store. + * * @param folder Path to the plugin folder. * @param name File-name of the plugin. * @param plugins The arglist that the plugin shall be added to. @@ -61,132 +64,126 @@ * @return Pointer to the plugin (as arglist). NULL in case of errors. */ static struct arglist * -nasl_plugin_add(char* folder, char* name, struct arglist* plugins, - struct arglist* preferences) +nasl_plugin_add (char* folder, char* name, struct arglist* plugins, + struct arglist* preferences) { - char fullname[PATH_MAX+1]; - struct arglist *plugin_args; - struct arglist * prev_plugin = NULL; - char * lang = "english"; - int nasl_mode; - nasl_mode = NASL_EXEC_DESCR; + char fullname[PATH_MAX+1]; + struct arglist * plugin_args; + struct arglist * prev_plugin = NULL; + char * lang = "english"; + int nasl_mode; + nasl_mode = NASL_EXEC_DESCR; - snprintf(fullname, sizeof(fullname), "%s/%s", folder, name); + snprintf (fullname, sizeof(fullname), "%s/%s", folder, name); - if ( preferences_nasl_no_signature_check(preferences) > 0 ) - { - nasl_mode |= NASL_ALWAYS_SIGNED; - } - + if (preferences_nasl_no_signature_check (preferences) > 0) + { + nasl_mode |= NASL_ALWAYS_SIGNED; + } - if(arg_get_type(preferences, "language")>=0) - lang = arg_get_value(preferences, "language"); + if (arg_get_type (preferences, "language") >= 0) + lang = arg_get_value (preferences, "language"); - plugin_args = store_load_plugin(folder, name, preferences); - if ( plugin_args == NULL ) - { - char* sign_fprs = nasl_extract_signature_fprs( fullname ); - // If server accepts signed plugins only, discard if signature file missing. - if(preferences_nasl_no_signature_check(preferences) == 0 && sign_fprs == NULL) - { - printf("%s: nvt is not signed and thus ignored\n", fullname); - return NULL; - } - else if(sign_fprs == NULL) - { - sign_fprs = ""; - } + plugin_args = store_load_plugin (folder, name, preferences); + if (plugin_args == NULL) + { + char* sign_fprs = nasl_extract_signature_fprs (fullname); + // If server accepts signed plugins only, discard if signature file missing. + if (preferences_nasl_no_signature_check(preferences) == 0 && sign_fprs == NULL) + { + printf ("%s: nvt is not signed and thus ignored\n", fullname); + return NULL; + } + else if (sign_fprs == NULL) + { + sign_fprs = ""; + } - - plugin_args = emalloc(sizeof(struct arglist)); - arg_add_value(plugin_args, "preferences", ARG_ARGLIST, -1, (void*)preferences); - - if(exec_nasl_script(plugin_args, fullname, nasl_mode) < 0) - { - printf("%s could not be loaded\n", fullname); - arg_set_value(plugin_args, "preferences", -1, NULL); - arg_free_all(plugin_args); - return NULL; - } + plugin_args = emalloc (sizeof(struct arglist)); + arg_add_value (plugin_args, "preferences", ARG_ARGLIST, -1, (void*) preferences); - plug_set_path(plugin_args, fullname); + if (exec_nasl_script (plugin_args, fullname, nasl_mode) < 0) + { + printf ("%s could not be loaded\n", fullname); + arg_set_value (plugin_args, "preferences", -1, NULL); + arg_free_all (plugin_args); + return NULL; + } - plug_set_sign_key_ids(plugin_args, sign_fprs); - - if(plug_get_oid(plugin_args) != NULL) - { - store_plugin(plugin_args, name); - plugin_args = store_load_plugin(folder, name, preferences); - } - } - - if ( plugin_args == NULL ) - { - /* Discard invalid plugins */ - fprintf(stderr, "%s failed to load\n", name); - return NULL; - } + plug_set_path (plugin_args, fullname); - if(plug_get_oid(plugin_args) == NULL) - { - plugin_free(plugin_args); - return NULL; - } - - - plug_set_launch(plugin_args, LAUNCH_DISABLED); - prev_plugin = arg_get_value(plugins, name); - if( prev_plugin == NULL ) - arg_add_value(plugins, name, ARG_ARGLIST, -1, plugin_args); - else - { - plugin_free(prev_plugin); - arg_set_value(plugins, name, -1, plugin_args); - } - - return plugin_args; + plug_set_sign_key_ids (plugin_args, sign_fprs); + + if (plug_get_oid (plugin_args) != NULL) + { + store_plugin (plugin_args, name); + plugin_args = store_load_plugin (folder, name, preferences); + } + } + + if (plugin_args == NULL) + { + /* Discard invalid plugins */ + fprintf (stderr, "%s failed to load\n", name); + return NULL; + } + + if (plug_get_oid (plugin_args) == NULL) + { + plugin_free (plugin_args); + return NULL; + } + + plug_set_launch (plugin_args, LAUNCH_DISABLED); + prev_plugin = arg_get_value (plugins, name); + + if (prev_plugin == NULL) + arg_add_value (plugins, name, ARG_ARGLIST, -1, plugin_args); + else + { + plugin_free (prev_plugin); + arg_set_value (plugins, name, -1, plugin_args); + } + + return plugin_args; } /** - * Launch a NASL plugin + * @brief Launch a NASL plugin. */ int -nasl_plugin_launch(globals, plugin, hostinfos, preferences, kb, name) - struct arglist * globals; - struct arglist * plugin; - struct arglist * hostinfos; - struct arglist * preferences; - struct kb_item ** kb; - char * name; +nasl_plugin_launch (struct arglist * globals, struct arglist * plugin, + struct arglist * hostinfos, struct arglist * preferences, + struct kb_item ** kb, char * name) { int timeout; int category = 0; nthread_t module; struct arglist * d = emalloc(sizeof(struct arglist)); - + arg_add_value(plugin, "HOSTNAME", ARG_ARGLIST, -1, hostinfos); if(arg_get_value(plugin, "globals")) arg_set_value(plugin, "globals", -1, globals); - else + else arg_add_value(plugin, "globals", ARG_ARGLIST, -1, globals); - - + + arg_set_value(plugin, "preferences", -1, preferences); arg_add_value(plugin, "key", ARG_PTR, -1, kb); arg_add_value(d, "args", ARG_ARGLIST, -1, plugin); arg_add_value(d, "name", ARG_STRING, -1, name); arg_add_value(d, "preferences", ARG_STRING, -1, preferences); - + category = plug_get_category(plugin); timeout = preferences_plugin_timeout(preferences, plug_get_oid(plugin)); if( timeout == 0 ) - { - if(category == ACT_SCANNER) - timeout = -1; - else - timeout = preferences_plugins_timeout(preferences); - } + { + if (category == ACT_SCANNER) + timeout = -1; + else + timeout = preferences_plugins_timeout (preferences); + } module = create_process((process_func_t)nasl_thread, d); arg_free(d); @@ -194,9 +191,8 @@ } -static void -nasl_thread(g_args) - struct arglist * g_args; +static void +nasl_thread (struct arglist * g_args) { struct arglist * args = arg_get_value(g_args, "args"); struct arglist * globals = arg_get_value(args, "globals"); @@ -205,8 +201,7 @@ int soc = GPOINTER_TO_SIZE(arg_get_value(args, "SOCKET")); int i; int nasl_mode; - - + if(preferences_benice(NULL))nice(-5); /* XXX ugly hack */ soc = dup2(soc, 4); @@ -221,38 +216,38 @@ { close(i); } - #ifdef RLIMIT_RSS - { - struct rlimit rlim; - getrlimit(RLIMIT_RSS, &rlim); - rlim.rlim_cur = 1024*1024*512; - rlim.rlim_max = 1024*1024*512; - setrlimit(RLIMIT_RSS, &rlim); - } - #endif - - #ifdef RLIMIT_AS - { - struct rlimit rlim; - getrlimit(RLIMIT_AS, &rlim); - rlim.rlim_cur = 1024*1024*512; - rlim.rlim_max = 1024*1024*512; - setrlimit(RLIMIT_AS, &rlim); - } - #endif - - #ifdef RLIMIT_DATA - { - struct rlimit rlim; - getrlimit(RLIMIT_DATA, &rlim); - rlim.rlim_cur = 1024*1024*512; - rlim.rlim_max = 1024*1024*512; - setrlimit(RLIMIT_DATA, &rlim); - } + #ifdef RLIMIT_RSS + { + struct rlimit rlim; + getrlimit (RLIMIT_RSS, &rlim); + rlim.rlim_cur = 1024*1024*512; + rlim.rlim_max = 1024*1024*512; + setrlimit (RLIMIT_RSS, &rlim); + } #endif + + #ifdef RLIMIT_AS + { + struct rlimit rlim; + getrlimit (RLIMIT_AS, &rlim); + rlim.rlim_cur = 1024*1024*512; + rlim.rlim_max = 1024*1024*512; + setrlimit (RLIMIT_AS, &rlim); + } + #endif + + #ifdef RLIMIT_DATA + { + struct rlimit rlim; + getrlimit (RLIMIT_DATA, &rlim); + rlim.rlim_cur = 1024*1024*512; + rlim.rlim_max = 1024*1024*512; + setrlimit (RLIMIT_DATA, &rlim); + } + #endif setproctitle("testing %s (%s)", (char*)arg_get_value(arg_get_value(args, "HOSTNAME"), "NAME"), (char*)arg_get_value(g_args, "name")); signal(SIGTERM, _exit); - + nasl_mode = NASL_EXEC_DONT_CLEANUP; if ( preferences_nasl_no_signature_check(preferences) > 0 ) nasl_mode |= NASL_ALWAYS_SIGNED; @@ -262,7 +257,9 @@ } /** - * The NASL NVT class. + * @brief The NASL NVT class. + * + * @ref pl_class_s */ pl_class_t nasl_plugin_class = { NULL, From scm-commit at wald.intevation.org Wed Apr 1 12:33:16 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 12:33:16 +0200 (CEST) Subject: [Openvas-commits] r2975 - in trunk/openvas-libraries: . libopenvas Message-ID: <20090401103316.74405407F7@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 12:33:10 +0200 (Wed, 01 Apr 2009) New Revision: 2975 Modified: trunk/openvas-libraries/ChangeLog trunk/openvas-libraries/libopenvas/store.c Log: Corrected checks when loading plugins from cache, extended documentation, removed debug printf. * libopenvas/store.c (store_load_plugin): Corrected checks and doc. Modified: trunk/openvas-libraries/ChangeLog =================================================================== --- trunk/openvas-libraries/ChangeLog 2009-04-01 10:26:03 UTC (rev 2974) +++ trunk/openvas-libraries/ChangeLog 2009-04-01 10:33:10 UTC (rev 2975) @@ -1,5 +1,12 @@ 2009-04-01 Felix Wolfsteller + Corrected checks when loading plugins from cache, extended + documentation, removed debug printf. + + * libopenvas/store.c (store_load_plugin): Corrected checks and doc. + +2009-04-01 Felix Wolfsteller + More reformatting and documentation work in store module. * libopenvas/store.c: Reformatting, doc. Modified: trunk/openvas-libraries/libopenvas/store.c =================================================================== --- trunk/openvas-libraries/libopenvas/store.c 2009-04-01 10:26:03 UTC (rev 2974) +++ trunk/openvas-libraries/libopenvas/store.c 2009-04-01 10:33:10 UTC (rev 2975) @@ -32,7 +32,7 @@ * corresponding plugin struct. * * The cache is used as followed: - * + * * 1. Init the store with store_init. * * 2. Add nvts by calling store_plugin or @@ -42,6 +42,12 @@ * contained in the cache file can be used. Under not so nice conditions, the * store returns NULL (cache is either outdated, contains error or an error * occurred). + * + * The store is updated at each openvasd start up. There the plugin loader + * iterates over plugin files and tries to retrieve the cached version. + * If there is no cached version (or @ref store_load_plugin returns Null for + * another reason, e.g.because the script file seems to have been modified in + * between) the plugin is added to the store (@ref store_plugin). */ #include @@ -336,12 +342,18 @@ * @param prefs Plugin preference arglist. * * NULL is returned in either of these cases: - * 1) the .desc does not exist - * 2) Nvt definition file (e.g. xyz.nasl) or nvt signature (xyz.asc) file is - * newer than the .desc file - * 3) the magic number test failed (other file format expected). - * 4) an internal error occured. + * 1) The .NVT definition or .desc file does not exist. + * 2) NVT definition file (e.g. xyz.nasl) or nvt signature (xyz.asc) file is + * newer than the .desc file. + * 3) The NVT definition files (e.g. xyz.nasl) or nvt signature (xyz.asc) files + * timestamp is in the future. + * 4) The magic number test failed (other file format expected). + * 5) An internal error occured. * + * Point 4) is necessary because the cache will not create .desc files with + * timestamps in the future. Thus, when creating a new cache file for the given + * NVT, it would not be able to become loaded from the cache (point 2)). + * * @return Pointer to plugin as arglist or NULL. */ struct arglist * @@ -385,11 +397,11 @@ return NULL; } - /* Look if the plugin (.nasl/.oval etc) or the signature (.asc) is newer than - * the description (.desc). If that's the case also make sure that - * the plugin and signatures mtime is not in the future... */ + /* Look if the plugin (.nasl/.oval etc) is newer than the description + * (.desc). If that's the case also make sure that the plugins mtime is not + * in the future... */ if ( stat_plug.st_mtime > stat_desc.st_mtime - || stat_asc.st_mtime > stat_desc.st_mtime) + && stat_asc.st_mtime <= time (NULL)) { g_free (desc_file); g_free (asc_file); @@ -399,7 +411,7 @@ /* Look if a signature file (.asc) exists. If so and it is newer than * the description (.desc) (and the mtime is not in the future), return NULL. */ - if ( stat (asc_file, &stat_asc) + if ( stat (asc_file, &stat_asc) == 0 && stat_asc.st_mtime > stat_desc.st_mtime && stat_asc.st_mtime <= time (NULL) ) { @@ -650,7 +662,6 @@ g_free(desc_file); g_free(path); - printf ("\nBUGME: Created cache file\n"); } /*---------------------------------------------------------------------*/ From scm-commit at wald.intevation.org Wed Apr 1 12:52:10 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 12:52:10 +0200 (CEST) Subject: [Openvas-commits] r2976 - in trunk/openvas-libraries: . libopenvas Message-ID: <20090401105210.DE949407F7@pyrosoma.intevation.org> Author: felix Date: 2009-04-01 12:52:09 +0200 (Wed, 01 Apr 2009) New Revision: 2976 Modified: trunk/openvas-libraries/ChangeLog trunk/openvas-libraries/libopenvas/store.c Log: Corrected search path for signature files when comparing their timestamps in store module. Declared two parameter of store_load_plugin as const. *libopenvas/store.c, libopenvas/store.h (store_load_plugin): Made parameters const, corrected search path for .asc (signature) files. Was cache dir, now is same dir as plugin. Modified: trunk/openvas-libraries/ChangeLog =================================================================== --- trunk/openvas-libraries/ChangeLog 2009-04-01 10:33:10 UTC (rev 2975) +++ trunk/openvas-libraries/ChangeLog 2009-04-01 10:52:09 UTC (rev 2976) @@ -1,5 +1,15 @@ 2009-04-01 Felix Wolfsteller + Corrected search path for signature files when comparing their + timestamps in store module. + Declared two parameter of store_load_plugin as const. + + * libopenvas/store.c, libopenvas/store.h (store_load_plugin): Made + parameters const, corrected search path for .asc (signature) files. Was + cache dir, now is same dir as plugin. + +2009-04-01 Felix Wolfsteller + Corrected checks when loading plugins from cache, extended documentation, removed debug printf. Modified: trunk/openvas-libraries/libopenvas/store.c =================================================================== --- trunk/openvas-libraries/libopenvas/store.c 2009-04-01 10:33:10 UTC (rev 2975) +++ trunk/openvas-libraries/libopenvas/store.c 2009-04-01 10:52:09 UTC (rev 2976) @@ -357,12 +357,12 @@ * @return Pointer to plugin as arglist or NULL. */ struct arglist * -store_load_plugin (char * dir, char * file, struct arglist * prefs) +store_load_plugin (const char * dir, const char * file, struct arglist * prefs) { + gchar * plug_file = g_build_filename (dir, file, NULL); + gchar * asc_file = g_strconcat (plug_file, ".asc", NULL); gchar * dummy = g_build_filename (store_dir, file, NULL); - gchar * plug_file = g_build_filename (dir, file, NULL); gchar * desc_file = g_strconcat (dummy, ".desc", NULL); - gchar * asc_file = g_strconcat (dummy, ".asc", NULL); struct plugin p; struct pprefs pp[MAX_PREFS]; From scm-commit at wald.intevation.org Wed Apr 1 12:53:06 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 12:53:06 +0200 (CEST) Subject: [Openvas-commits] r2977 - in trunk/openvas-manager: . packaging/debian Message-ID: <20090401105306.273DD407F7@pyrosoma.intevation.org> Author: jan Date: 2009-04-01 12:53:05 +0200 (Wed, 01 Apr 2009) New Revision: 2977 Added: trunk/openvas-manager/packaging/debian/changelog trunk/openvas-manager/packaging/debian/copyright trunk/openvas-manager/packaging/debian/rules Modified: trunk/openvas-manager/ChangeLog trunk/openvas-manager/packaging/debian/control Log: * packaging/debian/control: Lower dependecy for debhelper from 6 to 5. * packaging/debian/changelog: New. A initial stub. * packaging/debian/copyright: New. * packaging/debian/rules: New. Initial version, not fully functional yet. Modified: trunk/openvas-manager/ChangeLog =================================================================== --- trunk/openvas-manager/ChangeLog 2009-04-01 10:52:09 UTC (rev 2976) +++ trunk/openvas-manager/ChangeLog 2009-04-01 10:53:05 UTC (rev 2977) @@ -1,3 +1,13 @@ +2009-04-01 Jan-Oliver Wagner + + * packaging/debian/control: Lower dependecy for debhelper from 6 to 5. + + * packaging/debian/changelog: New. A initial stub. + + * packaging/debian/copyright: New. + + * packaging/debian/rules: New. Initial version, not fully functional yet. + 2009-04-01 Michael Wiegand * src/tests/CMakeLists.txt: Added missing GLIB_CFLAGS to target properties. Added: trunk/openvas-manager/packaging/debian/changelog =================================================================== --- trunk/openvas-manager/packaging/debian/changelog 2009-04-01 10:52:09 UTC (rev 2976) +++ trunk/openvas-manager/packaging/debian/changelog 2009-04-01 10:53:05 UTC (rev 2977) @@ -0,0 +1,5 @@ +openvas-manager (0.0.1-1) UNRELEASED; urgency=low + + * Initial release. + + -- Jan-Oliver Wagner Wed, 01 Apr 2009 11:55:29 +0200 Modified: trunk/openvas-manager/packaging/debian/control =================================================================== --- trunk/openvas-manager/packaging/debian/control 2009-04-01 10:52:09 UTC (rev 2976) +++ trunk/openvas-manager/packaging/debian/control 2009-04-01 10:53:05 UTC (rev 2977) @@ -2,7 +2,7 @@ Section: admin Priority: optional Maintainer: Debian OpenVAS Maintainers -Build-Depends: debhelper (>= 6) +Build-Depends: debhelper (>= 5) Standards-Version: 3.8.0 Package: openvas-manager Added: trunk/openvas-manager/packaging/debian/copyright =================================================================== --- trunk/openvas-manager/packaging/debian/copyright 2009-04-01 10:52:09 UTC (rev 2976) +++ trunk/openvas-manager/packaging/debian/copyright 2009-04-01 10:53:05 UTC (rev 2977) @@ -0,0 +1,40 @@ +This is the prepackaged version of the Open Vulnerability Assessment +System manager (openvas-manager) for Debian GNU/Linux from sources obtained from: + + http://www.openvas.org/ + +This software has been packaged for Debian by + * Jan-Oliver Wagner + +Copyright: + + * Copyright (C) 2008-2009 Intevation GmbH + +Authors: + + * Matthew Mundell + * Jan-Oliver Wagner + * Michael Wiegand + +License: + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License version 2, + or, at your option, any later version as published by the Free + Software Foundation + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + + +On Debian systems, the complete text of the GNU General +Public License can be found in `/usr/share/common-licenses/GPL'. + +The Debian packaging is licensed under the GPL, see above, and + (C) 2009, Greenbone Networks GmbH, http://www.greenbone.net Added: trunk/openvas-manager/packaging/debian/rules =================================================================== --- trunk/openvas-manager/packaging/debian/rules 2009-04-01 10:52:09 UTC (rev 2976) +++ trunk/openvas-manager/packaging/debian/rules 2009-04-01 10:53:05 UTC (rev 2977) @@ -0,0 +1,78 @@ +#!/usr/bin/make -f +# -*- makefile -*- +# Sample debian/rules that uses debhelper. +# This file was originally written by Joey Hess and Craig Small. +# As a special exception, when this file is copied by dh-make into a +# dh-make output file, you may use that output file without restriction. +# This special exception was added by Craig Small in version 0.37 of dh-make. + +# Uncomment this to turn on verbose mode. +#export DH_VERBOSE=1 + +config: config-stamp + +config-stamp: + dh_testdir + + # Add here commands to configure the package. + cmake -DCMAKE_INSTALL_PREFIX=/usr . + + touch $@ + + +build: build-stamp + +build-stamp: config-stamp + dh_testdir + + # Add here commands to compile the package. + $(MAKE) + + touch $@ + +clean: + dh_testdir + dh_testroot + rm -f build-stamp config.stamp + + # Add here commands to clean up after the build process. + $(MAKE) clean + + dh_clean + +install: build + dh_testdir + dh_testroot + dh_clean -k + dh_installdirs + + # Add here commands to install the package into debian/tmp + $(MAKE) install + +# Build architecture-independent files here. +binary-indep: build install +# We have nothing to do by default. + +# Build architecture-dependent files here. +binary-arch: build install + dh_testdir + dh_testroot + dh_installchangelogs CHANGES + dh_installdocs + dh_install --sourcedir=debian/tmp + dh_installdebconf + dh_installlogrotate + dh_installinit -n -r -u stop 20 0 6 . + dh_installman --sourcedir=debian/tmp + dh_link + dh_strip + dh_compress + dh_fixperms + dh_installdeb + dh_shlibdeps + dh_gencontrol + dh_md5sums + dh_builddeb + +binary: binary-indep binary-arch +.PHONY: build clean binary-indep binary-arch binary install Property changes on: trunk/openvas-manager/packaging/debian/rules ___________________________________________________________________ Name: svn:executable + * From scm-commit at wald.intevation.org Wed Apr 1 15:16:34 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 15:16:34 +0200 (CEST) Subject: [Openvas-commits] r2978 - trunk/openvas-plugins Message-ID: <20090401131634.EDA284080B@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-01 15:16:33 +0200 (Wed, 01 Apr 2009) New Revision: 2978 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/openvas-nvt-sync.in Log: * openvas-nvt-sync.in: Don't preserve plugin timestamp when syncing. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-01 10:53:05 UTC (rev 2977) +++ trunk/openvas-plugins/ChangeLog 2009-04-01 13:16:33 UTC (rev 2978) @@ -1,3 +1,7 @@ +2009-04-01 Michael Wiegand + + * openvas-nvt-sync.in: Don't preserve plugin timestamp when syncing. + 2009-03-31 Thomas Reinke * deb_1745_1.nasl deb_1745_2.nasl deb_1746_1.nasl deb_1747_1.nasl deb_1748_1.nasl deb_1749_1.nasl deb_1750_1.nasl deb_1752_1.nasl Modified: trunk/openvas-plugins/openvas-nvt-sync.in =================================================================== --- trunk/openvas-plugins/openvas-nvt-sync.in 2009-04-01 10:53:05 UTC (rev 2977) +++ trunk/openvas-plugins/openvas-nvt-sync.in 2009-04-01 13:16:33 UTC (rev 2978) @@ -80,7 +80,7 @@ echo "Synchonizing NVTs via RSYNC ..." mkdir -p "$NVT_DIR" - eval "rsync -ltvrP \"$FEED\" \"$NVT_DIR\"" + eval "rsync -lvrP \"$FEED\" \"$NVT_DIR\"" if [ $? -ne 0 ] ; then echo "Error: rsync failed. Your NVT collection might be broken now." exit 1 From scm-commit at wald.intevation.org Wed Apr 1 22:29:16 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 22:29:16 +0200 (CEST) Subject: [Openvas-commits] r2979 - in trunk/openvas-plugins: . scripts Message-ID: <20090401202916.AB1F84079E@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-01 22:29:14 +0200 (Wed, 01 Apr 2009) New Revision: 2979 Added: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added Windows SharePoint Services remote detection plugin TODO: implement service pack gathering using the minor version number (4518 - SP1) source: http://www.microsoft.com/downloads/details.aspx?FamilyId=D51730B5-48FC-4CA2-B454-8DC2CAF93951&displaylang=en#Requirements System Requirements for WSS 3.0 - MicrosoftSharePointTeamServices: 12.0.0.4518 * Supported Operating Systems: * Windows Server 2003 Service Pack 1 * The following is also required: * Microsoft .NET Framework 3.0 TODO also: * Microsoft Project Server detection * Windows SharePoint Server Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-01 13:16:33 UTC (rev 2978) +++ trunk/openvas-plugins/ChangeLog 2009-04-01 20:29:14 UTC (rev 2979) @@ -1,3 +1,8 @@ +2009-04-01 christian Eric Edjenguele + + * script/remote-detect-WindowsSharepointServices.nasl: + New script + 2009-04-01 Michael Wiegand * openvas-nvt-sync.in: Don't preserve plugin timestamp when syncing. Added: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-01 13:16:33 UTC (rev 2978) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-01 20:29:14 UTC (rev 2979) @@ -0,0 +1,134 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: This script ensure that the Sybase EAServer is installed and running +# +# +# Author: +# Christian Eric Edjenguele +# +# TODO: implement service pack gathering using the minor version number (4518 - SP1) +# source: http://www.microsoft.com/downloads/details.aspx?FamilyId=D51730B5-48FC-4CA2-B454-8DC2CAF93951&displaylang=en#Requirements +# System Requirements for WSS 3.0 - MicrosoftSharePointTeamServices: 12.0.0.4518 +# +# * Supported Operating Systems: Windows Server 2003 Service Pack 1 +# +# * The following is also required: +# * Microsoft .NET Framework 3.0 +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 and later, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + + +if(description) +{ +script_id(101018); +name["english"] = "Windows SharePoint Services detection"; +script_name(english:name["english"]); + +desc["english"] = " +The remote host is running Windows SharePoint Services. +Microsoft SharePoint products and technologies include browser-based collaboration and a document-management platform. +These can be used to host web sites that access shared workspaces and documents from a browser. + + +Solution : +It's recommended to allow connection to this host only from trusted hosts or networks. + +Risk factor : None"; + +script_description(english:desc["english"]); + +summary["english"] = "Windows SharePoint Services Information Gathering"; + +script_summary(english:summary["english"]); + +script_category(ACT_GATHER_INFO); + +script_copyright(english:"This script is Written by Christian Eric Edjenguele and released under GPL v2 or later"); +family["english"] = "Service detection"; +script_family(english:family["english"]); +script_dependencies("find_service.nes"); +script_require_ports("Services/www"); + + +exit(0); + +} + +# +# The script code starts here +# + +include("misc_func.inc"); +include("http_func.inc"); +include("http_keepalive.inc"); +include("revisions-lib.inc"); + + +port = get_http_port(default:80); + +# request a non existant random page +page = string(rand() + "openvas.aspx"); +thehost = get_host_name(); + +request = string( + "GET /", page, " HTTP/1.0\r\n", + "Host: ", get_host_name() ,"\r\n", + "User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.8) Gecko/2009032711 Ubuntu/8.10 (intrepid) Firefox/3.0.8\r\n", + "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\n", + "Accept-Encoding: gzip,deflate\r\n", + "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7\r\n", + "Accept-Language: en-us,en;q=0.5\r\n", + "Keep-Alive: 300\r\n", + "Connection: keep-alive\r\n\r\n" + ); + +if(port){ + response = http_keepalive_send_recv(port:port, data:request, bodyonly:0); + report = ''; + + if(response){ + + dotNetServer = eregmatch(pattern:"Server: Microsoft-IIS/([0-9.]+)",string:response, icase:TRUE); + mstsVersion = eregmatch(pattern:"MicrosoftSharePointTeamServices: ([0-9.]+)",string:response, icase:TRUE); + xPoweredBy = eregmatch(pattern:"X-Powered-By: ([a-zA-Z.]+)",string:response, icase:TRUE); + aspNetVersion = eregmatch(pattern:"X-AspNet-Version: ([0-9.]+)",string:response, icase:TRUE); + + if(mstsVersion){ + set_kb_item(name:"WindowsSharePointServices/installed", value:TRUE); + set_kb_item(name:"MicrosoftSharePointTeamServices/version", value:mstsVersion[1]); + if(revcomp(a:mstsVersion[1], b:"12.0.0") >= 0){ + set_kb_item(name:"WindowsSharePointServices/version", value:"3.0"); + # TODO: detect Service Pack + } + report = "Detected: " + mstsVersion[0]; + } + if(dotNetServer){ + set_kb_item(name:"Microsoft-IIS/installed", value:TRUE); + set_kb_item(name:"Microsoft-IIS/version", value:dotNetServer[1]); + report += "\n" + dotNetServer[0]; + } + if(aspNetVersion){ + set_kb_item(name:"aspNetVersion/version", value:aspNetVersion[1]); + report += "\n" + aspNetVersion[0]; + } + if(xPoweredBy){ + set_kb_item(name:"ASPX/enabled", value:TRUE); + report += "\n" + xPoweredBy[0]; + } + + security_note(port:port, data:report); + } +} From scm-commit at wald.intevation.org Wed Apr 1 22:37:34 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 22:37:34 +0200 (CEST) Subject: [Openvas-commits] r2980 - trunk/openvas-plugins/scripts Message-ID: <20090401203734.7461A2C045@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-01 22:37:33 +0200 (Wed, 01 Apr 2009) New Revision: 2980 Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: Minor change: just thehost variable in the request instead of get_host_name() Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-01 20:29:14 UTC (rev 2979) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-01 20:37:33 UTC (rev 2980) @@ -85,7 +85,7 @@ request = string( "GET /", page, " HTTP/1.0\r\n", - "Host: ", get_host_name() ,"\r\n", + "Host: ", thehost ,"\r\n", "User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.8) Gecko/2009032711 Ubuntu/8.10 (intrepid) Firefox/3.0.8\r\n", "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\n", "Accept-Encoding: gzip,deflate\r\n", From scm-commit at wald.intevation.org Wed Apr 1 23:25:54 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 23:25:54 +0200 (CEST) Subject: [Openvas-commits] r2981 - trunk/winslad Message-ID: <20090401212554.2103D40809@pyrosoma.intevation.org> Author: doj Date: 2009-04-01 23:25:53 +0200 (Wed, 01 Apr 2009) New Revision: 2981 Modified: trunk/winslad/path.cpp Log: fixed #warning Modified: trunk/winslad/path.cpp =================================================================== --- trunk/winslad/path.cpp 2009-04-01 20:37:33 UTC (rev 2980) +++ trunk/winslad/path.cpp 2009-04-01 21:25:53 UTC (rev 2981) @@ -36,7 +36,9 @@ #define syslog(...) +#ifdef _MSC_VER #pragma warning (disable: 4800 4996) +#endif #endif From scm-commit at wald.intevation.org Wed Apr 1 23:30:06 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Wed, 1 Apr 2009 23:30:06 +0200 (CEST) Subject: [Openvas-commits] r2982 - trunk/winslad Message-ID: <20090401213006.330224080B@pyrosoma.intevation.org> Author: doj Date: 2009-04-01 23:30:05 +0200 (Wed, 01 Apr 2009) New Revision: 2982 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp Log: correct path to cmd.exe Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-01 21:25:53 UTC (rev 2981) +++ trunk/winslad/TODO.txt 2009-04-01 21:30:05 UTC (rev 2982) @@ -5,4 +5,7 @@ + http://www.itefix.no/i2/taxonomy/term/33 - background Prozess -- find correct path to cmd.exe + + createprocess and then cl_execute with secret -E argument +- logging for PRINTF +- write installer, run as slad user +- test on 32, 64bit Windows Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-01 21:25:53 UTC (rev 2981) +++ trunk/winslad/client.cpp 2009-04-01 21:30:05 UTC (rev 2982) @@ -244,7 +244,7 @@ std::string cmd; // check for batch files - LPCTSTR lpApplicationName=NULL; + LPTSTR lpApplicationName=NULL; const std::string binary=e->binary; if(binary.size()>4 && binary[binary.size()-4]=='.') { @@ -254,8 +254,18 @@ ext+=static_cast(tolower(binary[binary.size()-1])); if(ext=="bat" || ext=="cmd" || ext=="btm") { - // \todo find correct path to cmd.exe - lpApplicationName="c:\\windows\\system32\\cmd.exe"; + lpApplicationName=new char[PATH_MAX]; // memory leak, but we don't care for single shot programs + if(!GetSystemDirectory(lpApplicationName, PATH_MAX)) + { + DisplayError("GetSystemDirectory"); + return -1; + } + strcat(lpApplicationName, "\\cmd.exe"); + if(! doj::isFile(lpApplicationName)) + { + PRINTF("could not find path to cmd.exe\n"); + return -1; + } cmd="/c "; } } @@ -321,7 +331,9 @@ ) ) { +#if 0 PRINTF("Created Process %i ; Thread %i\n", ProcInfo.dwProcessId, ProcInfo.dwThreadId); +#endif // Wait until child process exits. WaitForSingleObject( ProcInfo.hProcess, INFINITE ); @@ -350,6 +362,7 @@ // delete (empty) result file unlink(resultPath.c_str()); + return 1; } From scm-commit at wald.intevation.org Thu Apr 2 01:13:36 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 01:13:36 +0200 (CEST) Subject: [Openvas-commits] r2983 - trunk/winslad Message-ID: <20090401231336.EFC552C04E@pyrosoma.intevation.org> Author: doj Date: 2009-04-02 01:13:35 +0200 (Thu, 02 Apr 2009) New Revision: 2983 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp trunk/winslad/debug.h trunk/winslad/main.cpp trunk/winslad/struct.h Log: logging Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-01 21:30:05 UTC (rev 2982) +++ trunk/winslad/TODO.txt 2009-04-01 23:13:35 UTC (rev 2983) @@ -6,6 +6,6 @@ - background Prozess + createprocess and then cl_execute with secret -E argument -- logging for PRINTF - write installer, run as slad user - test on 32, 64bit Windows +- ovaldi plugin Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-01 21:30:05 UTC (rev 2982) +++ trunk/winslad/client.cpp 2009-04-01 23:13:35 UTC (rev 2983) @@ -172,7 +172,7 @@ { if (config->arg.empty()) { - fprintf (stderr, "No selection to --show\n"); + printf(MSG_NOCOMMAND ": No selection to --show\n"); return 1; } @@ -199,7 +199,7 @@ } else { - printf (MSG_NOCOMMAND); + printf (MSG_NOCOMMAND "\n"); } } return 0; @@ -228,7 +228,7 @@ // check if result file already exists if(doj::isFile(finishedPath)) { - printf(MSG_ALREADY); + printf(MSG_ALREADY "\n"); return 1; } @@ -237,7 +237,7 @@ { - printf(MSG_OK); + printf(MSG_OK "\n"); return 0; } @@ -485,7 +485,7 @@ case 's': return cl_show (config); default: - fprintf (stderr, "Unknown command '%c'\n", config->command); + printf(MSG_NOCOMMAND ": '%c'\n", config->command); return 1; } return 0; Modified: trunk/winslad/debug.h =================================================================== --- trunk/winslad/debug.h 2009-04-01 21:30:05 UTC (rev 2982) +++ trunk/winslad/debug.h 2009-04-01 23:13:35 UTC (rev 2983) @@ -25,6 +25,18 @@ #define DEBUG__H #include -#define PRINTF(format, a...) do { fprintf(stderr, format, ##a); /*syslog(LOG_ERR, format, ##a);*/ } while(0) +#include +#include +extern FILE *event_log; + +#define PRINTF(format, a...) do { \ + if(event_log) { \ + time_t t=time(NULL); \ + char *s=ctime(&t); \ + s[strlen(s)-1]=0; \ + fprintf(event_log, s); \ + fprintf(event_log, format, ##a); \ + } } while(0) + #endif Modified: trunk/winslad/main.cpp =================================================================== --- trunk/winslad/main.cpp 2009-04-01 21:30:05 UTC (rev 2982) +++ trunk/winslad/main.cpp 2009-04-01 23:13:35 UTC (rev 2983) @@ -41,6 +41,8 @@ #include +FILE *event_log=0; + int run_client (sladd_config_t * config); int load_plugin (const char * cfgname, sladd_config_t * config); @@ -139,19 +141,19 @@ struct stat statbuf; if (stat (config->pluginpath.c_str(), &statbuf) < 0) { - PRINTF("init_plugins(): stat(%s) error\n", config->pluginpath.c_str()); + printf("init_plugins(): stat(%s) error\n", config->pluginpath.c_str()); return -1; } if (!S_ISDIR (statbuf.st_mode)) { - PRINTF("init_plugins(): pluginpath is not a directory\n"); + printf("init_plugins(): pluginpath is not a directory\n"); return -1; } DIR *dir = opendir (config->pluginpath.c_str()); if (!dir) { - PRINTF("can't opendir() plugin directory %s: %s\n", config->pluginpath.c_str(), strerror (errno)); + printf("can't opendir() plugin directory %s: %s\n", config->pluginpath.c_str(), strerror (errno)); return -1; } @@ -169,7 +171,7 @@ { if(load_plugin (tmppath.c_str(), config) < 0) { - PRINTF("could not load %s\n", tmppath.c_str()); + printf("could not load %s\n", tmppath.c_str()); } } } @@ -186,14 +188,14 @@ init_cmdline (argc, argv, config); if(init_plugins (config) < 0) { - PRINTF("could not init plugins\n"); + printf("could not init plugins\n"); delete config; return NULL; } if(!doj::mkdir(config->resultpath)) { - PRINTF("could not create result directory: %s\n", config->resultpath.c_str()); + printf("could not create result directory: %s\n", config->resultpath.c_str()); delete config; return NULL; } @@ -201,16 +203,27 @@ return config; } +void cleanup() +{ + if(event_log) + fclose(event_log); +} + int main (int argc, char ** argv) { try { sladd_config_t *config = init (argc, argv); if (!config) { - PRINTF("could not init config\n"); + printf("could not init config\n"); return 1; } + const std::string logpath=config->pluginpath+"\\sladd.log"; + event_log=fopen(logpath.c_str(), "at"); + + atexit(cleanup); + return run_client (config); } catch (std::exception& e) { std::string err="Exception: "; Modified: trunk/winslad/struct.h =================================================================== --- trunk/winslad/struct.h 2009-04-01 21:30:05 UTC (rev 2982) +++ trunk/winslad/struct.h 2009-04-01 23:13:35 UTC (rev 2983) @@ -30,13 +30,13 @@ * Return messages for "run" command */ #define MSG_OK "200 queued" -#define MSG_SHUTDOWN "200 terminating\n" -#define MSG_CANTQUEUE "201 can't queue\n" -#define MSG_NOCOMMAND "401 unknown command\n" -#define MSG_ALREADY "403 plugin already running\n" -#define MSG_NOPLUGIN "404 plugin not found\n" +#define MSG_SHUTDOWN "200 terminating" +#define MSG_CANTQUEUE "201 can't queue" +#define MSG_NOCOMMAND "401 unknown command" +#define MSG_ALREADY "403 plugin already running" +#define MSG_NOPLUGIN "404 plugin not found" #define MSG_CANTRUN "500 internal error" -#define MSG_MAXCONNS "501 Connection limit reached\n" +#define MSG_MAXCONNS "501 Connection limit reached" /* * A plugin entry is the atom of a slad plugin. It contains the necessary From scm-commit at wald.intevation.org Thu Apr 2 03:59:23 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 03:59:23 +0200 (CEST) Subject: [Openvas-commits] r2984 - trunk/winslad Message-ID: <20090402015923.D749340809@pyrosoma.intevation.org> Author: doj Date: 2009-04-02 03:59:20 +0200 (Thu, 02 Apr 2009) New Revision: 2984 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp trunk/winslad/debug.h trunk/winslad/main.cpp trunk/winslad/struct.h Log: background execution of plugin Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-01 23:13:35 UTC (rev 2983) +++ trunk/winslad/TODO.txt 2009-04-02 01:59:20 UTC (rev 2984) @@ -4,8 +4,7 @@ + http://www.kpym.com/2/kpym/index.htm + http://www.itefix.no/i2/taxonomy/term/33 -- background Prozess - + createprocess and then cl_execute with secret -E argument -- write installer, run as slad user +- document sources - test on 32, 64bit Windows - ovaldi plugin +- write installer, run as slad user Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-01 23:13:35 UTC (rev 2983) +++ trunk/winslad/client.cpp 2009-04-02 01:59:20 UTC (rev 2984) @@ -43,21 +43,25 @@ void DisplayError(char *pszAPI) { LPVOID lpvMessageBuffer; - CHAR szPrintBuffer[512]; - DWORD nCharsWritten; - FormatMessage( FORMAT_MESSAGE_ALLOCATE_BUFFER|FORMAT_MESSAGE_FROM_SYSTEM, NULL, GetLastError(), MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), (LPTSTR)&lpvMessageBuffer, 0, NULL); +#if 0 + CHAR szPrintBuffer[512]; wsprintf(szPrintBuffer, "ERROR: API = %s.\n error code = %d.\n message = %s.\n", pszAPI, GetLastError(), (char *)lpvMessageBuffer); + DWORD nCharsWritten; WriteConsole(GetStdHandle(STD_OUTPUT_HANDLE),szPrintBuffer, lstrlen(szPrintBuffer),&nCharsWritten,NULL); +#else + PRINTF("ERROR: API = %s.\n error code = %d.\n message = %s.\n", + pszAPI, GetLastError(), (char *)lpvMessageBuffer); +#endif LocalFree(lpvMessageBuffer); } @@ -220,10 +224,7 @@ PRINTF("cmdline: %s\n", e->cmdline); #endif - std::string resultFN=std::string("R$")+plugin2filename(pluginName); - const std::string resultPath=config->resultpath+'\\'+resultFN; - resultFN[0]='T'; - const std::string finishedPath=config->resultpath+'\\'+resultFN; + const std::string finishedPath=config->resultpath+"\\T$"+plugin2filename(pluginName); // check if result file already exists if(doj::isFile(finishedPath)) @@ -232,15 +233,95 @@ return 1; } - // \todo create background process - if(0) + const std::string cmd=config->pluginpath+"\\..\\sladd.exe"; + const std::string cmd_args="sladd.exe -E "+pluginName; + + // Info on CreateFile: http://msdn.microsoft.com/en-us/library/aa363858(VS.85).aspx + + // enable the file to be inherited + SECURITY_ATTRIBUTES SecAttr; memset(&SecAttr, 0, sizeof(SecAttr)); + SecAttr.nLength=sizeof(SecAttr); + SecAttr.bInheritHandle=TRUE; + + // open result file for writing + HANDLE nul_h=CreateFile( + "NUL", + GENERIC_READ|GENERIC_WRITE, + FILE_SHARE_READ|FILE_SHARE_WRITE, + &SecAttr, + OPEN_EXISTING, + FILE_ATTRIBUTE_NORMAL, + NULL // hTemplateFile + ); + if(nul_h == INVALID_HANDLE_VALUE) { + PRINTF("CreateFile(NUL) failed\n"); + DisplayError("CreateFile"); + return -1; + } + // Info on CreateProcess: http://msdn.microsoft.com/en-us/library/ms682425(VS.85).aspx + // set result file as STDOUT, STDERR for new Process + STARTUPINFO StartupInfo; memset(&StartupInfo, 0, sizeof(StartupInfo)); + StartupInfo.dwFlags=STARTF_USESTDHANDLES; + StartupInfo.hStdInput=nul_h;//GetStdHandle(STD_INPUT_HANDLE); + StartupInfo.hStdOutput=nul_h; + StartupInfo.hStdError=nul_h; + + PROCESS_INFORMATION ProcInfo; memset(&ProcInfo, 0, sizeof(ProcInfo)); + + if(CreateProcess( + cmd.c_str(), + strdup(cmd_args.c_str()), // I know, memory leak here, but for this one-shot program it is not relevant + NULL, // LPSECURITY_ATTRIBUTES lpProcessAttributes, + NULL, // LPSECURITY_ATTRIBUTES lpThreadAttributes, + TRUE, // bInheritHandles, + NORMAL_PRIORITY_CLASS, // dwCreationFlags, + NULL, // lpEnvironment, + NULL, // lpCurrentDirectory, + &StartupInfo, + &ProcInfo + ) + ) + { + PRINTF("start_plugin(%s): Created Process %i ; Thread %i\n", cmd_args.c_str(), ProcInfo.dwProcessId, ProcInfo.dwThreadId); printf(MSG_OK "\n"); return 0; } + PRINTF("start_plugin(): %s %s\n", cmd.c_str(), cmd_args.c_str()); + DisplayError("CreateProcess"); + printf(MSG_CANTQUEUE "\n"); + return 1; +} + +static int execute_plugin(slad_plugin_t * p, slad_plugin_set_t * s, slad_plugin_entry_t * e, sladd_config_t * config) +{ + if(!p) return -1; + if(!e) return -2; + if(!config) return -3; + + const std::string pluginName=std::string(p->name)+':'+s->name+':'+e->name; + const std::string pluginPath=config->pluginpath+'\\'+p->path; +#if 0 + PRINTF("pluginName: %s\n", pluginName.c_str()); + PRINTF("path: %s\n", pluginPath.c_str()); + PRINTF("binary: %s\n", e->binary); + PRINTF("cmdline: %s\n", e->cmdline); +#endif + + std::string resultFN=std::string("R$")+plugin2filename(pluginName); + const std::string resultPath=config->resultpath+'\\'+resultFN; + resultFN[0]='T'; + const std::string finishedPath=config->resultpath+'\\'+resultFN; + + // check if result file already exists + if(doj::isFile(finishedPath)) + { + return 1; + } + std::string cmd; // check for batch files @@ -271,12 +352,6 @@ } cmd+=pluginPath+'\\'+e->binary+' '+e->cmdline; -#if 0 - PRINTF("%s %s > %s\n", - lpApplicationName ? lpApplicationName : "", - cmd.c_str(), - resultFN.c_str()); -#endif // Info on creating console processes with redirected handles: http://support.microsoft.com/kb/q190351/ @@ -299,8 +374,8 @@ ); if(result_h == INVALID_HANDLE_VALUE) { + PRINTF("CreateFile(%s) failed\n", resultPath.c_str()); DisplayError("CreateFile"); - PRINTF("CreateFile(%s) failed\n", resultPath.c_str()); return -1; } @@ -331,9 +406,7 @@ ) ) { -#if 0 - PRINTF("Created Process %i ; Thread %i\n", ProcInfo.dwProcessId, ProcInfo.dwThreadId); -#endif + PRINTF("execute_plugin(%s %s): Created Process %i ; Thread %i\n", lpApplicationName, cmd.c_str(), ProcInfo.dwProcessId, ProcInfo.dwThreadId); // Wait until child process exits. WaitForSingleObject( ProcInfo.hProcess, INFINITE ); @@ -342,10 +415,14 @@ CloseHandle( ProcInfo.hProcess ); CloseHandle( ProcInfo.hThread ); + PRINTF("execute_plugin(%s %s): Process %i terminated\n", lpApplicationName, cmd.c_str(), ProcInfo.dwProcessId); runSuccess=true; } else - DisplayError("CreateProcess"); + { + PRINTF("execute_plugin(%s %s): could not create process\n", lpApplicationName, cmd.c_str()); + DisplayError("CreateProcess"); + } // close result file if(!CloseHandle(result_h)) @@ -356,7 +433,12 @@ { // rename result file to indicate this job is done unlink(finishedPath.c_str()); - rename(resultPath.c_str(), finishedPath.c_str()); + if(!MoveFile(resultPath.c_str(), finishedPath.c_str())) + { + PRINTF("execute_plugin(%s %s): could not rename %s to %s\n", lpApplicationName, cmd.c_str(), resultPath.c_str(), finishedPath.c_str()); + DisplayError("MoveFile"); + return 1; + } return 0; } @@ -475,6 +557,42 @@ return 0; } +static int cl_execute(sladd_config_t * config) +{ + slad_plugin_t * p = NULL; + slad_plugin_set_t * s = NULL; + slad_plugin_entry_t * e = NULL; + + if(config->arg.empty()) + { + printf(MSG_CANTQUEUE ": no plugin name\n"); + return -1; + } + + findplugin (config->arg, config, &p, &s, &e); + + if (!p) + { + printf(MSG_NOPLUGIN ": did not find the plugin\n"); + return -1; + } + if (!s) + s = (p->sets)[0]; + if (!s) + { + printf(MSG_NOPLUGIN": did not find a set\n"); + return -1; + } + + if (!e) + { + printf(MSG_NOPLUGIN": did not find the entity\n"); + return -1; + } + + return execute_plugin (p, s, e, config); +} + /* Externally visible entry point from main () */ int run_client (sladd_config_t * config) { @@ -482,6 +600,8 @@ { case 'r': return cl_run(config); + case 'E': + return cl_execute(config); case 's': return cl_show (config); default: Modified: trunk/winslad/debug.h =================================================================== --- trunk/winslad/debug.h 2009-04-01 23:13:35 UTC (rev 2983) +++ trunk/winslad/debug.h 2009-04-02 01:59:20 UTC (rev 2984) @@ -27,16 +27,18 @@ #include #include #include +#include extern FILE *event_log; -#define PRINTF(format, a...) do { \ - if(event_log) { \ - time_t t=time(NULL); \ - char *s=ctime(&t); \ - s[strlen(s)-1]=0; \ - fprintf(event_log, s); \ - fprintf(event_log, format, ##a); \ +#define PRINTF(format, a...) do { \ + if(event_log) { \ + time_t t=time(NULL); \ + char *s=ctime(&t); \ + s[strlen(s)-1]=0; \ + fprintf(event_log, "[%i] %s: ", _getpid(), s); \ + fprintf(event_log, format, ##a); \ + fflush(event_log); \ } } while(0) #endif Modified: trunk/winslad/main.cpp =================================================================== --- trunk/winslad/main.cpp 2009-04-01 23:13:35 UTC (rev 2983) +++ trunk/winslad/main.cpp 2009-04-02 01:59:20 UTC (rev 2984) @@ -82,7 +82,9 @@ assert(argv); assert(argc>0); - std::string show, pluginpath, command; + config->sladd_exe=argv[0]; + + std::string show, run, execute; int option_index = 0; static const struct option long_options[] = { @@ -90,13 +92,14 @@ {"resultpath", 1, NULL, 'R'}, {"show", 1, NULL, 's'}, {"run", 1, NULL, 'r'}, + {"execute", 1, NULL, 'E'}, {"help", 0, NULL, 'h'}, {NULL, 0, NULL, 0} }; while (1) { - int i = getopt_long (argc, argv, "hp:R:r:s:", long_options, &option_index); + int i = getopt_long (argc, argv, "hp:R:r:s:E:", long_options, &option_index); if (i == -1) break; @@ -111,11 +114,14 @@ config->resultpath=optarg; break; case 'r': - command = optarg; + run = optarg; break; case 's': show = optarg; break; + case 'E': + execute = optarg; + break; } } @@ -124,11 +130,16 @@ config->command = 's'; config->arg = show; } - else if (!command.empty()) + else if (!run.empty()) { config->command = 'r'; - config->arg = command; + config->arg = run; } + else if(!execute.empty()) + { + config->command = 'E'; + config->arg = execute; + } if (!config->command) print_help (argv[0]); @@ -224,7 +235,17 @@ atexit(cleanup); - return run_client (config); +#if 0 + PRINTF("startup:"); + for(int i=0; i Author: chandra Date: 2009-04-02 08:15:32 +0200 (Thu, 02 Apr 2009) New Revision: 2985 Added: trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_lin.nasl trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_win.nasl trunk/openvas-plugins/scripts/gb_7zip_detect_lin.nasl trunk/openvas-plugins/scripts/gb_7zip_detect_win.nasl trunk/openvas-plugins/scripts/gb_expressionengine_detect.nasl trunk/openvas-plugins/scripts/gb_expressionengine_xss_vuln.nasl trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_detect.nasl trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl trunk/openvas-plugins/scripts/gb_nullftp_server_detect.nasl trunk/openvas-plugins/scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_lin.nasl trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_win.nasl trunk/openvas-plugins/scripts/secpod_pplive_code_exe_vuln.nasl trunk/openvas-plugins/scripts/secpod_pplive_detect.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 06:15:32 UTC (rev 2985) @@ -1,3 +1,21 @@ +2009-04-02 Chandrashekhar B + * scripts/gb_justsystems_ichitaro_prdts_detect.nasl, + scripts/gb_openssl_mult_vuln_win.nasl, + scripts/gb_7zip_archive_handling_vuln_win.nasl, + scripts/gb_nullftp_server_detect.nasl, + scripts/gb_7zip_detect_win.nasl, + scripts/secpod_pplive_code_exe_vuln.nasl, + scripts/gb_expressionengine_detect.nasl, + scripts/gb_openssl_mult_vuln_lin.nasl, + scripts/gb_7zip_archive_handling_vuln_lin.nasl, + scripts/gb_openssl_detect_win.nasl, + scripts/gb_7zip_detect_lin.nasl, + scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl, + scripts/secpod_pplive_detect.nasl, + scripts/gb_expressionengine_xss_vuln.nasl, + scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl: + Added new plugins + 2009-04-01 christian Eric Edjenguele * script/remote-detect-WindowsSharepointServices.nasl: Added: trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_lin.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_lin.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_lin.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,84 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_7zip_archive_handling_vuln_lin.nasl 1303 2009-04-01 13:00:29Z apr $ +# +# 7-Zip Unspecified Archive Handling Vulnerability (Linux) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800256); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2008-6536"); + script_bugtraq_id(28285); + script_name(english:"7-Zip Unspecified Archive Handling Vulnerability (Linux)"); + desc["english"] = " + + Overview: This host is installed with 7zip and is prone to Unspecified + vulnerability. + + Vulnerability Insight: + This flaw occurs due to memory corruption while handling malformed archives. + + Impact: + Successful exploitation will let the attacker execute arbitrary code in the + affected system and cause denial of service. + + Affected Software/OS: + 7zip version prior to 4.57 on Linux + + Fix: + Upgrade to 7zip version 4.57 + http://www.7-zip.org + + References: + http://secunia.com/advisories/29434 + http://www.vupen.com/english/advisories/2008/0914/references + http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html + + CVSS Score: + CVSS Base Score : 10.0 (AV:N/AC:L/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 7.4 + Risk factor: High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of 7zip (Linux)"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("gb_7zip_detect_lin.nasl"); + script_require_keys("7zip/Lin/Ver"); + exit(0); +} + + +include("version_func.inc"); + +zipVer = get_kb_item("7zip/Lin/Ver"); +if(!zipVer){ + exit(0); +} + +# Grep for 7zip version prior to 4.57 +if(version_is_less(version:zipVer, test_version:"4.57")){ + security_hole(0); +} Added: trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_win.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_win.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_7zip_archive_handling_vuln_win.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,83 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_7zip_archive_handling_vuln_win.nasl 1303 2009-04-01 21:20:29Z apr $ +# +# 7-Zip Unspecified Archive Handling Vulnerability (Win) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800261); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2008-6536"); + script_bugtraq_id(28285); + script_name(english:"7-Zip Unspecified Archive Handling Vulnerability (Win)"); + desc["english"] = " + + Overview: This host is installed with 7zip and is prone to Unspecified + vulnerability. + + Vulnerability Insight: + This flaw occurs due to memory corruption while handling malformed archives. + + Impact: + Successful exploitation will let the attacker execute arbitrary code in the + affected system and cause denial of service. + + Affected Software/OS: + 7zip version prior to 4.57 on Windows. + + Fix: + Upgrade to 7zip version 4.57 + http://www.7-zip.org + + References: + http://secunia.com/advisories/29434 + http://www.vupen.com/english/advisories/2008/0914/references + http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html + + CVSS Score: + CVSS Base Score : 10.0 (AV:N/AC:L/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 7.4 + Risk factor: High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of 7zip"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("gb_7zip_detect_win.nasl"); + script_require_keys("7zip/Win/Ver"); + exit(0); +} + +include("version_func.inc"); + +version = get_kb_item("7zip/Win/Ver"); +if(!version){ + exit(0); +} + +# Grep for 7zip version prior to 4.57 +if(version_is_less(version:version, test_version:"4.57")){ + security_hole(0); +} Added: trunk/openvas-plugins/scripts/gb_7zip_detect_lin.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_7zip_detect_lin.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_7zip_detect_lin.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,68 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_7zip_detect_lin.nasl 1303 2009-04-01 10:40:24Z apr $ +# +# 7zip Version Detection (Linux) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800255); + script_version("Revision: 1.0 "); + script_name(english:"7zip Version Detection (Linux)"); + desc["english"] = " + Overview : This script finds the installed version of 7zip and saves the + result in KB. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set KB for the version of 7zip"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"General"); + exit(0); +} + + +include("version_func.inc"); + +sock = ssh_login_or_reuse_connection(); +if(!sock){ + exit(0); +} + +paths = find_file(file_name:"7za", file_path:"/", useregex:TRUE, + regexpar:"$", sock:sock); +foreach zipBin (paths) +{ + zipVer = get_bin_version(full_prog_name:chomp(zipBin), sock:sock, + version_argv:"version", + ver_pattern:"p7zip Version ([0-9]\.[0-9][0-9]?)"); + if(zipVer[1] != NULL) + { + set_kb_item(name:"7zip/Lin/Ver", value:zipVer[1]); + ssh_close_connection(); + exit(0); + } +} +ssh_close_connection(); Property changes on: trunk/openvas-plugins/scripts/gb_7zip_detect_lin.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_7zip_detect_win.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_7zip_detect_win.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_7zip_detect_win.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,66 @@ +############################################################################## +# OpenVAS Vulnerability Test +# $Id: gb_7zip_detect_win.nasl 1303 2009-04-01 20:40:24Z apr $ +# +# 7zip Version Detection (Win) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http//intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800260); + script_version("$Revision: 1.0 $"); + script_name(english:"7zip Version Detection (Win)"); + desc["english"] = " + Overview : This script finds the installed 7zip version and saves the + result in KB item. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set Version of 7zip in KB for Windows"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"General"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\7-Zip\"; +name = registry_get_sz(key:key, item:"DisplayName"); +if("7-Zip" >< name) +{ + string = eregmatch(pattern:"([0-9]\.[0-9][0-9]?)", string:name); + if(string[0] != NULL) + { + set_kb_item(name:"7zip/Win/Ver", value:string[0]); + exit(0); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_7zip_detect_win.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_expressionengine_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_expressionengine_detect.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_expressionengine_detect.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,74 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_expressionengine_detect.nasl 1263 2009-04-01 17:33:29Z apr $ +# +# ExpressionEngine CMS Version Detection +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800262); + script_version("$Revision: 1.0 $"); + script_name(english:"ExpressionEngine CMS Version Detection"); + desc["english"] = " + + Overview: The script detects the version of ExpressionEngine CMS and sets + the result in KB. + + Risk Factor: Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set the KB for the Version of ExpressionEngine CMS"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"General"); + script_dependencies("http_version.nasl"); + script_require_ports("Services/www", 80, 8080); + exit(0); +} + + +include("http_func.inc"); +include("http_keepalive.inc"); + +httpPort = get_kb_item("Services/www"); +if(!httpPort){ + exit(0); +} + +# Possible directory checks for ExpressionEngine Installed Location +foreach dir (make_list("/", "/system", "/cms/system", cgi_dirs())) +{ + sndReq = http_get(item:string(dir, "/index.php"), port:httpPort); + rcvRes = http_keepalive_send_recv(port:httpPort, data:sndReq); + if("ExpressionEngine" >< rcvRes) + { + cmsVer = eregmatch(pattern:"ExpressionEngine Core ([0-9]\.[0-9.]+)", string:rcvRes); + if(cmsVer[1] == NULL){ + cmsVer = eregmatch(pattern:"v ([0-9]\.[0-9.]+)", string:rcvRes); + } + if(cmsVer[1] != NULL){ + set_kb_item(name:"www/" + httpPort + "/ExpEngine", value:cmsVer[1]); + } + exit(0); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_expressionengine_detect.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_expressionengine_xss_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_expressionengine_xss_vuln.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_expressionengine_xss_vuln.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,92 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_expressionengine_xss_vuln.nasl 1263 2009-04-01 19:10:34Z apr $ +# +# ExpressionEngine CMS Cross Site Scripting Vulnerability +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800263); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-1070"); + script_bugtraq_id(34193); + script_name(english:"ExpressionEngine CMS Cross Site Scripting Vulnerability"); + desc["english"] = " + + Overview: + This host is running ExpressionEngine CMS and is prone to Cross Site + Scripting vulnerability. + + Vulnerability Insight: + Inadequate validation of user supplied input to the system/index.php script + leads to cross site attacks. + + Impact: + Successful exploitation will allow remote attackers to inject arbitrary HTML + codes in an image by tricking the user to view a malicious profile page. + + Impact Level: Application + + Affected Software/OS: + ExpresssionEngine versions prior to 1.6.7 on all platforms. + + Fix: + Update ExpressionEngine to version 1.6.7 + http://expressionengine.com + + References: + http://secunia.com/advisories/34379 + http://xforce.iss.net/xforce/xfdb/49359 + http://www.securityfocus.com/archive/1/archive/1/502045/100/0/threaded + + CVSS Score: + CVSS Base Score : 4.3 (AV:N/AC:M/Au:NR/C:N/I:P/A:N) + CVSS Temporal Score : 3.4 + Risk factor: Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Check version of ExpressionEngine CMS"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Web application abuses"); + script_dependencies("gb_expressionengine_detect.nasl"); + script_require_ports("Services/www", 80, 8080); + exit(0); +} + +include("http_func.inc"); +include("version_func.inc"); + +httpPort = get_http_port(default:80); +if(!httpPort){ + exit(0); +} + +expressionVer = get_kb_item("www/" + httpPort + "/ExpEngine"); +if(expressionVer == NULL){ + exit(0); +} + +if(version_is_less(version:expressionVer, test_version:"1.6.7")){ + security_warning(httpPort); +} Property changes on: trunk/openvas-plugins/scripts/gb_expressionengine_xss_vuln.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_detect.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_detect.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,87 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_justsystems_ichitaro_prdts_detect.nasl 1144 2009-04-01 13:51:44Z apr $ +# +# JustSystems Ichitaro Product(s) Version Detection +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800542); + script_version("$Revision: 1.0 $"); + script_name(english:"JustSystems Ichitaro Product(s) Version Detection"); + desc["english"] =" + + Overview : This script finds the installed product version of Ichitaro + and Ichitaro viewer and sets the result in KB. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set KB for the version of JustSystems Ichitaro Products"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"General"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +if(!registry_key_exists(key:"SOFTWARE\Justsystem")){ + exit(0); +} + +viewerPath = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion" + + "\App Paths\TAROVIEW.EXE", item:"Path"); +if(viewerPath) +{ + path = viewerPath + "\TAROVIEW.EXE"; + share = ereg_replace(pattern:"([A-Za-z]):.*", replace:"\1$", string:path); + file = ereg_replace(pattern:"[A-Za-z]:(.*)", replace:"\1", string:path); + viewerVer = GetVer(file:file, share:share); + + if(viewerVer != NULL){ + set_kb_item(name:"Ichitaro/Viewer/Ver", value:viewerVer); + } +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\"; +foreach item (registry_enum_keys(key:key)) +{ + appName = registry_get_sz(key:key + item, item:"DisplayName"); + if("ATOK" >< appName) + { + appVer = eregmatch(pattern:"ATOK ([0-9.]+)", string:appName); + if(appVer[1] != NULL){ + set_kb_item(name:"Ichitaro/Ver", value:appVer[1]); + } + exit(0); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_detect.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,104 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_justsystems_ichitaro_prdts_dos_vuln.nasl 1144 2009-04-01 17:55:26Z apr $ +# +# JustSystems Ichitaro Products Denial Of Service Vulnerability. +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800544); + script_version("$Revision: 1.1 $"); + script_cve_id("CVE-2009-1054"); + script_bugtraq_id(34138); + script_name(english:"JustSystems Ichitaro Products Denial Of Service Vulnerability"); + desc["english"] = " + + Overview: This host has JustSystems Ichitaro product(s) installed and + is prone to denial of service vulnerability. + + Vulnerability Insight: + JustSystems products leads to a memory corruption while handling malformed + documents using Web PURAGUINBYUA. + + Impact: + This issue is widely exploited by Trojan.Tarodrop.H, a Trojan horse that + drops several files on to the compromised system leading to arbitrary + code execution and also crashing of the application. + + Impact Level: Application + + Affected Software/OS: + JustSystems Ichitaro 13, 2004 thruogh 2008, + JustSystems Ichitaro viewer 5.1.5.0 on Windows. + + Fix: Apply the security patches. + http://www.justsystems.com/jp/info/js09001.html + + ***** + NOTE: Ignore this warning, if patch is applied already. + ***** + + References: + http://secunia.com/advisories/34405/ + http://xforce.iss.net/xforce/xfdb/49280 + http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-031608-2424-99 + + CVSS Score: + CVSS Base Score : 9.3 (AV:N/AC:M/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 7.3 + Risk factor: High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the Version of Ichitaro Product(s)"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("gb_justsystems_ichitaro_prdts_detect.nasl"); + script_require_keys("Ichitaro/Ver", "Ichitaro/Viewer/Ver"); + exit(0); +} + + +include("version_func.inc"); + +# Check for Ichitaro 13, 2004 theough 2008 +ichitaroVer = get_kb_item("Ichitaro/Ver"); +if(ichitaroVer) +{ + if(version_in_range(version:ichitaroVer, test_version:"2004", + test_version2:"2008")|| + ichitaroVer =~ "13") + { + security_hole(0); + exit(0); + } +} + +# Check for Ichitaro viewer 5.1.5.0 => 19.0.1.0 and prior +viewerVer = get_kb_item("Ichitaro/Viewer/Ver"); +if(viewerVer) +{ + if(version_is_less_equal(version:viewerVer, test_version:"19.0.1.0")){ + security_hole(0); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_justsystems_ichitaro_prdts_dos_vuln.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_nullftp_server_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_nullftp_server_detect.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_nullftp_server_detect.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,83 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_nullftp_server_detect.nasl 1268 2009-04-01 10:37:24Z apr $ +# +# NULL FTP Server Version Detection +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800545); + script_version("$Revision: 1.0 $"); + script_name(english:"NULL FTP Server Version Detection"); + desc["english"] = " + Overview : This script finds the installed NULL FTP Server version + and saves the result in KB. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set Version of NULL FTP Server in KB"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"FTP"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\"; +foreach item (registry_enum_keys(key:key)) +{ + appName = registry_get_sz(key:key + item, item:"DisplayName"); + if("Null FTP Server" >< appName) + { + nullftpVer = eregmatch(pattern:"Null FTP Server ([0-9.]+)", string:appName); + nullftpVer = nullftpVer[1]; + if(nullftpVer == NULL) + { + exePath = registry_get_sz(key:key + item, item:"InstallLocation"); + if(!exePath){ + exit(0); + } + + exePath = exePath + "NullFtpServer.exe"; + share = ereg_replace(pattern:"([A-Z]):.*", replace:"\1$", string:exePath); + file = ereg_replace(pattern:"[A-Z]:(.*)", replace:"\1", string:exePath); + + nullftpVer = GetVer(file:file, share:share); + } + + # Set the Version in KB + if(nullftpVer != NULL){ + set_kb_item(name:"NullFTP/Server/Ver", value:nullftpVer); + } + } +} Property changes on: trunk/openvas-plugins/scripts/gb_nullftp_server_detect.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,100 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_nullftp_server_site_cmd_exec_vuln.nasl 1268 2009-04-01 20:10:24Z apr $ +# +# Null FTP Server SITE Command Execution Vulnerability +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800546); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2008-6534"); + script_bugtraq_id(32656); + script_name(english:"Null FTP Server SITE Command Execution Vulnerability"); + desc["english"] = " + + Overview: This host has Null FTP Server installed and is prone to arbitrary + code execution vulnerability. + + Vulnerability Insight: + An error is generated while handling custom SITE command containing shell + metacharacters such as & (ampersand) as a part of an argument. + + Impact: + Successful exploitation will let the attacker to execute arbitrary codes + in the context of the application. + + Impact Level: Application + + Affected Software/OS: + NULL FTP Server Free and Pro version prior to 1.1.0.8 on Windows + + Fix: Upgarde to the latest version 1.1.0.8 or later + http://www.vwsolutions.com/NullFTPServer/ + + References: + http://secunia.com/advisories/32999 + http://www.milw0rm.com/exploits/7355 + http://xforce.iss.net/xforce/xfdb/47099 + + CVSS Score: + CVSS Base Score : 7.1 (AV:N/AC:H/Au:SI/C:C/I:C/A:C) + CVSS Temporal Score : 5.6 + Risk factor: High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the Version of NULL FTP Server"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"FTP"); + script_dependencies("gb_nullftp_server_detect.nasl"); + script_require_keys("NullFTP/Server/Ver"); + exit(0); +} + + +include("ftp_func.inc"); +include("version_func.inc"); + +nullPort = get_kb_item("Services/ftp"); +if(!nullPort){ + nullPort = 21; +} + +if(get_port_state(nullPort)) +{ + banner = get_ftp_banner(port:nullPort); + if("Null FTP Server" >!< banner){ + exit(0); + } + + ver = get_kb_item("NullFTP/Server/Ver"); + if(!ver){ + exit(0); + } + + # Grep for version prior to 1.1.0.8 + if(version_is_less(version:ver, test_version:"1.1.0.8")){ + security_hole(nullPort); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_nullftp_server_site_cmd_exec_vuln.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,68 @@ +############################################################################## +# OpenVAS Vulnerability Test +# $Id: gb_openssl_detect_win.nasl 1258 2009-04-01 14:30:24Z apr $ +# +# OpenSSL Version Detection (Win) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800527); + script_version("$Revision: 1.0 $"); + script_name(english:"OpenSSL Version Detection (Win)"); + desc["english"] = " + Overview : This script finds the installed OpenSSL version and saves the + result in KB item. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set Version of OpenSSL in KB for Windows"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"General"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\"; +foreach item (registry_enum_keys(key:key)) +{ + name = registry_get_sz(key:key + item, item:"DisplayName"); + if("OpenSSL" >< name) + { + ver = eregmatch(pattern:"([0-9]\.[0-9]\.[0-9.]+[a-z]?)", string:name); + if(ver[0] != NULL){ + set_kb_item(name:"OpenSSL/Win/Ver", value:ver[0]); + } + exit(0); + } +} Property changes on: trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_lin.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_lin.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_lin.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,90 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_openssl_mult_vuln_lin.nasl 1258 2009-04-01 13:20:29Z apr $ +# +# OpenSSL Multiple Vulnerabilities (Linux) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800259); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-0590", "CVE-2009-0591", "CVE-2009-0789"); + script_bugtraq_id(34256); + script_name(english:"OpenSSL Multiple Vulnerabilities (Linux)"); + desc["english"] = " + + Overview: This host is installed with OpenSSL and is prone to Multiple + Vulnerabilities. + + Vulnerability Insight: + - error exists in the 'ASN1_STRING_print_ex()' function when printing + 'BMPString' or 'UniversalString' strings which causes invalid memory + access violation. + - 'CMS_verify' function incorrectly handles an error condition when + processing malformed signed attributes. + - error when processing malformed 'ASN1' structures which causes invalid + memory access violation. + + Impact: + Successful exploitation will let the attacker cause memory access violation, + security bypass or can cause denial of service. + + Affected Software/OS: + OpenSSL version prior to 0.9.8k on all running platform. + + Fix: + Upgrade to OpenSSL version 0.9.8k + http://openssl.org + + References: + http://secunia.com/advisories/34411 + http://www.openssl.org/news/secadv_20090325.txt + http://securitytracker.com/alerts/2009/Mar/1021905.html + + CVSS Score: + CVSS Base Score : 6.4 (AV:N/AC:L/Au:NR/C:N/I:P/A:P) + CVSS Temporal Score : 4.7 + Risk factor: Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of OpenSSL"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("gb_openssl_detect_lin.nasl"); + script_require_keys("OpenSSL/Linux/Ver"); + exit(0); +} + + +include("version_func.inc"); + +opensslVer = get_kb_item("OpenSSL/Linux/Ver"); +if(!opensslVer){ + exit(0); +} + +# Grep for OpenSSL version prior to 0.9.8k +if(version_is_less(version:opensslVer, test_version:"0.9.8k")){ + security_warning(0); +} Added: trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_win.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_win.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_win.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,90 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_openssl_mult_vuln_win.nasl 1258 2009-04-01 13:20:29Z apr $ +# +# OpenSSL Multiple Vulnerabilities (Win) +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800258); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-0590", "CVE-2009-0591", "CVE-2009-0789"); + script_bugtraq_id(34256); + script_name(english:"OpenSSL Multiple Vulnerabilities (Win)"); + desc["english"] = " + + Overview: This host is installed with OpenSSL and is prone to Multiple + Vulnerabilities. + + Vulnerability Insight: + - error exists in the 'ASN1_STRING_print_ex()' function when printing + 'BMPString' or 'UniversalString' strings which causes invalid memory + access violation. + - 'CMS_verify' function incorrectly handles an error condition when + processing malformed signed attributes. + - error when processing malformed 'ASN1' structures which causes invalid + memory access violation. + + Impact: + Successful exploitation will let the attacker cause memory access violation, + security bypass or can cause denial of service. + + Affected Software/OS: + OpenSSL version prior to 0.9.8k on all running platform. + + Fix: + Upgrade to OpenSSL version 0.9.8k + http://openssl.org + + References: + http://secunia.com/advisories/34411 + http://www.openssl.org/news/secadv_20090325.txt + http://securitytracker.com/alerts/2009/Mar/1021905.html + + CVSS Score: + CVSS Base Score : 6.4 (AV:N/AC:L/Au:NR/C:N/I:P/A:P) + CVSS Temporal Score : 4.7 + Risk factor: Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of OpenSSL"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("gb_openssl_detect_win.nasl"); + script_require_keys("OpenSSL/Win/Ver"); + exit(0); +} + + +include("version_func.inc"); + +opensslVer = get_kb_item("OpenSSL/Win/Ver"); +if(!opensslVer){ + exit(0); +} + +# Grep for OpenSSL version prior to 0.9.8k +if(version_is_less(version:opensslVer, test_version:"0.9.8k")){ + security_warning(0); +} Property changes on: trunk/openvas-plugins/scripts/gb_openssl_mult_vuln_win.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/secpod_pplive_code_exe_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/secpod_pplive_code_exe_vuln.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/secpod_pplive_code_exe_vuln.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,88 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: secpod_pplive_code_exe_vuln.nasl 1207 2009-03-31 13:50:24Z mar $ +# +# PPLive Multiple Argument Injection Vulnerabilities +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 SecPod, http://www.secpod.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(900536); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-1087"); + script_bugtraq_id(34128); + script_name(english:"PPLive Multiple Argument Injection Vulnerabilities"); + desc["english"] = " + + Overview: This host has PPLive installed and is prone to multiple argument + injection vulnerabilities. + + Vulnerability Insight: + Improper validation of user supplied input to the synacast://, Play://, + pplsv://, and ppvod:// URI handlers via a UNC share pathname in the + LoadModule argument leads to this injection attacks. + + Impact: + By persuading a victim to click on a specially-crafted URI, attackers can + execute arbitrary script code by loading malicious files(dll) through the + UNC share pathname in the LoadModule argument. + + Impact Level: Application + + Affected Software/OS: + PPLive version 1.9.21 and prior on Windows. + + Fix: No solution or patch is available as on 01st April, 2009. Information + regarding this issue will be updated once the solution details are available. + For updates refer, http://www.pplive.com/en/index.html + + References: + http://secunia.com/advisories/34327 + http://www.milw0rm.com/exploits/8215 + + CVSS Score: + CVSS Base Score : 9.3 (AV:N/AC:M/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 8.4 + Risk factor: Critical"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the Version of PPLive"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 SecPod"); + script_family(english:"General"); + script_dependencies("secpod_pplive_detect.nasl"); + script_require_keys("PPLive/Ver"); + exit(0); +} + + +include("version_func.inc"); + +ppliveVer = get_kb_item("PPLive/Ver"); +if(!ppliveVer){ + exit(0); +} + +# Check for PPLive version 1.9.21 and prior +if(version_is_less_equal(version:ppliveVer, test_version:"1.9.21")){ + security_hole(0); +} Property changes on: trunk/openvas-plugins/scripts/secpod_pplive_code_exe_vuln.nasl ___________________________________________________________________ Name: svn:executable + * Added: trunk/openvas-plugins/scripts/secpod_pplive_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/secpod_pplive_detect.nasl 2009-04-02 01:59:20 UTC (rev 2984) +++ trunk/openvas-plugins/scripts/secpod_pplive_detect.nasl 2009-04-02 06:15:32 UTC (rev 2985) @@ -0,0 +1,68 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: secpod_pplive_detect.nasl 1207 2009-03-31 12:47:29Z mar $ +# +# PPLive Version Detection +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 SecPod, http://www.secpod.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(900535); + script_version("$Revision: 1.0 $"); + script_name(english:"PPLive Version Detection"); + desc["english"] = " + Overview: This script detects the installed version of PPLive and sets + the reuslt in KB. + + Risk Factor: Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set KB for the version of PPLive"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 SecPod"); + script_family(english:"General"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\"; +foreach item (registry_enum_keys(key:key)) +{ + ppliveName = registry_get_sz(key:key + item, item:"DisplayName"); + if("PPLive" >< ppliveName) + { + ppliveVer = registry_get_sz(key:key + item, item:"DisplayVersion"); + if(ppliveVer != NULL){ + set_kb_item(name:"PPLive/Ver", value:ppliveVer); + } + exit(0); + } +} Property changes on: trunk/openvas-plugins/scripts/secpod_pplive_detect.nasl ___________________________________________________________________ Name: svn:executable + * From scm-commit at wald.intevation.org Thu Apr 2 09:05:25 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 09:05:25 +0200 (CEST) Subject: [Openvas-commits] r2986 - trunk/doc/website Message-ID: <20090402070525.8FBEC40806@pyrosoma.intevation.org> Author: chandra Date: 2009-04-02 09:05:25 +0200 (Thu, 02 Apr 2009) New Revision: 2986 Modified: trunk/doc/website/openvas-cr-23.htm4 Log: Included newly used familiies and the description Modified: trunk/doc/website/openvas-cr-23.htm4 =================================================================== --- trunk/doc/website/openvas-cr-23.htm4 2009-04-02 06:15:32 UTC (rev 2985) +++ trunk/doc/website/openvas-cr-23.htm4 2009-04-02 07:05:25 UTC (rev 2986) @@ -119,11 +119,17 @@ 'Red Hat Local Security Checks', 'Solaris Local Security Checks', 'SuSE Local Security Checks' + 'Mandrake Local Security Checks' 'Misc.', 'Web Servers, 'Local test', 'Credentials', 'Windows SMB' + 'Abus de CGI' + 'SLAD' + 'Divers' + 'Databases' + 'D\xe9ni de service' ] @@ -140,6 +146,9 @@ ['Local test', 'Local test SuSE/FC/Gent./Ubuntu', 'Windows SMB' + 'Abus de CGI' + 'Divers' + 'D\xe9ni de service' ] @@ -244,7 +253,8 @@ service. - 'Service detection' - NVT is attempting to discover remote service. + NVT is attempting to discover remote or local service, application, server, + device etc., - 'Settings' NVT's that set user preferences through script_add_preference() function. @@ -300,6 +310,25 @@ Local Security checks developed for SuSE Linux based on the security advisories released for a package update. +- 'Fedora Local Security Checks' + Local Security checks developed for Fedora Linux based on the security + advisories released for a package update. + +- 'CentOS Local Security Checks' + Local Security checks developed for CentOS Linux based on the security + advisories released for a package update. + +- 'Ubuntu Local Security Checks' + Local Security checks developed for Ubuntu Linux based on the security + advisories released for a package update. + +- 'Mandrake Local Security Checks' + Local Security checks developed for Mandrake Linux based on the security + advisories released for a package update. + +- 'SLAD' + All plugins related to SLAD + - 'Web Servers NVT's detecting vulnerabilities in any web server or application server. @@ -318,6 +347,9 @@ - 'Malware' NVT is attemping to detect a virus, worm, or trojan including backdoors. +- 'Databases' + All NVT's discovering Database related vulnerabilities + - 'General' NVT's that cannot be categorized into any of the above families are grouped into General. From scm-commit at wald.intevation.org Thu Apr 2 09:12:08 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 09:12:08 +0200 (CEST) Subject: [Openvas-commits] r2987 - trunk/doc/website Message-ID: <20090402071208.C51F140811@pyrosoma.intevation.org> Author: chandra Date: 2009-04-02 09:12:08 +0200 (Thu, 02 Apr 2009) New Revision: 2987 Modified: trunk/doc/website/openvas-cr-23.htm4 Log: Updated change history Modified: trunk/doc/website/openvas-cr-23.htm4 =================================================================== --- trunk/doc/website/openvas-cr-23.htm4 2009-04-02 07:05:25 UTC (rev 2986) +++ trunk/doc/website/openvas-cr-23.htm4 2009-04-02 07:12:08 UTC (rev 2987) @@ -398,4 +398,11 @@ 2008-12-15 Chandrashekhar B <bchandra at secpod.com>:
- Incorporated feedback from Jan-Oliver and Stjepan +
  • + 2009-04-02 Chandrashekhar B <bchandra at secpod.com>:
    + - Updated with newly used families and their description + - Also updated description for "Service detection" to mean all + detection NASL's +
    • + From scm-commit at wald.intevation.org Thu Apr 2 09:56:02 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 09:56:02 +0200 (CEST) Subject: [Openvas-commits] r2988 - in trunk/openvas-server: . openvasd Message-ID: <20090402075602.9C49440816@pyrosoma.intevation.org> Author: felix Date: 2009-04-02 09:56:02 +0200 (Thu, 02 Apr 2009) New Revision: 2988 Modified: trunk/openvas-server/ChangeLog trunk/openvas-server/openvasd/openvasd.c Log: Removed build-breaking debug code. * openvasd/openvasd.c: Removed build-breaking debug code. Modified: trunk/openvas-server/ChangeLog =================================================================== --- trunk/openvas-server/ChangeLog 2009-04-02 07:12:08 UTC (rev 2987) +++ trunk/openvas-server/ChangeLog 2009-04-02 07:56:02 UTC (rev 2988) @@ -1,3 +1,9 @@ +2009-04-02 Felix Wolfsteller + + Removed build-breaking debug code. + + * openvasd/openvasd.c: Removed build-breaking debug code. + 2009-04-01 Felix Wolfsteller Cosmetics, reformatting, doc in nasl_plugins module. Modified: trunk/openvas-server/openvasd/openvasd.c =================================================================== --- trunk/openvas-server/openvasd/openvasd.c 2009-04-02 07:12:08 UTC (rev 2987) +++ trunk/openvas-server/openvasd/openvasd.c 2009-04-02 07:56:02 UTC (rev 2988) @@ -978,7 +978,6 @@ if (dup2(i, STDERR_FILENO) != STDERR_FILENO) fprintf(stderr, "Could not redirect stderr to /dev/null: %s\n", strerror(errno)); close(i); - exit (); if(!fork()) { setsid(); From scm-commit at wald.intevation.org Thu Apr 2 10:30:32 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 10:30:32 +0200 (CEST) Subject: [Openvas-commits] r2989 - in trunk/openvas-client: . nessus src/openvas-lib src/util Message-ID: <20090402083032.27AE9407FB@pyrosoma.intevation.org> Author: felix Date: 2009-04-02 10:30:30 +0200 (Thu, 02 Apr 2009) New Revision: 2989 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/configure.in trunk/openvas-client/nessus/Makefile trunk/openvas-client/src/openvas-lib/Makefile trunk/openvas-client/src/util/Makefile Log: Increased GTK+ version requirement (from 2.4 to 2.6). Resolved build problems when configured with --disable-gtk. * configure.in: Increased version requirement for gtk+. * nessus/Makefile: Moved hash_table_file object into util_objs list, NESSUSCLIENT target depending on utils target. * src/util/Makefile, src/openvas-lib/Makefile: Include GLib cflags. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 07:56:02 UTC (rev 2988) +++ trunk/openvas-client/ChangeLog 2009-04-02 08:30:30 UTC (rev 2989) @@ -1,3 +1,15 @@ +2009-04-02 Felix Wolfsteller + + Increased GTK+ version requirement (from 2.4 to 2.6). + Resolved build problems when configured with --disable-gtk. + + * configure.in: Increased version requirement for gtk+. + + * nessus/Makefile: Moved hash_table_file object into util_objs list, + NESSUSCLIENT target depending on utils target. + + * src/util/Makefile, src/openvas-lib/Makefile: Include GLib cflags. + 2009-03-31 Felix Wolfsteller * nessus/prefs_dialog/prefs_comment.c (prefs_dialog_comment): Proper Modified: trunk/openvas-client/configure.in =================================================================== --- trunk/openvas-client/configure.in 2009-04-02 07:56:02 UTC (rev 2988) +++ trunk/openvas-client/configure.in 2009-04-02 08:30:30 UTC (rev 2989) @@ -521,7 +521,7 @@ test "x$enable_gtk" = "xno" || { -pkg_modules="gtk+-2.0 >= 2.4.0" +pkg_modules="gtk+-2.0 >= 2.6.0" PKG_CHECK_MODULES(GTKCONFIG, [$pkg_modules]) AC_SUBST(GTKCONFIG_CFLAGS) AC_SUBST(GTKCONFIG_LIBS) Modified: trunk/openvas-client/nessus/Makefile =================================================================== --- trunk/openvas-client/nessus/Makefile 2009-04-02 07:56:02 UTC (rev 2988) +++ trunk/openvas-client/nessus/Makefile 2009-04-02 08:30:30 UTC (rev 2989) @@ -71,11 +71,11 @@ ../src/gui/slad_install.o ../src/gui/ssh_keys_dialog.o \ ../src/gui/treeview_support.o \ ../src/gui/ssh_key_info_form.o ../src/gui/nvt_pref_sshlogin.o \ - ../src/openvas-lib/hash_table_file.o \ ../src/gui/severity_override_form.o UTIL_OBJS = ../src/util/parseutils.o \ - ../src/util/severity_filter.o + ../src/util/severity_filter.o \ + ../src/openvas-lib/hash_table_file.o \ all : cflags ${make_bindir}/$(NESSUSCLIENT) @@ -84,14 +84,14 @@ test -d ${make_bindir} || mkdir ${make_bindir} cp $(NESSUSCLIENT) ${make_bindir} -cflags : +cflags : @echo "$(NESSUS_CFLAGS) $(NESSUS_DEFS) -DPACKAGE=\"OpenVAS-Client\" $(INCLUDE)" | sed 's/\"/\\\"/g' > cflags.tmp @echo "echo \"`cat cflags.tmp`\"" > cflags @rm cflags.tmp @chmod +x cflags $(NESSUSCLIENT) : cflags $(OBJS) $(if $(USE_GTK),$(GTK_OBJS) gui) \ - libnessus-client + libnessus-client util $(CC) $(LDFLAGS) $(OBJS) $(if $(USE_GTK),$(GTK_OBJS) $(GUI_OBJS)) $(UTIL_OBJS) -o $(NESSUSCLIENT) $(LIBS) libnessus-client : Modified: trunk/openvas-client/src/openvas-lib/Makefile =================================================================== --- trunk/openvas-client/src/openvas-lib/Makefile 2009-04-02 07:56:02 UTC (rev 2988) +++ trunk/openvas-client/src/openvas-lib/Makefile 2009-04-02 08:30:30 UTC (rev 2989) @@ -36,7 +36,7 @@ include ../../nessus.tmpl GTKLIBS= $(GTKCONFIG_LIBS) -INCLUDE = ${include} $(GTKCONFIG_CFLAGS) -I../../nessus -I.. -I../../include +INCLUDE = ${include} $(GTKCONFIG_CFLAGS) $(GLIB_CFLAGS) -I../../nessus -I.. -I../../include OPENVAS_INCLUDE=`sh ./cflags` CFLAGS+=-Wall Modified: trunk/openvas-client/src/util/Makefile =================================================================== --- trunk/openvas-client/src/util/Makefile 2009-04-02 07:56:02 UTC (rev 2988) +++ trunk/openvas-client/src/util/Makefile 2009-04-02 08:30:30 UTC (rev 2989) @@ -36,7 +36,7 @@ include ../../nessus.tmpl GTKLIBS= $(GTKCONFIG_LIBS) -INCLUDE = ${include} $(GTKCONFIG_CFLAGS) -I../../nessus -I.. -I../../include -I../openvas-lib -I../gui/ -I. +INCLUDE = ${include} $(GTKCONFIG_CFLAGS) $(GLIB_CFLAGS) -I../../nessus -I.. -I../../include -I../openvas-lib -I../gui/ -I. OPENVAS_INCLUDE=`sh ./cflags` CFLAGS+=-Wall From scm-commit at wald.intevation.org Thu Apr 2 10:33:20 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 10:33:20 +0200 (CEST) Subject: [Openvas-commits] r2990 - in trunk/openvas-client: . nessus/prefs_dialog Message-ID: <20090402083320.1D6114081A@pyrosoma.intevation.org> Author: felix Date: 2009-04-02 10:33:19 +0200 (Thu, 02 Apr 2009) New Revision: 2990 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/nessus/prefs_dialog/prefs_report.c Log: Changed wording to comply to standards. * nessus/prefs_dialog/prefs_report.c (show_popup_menu): Changed wording to comply to standards. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 08:30:30 UTC (rev 2989) +++ trunk/openvas-client/ChangeLog 2009-04-02 08:33:19 UTC (rev 2990) @@ -1,5 +1,12 @@ 2009-04-02 Felix Wolfsteller + Changed wording to comply to standards. + + * nessus/prefs_dialog/prefs_report.c (show_popup_menu): Changed wording + to comply to standards. + +2009-04-02 Felix Wolfsteller + Increased GTK+ version requirement (from 2.4 to 2.6). Resolved build problems when configured with --disable-gtk. Modified: trunk/openvas-client/nessus/prefs_dialog/prefs_report.c =================================================================== --- trunk/openvas-client/nessus/prefs_dialog/prefs_report.c 2009-04-02 08:30:30 UTC (rev 2989) +++ trunk/openvas-client/nessus/prefs_dialog/prefs_report.c 2009-04-02 08:33:19 UTC (rev 2990) @@ -765,7 +765,7 @@ GtkWidget *menuitem; menu = gtk_menu_new(); - menuitem = gtk_menu_item_new_with_label(_("Severity overrides...")); + menuitem = gtk_menu_item_new_with_label(_("Severities...")); gtk_menu_shell_append(GTK_MENU_SHELL(menu), menuitem); gtk_widget_set_sensitive (menuitem, !Context->is_severity_mapped); From scm-commit at wald.intevation.org Thu Apr 2 11:27:43 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 11:27:43 +0200 (CEST) Subject: [Openvas-commits] r2991 - in trunk/openvas-client: . po Message-ID: <20090402092743.511734080D@pyrosoma.intevation.org> Author: felix Date: 2009-04-02 11:27:42 +0200 (Thu, 02 Apr 2009) New Revision: 2991 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/po/de.po Log: po/de.po: Updated translation. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 08:33:19 UTC (rev 2990) +++ trunk/openvas-client/ChangeLog 2009-04-02 09:27:42 UTC (rev 2991) @@ -1,5 +1,9 @@ 2009-04-02 Felix Wolfsteller + * po/de.po: Updated translation. + +2009-04-02 Felix Wolfsteller + Changed wording to comply to standards. * nessus/prefs_dialog/prefs_report.c (show_popup_menu): Changed wording Modified: trunk/openvas-client/po/de.po =================================================================== --- trunk/openvas-client/po/de.po 2009-04-02 08:33:19 UTC (rev 2990) +++ trunk/openvas-client/po/de.po 2009-04-02 09:27:42 UTC (rev 2991) @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: OpenVAS-Client 1.0\n" "Report-Msgid-Bugs-To: openvas-devel at wald.intevation.org\n" -"POT-Creation-Date: 2009-01-02 01:47+0100\n" +"POT-Creation-Date: 2009-04-02 10:38+0200\n" "PO-Revision-Date: 2004-08-17 01:05+0200\n" "Last-Translator: Michael Wiegand \n" "Language-Team: OpenVAS Developers \n" @@ -52,12 +52,12 @@ msgid "" "OpenVAS-Client %s\n" "NessusClient origin: Copyright 1998-2007 Renaud Deraison\n" -"New code since OpenVAS-Client: Copyright 2007 Intevation GmbH\n" +"New code since OpenVAS-Client: Copyright 2007, 2008, 2009 Intevation GmbH\n" "License: GNU GPL v2" msgstr "" "OpenVAS-Client %s\n" "Urspr?nglich NessusClient: Copyright 1998-2007 Renaud Deraison\n" -"Neuer Quelltext seit OpenVAS-Client: Copyright 2007 Intevation GmbH\n" +"Neuer Quelltext seit OpenVAS-Client: Copyright 2007, 2008, 2009 Intevation GmbH\n" "Lizenz: GNU GPL v2" #: src/gui/about_dlg.c:148 @@ -68,7 +68,9 @@ " Jan-Oliver Wagner\n" " Bernhard Herzog\n" " Michel Arboi (SSL Support)\n" -" Bruce Verderaime (Pie/Charts)" +" Bruce Verderaime (Pie/Charts)\n" +" Michael Wiegand\n" +" Felix Wolfsteller" msgstr "" "Autoren:\n" " Renaud Deraison\n" @@ -77,24 +79,26 @@ " Bernhard Herzog\n" " Michel Arboi (SSL Unterst?tzung)\n" " Bruce Verderaime (Kuchendiagramme)" +" Michael Wiegand\n" +" Felix Wolfsteller" -#: src/gui/about_dlg.c:169 +#: src/gui/about_dlg.c:171 msgid "Supporters:" msgstr "Unterst?tzer:" -#: src/gui/about_dlg.c:172 +#: src/gui/about_dlg.c:174 msgid "Intevation GmbH" msgstr "Intevation GmbH" -#: src/gui/about_dlg.c:172 +#: src/gui/about_dlg.c:174 msgid "http://www.intevation.net/" msgstr "http://www.intevation.de/" -#: src/gui/about_dlg.c:180 +#: src/gui/about_dlg.c:182 msgid "Federal Office for Information Security" msgstr "Bundesamt f?r Sicherheit in der Informationstechnik" -#: src/gui/about_dlg.c:181 +#: src/gui/about_dlg.c:183 msgid "http://www.bsi.de/english/" msgstr "http://www.bsi.de/" @@ -118,6 +122,121 @@ msgid "Press to continue ...\n" msgstr "Taste um fortzufahren ...\n" +#: src/gui/nvt_pref_sshlogin.c:150 +msgid "" +"Changes in the per-target sshlogin selection done in the Global Settings " +"have no effect.\n" +"Please update your scopes individually." +msgstr "" +"?nderungen an der Zuweisung von SSH-Logins zu Zielen in den Globalen Einstellungen" +"haben keinen Effekt.\n" +"Bitte nehmen Sie diese Einstellungen in den einzelnen Bereichen vor." + +#: src/gui/nvt_pref_sshlogin.c:165 +msgid "Could not update Login selection per target - file.\n" +msgstr "Konnte Datei mit Login Auswahl f?r Zielsysteme nicht aktualisieren\n" + +#: src/gui/nvt_pref_sshlogin.c:194 +#, c-format +msgid "Delete pattern '%s'?" +msgstr "L?sche Muster '%s'?" + +#: src/gui/nvt_pref_sshlogin.c:230 +msgid "" +"Please enter a pattern (it has to contain * or ?) and assign a login to it." +msgstr "" +"Geben Sie ein Muster ein (es muss einen * oder ein ? beinhalten) und ordnen Sie es einem Login zu." + +#: src/gui/nvt_pref_sshlogin.c:269 +msgid "Pattern matches everything. Use the 'Default' target instead." +msgstr "Muster trifft auf alles zu. Benutzen Sie stattdessen das 'Default' Ziel." + +#: src/gui/nvt_pref_sshlogin.c:275 +msgid "Pattern does not contain '*' or '?'" +msgstr "Muster enth?lt kein '*' oder '?'" + +#: src/gui/nvt_pref_sshlogin.c:487 +msgid "Add pattern" +msgstr "Muster hinzuf?gen" + +#: src/gui/nvt_pref_sshlogin.c:641 +msgid "Per-host SSH Key Selection" +msgstr "Pro-Ziel SSH-Schl?ssel Auswahl" + +#: src/gui/severity_override_form.c:82 +msgid "Severity Override %s has been added to the global filter." +msgstr "?bersteuerung des Schweregrades zu dem globalen Filter hinzugef?gt." + +#: src/gui/severity_override_form.c:84 +#, c-format +msgid "An error occurred when adding the Override %s to the global filter." +msgstr "Beim Hinzuf?gen der ?bersteuerung des Schweregrades %s zu dem globalen Filter ist ein Fehler aufgetreten." + +#: src/gui/severity_override_form.c:87 +msgid "" +"A conflicting Severity Override already exists in the list of overrides." +msgstr "" +"Hinzuf?gen der ?bersteuerung des Schweregrades f?hrt zu einem Konflikt in der Liste der ?bersteuerungen." + +#: src/gui/severity_override_form.c:115 +msgid "Name: " +msgstr "Name: " + +#: src/gui/severity_override_form.c:117 +msgid "Reason: " +msgstr "Begr?ndung: " + +#: src/gui/severity_override_form.c:121 +msgid "Port" +msgstr "Port" + +#: src/gui/severity_override_form.c:123 nessus/pdf_output.c:626 +msgid "Host" +msgstr "Host" + +#: src/gui/severity_override_form.c:125 +msgid "OID of NVT" +msgstr "OID des NVT" + +#: src/gui/severity_override_form.c:129 src/gui/severity_override_form.c:265 +#, c-format +msgid "Map from %s to" +msgstr "Zuordnung von %s nach" + +#: src/gui/severity_override_form.c:141 +msgid "Add Override to filter" +msgstr "?bersteuerung zu dem Filter hinzuf?gen" + +#: src/gui/severity_override_form.c:301 src/gui/ssh_key_info_form.c:256 +msgid "Please provide a better name." +msgstr "Bitte geben Sie einen besseren Namen an." + +#: src/gui/severity_override_form.c:307 +msgid "Please provide a better reason." +msgstr "Bitte geben Sie eine bessere Begr?ndung an." + +#: src/gui/severity_override_form.c:315 +#, c-format +msgid "" +"Mapping %s to %s would create an effectless override.\n" +"Please choose a different severity." +msgstr "" +"Zuordnung von %s nach %s w?rde keinen Effekt haben." +"Bitte w?hlen sie einen anderen Schweregrad." + +#: src/gui/severity_override_form.c:321 +msgid "No information about OID of NVT found!" +msgstr "Keine Informationen ?ber OID des NVTs gefunden!" + +#: src/gui/severityfiltermngr_dlg.c:101 +msgid "Severity Filter Manager" +msgstr "Verwaltung der Schweregrad- ?bersteuerungen" + +#: src/gui/severityfiltermngr_dlg.c:138 +#, c-format +msgid "Error while removing override %s from global filter." +msgstr "Fehler beim Entfernen der ?bersteuerung %s aus dem globalen Filter." + #: src/gui/slad_install.c:63 msgid "Could not check SLAD installer." msgstr "Konnte SLADinstaller nicht pr?fen." @@ -135,289 +254,377 @@ "ist ein ernster Betriebssystems-Fehler. Vielleicht l?st ein Neustart des " "Systems das Problem." -#: src/gui/ssh_key_info_form.c:170 -#, fuzzy +#: src/gui/ssh_key_info_form.c:183 msgid "Account name:" -msgstr "Host-Name:" +msgstr "Name:" -#: src/gui/ssh_key_info_form.c:178 +#: src/gui/ssh_key_info_form.c:191 msgid "SSH login name:" -msgstr "" +msgstr "SSH Login Name:" -#: src/gui/ssh_key_info_form.c:185 +#: src/gui/ssh_key_info_form.c:198 +msgid "(optional) SSH login password:" +msgstr "(optional) SSH Login password:" + +#: src/gui/ssh_key_info_form.c:205 msgid "SSH public key:" -msgstr "" +msgstr "?ffentlicher SSH Schl?ssel:" -#: src/gui/ssh_key_info_form.c:193 +#: src/gui/ssh_key_info_form.c:213 msgid "SSH private key:" -msgstr "" +msgstr "privater SSH Schl?ssel:" -#: src/gui/ssh_key_info_form.c:201 +#: src/gui/ssh_key_info_form.c:221 msgid "SSH key passphrase:" -msgstr "" +msgstr "Passphrase des SSH Schl?ssels:" -#: src/gui/ssh_key_info_form.c:208 -#: nessus/prefs_dialog/prefs_scan_assistant.c:264 -#: nessus/prefs_dialog/prefs_scan_assistant.c:281 +#: src/gui/ssh_key_info_form.c:228 +#: nessus/prefs_dialog/prefs_scan_assistant.c:249 +#: nessus/prefs_dialog/prefs_scan_assistant.c:266 msgid "Comment:" msgstr "Kommentar:" -#: src/gui/ssh_key_info_form.c:234 -#, fuzzy -msgid "Please provide a better name." -msgstr "Bitte einen Dateinamen ausw?hlen." - -#: src/gui/ssh_key_info_form.c:240 -#, fuzzy +#: src/gui/ssh_key_info_form.c:262 msgid "Please provide a longer username." -msgstr "Bitte einen Dateinamen ausw?hlen." +msgstr "Bitte geben Sie einen l?ngeren Nutzernamen an." -#: src/gui/ssh_key_info_form.c:245 +#: src/gui/ssh_key_info_form.c:267 msgid "Please provide a passphrase with more then 5 characters." -msgstr "" +msgstr "Bitte geben Sie eine Passphrase mit mehr als 5 Zeichen an." -#: src/gui/ssh_key_info_form.c:251 +#: src/gui/ssh_key_info_form.c:273 msgid "Please provide a better comment for public key." -msgstr "" +msgstr "Bitte geben Sie einen besseren Kommentar f?r den ?ffentlichen Schl?ssel an." -#: src/gui/ssh_key_info_form.c:257 +#: src/gui/ssh_key_info_form.c:279 msgid "Comment must not contain spaces." +msgstr "Der Kommentar darf keine Leerzeichen beinhalten." + +#: src/gui/ssh_keys_dialog.c:50 +msgid "[No logins yet]" +msgstr "[Keine Logins]" + +#: src/gui/ssh_keys_dialog.c:142 +#, c-format +msgid "" +"The selected login information '%s' is in use (selected for a target). " +"Delete information and all corresponding key files anyway?" msgstr "" +"Die ausgew?hlten Login informationen ('%s') sind in Benutzung (f?r ein Ziel ausgew?hlt). " +"Die Informationen und alle dazugeh?rigen Schl?sseldateien trotzdem l?schen?" -#: src/gui/ssh_keys_dialog.c:98 src/gui/ssh_keys_dialog.c:161 -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:597 -#: nessus/prefs_dialog/prefs_dialog_prefs.c:276 -#, fuzzy -msgid "OpenVAS SSH Key Manager" -msgstr "OpenVAS-Server" +#: src/gui/ssh_keys_dialog.c:151 +#, c-format +msgid "" +"Are you sure that you want to delete information about login '%s' and all " +"corresponding key files?" +msgstr "" +"Sind Sie sicher dass Sie alle Informationen ?ber den Login '%s' und alle " +"dazugeh?rigen Schl?sseldateien l?schen wollen?" -#: src/gui/ssh_keys_dialog.c:191 +#: src/gui/ssh_keys_dialog.c:203 +msgid "OpenVAS LSC Credentials Manager - Create new Credentials" +msgstr "OpenVAS LSC Zugangsdaten Verwaltung - Neue Zugangsdaten erstellen" + +#: src/gui/ssh_keys_dialog.c:231 +msgid "Error creating key files." +msgstr "Fehler beim Erstellen der Schl?ssel-Dateien." + +#: src/gui/ssh_keys_dialog.c:291 +msgid "OpenVAS LSC Credentials Manager" +msgstr "OpenVAS LS Zugangsdaten Verwaltung" + +#: src/gui/ssh_keys_dialog.c:324 +msgid "Delete keypair" +msgstr "Schl?sselpaar l?schen" + +#: src/gui/ssh_keys_dialog.c:327 msgid "Create a new keypair" -msgstr "" +msgstr "Neues Schl?sselpaar erstellen" -#: nessus/comm.h:40 +#: src/gui/ssh_keys_dialog.c:331 +msgid "Create RPM" +msgstr "RPM erstellen" + +#: nessus/comm.h:42 msgid "Select SSH Login" -msgstr "" +msgstr "SSH Login ausw?hlen" -#: nessus/comm.c:92 +#: nessus/comm.c:97 #, c-format msgid "Receiving plugins: %d" msgstr "Empfange Plugins: %d" -#: nessus/comm.c:97 +#: nessus/comm.c:102 #, c-format msgid "Receiving dependencies: %d" msgstr "Empfange Abh?ngigkeiten: %d" -#: nessus/comm.c:444 +#: nessus/comm.c:473 #, c-format msgid "Error : we received a preference (%s) for the plugin %s\n" msgstr "Fehler: Eine Voreinstellung (%s) f?r Plugin %s wurde empfangen\n" -#: nessus/comm.c:447 +#: nessus/comm.c:476 #, c-format msgid "but apparently the server has not loaded it\n" msgstr "aber anscheinend hat der Server es nicht geladen\n" -#: nessus/comm.c:870 +#: nessus/comm.c:980 #, c-format msgid "Can't open %s: %s" msgstr "Kann %s nicht ?ffnen: %s" -#: nessus/comm.c:894 +#: nessus/comm.c:1004 #, c-format msgid "Error reading from %s: %s" msgstr "Fehler beim Lesen von %s: %s" -#: nessus/comm.c:1015 nessus/comm.c:1401 +#: nessus/comm.c:1125 nessus/comm.c:1518 msgid "The daemon shut down the communication" msgstr "Der Daemon hat die Kommunikation abgebrochen" -#: nessus/comm.c:1042 +#: nessus/comm.c:1152 msgid "Error processing plugin information from the server" msgstr "Fehler bei der Verbeitung der Plugin-Information vom Server" -#: nessus/comm.c:1048 +#: nessus/comm.c:1158 msgid "Invalid SEND_PLUGINS_MD5 response from server" msgstr "Ung?ltige SEND_PLUGINS_MD5 Antwort vom Server" -#: nessus/comm.c:1224 +#: nessus/comm.c:1337 msgid "Invalid PLUGIN_INFO response from server" msgstr "Ung?ltige PLUGIN_INFO Antwort vom Server" -#: nessus/comm.c:1238 nessus/comm.c:1445 +#: nessus/comm.c:1351 nessus/comm.c:1562 msgid "Found and enabled one new plugin." msgstr "Es wurde ein neues Plugin gefunden und automatisch aktiviert." -#: nessus/comm.c:1240 nessus/comm.c:1447 +#: nessus/comm.c:1353 nessus/comm.c:1564 msgid "Found and disabled one new plugin." msgstr "Es wurde ein neues Plugin gefunden und automatisch deaktiviert." -#: nessus/comm.c:1245 nessus/comm.c:1452 +#: nessus/comm.c:1358 nessus/comm.c:1569 #, c-format msgid "Found and enabled %d new plugins." msgstr "Es wurden %d neue Plugins gefunden und automatisch aktiviert." -#: nessus/comm.c:1247 nessus/comm.c:1454 +#: nessus/comm.c:1360 nessus/comm.c:1571 #, c-format msgid "Found and disabled %d new plugins." msgstr "Es wurden %d neue Plugins gefunden und automatisch deaktiviert." -#: nessus/comm.c:1348 +#: nessus/comm.c:1465 msgid "Invalid PLUGINS_MD5 information sent from server" msgstr "Ung?ltige PLUGIN_MD5 Information vom Server" -#: nessus/comm.c:1381 +#: nessus/comm.c:1498 msgid "Error while updating the cached plugin information" msgstr "" "Fehler bei der Aktualisierung der zwischengespeicherten Plugin-Informationen" -#: nessus/comm.c:1736 +#: nessus/comm.c:1806 #, c-format msgid "Could not parse certificate: %s" msgstr "Konnte Zertifkat nicht verarbeiten: %s" -#: nessus/comm.c:1743 +#: nessus/comm.c:1813 #, c-format msgid "Invalid response from server to certificate request: %s" msgstr "Ung?ltige Serverantwort auf Zertifikatsanfrage: %s" -#: nessus/context.c:245 +#: nessus/context.c:253 msgid "context_remove_child detected existing children." msgstr "context_remove_child hat noch existierende Kindprozesse entdeckt." -#: nessus/context.c:426 nessus/prefs_dialog/prefs_scope_tree.c:273 +#: nessus/context.c:282 +#, c-format +msgid "" +"SSH Login '%s' misses files.\n" +"Delete this account and all information or recreate the files?" +msgstr "" +"Dateien f?r den SSH Login '%s' fehlen.\n" +"Sollen Informationen ?ber diesen Login gel?scht oder die Dateien wiederhergestellt werden?" + +#: nessus/context.c:284 +msgid "Delete Account" +msgstr "L?schen" + +#: nessus/context.c:285 +msgid "Recreate Files" +msgstr "Dateien wiederherstellen" + +#: nessus/context.c:300 +#, c-format +msgid "" +"Recreation of SSH login '%s' failed.\n" +"Check your console and remove or repair this login manually." +msgstr "" +"Fehler bei der Wiederherstellung von SSH Login '%s'." +"Sehen Sie auf Ihrer Konsole nach und entfernen Sie diesen Login manuell." + +#: nessus/context.c:302 +#, c-format +msgid "Recreation of SSH login '%s' successful." +msgstr "Wiederherstellung von SSH Login '%s' erfolgreich." + +#: nessus/context.c:314 +#, c-format +msgid "" +"SSH Login %s seems to miss files. (The GUI can help you to repair or delete " +"it)" +msgstr "" +"Es scheinen Dateien f?r den SSH Login %s zu fehlen. (Sie k?nnen diese mit der " +"grafischen Oberfl?che l?schen oder wiederherstellen)" + +#: nessus/context.c:518 nessus/prefs_dialog/prefs_scope_tree.c:293 msgid "context_rename() called with illegal type" msgstr "context_rename() mit illegalem Typ aufgerufen" -#: nessus/context.c:443 nessus/context.c:474 +#: nessus/context.c:535 nessus/context.c:564 #, c-format msgid "Directory %s couldn't be renamed to %s: %s." msgstr "Verzeichnis %s konnte nicht in %s umbenannt werden: %s." -#: nessus/context.c:491 +#: nessus/context.c:581 #, c-format msgid "Can't move \"%s\" to \"%s\"." msgstr "Kann \"%s\" nicht nach \"%s\" verschieben." -#: nessus/context.c:514 nessus/context.c:553 nessus/html_graph_output.c:1116 +#: nessus/context.c:612 nessus/context.c:651 nessus/html_graph_output.c:1067 #, c-format msgid "Directory %s couldn't be created: %s." msgstr "Verzeichnis %s konnte nicht erzeugt werden: %s." -#: nessus/context.c:539 nessus/prefs_dialog/prefs_scan_assistant.c:263 +#: nessus/context.c:637 nessus/prefs_dialog/prefs_scan_assistant.c:248 msgid "unnamed task" msgstr "unbenannte Aufgabe" -#: nessus/context.c:542 nessus/prefs_dialog/prefs_scan_assistant.c:280 +#: nessus/context.c:640 nessus/prefs_dialog/prefs_scan_assistant.c:265 msgid "unnamed scope" msgstr "unbenannter Bereich" -#: nessus/context.c:545 +#: nessus/context.c:643 msgid "context_new(): No name provided for context" msgstr "context_new(): Kein Name f?r Kontext angegeben" -#: nessus/context.c:593 +#: nessus/context.c:692 #, c-format msgid "File %s couldn't be deleted: %s." msgstr "Datei %s konnte nicht gel?scht werden: %s." -#: nessus/context.c:599 +#: nessus/context.c:698 #, c-format msgid "Directory %s couldn't be deleted: %s." msgstr "Verzeichnis %s konnte nicht gel?scht werden: %s." -#: nessus/context.c:622 +#: nessus/context.c:722 msgid "context_delete() deleted the current context." msgstr "context_delete() hat den aktuellen Kontext gel?scht." -#: nessus/backend.c:82 +#: nessus/context.c:752 +msgid "Could not save ssh-login selection per target!\n" +msgstr "Kann SSH Login Auswahl f?r Zielsysteme nicht speichern!\n" + +#: nessus/backend.c:88 msgid "No free tempfile!" msgstr "Keine freie tempor?re Datei!" -#: nessus/backend.c:105 +#: nessus/backend.c:111 #, c-format msgid "Can't create file %s: %s" msgstr "Kann %s nicht erstellen: %s" -#: nessus/backend.c:115 +#: nessus/backend.c:121 #, c-format msgid "Can't open file %s: %s" msgstr "Kann %s nicht ?ffnen: %s" -#: nessus/backend.c:622 -msgid "Unknown report type - please set an extension to the filename" -msgstr "Unbekanntes Berichtsformat - bitte geben Sie eine Dateierweiterung an" +#: nessus/backend.c:642 +msgid "Unknown report type - please set an extension to the filename." +msgstr "Unbekanntes Berichtsformat - bitte geben Sie eine Dateierweiterung an." -#: nessus/backend.c:631 -msgid "This file format can not be read back by the OpenVAS-Client" +#: nessus/backend.c:651 +#, fuzzy +msgid "" +"This file format can not be read back by the OpenVAS-Client.\n" +"Please provide a nbe file." msgstr "" "Dieses Dateiformat kann nicht erneut in den OpenVAS-Client geladen werden" -#: nessus/filter.c:67 nessus/filter.c:80 +#: nessus/filter.c:66 nessus/filter.c:79 msgid "Filter plugins..." msgstr "Filter Plugins..." -#: nessus/filter.c:92 +#: nessus/filter.c:91 msgid "Pattern:" msgstr "Muster:" -#: nessus/filter.c:102 +#: nessus/filter.c:101 msgid "Filter on:" msgstr "Filtere nach:" -#: nessus/filter.c:110 nessus/prefs_dialog/prefs_dialog_scan_opt.c:257 -#: nessus/prefs_dialog/prefs_plugins_tree.c:441 -#: nessus/prefs_dialog/prefs_scope_tree.c:777 +#: nessus/filter.c:109 nessus/prefs_dialog/prefs_dialog_scan_opt.c:252 +#: nessus/prefs_dialog/prefs_plugins_tree.c:449 +#: nessus/prefs_dialog/prefs_scope_tree.c:860 msgid "Name" msgstr "Name" -#: nessus/filter.c:116 nessus/pdf_output.c:799 +#: nessus/filter.c:115 nessus/pdf_output.c:840 msgid "Description" msgstr "Beschreibung" -#: nessus/filter.c:122 nessus/pdf_output.c:580 nessus/pdf_output.c:784 +#: nessus/filter.c:121 nessus/pdf_output.c:610 nessus/pdf_output.c:825 msgid "Summary" msgstr "Zusammenfassung" -#: nessus/filter.c:128 +#: nessus/filter.c:127 msgid "Author" msgstr "Autor" -#: nessus/filter.c:134 +#: nessus/filter.c:133 msgid "ID number" msgstr "ID Nummer" -#: nessus/filter.c:140 nessus/pdf_output.c:785 +#: nessus/filter.c:139 nessus/pdf_output.c:826 msgid "Category" msgstr "Kategorie" -#: nessus/filter.c:146 nessus/pdf_output.c:789 +#: nessus/filter.c:145 nessus/pdf_output.c:830 msgid "CVE" msgstr "CVE" -#: nessus/filter.c:152 nessus/pdf_output.c:791 +#: nessus/filter.c:151 nessus/pdf_output.c:832 msgid "BID" msgstr "BID" -#: nessus/filter.c:159 +#: nessus/filter.c:158 msgid "XREF" msgstr "XREF" -#: nessus/filter.c:238 +#: nessus/filter.c:236 #, c-format msgid "Enter a new filter : " msgstr "Neuen Filter angeben: " -#: nessus/filter.c:259 +#: nessus/filter.c:265 msgid "Invalid regular expression" msgstr "Regul?rer Ausdruck ung?ltig" -#: nessus/parser.c:221 +#: nessus/parser.c:293 +#, fuzzy, c-format +msgid "" +"\n" +"Priority changed from %s to %s\n" +msgstr "" +"\n" +"Schweregrad ?bersteuert (von %s nach %s)\n" + +#: nessus/parser.c:360 msgid "Invalid port range" msgstr "Ung?ltiger Port-Bereich" -#: nessus/parser.c:223 +#: nessus/parser.c:362 msgid "These hosts could not be tested because you are not allowed to do so:" msgstr "" "Diese Zielrechner konnten nicht getestet werde, da Sie nicht die dazu " @@ -428,63 +635,63 @@ msgid "is_server_present: fd(%d) out of range\n" msgstr "is_server_present: fd(%d) ausserhalb des Bereichs\n" -#: nessus/monitor_dialog.c:132 +#: nessus/monitor_dialog.c:129 #, c-format msgid "idle_server: soc(%d) out of range\n" msgstr "idle_server: soc(%d) ausserhalb des Bereichs\n" -#: nessus/monitor_dialog.c:218 +#: nessus/monitor_dialog.c:212 #, c-format msgid "Scanning network from %s" msgstr "Scanne Netzwerk von %s" -#: nessus/monitor_dialog.c:219 +#: nessus/monitor_dialog.c:213 msgid "some host" msgstr "irgendeinem Host" -#: nessus/monitor_dialog.c:257 +#: nessus/monitor_dialog.c:251 msgid "Hostname" msgstr "Host-Name" -#: nessus/monitor_dialog.c:263 +#: nessus/monitor_dialog.c:257 msgid "Portscan" msgstr "Port Scanning" -#: nessus/monitor_dialog.c:269 +#: nessus/monitor_dialog.c:263 msgid "Checks" msgstr "Pr?fungen" -#: nessus/monitor_dialog.c:276 nessus/monitor_dialog.c:621 +#: nessus/monitor_dialog.c:270 nessus/monitor_dialog.c:576 msgid "Stop" msgstr "Stoppen" -#: nessus/monitor_dialog.c:305 +#: nessus/monitor_dialog.c:299 msgid "Stop the whole test" msgstr "Den gesamten Test Stoppen" -#: nessus/monitor_dialog.c:388 nessus/monitor_dialog.c:409 +#: nessus/monitor_dialog.c:357 nessus/monitor_dialog.c:378 #, c-format msgid "Error ! Null hostname in the list\n" msgstr "Fehler! Leerer Host-Name in der Liste\n" -#: nessus/monitor_dialog.c:583 +#: nessus/monitor_dialog.c:541 msgid "Portscan:" msgstr "Port Scanning:" -#: nessus/monitor_dialog.c:587 +#: nessus/monitor_dialog.c:545 msgid "Checks:" msgstr "Pr?fungen:" -#: nessus/nessus.c:379 +#: nessus/nessus.c:450 msgid "Host not found!" msgstr "Host nicht gefunden!" -#: nessus/nessus.c:382 +#: nessus/nessus.c:453 #, c-format msgid "Could not open a connection to %s\n" msgstr "Kann keine Verbindung mit %s aufbauen\n" -#: nessus/nessus.c:408 +#: nessus/nessus.c:479 msgid "" "Could not initialize the OpenSSL library !\n" "Please launch openvasclient-mkrand(1) first !" @@ -492,7 +699,7 @@ "Kann die OpenSSL-Bibliothek nicht initialisieren!\n" "Bitte starten Sie zun?chst openvasclient-mkrand(1) !" -#: nessus/nessus.c:424 +#: nessus/nessus.c:495 #, c-format msgid "" "Unknown SSL version \"%s\"\n" @@ -501,12 +708,12 @@ "Unbekannte SSL Version \"%s\"\n" "Benutze Voreinstellung: %s" -#: nessus/nessus.c:507 +#: nessus/nessus.c:578 #, c-format msgid "paranoia_level=%d but \"trusted_ca\" not set" msgstr "paranoia_level=%d aber \"trusted_ca\" nicht gesetzt" -#: nessus/nessus.c:514 +#: nessus/nessus.c:585 #, c-format msgid "" "paranoia_level=%d but \"trusted_ca\" file not found:\n" @@ -515,7 +722,7 @@ "paranoia_level=%d, aber \"trusted_ca\"-Datei nicht gefunden:\n" "%s" -#: nessus/nessus.c:529 +#: nessus/nessus.c:600 #, c-format msgid "" "Error while setting the trusted CA: %s\n" @@ -524,98 +731,98 @@ "Fehler beim Setzen der vertrauensw?rdigen CA: %s\n" "SSL-Verbindungen werden wahrscheinlich fehlschlagen." -#: nessus/nessus.c:574 +#: nessus/nessus.c:660 msgid "SSL error: cannot get server certificate" msgstr "SSL Fehler: Kein Serverzertifikat erhalten" -#: nessus/nessus.c:586 +#: nessus/nessus.c:672 msgid "Invalid server certificate" msgstr "Ung?ltiges Serverzertifikat" -#: nessus/nessus.c:590 +#: nessus/nessus.c:686 msgid "Could not save server certificate" msgstr "Kann Serverzertifikat nicht speichern" -#: nessus/nessus.c:601 +#: nessus/nessus.c:698 msgid "Could not register the connection" msgstr "Kann die Verbindung nicht registrieren" -#: nessus/nessus.c:614 +#: nessus/nessus.c:711 msgid "" "Unable to establish a connection to the remote host using the specified " "protocol version!" msgstr "" "Konnte mit der gew?hlten Protokollversion keine Verbindung zum Host aufbauen!" -#: nessus/nessus.c:623 +#: nessus/nessus.c:720 msgid "Login failed" msgstr "Anmeldung fehlgeschlagen" -#: nessus/nessus.c:685 +#: nessus/nessus.c:782 msgid "Display version information" msgstr "Versionsinformationen anzeigen" -#: nessus/nessus.c:687 +#: nessus/nessus.c:784 msgid "No pixmaps" msgstr "Keine Pixmaps verwenden" -#: nessus/nessus.c:689 +#: nessus/nessus.c:786 msgid "Batch-mode scan" msgstr "Scan im Batch-Modus" -#: nessus/nessus.c:689 +#: nessus/nessus.c:786 msgid " " msgstr " " -#: nessus/nessus.c:691 +#: nessus/nessus.c:788 msgid "Configuration file" msgstr "Konfigurationsdatei" -#: nessus/nessus.c:691 +#: nessus/nessus.c:788 msgid "<.rcfile>" msgstr "<.rcfile>" -#: nessus/nessus.c:693 nessus/nessus.c:695 +#: nessus/nessus.c:790 nessus/nessus.c:792 msgid "Output format" msgstr "Ausgabeformat" -#: nessus/nessus.c:693 +#: nessus/nessus.c:790 msgid "[nbe|html|html_graph|text|xml|tex]" msgstr "[nbe|html|html_graph|text|xml|tex]" -#: nessus/nessus.c:695 +#: nessus/nessus.c:792 msgid "[nbe|html|text|xml|tex]" msgstr "[nbe|html|text|xml|tex]" -#: nessus/nessus.c:697 +#: nessus/nessus.c:794 msgid "Display status messages in batch mode" msgstr "Statusmeldungen im Batch-Modus anzeigen" -#: nessus/nessus.c:698 +#: nessus/nessus.c:795 msgid "Obtain list of plugins installed on the server" msgstr "Liste der auf dem Server installierten Plugins ausgeben" -#: nessus/nessus.c:699 +#: nessus/nessus.c:796 msgid "Obtain list of server and plugin preferences" msgstr "Liste der Plugin- und Servereinstellungen ausgeben" -#: nessus/nessus.c:700 +#: nessus/nessus.c:797 msgid "Input file (report conversion)" msgstr "Quelldatei (Berichtskonvertierung)" -#: nessus/nessus.c:700 +#: nessus/nessus.c:797 msgid "" msgstr "" -#: nessus/nessus.c:701 +#: nessus/nessus.c:798 msgid "Output file (report conversion)" msgstr "Zieldatei (Berichtskonvertierung)" -#: nessus/nessus.c:701 +#: nessus/nessus.c:798 msgid "" msgstr "" -#: nessus/nessus.c:702 +#: nessus/nessus.c:799 msgid "" "Override SSL \"paranoia\" question preventing OpenVAS-Client from checking " "certificates" @@ -623,31 +830,31 @@ "SSL \"paranoia\" Frage ?bergehen und Pr?fung des Zertifikats durch OpenVAS-" "Client abschalten" -#: nessus/nessus.c:703 +#: nessus/nessus.c:800 msgid "Issue SQL output for -p and -P (experimental)" msgstr "Ergebnisse der Optionen -p und -P aus SQL ausgeben (experimentell)" -#: nessus/nessus.c:704 +#: nessus/nessus.c:801 msgid "List sessions" msgstr "Sitzungen auflisten" -#: nessus/nessus.c:704 +#: nessus/nessus.c:801 msgid " " msgstr " " -#: nessus/nessus.c:705 +#: nessus/nessus.c:802 msgid "Restore session" msgstr "Sitzung wiederherstellen" -#: nessus/nessus.c:705 +#: nessus/nessus.c:802 msgid " " msgstr " " -#: nessus/nessus.c:710 +#: nessus/nessus.c:807 msgid "- client for the OpenVAS security scanner" msgstr "- Client f?r den OpenVAS Sicherheits-Scanner" -#: nessus/nessus.c:739 +#: nessus/nessus.c:836 #, c-format msgid "" "OpenVAS-Client (%s) %s for %s\n" @@ -656,7 +863,7 @@ "OpenVAS-Client (%s) %s f?r %s\n" "\n" -#: nessus/nessus.c:740 +#: nessus/nessus.c:837 #, c-format msgid "" "NessusClient origin: (C) 1998 - 2003 Renaud Deraison \n" @@ -664,24 +871,24 @@ "Urspr?nglicher NessusClient: (C) 1998 - 2003 Renaud Deraison " "\n" -#: nessus/nessus.c:741 +#: nessus/nessus.c:838 #, c-format -msgid "New code since OpenVAS-Client: (C) 2007, 2008 Intevation GmbH\n" -msgstr "Neuer Quelltext seit OpenVAS-Client: (C) 2007, 2008 Intevation GmbH\n" +msgid "New code since OpenVAS-Client: (C) 2007, 2008, 2009 Intevation GmbH\n" +msgstr "Neuer Quelltext seit OpenVAS-Client: (C) 2007, 2008, 2009 Intevation GmbH\n" -#: nessus/nessus.c:766 +#: nessus/nessus.c:863 #, c-format msgid "The session ID is required to restore a session.\n" msgstr "" "F?r das Wiederherstellen einer Sitzung wird eine Sitzungs-ID ben?tigt.\n" -#: nessus/nessus.c:767 nessus/nessus.c:785 nessus/nessus.c:838 -#: nessus/nessus.c:922 nessus/nessus.c:957 +#: nessus/nessus.c:864 nessus/nessus.c:882 nessus/nessus.c:935 +#: nessus/nessus.c:1019 nessus/nessus.c:1054 #, c-format msgid "Please use %s --help for more information.\n" msgstr "Unter %s --help erhalten Sie weitere Informationen.\n" -#: nessus/nessus.c:784 +#: nessus/nessus.c:881 #, c-format msgid "" "You need to specify an input file as well as an output file for report " @@ -690,76 +897,80 @@ "F?r die Konvertierung eines Berichts muss sowohl eine Quelldatei als auch " "eine Zieldatei angegeben werden.\n" -#: nessus/nessus.c:821 +#: nessus/nessus.c:918 #, c-format msgid "Unsupported report type '%s'\n" msgstr "Nicht unterst?tztes Berichtsformat '%s'\n" -#: nessus/nessus.c:829 +#: nessus/nessus.c:926 #, c-format msgid "Could not import '%s' - is it a .nbe file?\n" msgstr "Kann '%s' nicht importieren - ist es eine .nbe Datei?\n" -#: nessus/nessus.c:837 +#: nessus/nessus.c:934 #, c-format msgid "The option -make_config_file can only be used in batch mode.\n" msgstr "" "Die Option -make_config_file kann nur im Batch-Modus angewandt werden\n" -#: nessus/nessus.c:848 +#: nessus/nessus.c:945 #, c-format msgid "list-sessions requires %s\n" msgstr "list-sessions erfordert %s\n" -#: nessus/nessus.c:854 +#: nessus/nessus.c:951 #, c-format msgid "restore-session requires -q %s \n" msgstr "restore-session erfordert -q %s \n" -#: nessus/nessus.c:860 +#: nessus/nessus.c:957 #, c-format msgid "--restore-session and --list-sessions are mutually exclusive\n" msgstr "" "--restore-session und --list-sessions schliessen sich gegenseitig aus\n" -#: nessus/nessus.c:898 +#: nessus/nessus.c:995 #, c-format msgid "Verbose mode can only be used in batch mode\n" msgstr "Wortreicher Modus kann nur f?r Batch-Modus angewandt werden\n" -#: nessus/nessus.c:921 nessus/nessus.c:956 +#: nessus/nessus.c:1018 nessus/nessus.c:1053 #, c-format msgid "Batch mode requires login information.\n" msgstr "Der Batch-Modus ben?tigt Anmeldeinformationen.\n" -#: nessus/nessus.c:932 +#: nessus/nessus.c:1029 msgid "list-sessions only requires " msgstr "list-sessions erfordert lediglich " -#: nessus/nessus.c:941 +#: nessus/nessus.c:1038 msgid "restore-session only requires " msgstr "restore-session erfordert lediglich " -#: nessus/nessus.c:950 +#: nessus/nessus.c:1047 msgid "list-prefs and list-plugins require " msgstr "list-prefs und list-plugins erfordern " -#: nessus/nessus.c:981 nessus/nessus.c:996 +#: nessus/nessus.c:1078 nessus/nessus.c:1093 #, c-format msgid "Could not connect to openvasd\n" msgstr "Kann keine Verbindung zu openvasd aufbauen\n" -#: nessus/nessus.c:1023 nessus/nessus.c:1030 +#: nessus/nessus.c:1120 nessus/nessus.c:1127 #, c-format msgid "Missing parameter\n" msgstr "Fehlender Parameter\n" -#: nessus/nessus.c:1058 +#: nessus/nessus.c:1155 #, c-format msgid "A new openvasrc file has been saved\n" msgstr "Eine neue openvasrc Datei wurde gespeichert\n" -#: nessus/nessus.c:1101 +#: nessus/nessus.c:1195 +msgid "Global Severity Overrides" +msgstr "Globale ?bersteuerungen der Schweregrade" + +#: nessus/nessus.c:1216 #, c-format msgid "" "\n" @@ -775,13 +986,13 @@ "Sie\n" " mit der Option --help und in der OpenVAS-Dokumentation.\n" -#: nessus/pdf_output.c:174 +#: nessus/pdf_output.c:172 msgid "Could not fork (out of memory?)" msgstr "" "Kann 'fork' nicht durchf?hren (Eventuell ist nicht gen?gend Speicher " "verf?gbar?)" -#: nessus/pdf_output.c:306 +#: nessus/pdf_output.c:310 msgid "" "PDF report export failed!\n" "Maybe HTMLDoc (required for PDF export) is not installed or in search path." @@ -790,69 +1001,73 @@ "Eventuell ist HTMLDoc (notwendig f?r PDF-Export) nicht installiert oder " "nicht im Suchpfad." -#: nessus/pdf_output.c:308 +#: nessus/pdf_output.c:312 #, c-format msgid "PDF report export failed! (htmldoc exit code: %d)" msgstr "" "Exportieren des PDF-Berichts fehlgeschlagen! (htmldoc R?ckgabewert: %d)" -#: nessus/pdf_output.c:346 +#: nessus/pdf_output.c:352 msgid "Could not create this file !" msgstr "Kann diese Datei nicht erstellen!" -#: nessus/pdf_output.c:360 +#: nessus/pdf_output.c:366 msgid "Reports per Host" msgstr "Berichte pro Host" -#: nessus/pdf_output.c:379 +#: nessus/pdf_output.c:385 #, c-format msgid "Scan of this host started at: %s
    \n" msgstr "Scan f?r diesen Host startete: %s
    \n" -#: nessus/pdf_output.c:381 +#: nessus/pdf_output.c:387 #, c-format msgid "Scan of this host finished at: %s
    \n" msgstr "Scan f?r diesen Host endete: %s
    \n" -#: nessus/pdf_output.c:391 +#: nessus/pdf_output.c:397 msgid "Service (Port)" msgstr "Dienst (Port)" -#: nessus/pdf_output.c:394 +#: nessus/pdf_output.c:400 msgid "Issue regarding port" msgstr "Problem f?r Port" -#: nessus/pdf_output.c:417 nessus/pdf_output.c:624 +#: nessus/pdf_output.c:424 nessus/pdf_output.c:657 msgid "Security hole(s) found" msgstr "Sicherheitsloch/-l?cher gefunden" -#: nessus/pdf_output.c:422 nessus/pdf_output.c:629 +#: nessus/pdf_output.c:429 nessus/pdf_output.c:662 msgid "Security warning(s) found" msgstr "Sicherheitswarnung(en) gefunden" -#: nessus/pdf_output.c:427 nessus/pdf_output.c:634 +#: nessus/pdf_output.c:434 nessus/pdf_output.c:672 +msgid "False positive(s) found" +msgstr "Fehlmeldungen gefunden" + +#: nessus/pdf_output.c:439 nessus/pdf_output.c:667 msgid "Security note(s) found" msgstr "Sicherheitshinweis(e) gefunden" -#: nessus/pdf_output.c:436 nessus/pdf_output.c:445 +#: nessus/pdf_output.c:448 nessus/pdf_output.c:457 msgid "No Information" msgstr "Keine Informationen" -#: nessus/pdf_output.c:454 +#: nessus/pdf_output.c:466 msgid "[ return to summary ]" msgstr "[ zur?ck zur Zusammenfassung ]" -#: nessus/pdf_output.c:458 +#: nessus/pdf_output.c:470 #, c-format msgid "Security Issues and Fixes - Host %s" msgstr "Sicherheitsprobleme und -Behebungen - Host %s" -#: nessus/pdf_output.c:528 +#: nessus/pdf_output.c:557 #, c-format msgid "[ return to %s ]" msgstr "[ zur?ck zu %s ]" -#: nessus/pdf_output.c:546 +#: nessus/pdf_output.c:576 msgid "" "This file was generated by OpenVAS, " "the free security scanner." @@ -860,11 +1075,11 @@ "Diese Datei wurde erstellt durch OpenVAS, dem Freien Sicherheits-Scanner." -#: nessus/pdf_output.c:569 +#: nessus/pdf_output.c:599 msgid "OpenVAS Scan Report" msgstr "OpenVAS Scan-Bericht" -#: nessus/pdf_output.c:584 +#: nessus/pdf_output.c:614 msgid "" "This report gives details on hosts that were tested and issues that were " "found. " @@ -872,7 +1087,7 @@ "Dieser Berichts beschreibt Details zu den Zielrechnern, die getestet wurden " "sowie die Probleme, die dabei gefunden wurden." -#: nessus/pdf_output.c:585 +#: nessus/pdf_output.c:615 msgid "" "Please follow the recommended steps and procedures to eradicate these " "threats.\n" @@ -880,192 +1095,183 @@ "Bitte befolgen Sie die empfohlenen Schritte und Prozeduren um diese " "Gef?hrdungen zu eliminieren.\n" -#: nessus/pdf_output.c:589 +#: nessus/pdf_output.c:619 #, c-format msgid "Scan started at: %s
    \n" msgstr "Scan startete: %s
    \n" -#: nessus/pdf_output.c:590 +#: nessus/pdf_output.c:620 #, c-format msgid "Scan finished at: %s
    \n" msgstr "Scan endete: %s
    \n" -#: nessus/pdf_output.c:596 -msgid "Host" -msgstr "Host" - -#: nessus/pdf_output.c:599 +#: nessus/pdf_output.c:629 msgid "Possible Issues" msgstr "M?gliche Probleme" -#: nessus/pdf_output.c:602 +#: nessus/pdf_output.c:632 msgid "Holes" msgstr "Sicherheitsl?cher" -#: nessus/pdf_output.c:605 +#: nessus/pdf_output.c:635 msgid "Warnings" msgstr "Warnungen" -#: nessus/pdf_output.c:608 +#: nessus/pdf_output.c:638 msgid "Notes" msgstr "Hinweise" -#: nessus/pdf_output.c:639 +#: nessus/pdf_output.c:641 +msgid "False Positives" +msgstr "Fehlmeldungen" + +#: nessus/pdf_output.c:677 msgid "No noticeable information found" msgstr "Keine erw?hnenswerte Informationen gefunden" -#: nessus/pdf_output.c:657 +#: nessus/pdf_output.c:697 msgid "Total" msgstr "Gesamt" -#: nessus/pdf_output.c:713 nessus/pdf_output.c:717 nessus/pdf_output.c:727 +#: nessus/pdf_output.c:756 nessus/pdf_output.c:760 nessus/pdf_output.c:770 msgid "Signed by" msgstr "Signiert von" -#: nessus/pdf_output.c:713 +#: nessus/pdf_output.c:756 msgid "not signed" msgstr "nicht signiert" -#: nessus/pdf_output.c:718 +#: nessus/pdf_output.c:761 msgid "unknown signature(s)" msgstr "unbekannte Signatur(en)" -#: nessus/pdf_output.c:735 +#: nessus/pdf_output.c:778 msgid "trusted" msgstr "vertrauensw?rdig" -#: nessus/pdf_output.c:736 +#: nessus/pdf_output.c:779 msgid "not trusted" msgstr "nicht vertrauensw?rdig" -#: nessus/pdf_output.c:749 +#: nessus/pdf_output.c:790 msgid "unknown signature" msgstr "unbekannte Signatur" -#: nessus/pdf_output.c:786 +#: nessus/pdf_output.c:827 msgid "Family" msgstr "Familie" -#: nessus/pdf_output.c:787 +#: nessus/pdf_output.c:828 msgid "Version" msgstr "Version" -#: nessus/pdf_output.c:793 +#: nessus/pdf_output.c:834 msgid "XRefs" msgstr "Querverweise" -#: nessus/pdf_output.c:809 +#: nessus/pdf_output.c:850 msgid "Parameters" msgstr "Paramter" -#: nessus/pdf_output.c:839 +#: nessus/pdf_output.c:880 msgid "Appendix: NVT Information" msgstr "Anhang: NVT Informationen" -#: nessus/plugin_infos.c:58 +#: nessus/plugin_infos.c:68 #, c-format msgid "Dependencies of Plugin '%s'" msgstr "Abh?ngigkeiten des Plugins '%s'" -#: nessus/plugin_infos.c:89 +#: nessus/plugin_infos.c:97 msgid "No dependencies found." msgstr "Keine Abh?ngigkeiten gefunden." -#: nessus/plugin_infos.c:114 -msgid "), currently " -msgstr "), derzeit " +#: nessus/plugin_infos.c:115 +msgid "currently" +msgstr "derzeit" #: nessus/plugin_infos.c:116 msgid "enabled" msgstr "eingeschaltet" -#: nessus/plugin_infos.c:118 +#: nessus/plugin_infos.c:116 msgid "disabled" msgstr "ausgeschaltet" -#: nessus/plugin_infos.c:176 nessus/plugin_infos.c:578 -msgid "Set plugin timeout..." -msgstr "Setze Plugin Timeout..." - -#: nessus/plugin_infos.c:193 -msgid "Set plugin timeout:" -msgstr "Setze Plugin Timeout:" - -#: nessus/plugin_infos.c:265 +#: nessus/plugin_infos.c:201 #, c-format -msgid "Can not find certificate for: %s." -msgstr "Kann Zertifikat f?r %s nicht finden." - -#: nessus/plugin_infos.c:269 -#, c-format msgid "OpenVAS Certificate View: %s" msgstr "OpenVAS Zertifikatsansicht: %s" -#: nessus/plugin_infos.c:283 +#: nessus/plugin_infos.c:215 #, c-format msgid "Owner Name: %s" msgstr "Name des Besitzers: %s" -#: nessus/plugin_infos.c:288 +#: nessus/plugin_infos.c:220 #, c-format msgid "Fingeprint: %s" msgstr "Fingerabdruck: %s" -#: nessus/plugin_infos.c:339 +#: nessus/plugin_infos.c:250 nessus/plugin_infos.c:567 +msgid "Unknown" +msgstr "Unbekannt" + +#: nessus/plugin_infos.c:349 #, c-format msgid "Error ! Plugin selected not found ?!\n" msgstr "Fehler! Ausgew?hltes Plugin nicht gefunden?!\n" -#: nessus/plugin_infos.c:374 +#: nessus/plugin_infos.c:386 #, c-format msgid "Family: %s" msgstr "Familie: %s" -#: nessus/plugin_infos.c:381 +#: nessus/plugin_infos.c:394 #, c-format msgid "Category: %s" msgstr "Kategorie: %s" -#: nessus/plugin_infos.c:388 +#: nessus/plugin_infos.c:402 #, c-format msgid "OpenVAS NVT OID: %s" msgstr "OpenVAS NVT OID: %s" -#: nessus/plugin_infos.c:398 +#: nessus/plugin_infos.c:413 #, c-format msgid "CVE: %s" msgstr "CVE: %s" -#: nessus/plugin_infos.c:409 +#: nessus/plugin_infos.c:425 #, c-format msgid "Bugtraq ID: %s" msgstr "Bugtraq ID: %s" -#: nessus/plugin_infos.c:420 +#: nessus/plugin_infos.c:437 #, c-format msgid "Other references: %s" msgstr "Andere Referenzen: %s" -#: nessus/plugin_infos.c:431 +#: nessus/plugin_infos.c:449 #, c-format msgid "Plugin Version: %s" msgstr "Plugin-Version: %s" -#: nessus/plugin_infos.c:442 +#: nessus/plugin_infos.c:461 #, c-format msgid "Script tags: %s" msgstr "Script-Tags: %s" -#: nessus/plugin_infos.c:455 +#: nessus/plugin_infos.c:475 msgid "Plugin description:" msgstr "Beschreibung des Plugins:" -#: nessus/plugin_infos.c:512 +#: nessus/plugin_infos.c:518 #, c-format msgid "Signature information available on server connection." msgstr "Signaturinformation bei bestehender Serververbindung verf?gbar." -#: nessus/plugin_infos.c:516 +#: nessus/plugin_infos.c:522 #, c-format msgid "" "Signatures:\n" @@ -1074,7 +1280,7 @@ "Signaturen:\n" "\tUnbekannte Signatur(en)." -#: nessus/plugin_infos.c:520 +#: nessus/plugin_infos.c:526 #, c-format msgid "" "Signatures:\n" @@ -1083,38 +1289,50 @@ "Signaturen:\n" "\tNVT ist nicht signiert." -#: nessus/plugin_infos.c:529 +#: nessus/plugin_infos.c:538 #, c-format msgid "Signatures:" msgstr "Signaturen:" -#: nessus/plugin_infos.c:532 +#: nessus/plugin_infos.c:541 #, c-format msgid "Signatures (NOT verified):" msgstr "Signaturen (NICHT ?berpr?ft)" -#: nessus/plugin_infos.c:549 +#: nessus/plugin_infos.c:558 msgid "trusted" msgstr "vertrauensw?rdig" -#: nessus/plugin_infos.c:550 +#: nessus/plugin_infos.c:559 msgid "untrusted" msgstr "nicht vertrauensw?rdig" -#: nessus/plugin_infos.c:558 +#: nessus/plugin_infos.c:569 msgid "View" msgstr "Ansicht" -#: nessus/plugin_infos.c:585 +#: nessus/plugin_infos.c:589 +msgid "Timeout in seconds" +msgstr "Timeout in Sekunden" + +#: nessus/plugin_infos.c:598 msgid "Show dependencies" msgstr "Zeige Abh?ngigkeiten" -#: nessus/preferences.c:130 +#: nessus/plugin_infos.c:609 +msgid "" +"Set the timeout for this plugin, where zero means 'no timeout'. Note that a " +"zero value can be overridden by the server." +msgstr "" +"Setze das Timeout f?r dieses Plugin. Null bedeuted 'kein Timeout'. Diese Werte" +"k?nnen von den Server-Einstellungen ?berschrieben werden." + +#: nessus/preferences.c:135 #, c-format msgid "Error writing %s: %s" msgstr "Fehler beim Schreiben von %s: %s" -#: nessus/preferences.c:137 +#: nessus/preferences.c:142 #, c-format msgid "" "# OpenVAS-Client Preferences File\n" @@ -1123,58 +1341,58 @@ "# OpenVAS-Client Voreinstellungsdatei\n" "\n" -#: nessus/preferences.c:203 +#: nessus/preferences.c:205 #, c-format msgid "The OpenVAS-Client doesn't have the right to read %s\n" msgstr "OpenVAS-Client hat nicht die erforderlichen Rechte, um %s zu lesen\n" -#: nessus/preferences.c:217 +#: nessus/preferences.c:219 msgid "Couldn't find prefs file... Creating a new one..." msgstr "Kann keine Voreinstellungsdatei finden... Erzeuge neue Datei..." -#: nessus/preferences.c:221 nessus/preferences.c:228 +#: nessus/preferences.c:223 nessus/preferences.c:230 #, c-format msgid "Error creating %s: %s" msgstr "Fehler beim Erstellen von %s: %s" -#: nessus/preferences.c:236 +#: nessus/preferences.c:238 #, c-format msgid "Error reading %s: %s" msgstr "Fehler beim Lesen von %s: %s" -#: nessus/preferences.c:255 +#: nessus/preferences.c:258 #, c-format msgid "Parse error in %s: %s" msgstr "Fehler bei der Verarbeitung in %s : %s" -#: nessus/preferences.c:269 +#: nessus/preferences.c:272 #, c-format msgid "Missing 'end' in %s" msgstr "Fehlendes 'end' in %s" -#: nessus/preferences.c:507 +#: nessus/preferences.c:523 #, c-format msgid "%s could not be opened write only" msgstr "%s kann nicht nur-schreibend ge?ffnet werden" -#: nessus/preferences.c:511 +#: nessus/preferences.c:527 #, c-format -msgid "# This file was automagically created by OpenVAS-Client\n" -msgstr "# Diese Datei wurde automagisch durch OpenVAS-Client erzeugt\n" +msgid "# This file was automatically created by OpenVAS-Client\n" +msgstr "# Diese Datei wurde automatisch durch OpenVAS-Client erzeugt\n" -#: nessus/preferences.c:630 +#: nessus/preferences.c:641 msgid "Global Settings" msgstr "Globale Einstellungen" -#: nessus/preferences.c:745 nessus/preferences.c:766 +#: nessus/preferences.c:763 nessus/preferences.c:784 msgid "prefs_set_value() called with illegal type" msgstr "prefs_set_value() mit illegalem Typ aufgerufen" -#: nessus/read_target_file.c:41 nessus/report.c:245 +#: nessus/read_target_file.c:86 nessus/report.c:249 msgid "Load file" msgstr "Lade Datei" -#: nessus/read_target_file.c:79 +#: nessus/read_target_file.c:138 #, c-format msgid "" "Could not open %s\n" @@ -1183,85 +1401,85 @@ "Kann %s nicht ?ffnen\n" "open(%s): %s" -#: nessus/read_target_file.c:85 +#: nessus/read_target_file.c:144 #, c-format msgid "Cannot stat %s (%s)\n" msgstr "Kann Status von %s nicht ermitteln (%s)\n" -#: nessus/read_target_file.c:97 +#: nessus/read_target_file.c:156 msgid "file mapping failed: unexpected end-of-file\n" msgstr "Dateimapping fehlgeschlagen: unerwartetes Dateiende\n" -#: nessus/read_target_file.c:99 +#: nessus/read_target_file.c:158 #, c-format msgid "file mapping failed: %s\n" msgstr "Dateimapping fehlgeschlagen: %s\n" -#: nessus/html_graph_output.c:1123 +#: nessus/html_graph_output.c:1074 #, c-format msgid "Can't change to directory %s: %s." msgstr "Kann nicht in Verzeichnis %s wechseln: %s" -#: nessus/html_graph_output.c:1130 +#: nessus/html_graph_output.c:1081 #, c-format msgid "Can't write index: %s" msgstr "Kann Index nicht schreiben: %s" -#: nessus/xml_output_ng.c:713 +#: nessus/xml_output_ng.c:742 #, c-format msgid "Can't open %s for writing: %s." msgstr "Kann %s nicht zum Schreiben ?ffnen: %s" -#: nessus/report.c:143 +#: nessus/report.c:150 msgid "report_save() called with illegal type" msgstr "report_save() wurde mit illegalem Typ aufgerufen" -#: nessus/report.c:162 +#: nessus/report.c:169 msgid "report_save() couldn't create context" msgstr "report_save() konnte Kontext nicht erzeugen" -#: nessus/report.c:168 +#: nessus/report.c:175 msgid "report_save() couldn't find a report filename" msgstr "report_save() konnte keinen Dateienamen f?r den Bericht finden" -#: nessus/report.c:176 +#: nessus/report.c:183 msgid "report_save() couldn't save the report" msgstr "report_save() konnte den Bericht nicht speichern" -#: nessus/report.c:188 +#: nessus/report.c:195 msgid "report_save() couldn't save the plugin information" msgstr "report_save() konnte die Plugin-Informationen nicht speichern" -#: nessus/report.c:203 +#: nessus/report.c:210 msgid "report_save() couldn't save the certificate information" msgstr "report_save() konnte die Zertifikatsinformationen nicht speichern" -#: nessus/report_save.c:178 +#: nessus/report_save.c:188 msgid "Export Report" msgstr "Bericht exportieren" -#: nessus/report_save.c:194 +#: nessus/report_save.c:204 msgid "Export Options" msgstr "Optionen exportieren" -#: nessus/report_save.c:203 +#: nessus/report_save.c:213 msgid "Report file format : " msgstr "Format der Berichtsdatei" -#: nessus/report_save.c:239 +#: nessus/report_save.c:249 msgid "ASCII text" msgstr "ASCII-Text" -#: nessus/report_save.c:245 +#: nessus/report_save.c:255 msgid "HTML with Pies and Graphs" msgstr "HTML mit Diagrammen" -#: nessus/report_save.c:283 +#: nessus/report_save.c:292 #, c-format msgid "PDF file %s not found." msgstr "PDF-Datei %s nicht gefunden." -#: nessus/report_save.c:289 +#: nessus/report_save.c:298 #, c-format msgid "" "You haven't configured a PDF viewer.\n" @@ -1270,12 +1488,12 @@ "Sie haben keinen PDF-Betrachter konfiguriert.\n" "Der Bericht wurde unter %s gespeichert." -#: nessus/report_save.c:300 +#: nessus/report_save.c:309 #, c-format msgid "Can't launch PDF viewer: %s" msgstr "Kann PDF-Betrachter nicht starten: %s" -#: nessus/report_save.c:334 +#: nessus/report_save.c:342 #, c-format msgid "" "Can't open PDF file: %s:\n" @@ -1284,14 +1502,10 @@ "Kann PDF-Datei nicht ?ffnen: %s:\n" "%s" -#: nessus/sighand.c:53 +#: nessus/sighand.c:86 msgid "Connection closed by the server (SIGPIPE caught)" msgstr "Verbindung wurde vom Server geschlossen (Signal SIGPIPE erhalten)" -#: nessus/sighand.c:59 -msgid "Connection timed out" -msgstr "Zeit?berschreitung bei Verbindung" - #: nessus/sslui.c:86 msgid "SSL Setup" msgstr "SSL Einrichtung" @@ -1317,10 +1531,11 @@ msgid "OK" msgstr "OK" -#: nessus/sslui.c:195 +#: nessus/sslui.c:194 +#, fuzzy msgid "" "Please choose your level of SSL paranoia (Hint: if you want to manage\n" -"many servers from your client, choose 2. Otherwise, choose 1, or 3,\n" +"many servers from your client, choose 2. Otherwise, choose 1. Or 3,\n" "if you are paranoid.\n" msgstr "" "Bitte w?hlen Sie den Grad an SSL-Paranoia (Hinweis: falls Sie viele Server\n" @@ -1344,222 +1559,248 @@ msgid "No" msgstr "Nein" -#: nessus/sslui.c:384 +#: nessus/sslui.c:379 #, c-format msgid "This certificate has never been seen before and can't be shown\n" msgstr "" "Dieses Zertifikat wurde noch nie betrachtet und kann nicht angezeigt werden\n" -#: nessus/sslui.c:404 +#: nessus/sslui.c:399 #, c-format msgid "Do you accept it? (y/n) " msgstr "Akzeptieren Sie es? (y/n)" -#: nessus/prefs_dialog/prefs_context.c:117 +#: nessus/prefs_dialog/prefs_context.c:87 +#: nessus/prefs_dialog/prefs_dialog.c:358 +msgid "Undo severity override" +msgstr "?bersteuerung der Schweregrade zur?cknehmen" + +#: nessus/prefs_dialog/prefs_context.c:91 +#: nessus/prefs_dialog/prefs_dialog.c:353 +#: nessus/prefs_dialog/prefs_dialog.c:567 +msgid "Override severities" +msgstr "Schweregrade ?bersteuern" + +#: nessus/prefs_dialog/prefs_context.c:147 msgid "This page is not available in the current context." msgstr "Diese Seite ist f?r den aktuellen Kontext nicht verf?gbar." -#: nessus/prefs_dialog/prefs_context.c:279 +#: nessus/prefs_dialog/prefs_context.c:317 #, c-format msgid "Connection: %s@%s" msgstr "Verbindung: %s@%s" -#: nessus/prefs_dialog/prefs_context.c:282 +#: nessus/prefs_dialog/prefs_context.c:320 #, c-format msgid "Connection: %s@%s:%d" msgstr "Verbindung: %s@%s:%d" -#: nessus/prefs_dialog/prefs_context.c:285 +#: nessus/prefs_dialog/prefs_context.c:323 #, c-format msgid "Connection: user %s" msgstr "Verbindung: Benutzer %s" -#: nessus/prefs_dialog/prefs_context.c:291 -#: nessus/prefs_dialog/prefs_dialog.c:761 +#: nessus/prefs_dialog/prefs_context.c:329 +#: nessus/prefs_dialog/prefs_dialog.c:848 msgid "not connected" msgstr "nicht verbunden" -#: nessus/prefs_dialog/prefs_context.c:341 +#: nessus/prefs_dialog/prefs_context.c:378 #, c-format msgid "Task: %s" msgstr "Aufgabe: %s" -#: nessus/prefs_dialog/prefs_context.c:348 +#: nessus/prefs_dialog/prefs_context.c:384 #, c-format msgid "Scope: %s (Task: %s)" msgstr "Bereich: %s (Aufgabe: %s)" -#: nessus/prefs_dialog/prefs_context.c:354 +#: nessus/prefs_dialog/prefs_context.c:390 #, c-format msgid "Report for scope: %s (Task: %s)" msgstr "Bericht f?r Bereich: %s (Aufgabe: %s)" -#: nessus/prefs_dialog/prefs_context.c:359 +#: nessus/prefs_dialog/prefs_context.c:395 msgid "prefs_context_update called with illegal context." msgstr "prefs_context_update() mit illegalem Kontext aufgerufen." -#: nessus/prefs_dialog/prefs_dialog.c:110 +#: nessus/prefs_dialog/prefs_dialog.c:126 msgid "users-manual.pdf" msgstr "users-manual-de.pdf" -#: nessus/prefs_dialog/prefs_dialog.c:130 +#: nessus/prefs_dialog/prefs_dialog.c:144 msgid "The global settings have been saved." msgstr "Die globalen Einstellungen wurden gespeichert." -#: nessus/prefs_dialog/prefs_dialog.c:353 +#: nessus/prefs_dialog/prefs_dialog.c:417 msgid "OpenVAS-Client" msgstr "OpenVAS-Client" -#: nessus/prefs_dialog/prefs_dialog.c:375 +#: nessus/prefs_dialog/prefs_dialog.c:439 msgid "_File" msgstr "_Datei" -#: nessus/prefs_dialog/prefs_dialog.c:380 +#: nessus/prefs_dialog/prefs_dialog.c:444 msgid "_Connect" msgstr "_Verbinden" -#: nessus/prefs_dialog/prefs_dialog.c:384 +#: nessus/prefs_dialog/prefs_dialog.c:448 msgid "_Disconnect" msgstr "_Abmelden" -#: nessus/prefs_dialog/prefs_dialog.c:391 -msgid "SLAD _Install" -msgstr "SLAD _Installieren" - -#: nessus/prefs_dialog/prefs_dialog.c:395 +#: nessus/prefs_dialog/prefs_dialog.c:455 msgid "_Scan Assistant" msgstr "_Scan-Assistent" -#: nessus/prefs_dialog/prefs_dialog.c:403 +#: nessus/prefs_dialog/prefs_dialog.c:463 msgid "Save _Global Settings" msgstr "_Globale Einstellungen speichern" -#: nessus/prefs_dialog/prefs_dialog.c:415 +#: nessus/prefs_dialog/prefs_dialog.c:475 msgid "_View" msgstr "_Ansicht" -#: nessus/prefs_dialog/prefs_dialog.c:420 +#: nessus/prefs_dialog/prefs_dialog.c:480 msgid "_Toolbar" msgstr "_Werkzeugleiste" -#: nessus/prefs_dialog/prefs_dialog.c:424 +#: nessus/prefs_dialog/prefs_dialog.c:484 msgid "_Message log" msgstr "_Nachrichtenprotokoll" -#: nessus/prefs_dialog/prefs_dialog.c:430 +#: nessus/prefs_dialog/prefs_dialog.c:490 msgid "_Task" msgstr "_Aufgabe" -#: nessus/prefs_dialog/prefs_dialog.c:435 -#: nessus/prefs_dialog/prefs_dialog.c:460 +#: nessus/prefs_dialog/prefs_dialog.c:495 +#: nessus/prefs_dialog/prefs_dialog.c:520 msgid "_New" msgstr "_Neu" -#: nessus/prefs_dialog/prefs_dialog.c:439 -#: nessus/prefs_dialog/prefs_dialog.c:464 -#: nessus/prefs_dialog/prefs_dialog.c:496 +#: nessus/prefs_dialog/prefs_dialog.c:499 +#: nessus/prefs_dialog/prefs_dialog.c:524 +#: nessus/prefs_dialog/prefs_dialog.c:556 msgid "_Rename" msgstr "Um_bennen" -#: nessus/prefs_dialog/prefs_dialog.c:449 +#: nessus/prefs_dialog/prefs_dialog.c:509 msgid "_Scope" msgstr "_Bereich" -#: nessus/prefs_dialog/prefs_dialog.c:473 +#: nessus/prefs_dialog/prefs_dialog.c:533 msgid "_Move to task" msgstr "_verschieben zu Aufgabe" -#: nessus/prefs_dialog/prefs_dialog.c:491 +#: nessus/prefs_dialog/prefs_dialog.c:551 msgid "_Report" msgstr "Be_richt" -#: nessus/prefs_dialog/prefs_dialog.c:506 +#: nessus/prefs_dialog/prefs_dialog.c:575 msgid "_Import" msgstr "_Import" -#: nessus/prefs_dialog/prefs_dialog.c:510 +#: nessus/prefs_dialog/prefs_dialog.c:579 msgid "E_xport" msgstr "E_xport" -#: nessus/prefs_dialog/prefs_dialog.c:520 +#: nessus/prefs_dialog/prefs_dialog.c:588 +msgid "E_xtras" +msgstr "E_xtras" + +#: nessus/prefs_dialog/prefs_dialog.c:593 +#, fuzzy +msgid "SLAD _Install Manager" +msgstr "SLAD _Installieren" + +#: nessus/prefs_dialog/prefs_dialog.c:597 +msgid "LSC _Credentials Manager" +msgstr "LSC Zugangsdaten Verwaltung" + +#: nessus/prefs_dialog/prefs_dialog.c:601 +msgid "Severity _Overrides Manager" +msgstr "Verwaltung der ?bersteuerungen der _Schweregrade" + +#: nessus/prefs_dialog/prefs_dialog.c:606 msgid "_Help" msgstr "_Hilfe" -#: nessus/prefs_dialog/prefs_dialog.c:525 +#: nessus/prefs_dialog/prefs_dialog.c:611 msgid "_Users Manual" msgstr "_Benutzerhandbuch" -#: nessus/prefs_dialog/prefs_dialog.c:529 +#: nessus/prefs_dialog/prefs_dialog.c:615 msgid "_About" msgstr "?b_er" -#: nessus/prefs_dialog/prefs_dialog.c:565 -#: nessus/prefs_dialog/prefs_dialog.c:567 -#: nessus/prefs_dialog/prefs_scan_assistant.c:238 +#: nessus/prefs_dialog/prefs_dialog.c:651 +#: nessus/prefs_dialog/prefs_dialog.c:653 +#: nessus/prefs_dialog/prefs_scan_assistant.c:223 msgid "Scan Assistant" msgstr "Scan-Assistent" -#: nessus/prefs_dialog/prefs_dialog.c:574 -#: nessus/prefs_dialog/prefs_dialog.c:576 +#: nessus/prefs_dialog/prefs_dialog.c:660 +#: nessus/prefs_dialog/prefs_dialog.c:662 msgid "New" msgstr "Neu" -#: nessus/prefs_dialog/prefs_dialog.c:583 -#: nessus/prefs_dialog/prefs_dialog.c:585 +#: nessus/prefs_dialog/prefs_dialog.c:669 +#: nessus/prefs_dialog/prefs_dialog.c:671 msgid "Delete" msgstr "L?schen" -#: nessus/prefs_dialog/prefs_dialog.c:595 -#: nessus/prefs_dialog/prefs_dialog.c:597 +#: nessus/prefs_dialog/prefs_dialog.c:681 +#: nessus/prefs_dialog/prefs_dialog.c:683 msgid "Connect" msgstr "Verbinden" -#: nessus/prefs_dialog/prefs_dialog.c:605 -#: nessus/prefs_dialog/prefs_dialog.c:607 +#: nessus/prefs_dialog/prefs_dialog.c:691 +#: nessus/prefs_dialog/prefs_dialog.c:693 msgid "Disconnect" msgstr "Abmelden" -#: nessus/prefs_dialog/prefs_dialog.c:617 -#: nessus/prefs_dialog/prefs_dialog.c:619 +#: nessus/prefs_dialog/prefs_dialog.c:703 +#: nessus/prefs_dialog/prefs_dialog.c:705 msgid "Execute" msgstr "Ausf?hren" -#: nessus/prefs_dialog/prefs_dialog.c:640 +#: nessus/prefs_dialog/prefs_dialog.c:726 msgid "Context" msgstr "Kontext" -#: nessus/prefs_dialog/prefs_dialog.c:670 +#: nessus/prefs_dialog/prefs_dialog.c:756 msgid "Comments" msgstr "Kommentare" -#: nessus/prefs_dialog/prefs_dialog.c:676 +#: nessus/prefs_dialog/prefs_dialog.c:762 msgid "Options" msgstr "Optionen" -#: nessus/prefs_dialog/prefs_dialog.c:682 -#: nessus/prefs_dialog/prefs_dialog_prefs.c:190 +#: nessus/prefs_dialog/prefs_dialog.c:768 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:188 msgid "Report" msgstr "Report" -#: nessus/prefs_dialog/prefs_dialog.c:702 +#: nessus/prefs_dialog/prefs_dialog.c:788 msgid "Message log" msgstr "Nachrichtenprotokoll" -#: nessus/prefs_dialog/prefs_dialog.c:723 +#: nessus/prefs_dialog/prefs_dialog.c:809 msgid "" "Welcome to OpenVAS-Client, http://www.openvas.org/\n" "NessusClient origin: Copyright 1998-2007 by Renaud Deraison\n" -"New code since OpenVAS-Client: Copyright 2007 Intevation GmbH\n" +"New code since OpenVAS-Client: Copyright 2007, 2008, 2009 Intevation GmbH\n" "Authors: Renaud Deraison, Thomas Arendsen Hein, Jan-Oliver Wagner, Bernhard " -"Herzog, Michel Arboi (SSL-Support), Bruce Verderaime (Pie/Charts)\n" +"Herzog, Michel Arboi (SSL-Support), Bruce Verderaime (Pie/Charts), Michael " +"Wiegand, Felix Wolfsteller\n" msgstr "" "Willkommen bei OpenVAS-Client, http://www.openvas.org/\n" "Urspr?nglich NessusClient: Copyright 1998-2007 Renaud Deraison\n" -"Neuer Quelltext seit OpenVAS-Client: Copyright 2007 Intevation GmbHAutoren: " +"Neuer Quelltext seit OpenVAS-Client: Copyright 2007, 2008, 2009 Intevation GmbH\nAutoren: " "Renaud Deraison, Thomas Arendsen Hein, Jan-Oliver Wagner, Bernhard Herzog, " -"Michel Arboi (SSL-Unterst?tzung), Bruce Verderaime (Kuchendiagramme)\n" +"Michel Arboi (SSL-Unterst?tzung), Bruce Verderaime (Kuchendiagramme), Michael " +"Wiegand, Felix Wolfsteller\n" -#: nessus/prefs_dialog/prefs_dialog.c:1449 +#: nessus/prefs_dialog/prefs_dialog.c:1541 msgid "" "You must enter the name of the primary target\n" "to attack in the 'target' section" @@ -1585,7 +1826,7 @@ msgstr "Bitte einen Dateinamen ausw?hlen." #: nessus/prefs_dialog/prefs_dialog_auth.c:115 -#: nessus/prefs_dialog/prefs_scope_tree.c:484 +#: nessus/prefs_dialog/prefs_scope_tree.c:507 #, c-format msgid "File \"%s\" doesn't exist." msgstr "Datei \"%s\" existiert nicht." @@ -1628,231 +1869,210 @@ msgid "Select ..." msgstr "Ausw?hlen ..." -#: nessus/prefs_dialog/prefs_dialog_auth.c:370 +#: nessus/prefs_dialog/prefs_dialog_auth.c:368 msgid "Connect to OpenVAS Server" msgstr "Verbinden mit OpenVAS-Server" -#: nessus/prefs_dialog/prefs_dialog_auth.c:384 +#: nessus/prefs_dialog/prefs_dialog_auth.c:382 msgid "OpenVAS Server" msgstr "OpenVAS-Server" -#: nessus/prefs_dialog/prefs_dialog_auth.c:402 +#: nessus/prefs_dialog/prefs_dialog_auth.c:400 msgid "Hostname:" msgstr "Host-Name:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:420 +#: nessus/prefs_dialog/prefs_dialog_auth.c:417 msgid "_Default" msgstr "_Vorgabe" -#: nessus/prefs_dialog/prefs_dialog_auth.c:429 +#: nessus/prefs_dialog/prefs_dialog_auth.c:426 msgid "Port:" msgstr "Port:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:433 +#: nessus/prefs_dialog/prefs_dialog_auth.c:430 msgid "Authentication" msgstr "Authentifizierung" -#: nessus/prefs_dialog/prefs_dialog_auth.c:451 +#: nessus/prefs_dialog/prefs_dialog_auth.c:448 msgid "Login:" msgstr "Login:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:461 +#: nessus/prefs_dialog/prefs_dialog_auth.c:458 msgid "Password:" msgstr "Passwort:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:470 +#: nessus/prefs_dialog/prefs_dialog_auth.c:467 msgid "Authentication by certi_ficate" msgstr "Authentifizierung durch Zerti_fikat" -#: nessus/prefs_dialog/prefs_dialog_auth.c:482 +#: nessus/prefs_dialog/prefs_dialog_auth.c:479 msgid "Trusted CA:" msgstr "Vertrauensw?rdige CA:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:488 +#: nessus/prefs_dialog/prefs_dialog_auth.c:485 msgid "User Certificate File:" msgstr "Datei Benutzer-Zertifikat:" -#: nessus/prefs_dialog/prefs_dialog_auth.c:494 +#: nessus/prefs_dialog/prefs_dialog_auth.c:491 msgid "User Key File:" msgstr "Datei Benutzer-Schl?ssel:" -#: nessus/prefs_dialog/prefs_dialog_misc.c:50 -msgid "Misc." -msgstr "Versch." - -#: nessus/prefs_dialog/prefs_dialog_misc.c:64 -msgid "Max threads : " -msgstr "Max Threads : " - -#: nessus/prefs_dialog/prefs_dialog_misc.c:73 -msgid "Remember the set of plugins" -msgstr "Speichere die Pluginauswahl" - -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:95 +#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:98 msgid "Advanced Plugins preferences" msgstr "Erweiterte Plugin-Voreinstellungen" -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:102 -#: nessus/prefs_dialog/prefs_options.c:102 +#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:104 +#: nessus/prefs_dialog/prefs_options.c:117 msgid "Credentials" msgstr "Zugangsdaten" -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:188 +#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:191 #, c-format msgid "%s asked for unknown preference type %s." msgstr "%s verlangt unbekannten Einstellungstyp %s." -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:388 +#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:357 msgid "Select file" msgstr "Datei ausw?hlen" -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:575 -#, fuzzy -msgid "SSH Key Information" -msgstr "Keine Informationen" - -#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:709 +#: nessus/prefs_dialog/prefs_dialog_plugins_prefs.c:495 msgid "Select..." msgstr "Ausw?hlen..." -#: nessus/prefs_dialog/prefs_dialog_prefs.c:65 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:63 msgid "Preferences" msgstr "Voreinstellungen" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:85 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:83 msgid "User interface" msgstr "Benutzerschnittstelle" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:97 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:95 msgid "Auto expand tree elements" msgstr "Automatisches aufklappen der Baumelemente" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:103 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:101 msgid "Order by:" msgstr "Sortieren nach:" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:113 -#: nessus/prefs_dialog/prefs_report.c:499 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:111 +#: nessus/prefs_dialog/prefs_report.c:856 msgid "Host/Port/Severity" msgstr "Rechner/Port/Schweregrad" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:115 -#: nessus/prefs_dialog/prefs_report.c:501 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:113 +#: nessus/prefs_dialog/prefs_report.c:858 msgid "Port/Host/Severity" msgstr "Port/Rechner/Schweregrad" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:121 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:119 msgid "Connection to OpenVAS Server" msgstr "Verbindung mit OpenVAS-Server" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:133 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:131 msgid "Automatically connect" msgstr "Automatisch verbinden" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:139 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:137 msgid "Protocol version:" msgstr "Protokollversion:" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:149 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:147 msgid "OTP 1.0" msgstr "OTP 1.0" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:152 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:150 msgid "Plugin Cache" msgstr "Plugin-Zwischenspeicher" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:164 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:162 msgid "Cache plugin information when connecting" msgstr "Plugin-Informationen bei Verbindungsaufbau zwischenspeichern" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:171 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:169 msgid "Use plugin cache with reports" msgstr "Verwende Plugin-Zwischenspeicher f?r Berichte" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:179 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:177 msgid "Load plugin cache for scopes immediately" msgstr "Lade Plugin-Zwischenspeicher f?r Bereiche sofort" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:202 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:200 msgid "Include plugin details in PDF" msgstr "F?ge Plugin-Details in PDF-Bericht ein" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:210 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:208 msgid "Show script origin in report window" msgstr "Zeige Skript-Herkunft im Berichtsfenster" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:224 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:222 msgid "External Links in HTML/PDF" msgstr "Externe Verweise in HTML/PDF" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:235 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:233 msgid "OpenVAS IDs:" msgstr "OpenVAS IDs:" # -#: nessus/prefs_dialog/prefs_dialog_prefs.c:247 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:245 msgid "CVE IDs:" msgstr "CVE IDs:" # -#: nessus/prefs_dialog/prefs_dialog_prefs.c:259 +#: nessus/prefs_dialog/prefs_dialog_prefs.c:257 msgid "BugTraq IDs:" msgstr "BugTraq IDs:" -#: nessus/prefs_dialog/prefs_dialog_prefs.c:272 -msgid "SSH Key Management" -msgstr "" - -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:141 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:136 msgid "General scan options" msgstr "Allgemeine Scan-Einstellungen" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:157 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:152 msgid "Determine if hosts are alive before testing them" msgstr "Pr?fe, ob Zielrechner erreichbar sind, bevor sie getestet werden" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:170 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:165 msgid "Port range:" msgstr "Port-Bereich:" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:180 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:175 msgid "Consider unscanned ports as closed" msgstr "Nicht gescannte Ports als geschlossen betrachten" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:190 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:185 msgid "Hosts to test concurrently:" msgstr "Gleichzeitig ?berpr?fte Zielrechner:" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:201 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:196 msgid "Checks to perform concurrently:" msgstr "Gleichzeitig durchgef?hrte Tests:" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:213 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:208 msgid "Path to the CGIs:" msgstr "Pfad zu den CGIs:" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:224 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:219 msgid "Do a reverse lookup on the IP before testing it" msgstr "Vor Test r?ckw?rtige DNS-Namensaufl?sung der IP" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:229 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:224 msgid "Optimize the test" msgstr "Test optimieren" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:235 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:230 msgid "Safe checks" msgstr "Sichere Pr?fungen" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:240 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:235 msgid "Designate hosts by their MAC address" msgstr "Bestimme Zielrechner anhand der MAC Adresse" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:245 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:240 msgid "Port scanner:" msgstr "Port-Scanner:" -#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:266 -#: nessus/prefs_dialog/prefs_plugins_tree.c:457 +#: nessus/prefs_dialog/prefs_dialog_scan_opt.c:261 +#: nessus/prefs_dialog/prefs_plugins_tree.c:465 msgid "Active" msgstr "Aktiv" @@ -1869,31 +2089,31 @@ msgid "Clientside user rules" msgstr "Clientseitige Benutzerregeln" -#: nessus/prefs_dialog/prefs_dialog_user.c:213 +#: nessus/prefs_dialog/prefs_dialog_user.c:211 msgid "The target for this rule must be a valid IP or Subnet.\n" msgstr "Das Ziel f?r diese Regel muss eine g?ltige IP oder Subnetz sein.\n" -#: nessus/prefs_dialog/prefs_dialog_user.c:286 +#: nessus/prefs_dialog/prefs_dialog_user.c:287 msgid "User Access Rules" msgstr "Benutzer-Zugriffsregeln" -#: nessus/prefs_dialog/prefs_dialog_user.c:304 +#: nessus/prefs_dialog/prefs_dialog_user.c:305 msgid "Action:" msgstr "Aktion:" -#: nessus/prefs_dialog/prefs_dialog_user.c:322 +#: nessus/prefs_dialog/prefs_dialog_user.c:323 msgid "Target:" msgstr "Ziel:" -#: nessus/prefs_dialog/prefs_dialog_user.c:334 +#: nessus/prefs_dialog/prefs_dialog_user.c:335 msgid "Add rule" msgstr "Hinzuf?gen" -#: nessus/prefs_dialog/prefs_dialog_user.c:363 +#: nessus/prefs_dialog/prefs_dialog_user.c:364 msgid "Rules" msgstr "Regeln" -#: nessus/prefs_dialog/prefs_dialog_user.c:374 +#: nessus/prefs_dialog/prefs_dialog_user.c:375 msgid "Remove rule" msgstr "Entferne Regel" @@ -1908,14 +2128,14 @@ #: nessus/prefs_dialog/prefs_help.h:39 msgid "" "Enter the port number where you will be serviced by the OpenVAS Server. " -"Usual is 1241." +"Usual is 9390." msgstr "" "Geben Sie die Nummer des Ports an, auf dem der OpenVAS-Server auf Anfragen " -"wartet. Im Allgemeinen ist dies der Port 1241." +"wartet. Im Allgemeinen ist dies der Port 9390." #: nessus/prefs_dialog/prefs_help.h:43 -msgid "Set to default OpenVAS port 1241." -msgstr "Setze auf Standard OpenVAS Port (1241)." +msgid "Set to default OpenVAS port 9390." +msgstr "Setze auf Standard OpenVAS Port (9390)." #: nessus/prefs_dialog/prefs_help.h:46 msgid "" @@ -2291,38 +2511,38 @@ msgid "Do not execute DoS plugins that have already been executed" msgstr "Keine DoS Plugins starten, die schon einmal gestartet wurden" -#: nessus/prefs_dialog/prefs_kb.c:285 +#: nessus/prefs_dialog/prefs_kb.c:281 msgid "OpenVAS Knowledge Base" msgstr "OpenVAS-Wissensbasis" -#: nessus/prefs_dialog/prefs_kb.c:374 +#: nessus/prefs_dialog/prefs_kb.c:368 msgid "Max age of a saved KB (in secs) : " msgstr "Max. Alter einer gespeicherten WB (in Sek.):" -#: nessus/prefs_dialog/prefs_plugins_tree.c:448 +#: nessus/prefs_dialog/prefs_plugins_tree.c:456 msgid "Warning" msgstr "Warnung" -#: nessus/prefs_dialog/prefs_report.c:141 +#: nessus/prefs_dialog/prefs_report.c:211 #, c-format msgid "Scan took place from %s to %s" msgstr "Scan fand statt von %s bis %s" -#: nessus/prefs_dialog/prefs_report.c:143 +#: nessus/prefs_dialog/prefs_report.c:213 #, c-format msgid "Scan started on %s" msgstr "Scan wurde gestartet um %s" -#: nessus/prefs_dialog/prefs_report.c:145 +#: nessus/prefs_dialog/prefs_report.c:215 #, c-format msgid "Scan finished on %s" msgstr "Scan wurde beendet um %s" -#: nessus/prefs_dialog/prefs_report.c:147 +#: nessus/prefs_dialog/prefs_report.c:217 msgid "Time of scan not available." msgstr "Zeit des Scans nicht verf?gbar." -#: nessus/prefs_dialog/prefs_report.c:371 +#: nessus/prefs_dialog/prefs_report.c:508 #, c-format msgid "" "Reported by NVT \"%s\" (%s):\n" @@ -2331,11 +2551,32 @@ "Gefunden von NVT \"%s\" (%s):\n" "\n" -#: nessus/prefs_dialog/prefs_scan_assistant.c:253 +#: nessus/prefs_dialog/prefs_report.c:517 +#, c-format +msgid "" +"The severity of this NVT has been mapped from %s!\n" +"\n" +msgstr "" +"Der Schweregrad dieses NVTs wurde ?bersteuert (von %s nach %s)!\n" + + +#: nessus/prefs_dialog/prefs_report.c:717 +msgid "Nothing selected that could be filtered!" +msgstr "In der Auswahl kann nichts gefiltert werden!" + +#: nessus/prefs_dialog/prefs_report.c:721 +msgid "Add severity override" +msgstr "Schweregrads-?bersteuerung hinzuf?gen" + +#: nessus/prefs_dialog/prefs_report.c:768 +msgid "Severities..." +msgstr "?bersteuerung des Schweregrades..." + +#: nessus/prefs_dialog/prefs_scan_assistant.c:238 msgid "Step 1: Task" msgstr "Schritt 1: Aufgabe" -#: nessus/prefs_dialog/prefs_scan_assistant.c:255 +#: nessus/prefs_dialog/prefs_scan_assistant.c:240 msgid "" "Tasks describe what you want to do. You can use it to logically group\n" "your duties by subject, frequency, location or anything else.\n" @@ -2356,15 +2597,15 @@ "Sie k?nnen zus?tzlich einen Kommentar angeben, der die Aufgabe n?her " "beschreibt." -#: nessus/prefs_dialog/prefs_scan_assistant.c:263 +#: nessus/prefs_dialog/prefs_scan_assistant.c:248 msgid "Please enter a name for your task:" msgstr "Bitte geben Sie eine Bezeichnung f?r Ihre Aufgabe an:" -#: nessus/prefs_dialog/prefs_scan_assistant.c:269 +#: nessus/prefs_dialog/prefs_scan_assistant.c:254 msgid "Step 2: Scope" msgstr "Schritt 2: Bereich" -#: nessus/prefs_dialog/prefs_scan_assistant.c:271 +#: nessus/prefs_dialog/prefs_scan_assistant.c:256 msgid "" "Scopes are part of a task. Each scope represents a connection\n" "to a OpenVAS Server and a list of hosts to scan.\n" @@ -2383,15 +2624,15 @@ "Sie k?nnen zus?tzlich einen Kommentar angeben, der den Bereich n?her " "beschreibt." -#: nessus/prefs_dialog/prefs_scan_assistant.c:280 +#: nessus/prefs_dialog/prefs_scan_assistant.c:265 msgid "Please enter a name for the current scope:" msgstr "Bitte geben Sie eine Bezeichnung f?r den aktuellen Bereich an:" -#: nessus/prefs_dialog/prefs_scan_assistant.c:286 +#: nessus/prefs_dialog/prefs_scan_assistant.c:271 msgid "Step 3: Targets" msgstr "Schritt 3: Ziele" -#: nessus/prefs_dialog/prefs_scan_assistant.c:288 +#: nessus/prefs_dialog/prefs_scan_assistant.c:273 msgid "" "Targets are the hosts and networks you want to scan in this scope.\n" "They can be entered in the following formats:\n" @@ -2410,11 +2651,11 @@ " - IP Netzwerk (z.B. 192.168.0.0/24 oder 192.168.0.0/255.255.255.0)\n" "Sie k?nnen mehrere Ziele angeben, indem Sie sie durch Kommas trennen." -#: nessus/prefs_dialog/prefs_scan_assistant.c:297 +#: nessus/prefs_dialog/prefs_scan_assistant.c:282 msgid "Please enter the targets to scan:" msgstr "Bitte geben Sie die Ziele f?r den Scan an:" -#: nessus/prefs_dialog/prefs_scan_assistant.c:299 +#: nessus/prefs_dialog/prefs_scan_assistant.c:284 msgid "" "Warning: Please make sure you are allowed to scan these hosts!\n" "Harmful checks are disabled by default, but some computers and\n" @@ -2431,11 +2672,11 @@ "Am besten holen Sie eine schriftliche Best?tigung ein, bevor Sie\n" "f?r den Produktionsbetrieb wichtige Server scannen." -#: nessus/prefs_dialog/prefs_scan_assistant.c:309 +#: nessus/prefs_dialog/prefs_scan_assistant.c:294 msgid "Step 4: Execute" msgstr "Schritt 4: Ausf?hren" -#: nessus/prefs_dialog/prefs_scan_assistant.c:311 +#: nessus/prefs_dialog/prefs_scan_assistant.c:296 msgid "" "You are now ready to start the scan.\n" "\n" @@ -2475,15 +2716,15 @@ "\".\n" "Jeder Scan erzeugt einen weiteren Bericht unterhalb dieses Bereiches." -#: nessus/prefs_dialog/prefs_scope_tree.c:178 +#: nessus/prefs_dialog/prefs_scope_tree.c:210 msgid "scopetree_rename() called with illegal type" msgstr "scopetree_rename() mit illegalem Typ aufgerufen" -#: nessus/prefs_dialog/prefs_scope_tree.c:254 +#: nessus/prefs_dialog/prefs_scope_tree.c:274 msgid "scopetree_new_with_parent(): parent type >= child type" msgstr "scopetree_new_with_parent(): parent type >= child type" -#: nessus/prefs_dialog/prefs_scope_tree.c:383 +#: nessus/prefs_dialog/prefs_scope_tree.c:402 #, c-format msgid "" "Really delete task\n" @@ -2494,7 +2735,7 @@ " `%s'\n" "mit allen zugeh?rigen Bereichen und Berichten l?schen?" -#: nessus/prefs_dialog/prefs_scope_tree.c:386 +#: nessus/prefs_dialog/prefs_scope_tree.c:405 #, c-format msgid "" "Really delete scope\n" @@ -2505,7 +2746,7 @@ " `%s'\n" "mit allen zugeh?rigen Berichten l?schen?" -#: nessus/prefs_dialog/prefs_scope_tree.c:389 +#: nessus/prefs_dialog/prefs_scope_tree.c:408 #, c-format msgid "" "Really delete report\n" @@ -2514,79 +2755,88 @@ "Wirklich den Bericht\n" " `%s' l?schen?" -#: nessus/prefs_dialog/prefs_scope_tree.c:392 +#: nessus/prefs_dialog/prefs_scope_tree.c:411 msgid "scopetree_delete() called with illegal type" msgstr "scopetree_delete() mit illegalem Typ aufgerufen" -#: nessus/prefs_dialog/prefs_scope_tree.c:465 +#: nessus/prefs_dialog/prefs_scope_tree.c:488 msgid "scopetree_context_delete() called with illegal type" msgstr "scopetree_context_delete() mit illegalem Typ aufgerufen" -#: nessus/prefs_dialog/prefs_scope_tree.c:482 -#: nessus/prefs_dialog/prefs_scope_tree.c:524 +#: nessus/prefs_dialog/prefs_scope_tree.c:505 +#: nessus/prefs_dialog/prefs_scope_tree.c:546 msgid "Please choose a target filename." msgstr "Bitte eine Zieldatei ausw?hlen." -#: nessus/prefs_dialog/prefs_scope_tree.c:498 +#: nessus/prefs_dialog/prefs_scope_tree.c:522 msgid "Open configuration for new scope" msgstr "?ffne Konfiguration f?r neuen Bereich" -#: nessus/prefs_dialog/prefs_scope_tree.c:526 +#: nessus/prefs_dialog/prefs_scope_tree.c:548 #, c-format msgid "File \"%s\" already exists." msgstr "Datei \"%s\" existiert bereits." -#: nessus/prefs_dialog/prefs_scope_tree.c:539 +#: nessus/prefs_dialog/prefs_scope_tree.c:559 msgid "Save scope configuration" msgstr "Speichere Bereichskonfiguration" -#: nessus/prefs_dialog/prefs_scope_tree.c:708 +#: nessus/prefs_dialog/prefs_scope_tree.c:737 msgid "on_scope_edited(): menuitem has no label." msgstr "on_scope_edited(): Men?eintrag hat keinen Bezeichner." -#: nessus/prefs_dialog/prefs_scope_tree.c:794 +#: nessus/prefs_dialog/prefs_scope_tree.c:877 msgid "High" msgstr "Hoch" -#: nessus/prefs_dialog/prefs_scope_tree.c:806 +#: nessus/prefs_dialog/prefs_scope_tree.c:889 msgid "Medium" msgstr "Mittel" -#: nessus/prefs_dialog/prefs_scope_tree.c:818 +#: nessus/prefs_dialog/prefs_scope_tree.c:901 msgid "Low" msgstr "Niedrig" -#: nessus/prefs_dialog/prefs_options.c:94 +#: nessus/prefs_dialog/prefs_scope_tree.c:913 +#, fuzzy +msgid "FP" +msgstr "FM" + +#: nessus/prefs_dialog/prefs_scope_tree.c:925 +msgid "Log" +msgstr "Log:" + +#: nessus/prefs_dialog/prefs_options.c:109 msgid "General" msgstr "Allgemein" -#: nessus/prefs_dialog/prefs_options.c:98 +#: nessus/prefs_dialog/prefs_options.c:113 msgid "Plugins" msgstr "Plugins" -#: nessus/prefs_dialog/prefs_options.c:106 -#: nessus/prefs_dialog/prefs_target.c:49 +#: nessus/prefs_dialog/prefs_options.c:121 +#: nessus/prefs_dialog/prefs_target.c:101 msgid "Target selection" msgstr "Zielauswahl" -#: nessus/prefs_dialog/prefs_options.c:110 +#: nessus/prefs_dialog/prefs_options.c:125 msgid "Access Rules" msgstr "Zugriffsregeln" -#: nessus/prefs_dialog/prefs_options.c:114 +#: nessus/prefs_dialog/prefs_options.c:129 msgid "Prefs." msgstr "Voreinst." -#: nessus/prefs_dialog/prefs_options.c:118 +#: nessus/prefs_dialog/prefs_options.c:133 msgid "KB" msgstr "WB" -#: nessus/prefs_dialog/prefs_plugins.c:87 -#: nessus/prefs_dialog/prefs_plugins.c:284 +#: nessus/prefs_dialog/prefs_plugins.c:86 +#: nessus/prefs_dialog/prefs_plugins.c:290 msgid "No filter active" msgstr "Kein Filter aktiv" -#: nessus/prefs_dialog/prefs_plugins.c:91 +#: nessus/prefs_dialog/prefs_plugins.c:90 #, c-format msgid "Filter matches %u plugins" msgstr "Filter passt f?r %u Plugins" @@ -2596,65 +2846,87 @@ msgid "%d plugins; %d enabled" msgstr "%d Plugins, %d eingeschaltet" -#: nessus/prefs_dialog/prefs_plugins.c:238 +#: nessus/prefs_dialog/prefs_plugins.c:244 msgid "Plugin selection" msgstr "Pluginauswahl" -#: nessus/prefs_dialog/prefs_plugins.c:265 +#: nessus/prefs_dialog/prefs_plugins.c:271 msgid "No plugins" msgstr "Keine Plugins" -#: nessus/prefs_dialog/prefs_plugins.c:291 +#: nessus/prefs_dialog/prefs_plugins.c:297 msgid "Fi_lter..." msgstr "Fi_lter..." -#: nessus/prefs_dialog/prefs_plugins.c:302 +#: nessus/prefs_dialog/prefs_plugins.c:308 msgid "Enable all" msgstr "Alle einschalten" -#: nessus/prefs_dialog/prefs_plugins.c:309 +#: nessus/prefs_dialog/prefs_plugins.c:315 msgid "Disable all" msgstr "Alle ausschalten" -#: nessus/prefs_dialog/prefs_plugins.c:321 +#: nessus/prefs_dialog/prefs_plugins.c:327 msgid "Expand all" msgstr "Alles aufklappen" -#: nessus/prefs_dialog/prefs_plugins.c:327 +#: nessus/prefs_dialog/prefs_plugins.c:333 msgid "Collapse all" msgstr "Alles zusammenklappen" -#: nessus/prefs_dialog/prefs_plugins.c:340 +#: nessus/prefs_dialog/prefs_plugins.c:346 msgid "Dependencies:" msgstr "Abh?ngigkeiten:" -#: nessus/prefs_dialog/prefs_plugins.c:346 +#: nessus/prefs_dialog/prefs_plugins.c:352 msgid "Enable at runtime" msgstr "Zur Laufzeit anschalten" -#: nessus/prefs_dialog/prefs_plugins.c:352 +#: nessus/prefs_dialog/prefs_plugins.c:357 msgid "Silent" msgstr "Still" -#: nessus/prefs_dialog/prefs_plugins.c:363 +#: nessus/prefs_dialog/prefs_plugins.c:368 msgid "Automatically enable new plugins" msgstr "Neue Plugins automatisch aktivieren" -#: nessus/prefs_dialog/prefs_target.c:65 +#: nessus/prefs_dialog/prefs_target.c:117 msgid "Target(s):" msgstr "Ziel(e):" -#: nessus/prefs_dialog/prefs_target.c:76 +#: nessus/prefs_dialog/prefs_target.c:132 msgid "Read file..." msgstr "Lese aus Datei..." -#: nessus/prefs_dialog/prefs_target.c:84 +#: nessus/prefs_dialog/prefs_target.c:140 msgid "Perform a DNS zone transfer" msgstr "F?hre einen DNS-Zonentransfer durch" -#~ msgid "No SSH Key selected" -#~ msgstr "Kein SSH-Schl?ssel ausgew?hlt" +#~ msgid "Set plugin timeout..." +#~ msgstr "Setze Plugin Timeout..." +#~ msgid "Set plugin timeout:" +#~ msgstr "Setze Plugin Timeout:" + +#~ msgid "Can not find certificate for: %s." +#~ msgstr "Kann Zertifikat f?r %s nicht finden." + +#~ msgid "Connection timed out" +#~ msgstr "Zeit?berschreitung bei Verbindung" + +#~ msgid "Misc." +#~ msgstr "Versch." + +#~ msgid "Max threads : " +#~ msgstr "Max Threads : " + +#~ msgid "Remember the set of plugins" +#~ msgstr "Speichere die Pluginauswahl" + +#, fuzzy +#~ msgid "SSH Key Information" +#~ msgstr "Keine Informationen" + #~ msgid "Not yet implemented." #~ msgstr "Noch nicht implementiert" From scm-commit at wald.intevation.org Thu Apr 2 12:09:35 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 12:09:35 +0200 (CEST) Subject: [Openvas-commits] r2992 - in trunk/openvas-plugins: . scripts Message-ID: <20090402100935.4A65D4081E@pyrosoma.intevation.org> Author: mime Date: 2009-04-02 12:09:33 +0200 (Thu, 02 Apr 2009) New Revision: 2992 Added: trunk/openvas-plugins/scripts/MyioSoft_ajax_portal_34338.nasl trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl trunk/openvas-plugins/scripts/TinyPHPForum_mult_vuln.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 09:27:42 UTC (rev 2991) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 10:09:33 UTC (rev 2992) @@ -1,3 +1,9 @@ +2009-04-02 Michael Meyer + * scripts/MyioSoft_ajax_portal_34338.nasl, + scripts/TinyPHPForum_mult_vuln.nasl, + scripts/TinyPHPForum_detect.nasl: + Added new plugins + 2009-04-02 Chandrashekhar B * scripts/gb_justsystems_ichitaro_prdts_detect.nasl, scripts/gb_openssl_mult_vuln_win.nasl, Added: trunk/openvas-plugins/scripts/MyioSoft_ajax_portal_34338.nasl =================================================================== --- trunk/openvas-plugins/scripts/MyioSoft_ajax_portal_34338.nasl 2009-04-02 09:27:42 UTC (rev 2991) +++ trunk/openvas-plugins/scripts/MyioSoft_ajax_portal_34338.nasl 2009-04-02 10:09:33 UTC (rev 2992) @@ -0,0 +1,85 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# MyioSoft Ajax Portal 'ajaxp_backend.php' SQL Injection Vulnerability +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100095); + script_bugtraq_id(34338); + script_version ("1.0"); + + script_name(english:"MyioSoft Ajax Portal 'ajaxp_backend.php' SQL Injection Vulnerability"); + desc["english"] = " + + Overview: + MyioSoft Ajax Portal is prone to an SQL-injection vulnerability + because it fails to sufficiently sanitize user-supplied data before + using it in an SQL query. + + Exploiting this issue could allow an attacker to compromise the + application, access or modify data, or exploit latent + vulnerabilities in the underlying database. + + Ajax Portal 3.0 is vulnerable; other versions may also be affected. + + See also: + http://www.securityfocus.com/bid/34338 + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if MyioSoft Ajax Portal 'ajaxp_backend.php' is vulnerable to Multiple SQL Injection"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dir = make_list("/portal",cgi_dirs()); +foreach d (dir) +{ + url = string(d, "/ajaxp_backend.php?page=-1+union+select+1,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,3,4,5,6,7--"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:1); + if( buf == NULL )continue; + + if( egrep(pattern:"OpenVAS-SQL-Injection-Test", string: buf) ) + { + security_warning(port:port); + exit(0); + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/MyioSoft_ajax_portal_34338.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl 2009-04-02 09:27:42 UTC (rev 2991) +++ trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl 2009-04-02 10:09:33 UTC (rev 2992) @@ -0,0 +1,109 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# TinyPHPForum Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running TinyPHPForum, a ~130K PHP simple Forum. + + See also: + http://sourceforge.net/projects/tinyphpforum/ + + Risk factor : None"; + +if (description) +{ + script_id(100096); + script_version ("1.0"); + + script_name(english:"TinyPHPForum Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of TinyPHPForum"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/phpforum","/forum","/board",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "Powered by.*TinyPHPForum", string: buf)) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + + version = eregmatch(string: buf, pattern: "Powered by     ]+>TinyPHPForum v([0-9.]+)",icase:TRUE); + + if ( !isnull(version[1]) ) { + vers=version[1]; + } + + set_kb_item(name: string("www/", port, "/TinyPHPForum"), value: string(vers," under ",install)); + + info = string("None\n\nTinyPHPForum Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + security_note(port:port,data:desc); + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/TinyPHPForum_mult_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/TinyPHPForum_mult_vuln.nasl 2009-04-02 09:27:42 UTC (rev 2991) +++ trunk/openvas-plugins/scripts/TinyPHPForum_mult_vuln.nasl 2009-04-02 10:09:33 UTC (rev 2992) @@ -0,0 +1,82 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# TinyPHPForum Multiple Vulnerabilities +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100097); + script_bugtraq_id(19281,34339); + script_version("1.0"); + + script_name(english:"TinyPHPForum Multiple Vulnerabilities"); + desc["english"] = " + + Overview: + TinyPHPForum is prone to a directory-traversal vulnerability and to + an authentication-bypass vulnerability because it fails to + sufficiently sanitize user-supplied input data. A remote attacker + can exploit this issue to perform administrative functions without + requiring authentication or obtain sensitive information that could + aid in further attacks. + + TinyPHPForum 3.6 and 3.6.1 are vulnerable; + + See also: + http://www.securityfocus.com/bid/19281 + http://www.securityfocus.com/bid/34339 + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determines if TinyPHPForum is <=3.6.1"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("TinyPHPForum_detect.nasl"); + script_require_ports("Services/www", 80); + exit(0); +} + + +include("http_func.inc"); +include("version_func.inc"); + +port = get_http_port(default:80); +if(!port){ + exit(0); +} + +if(VER = get_kb_item(string("www/", port, "/TinyPHPForum"))) { + matches = eregmatch(string:VER, pattern:"^(.+) under (/.*)$"); + if(!isnull(matches)) { + VER = matches[1]; + if(version_is_less_equal(version:Ver, test_version:"3.6.1")) { + security_warning(port:port); + exit(0); + } + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/TinyPHPForum_mult_vuln.nasl ___________________________________________________________________ Name: svn:keywords + Id From scm-commit at wald.intevation.org Thu Apr 2 14:38:03 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 14:38:03 +0200 (CEST) Subject: [Openvas-commits] r2993 - in trunk/openvas-plugins: . scripts Message-ID: <20090402123803.DB31840816@pyrosoma.intevation.org> Author: chandra Date: 2009-04-02 14:38:02 +0200 (Thu, 02 Apr 2009) New Revision: 2993 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl Log: addressed duplicate script ID Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 10:09:33 UTC (rev 2992) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 12:38:02 UTC (rev 2993) @@ -1,3 +1,7 @@ +2009-04-02 Chandrashekhar B + * scripts/gb_openssl_detect_win.nasl: + Addressed duplicate script ID issue + 2009-04-02 Michael Meyer * scripts/MyioSoft_ajax_portal_34338.nasl, scripts/TinyPHPForum_mult_vuln.nasl, Modified: trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl 2009-04-02 10:09:33 UTC (rev 2992) +++ trunk/openvas-plugins/scripts/gb_openssl_detect_win.nasl 2009-04-02 12:38:02 UTC (rev 2993) @@ -26,7 +26,7 @@ if(description) { - script_id(800527); + script_id(800257); script_version("$Revision: 1.0 $"); script_name(english:"OpenSSL Version Detection (Win)"); desc["english"] = " From scm-commit at wald.intevation.org Thu Apr 2 15:15:38 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:15:38 +0200 (CEST) Subject: [Openvas-commits] r2994 - in trunk/openvas-libraries: . libopenvas Message-ID: <20090402131538.DAD1940826@pyrosoma.intevation.org> Author: jan Date: 2009-04-02 15:15:35 +0200 (Thu, 02 Apr 2009) New Revision: 2994 Modified: trunk/openvas-libraries/ChangeLog trunk/openvas-libraries/libopenvas/plugutils.c Log: * libopenvas/plugutils.c (mark_post): Fixed a probably unintended change in r2958 by Felix. Modified: trunk/openvas-libraries/ChangeLog =================================================================== --- trunk/openvas-libraries/ChangeLog 2009-04-02 12:38:02 UTC (rev 2993) +++ trunk/openvas-libraries/ChangeLog 2009-04-02 13:15:35 UTC (rev 2994) @@ -1,3 +1,8 @@ +2009-04-02 Jan-Oliver Wagner + + * libopenvas/plugutils.c (mark_post): Fixed a probably unintended + change in r2958 by Felix. + 2009-04-01 Felix Wolfsteller Corrected search path for signature files when comparing their Modified: trunk/openvas-libraries/libopenvas/plugutils.c =================================================================== --- trunk/openvas-libraries/libopenvas/plugutils.c 2009-04-02 12:38:02 UTC (rev 2993) +++ trunk/openvas-libraries/libopenvas/plugutils.c 2009-04-02 13:15:35 UTC (rev 2994) @@ -975,7 +975,7 @@ return; snprintf (entry_name, sizeof(entry_name), "SentData/%s/%s", plug_get_oid(desc), action); /* RATS: ignore */ - rar (desc, entry_name, ARG_STRING, content); + plug_set_key (desc, entry_name, ARG_STRING, content); } From scm-commit at wald.intevation.org Thu Apr 2 15:26:09 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:26:09 +0200 (CEST) Subject: [Openvas-commits] r2995 - in trunk/openvas-client: . doc Message-ID: <20090402132609.1674040828@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-02 15:26:09 +0200 (Thu, 02 Apr 2009) New Revision: 2995 Modified: trunk/openvas-client/CHANGES trunk/openvas-client/ChangeLog trunk/openvas-client/VERSION trunk/openvas-client/doc/Doxyfile trunk/openvas-client/doc/Doxyfile_full Log: Preparing the openvas-client 2.0.3 release. * VERSION: Set to 2.0.3. * CHANGES: Updated. * doc/Doxyfile, doc/Doxyfile_full: Set PROJECT_NUMBER to 2.0.3. Modified: trunk/openvas-client/CHANGES =================================================================== --- trunk/openvas-client/CHANGES 2009-04-02 13:15:35 UTC (rev 2994) +++ trunk/openvas-client/CHANGES 2009-04-02 13:26:09 UTC (rev 2995) @@ -1,3 +1,44 @@ +openvas-client 2.0.3 (2009-04-02) + +This is the third maintenance release of the openvas-client module for the +Open Vulnerability Assessment System (OpenVAS) 2.0-series. + +It fixes some issues discovered after the release of openvas-client +2.0.2 and introduces the new "Severity Override" Feature. +This feature allows for example to maintain a list of false positives +and apply it to subsequent scans. This works like a filter +and thus the actual scan results remain untouched and can at any +time be recovered. + +Code audit continued and a number of obsolete, unused and/or +unnecessary functions were identified and removed. + +Effects when installing this version: + +* The version requirement for the GTK+ library has been raised from 2.4 to 2.6 + to make sure all GTK+ functions used by OpenVAS-Client are indeed available. + GTK+ 2.6 was released in December 2004, so all modern distributions should + include at least this version. + +Main changes since 2.0.2: + +* A Severity Override Manager has been added, including right-mouse-button actions + in the report to specific severity overrides easily. The original scan results + will never be changed, so it is safe to test the severity overrides. +* A new "Extras" menu has been added and collects all "managers": + The LSC Credentials Manager, the Severity Override Manager and + the SLAD Install Manager. +* A bug which caused the client complain about missing files when starting a + scan on a fresh installation has been fixed. +* A bug which caused OpenVAS-Client not to be placed in the correct menu on + certain distributions has been fixed (relevant for packagers). +* OpenVAS-Client is now able to remember more than one server certificate. + +Many thanks to everyone who contributed to this release: Tim Brown, Laban +Mwangi, Vlatko Kosturjak, Jan-Oliver Wagner, Michael Wiegand and Felix +Wolfsteller. + + openvas-client 2.0.2 (2009-03-05) This is the second maintenance release of the openvas-client module for the Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 13:15:35 UTC (rev 2994) +++ trunk/openvas-client/ChangeLog 2009-04-02 13:26:09 UTC (rev 2995) @@ -1,3 +1,13 @@ +2009-04-02 Michael Wiegand + + Preparing the openvas-client 2.0.3 release. + + * VERSION: Set to 2.0.3. + + * CHANGES: Updated. + + * doc/Doxyfile, doc/Doxyfile_full: Set PROJECT_NUMBER to 2.0.3. + 2009-04-02 Felix Wolfsteller * po/de.po: Updated translation. Modified: trunk/openvas-client/VERSION =================================================================== --- trunk/openvas-client/VERSION 2009-04-02 13:15:35 UTC (rev 2994) +++ trunk/openvas-client/VERSION 2009-04-02 13:26:09 UTC (rev 2995) @@ -1 +1 @@ -2.0.3.SVN +2.0.3 Modified: trunk/openvas-client/doc/Doxyfile =================================================================== --- trunk/openvas-client/doc/Doxyfile 2009-04-02 13:15:35 UTC (rev 2994) +++ trunk/openvas-client/doc/Doxyfile 2009-04-02 13:26:09 UTC (rev 2995) @@ -23,7 +23,7 @@ # This could be handy for archiving the generated documentation or # if some version control system is used. -PROJECT_NUMBER = 2.0.3.SVN +PROJECT_NUMBER = 2.0.3 # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) # base path where the generated documentation will be put. Modified: trunk/openvas-client/doc/Doxyfile_full =================================================================== --- trunk/openvas-client/doc/Doxyfile_full 2009-04-02 13:15:35 UTC (rev 2994) +++ trunk/openvas-client/doc/Doxyfile_full 2009-04-02 13:26:09 UTC (rev 2995) @@ -23,7 +23,7 @@ # This could be handy for archiving the generated documentation or # if some version control system is used. -PROJECT_NUMBER = 2.0.3.SVN +PROJECT_NUMBER = 2.0.3 # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) # base path where the generated documentation will be put. From scm-commit at wald.intevation.org Thu Apr 2 15:28:59 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:28:59 +0200 (CEST) Subject: [Openvas-commits] r2996 - tags Message-ID: <20090402132859.3490A40828@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-02 15:28:59 +0200 (Thu, 02 Apr 2009) New Revision: 2996 Added: tags/openvas-client-release-2.0.3/ Log: Tagging the openvas-client 2.0.3 release. Copied: tags/openvas-client-release-2.0.3 (from rev 2995, trunk/openvas-client) From scm-commit at wald.intevation.org Thu Apr 2 15:32:12 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:32:12 +0200 (CEST) Subject: [Openvas-commits] r2997 - in trunk/openvas-client: . doc Message-ID: <20090402133212.35C9D40820@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-02 15:32:09 +0200 (Thu, 02 Apr 2009) New Revision: 2997 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/VERSION trunk/openvas-client/doc/Doxyfile trunk/openvas-client/doc/Doxyfile_full Log: Post release version bump. * VERSION: Set to 2.0.4.SVN. * doc/Doxyfile, doc/Doxyfile_full: Set PROJECT_NUMBER to 2.0.4.SVN. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 13:28:59 UTC (rev 2996) +++ trunk/openvas-client/ChangeLog 2009-04-02 13:32:09 UTC (rev 2997) @@ -1,5 +1,13 @@ 2009-04-02 Michael Wiegand + Post release version bump. + + * VERSION: Set to 2.0.4.SVN. + + * doc/Doxyfile, doc/Doxyfile_full: Set PROJECT_NUMBER to 2.0.4.SVN. + +2009-04-02 Michael Wiegand + Preparing the openvas-client 2.0.3 release. * VERSION: Set to 2.0.3. Modified: trunk/openvas-client/VERSION =================================================================== --- trunk/openvas-client/VERSION 2009-04-02 13:28:59 UTC (rev 2996) +++ trunk/openvas-client/VERSION 2009-04-02 13:32:09 UTC (rev 2997) @@ -1 +1 @@ -2.0.3 +2.0.4.SVN Modified: trunk/openvas-client/doc/Doxyfile =================================================================== --- trunk/openvas-client/doc/Doxyfile 2009-04-02 13:28:59 UTC (rev 2996) +++ trunk/openvas-client/doc/Doxyfile 2009-04-02 13:32:09 UTC (rev 2997) @@ -23,7 +23,7 @@ # This could be handy for archiving the generated documentation or # if some version control system is used. -PROJECT_NUMBER = 2.0.3 +PROJECT_NUMBER = 2.0.4.SVN # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) # base path where the generated documentation will be put. Modified: trunk/openvas-client/doc/Doxyfile_full =================================================================== --- trunk/openvas-client/doc/Doxyfile_full 2009-04-02 13:28:59 UTC (rev 2996) +++ trunk/openvas-client/doc/Doxyfile_full 2009-04-02 13:32:09 UTC (rev 2997) @@ -23,7 +23,7 @@ # This could be handy for archiving the generated documentation or # if some version control system is used. -PROJECT_NUMBER = 2.0.3 +PROJECT_NUMBER = 2.0.4.SVN # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) # base path where the generated documentation will be put. From scm-commit at wald.intevation.org Thu Apr 2 15:39:30 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:39:30 +0200 (CEST) Subject: [Openvas-commits] r2998 - trunk/doc/website Message-ID: <20090402133930.DBD9040829@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-02 15:39:30 +0200 (Thu, 02 Apr 2009) New Revision: 2998 Modified: trunk/doc/website/code-quality.htm4 trunk/doc/website/index.htm4 trunk/doc/website/template_header.m4 Log: Updated Website with the openvas-client 2.0.3 release. Modified: trunk/doc/website/code-quality.htm4 =================================================================== --- trunk/doc/website/code-quality.htm4 2009-04-02 13:32:09 UTC (rev 2997) +++ trunk/doc/website/code-quality.htm4 2009-04-02 13:39:30 UTC (rev 2998) @@ -479,6 +479,13 @@ 154/44 2 + + 2.0.3 + 29192 + 562 + 144/44 + 2 +

    How the numbers have been assembled

    Modified: trunk/doc/website/index.htm4 =================================================================== --- trunk/doc/website/index.htm4 2009-04-02 13:32:09 UTC (rev 2997) +++ trunk/doc/website/index.htm4 2009-04-02 13:39:30 UTC (rev 2998) @@ -43,17 +43,17 @@ The OpenVAS structure

    -Status: (as of March 26th, 2009) +Status: (as of April 2nd, 2009)

    • The OpenVAS NVT Feed service offers more -than 9,600 signed scripts. +than 9,700 signed scripts.
    • A small number of NVTs inherited from Nessus are still broken because they depend on a non-free component.
    • The latest releases:
        +
      • openvas-client 2.0.3 (April 2nd, 2009)
      • openvas-libraries 2.0.2 (March 6th, 2009) -
      • openvas-client 2.0.2 (March 5th, 2009)
      • openvas-server 2.0.1 (February 17th, 2009)
      • openvas-libnasl 2.0.1 (February 12th, 2009)
      Modified: trunk/doc/website/template_header.m4 =================================================================== --- trunk/doc/website/template_header.m4 2009-04-02 13:32:09 UTC (rev 2997) +++ trunk/doc/website/template_header.m4 2009-04-02 13:39:30 UTC (rev 2998) @@ -147,7 +147,7 @@ openvas-server 2.0.1
      openvas-plugins 1.0.5
      Client:
      - openvas-client 2.0.2
      + openvas-client 2.0.3

      From scm-commit at wald.intevation.org Thu Apr 2 15:40:41 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 15:40:41 +0200 (CEST) Subject: [Openvas-commits] r2999 - in trunk/openvas-client: . libnessus nessus Message-ID: <20090402134041.3F93340829@pyrosoma.intevation.org> Author: jan Date: 2009-04-02 15:40:40 +0200 (Thu, 02 Apr 2009) New Revision: 2999 Added: trunk/openvas-client/libnessus/openvas-socket.c trunk/openvas-client/libnessus/openvas-socket.h Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/libnessus/Makefile trunk/openvas-client/libnessus/network.c trunk/openvas-client/libnessus/system.c trunk/openvas-client/nessus/preferences.c Log: Further patches by Marcus Brinkmann towards a crosscompiling OpenVAS-Client based on mingw. * nessus/preferences.c (get_username): For W32 system, try environment variable USERNAME. (dlopen, dlsym, dlclose, w32_shgetfolderpath, standard_homedir): New. Handling of W32 specific methods to get folder path. (prefs_get_nessushome): For W32 systems, use standard_homedir() to get the homedir if environment does not help. * libnessus/openvas-socket.h: New. Protos fpr socket wrapper to help with W32 handling. * libnessus/openvas-socket.c: New. Socket wrappers for W32. * libnessus/Makefile: Add handling of module openvas-socket. * libnessus/system.c (emalloc): Don't run the waitpid/sleep loop for W32. * libnessus/network.c: Everyhwere: Replace block_socket by openvas_sock_block, socket by openvas_sock_new, unblock_socket by openvas_sock_unblock, close by openvas_sock_close, connect by openvas_sock_connect. (unblock_socket, block_socket): Removed. Equivalents now in module openvas-socket. (open_socket): Use EINPROGRESS only if defined. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/ChangeLog 2009-04-02 13:40:40 UTC (rev 2999) @@ -1,3 +1,32 @@ +2009-04-02 Jan-Oliver Wagner + + Further patches by Marcus Brinkmann towards a crosscompiling + OpenVAS-Client based on mingw. + + * nessus/preferences.c (get_username): For W32 system, try environment + variable USERNAME. + (dlopen, dlsym, dlclose, w32_shgetfolderpath, standard_homedir): New. + Handling of W32 specific methods to get folder path. + (prefs_get_nessushome): For W32 systems, use standard_homedir() to + get the homedir if environment does not help. + + * libnessus/openvas-socket.h: New. Protos fpr socket wrapper to + help with W32 handling. + + * libnessus/openvas-socket.c: New. Socket wrappers for W32. + + * libnessus/Makefile: Add handling of module openvas-socket. + + * libnessus/system.c (emalloc): Don't run the waitpid/sleep loop for W32. + + * libnessus/network.c: Everyhwere: Replace block_socket by + openvas_sock_block, socket by openvas_sock_new, unblock_socket by + openvas_sock_unblock, close by openvas_sock_close, connect by + openvas_sock_connect. + (unblock_socket, block_socket): Removed. Equivalents now in + module openvas-socket. + (open_socket): Use EINPROGRESS only if defined. + 2009-04-02 Michael Wiegand Post release version bump. @@ -38,7 +67,7 @@ NESSUSCLIENT target depending on utils target. * src/util/Makefile, src/openvas-lib/Makefile: Include GLib cflags. - + 2009-03-31 Felix Wolfsteller * nessus/prefs_dialog/prefs_comment.c (prefs_dialog_comment): Proper Modified: trunk/openvas-client/libnessus/Makefile =================================================================== --- trunk/openvas-client/libnessus/Makefile 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/libnessus/Makefile 2009-04-02 13:40:40 UTC (rev 2999) @@ -1,7 +1,6 @@ include ../nessus.tmpl -OBJS = system.o network.o resolve.o arglists.o hlst.o harglists.o rand.o addslashes.o - +OBJS = system.o openvas-socket.o network.o resolve.o arglists.o hlst.o harglists.o rand.o addslashes.o # += does not work with non-GNU make ... # CFLAGS+=-I../$(CIPHER_SUBDIR) Modified: trunk/openvas-client/libnessus/network.c =================================================================== --- trunk/openvas-client/libnessus/network.c 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/libnessus/network.c 2009-04-02 13:40:40 UTC (rev 2999) @@ -32,6 +32,7 @@ #include "libnessus.h" #include "network.h" #include "resolve.h" +#include "openvas-socket.h" #include @@ -230,38 +231,6 @@ static int __port_closed; -static int unblock_socket(int soc) -{ - int flags = fcntl(soc, F_GETFL, 0); - if (flags < 0) -{ - nessus_perror("fcntl(F_GETFL)"); - return -1; - } - if (fcntl(soc, F_SETFL, O_NONBLOCK | flags) < 0) - { - nessus_perror("fcntl(F_SETFL,O_NONBLOCK)"); - return -1; - } - return 0; -} - -static int block_socket(int soc) -{ - int flags = fcntl(soc, F_GETFL, 0); - if (flags < 0) - { - nessus_perror("fcntl(F_GETFL)"); - return -1; - } - if (fcntl(soc, F_SETFL, (~O_NONBLOCK) & flags) < 0) - { - nessus_perror("fcntl(F_SETFL,~O_NONBLOCK)"); - return -1; - } - return 0; -} - /* * Initialize the SSL library (error strings and algorithms) and try * to set the pseudo random generator to something less silly than the @@ -838,7 +807,7 @@ /* Trying OS's send() */ - block_socket(fd); + openvas_sock_block(fd); do { struct timeval tv = {0,5}; @@ -876,7 +845,7 @@ return read_stream_connection(fd, data, length); } - block_socket(fd); + openvas_sock_block(fd); do { e = recv(fd, data, length, i_opt); } while ( e < 0 && errno == EINTR ); @@ -915,7 +884,7 @@ __port_closed = 0; - if ((soc = socket(AF_INET, type, protocol)) < 0) + if ((soc = openvas_sock_new(AF_INET, type, protocol)) < 0) { nessus_perror("socket"); return -1; @@ -925,14 +894,14 @@ timeout = TIMEOUT; if (timeout > 0) - if (unblock_socket(soc) < 0) + if (openvas_sock_unblock(soc) < 0) { - close(soc); + openvas_sock_close(soc); return -1; } - if (connect(soc, (struct sockaddr*) paddr, sizeof(*paddr)) < 0) + if (openvas_sock_connect(soc, (struct sockaddr*) paddr, sizeof(*paddr)) < 0) { #if debug_SSL > 2 nessus_perror("connect"); @@ -940,7 +909,9 @@ again: switch (errno) { +#ifdef EINPROGRESS case EINPROGRESS: +#endif case EAGAIN: FD_ZERO(&fd_w); FD_SET(soc, &fd_w); @@ -989,7 +960,7 @@ return -1; } } - block_socket(soc); + openvas_sock_block(soc); return soc; } @@ -1144,7 +1115,7 @@ lock_fd = -1; } #endif - return close(soc); + return openvas_sock_close(soc); } ExtFunc void Added: trunk/openvas-client/libnessus/openvas-socket.c =================================================================== --- trunk/openvas-client/libnessus/openvas-socket.c 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/libnessus/openvas-socket.c 2009-04-02 13:40:40 UTC (rev 2999) @@ -0,0 +1,268 @@ +/* OpenVAS-Client + * + * Description: Socket wrappers for W32. + * + * Authors: + * Marcus Brinkmann + * + * Copyright: + * Copyright (C) 2009 Intevation GmbH + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License version 2, + * or, at your option, any later version as published by the Free + * Software Foundation + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + * + * In addition, as a special exception, you have + * permission to link the code of this program with the OpenSSL + * library (or with modified versions of OpenSSL that use the same + * license as OpenSSL), and distribute linked combinations including + * the two. You must obey the GNU General Public License in all + * respects for all of the code used other than OpenSSL. If you + * modify this file, you may extend this exception to your version + * of the file, but you are not obligated to do so. If you do not + * wish to do so, delete this exception statement from your version. + */ + +#include + +#ifdef _WIN32 +#define HAVE_W32_SYSTEM 1 +#endif + +#include +#include + +#ifdef HAVE_W32_SYSTEM +#define WIN32_LEAN_AND_MEAN +#include +#include +#include +#else +#include +#include +#endif + +#include +#include +#include +#include +#include +#include + +#include "openvas-socket.h" + +#ifdef HAVE_W32_SYSTEM +#ifndef S_IRGRP +# define S_IRGRP 0 +# define S_IWGRP 0 +#endif +#endif + +#if HAVE_W32_SYSTEM +#define SOCKET2HANDLE(s) ((int)(s)) +#define HANDLE2SOCKET(h) ((SOCKET)(h)) +#else +#define SOCKET2HANDLE(s) (s) +#define HANDLE2SOCKET(h) (h) +#endif + + +/** + * @brief Same as perror(), but prefixes the data by pid. + */ +static int +openvas_perror (const char* error) +{ + fprintf(stderr, "[%d] %s: %s\n", getpid(), error, strerror(errno)); + return 0; +} + + +#ifdef HAVE_W32_SYSTEM +int +_openvas_sock_wsa2errno (int err) +{ + switch (err) + { + case WSAENOTSOCK: + return EINVAL; + case WSAEWOULDBLOCK: + case WSAEINPROGRESS: + return EAGAIN; + case ERROR_BROKEN_PIPE: + return EPIPE; + case WSANOTINITIALISED: + return ENOSYS; + default: + return EIO; + } +} +#endif /* HAVE_W32_SYSTEM */ + +int +_openvas_close (int fd) +{ +#ifdef HAVE_W32_SYSTEM + int rc = closesocket (HANDLE2SOCKET(fd)); + if (rc) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + if (rc && WSAGetLastError () == WSAENOTSOCK) + { + rc = CloseHandle (fd); + if (rc) + /* FIXME. */ + errno = EIO; + } + return rc; +#else + return close (fd); +#endif +} + + +/* Return a new socket. Note that under W32 we consider a socket the + same as an System Handle; all functions using such a handle know + about this dual use and act accordingly. */ +int +_openvas_sock_new (int domain, int type, int proto) +{ +#ifdef HAVE_W32_SYSTEM + int res; + res = SOCKET2HANDLE(socket (domain, type, proto)); + if (res == -1) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + return res; +#else + return socket (domain, type, proto); +#endif +} + + +int +_openvas_sock_connect (int sockfd, struct sockaddr *addr, int addrlen) +{ +#ifdef HAVE_W32_SYSTEM + int res; + res = connect (HANDLE2SOCKET (sockfd), addr, addrlen); + if (res < 0) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + return res; +#else + return connect (sockfd, addr, addrlen); +#endif +} + + +int +_openvas_sock_bind (int sockfd, struct sockaddr *addr, int addrlen) +{ +#ifdef HAVE_W32_SYSTEM + int res = bind (HANDLE2SOCKET(sockfd), addr, addrlen); + if (res < 0) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + return res; +#else + return bind (sockfd, addr, addrlen); +#endif +} + + +int +_openvas_sock_unblock (int soc) +{ +#ifdef HAVE_W32_SYSTEM + unsigned long arg = 1; + int res = ioctlsocket (HANDLE2SOCKET (soc), FIONBIO, &arg); + if (res < 0) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + return res; +#else + int flags = fcntl(soc, F_GETFL, 0); + + if (flags < 0) + { + openvas_perror("fcntl(F_GETFL)"); + return -1; + } + if (fcntl(soc, F_SETFL, O_NONBLOCK | flags) < 0) + { + openvas_perror("fcntl(F_SETFL,O_NONBLOCK)"); + return -1; + } + return 0; +#endif +} + + +static int +_openvas_sock_block (int soc) +{ +#ifdef HAVE_W32_SYSTEM + unsigned long arg = 0; + int res = ioctlsocket (HANDLE2SOCKET (soc), FIONBIO, &arg); + if (res < 0) + errno = _openvas_sock_wsa2errno (WSAGetLastError ()); + return res; +#else + int flags = fcntl(soc, F_GETFL, 0); + if (flags < 0) + { + openvas_perror("fcntl(F_GETFL)"); + return -1; + } + if (fcntl(soc, F_SETFL, (~O_NONBLOCK) & flags) < 0) + { + openvas_perror("fcntl(F_SETFL,~O_NONBLOCK)"); + return -1; + } + return 0; +#endif +} + + +/* Public API. */ +int +openvas_sock_close (int fd) +{ + return _openvas_close (fd); +} + +int +openvas_sock_new (int domain, int type, int proto) +{ + return _openvas_sock_new (domain, type, proto); +} + +int +openvas_sock_connect (int sockfd, struct sockaddr *addr, int addrlen) +{ + return _openvas_sock_connect (sockfd, addr, addrlen); +} + +int +openvas_sock_bind (int sockfd, struct sockaddr *addr, int addrlen) +{ + return _openvas_sock_bind (sockfd, addr, addrlen); +} + +int +openvas_sock_block (int soc) +{ + return _openvas_sock_block (soc); +} + +int +openvas_sock_unblock (int soc) +{ + return _openvas_sock_unblock (soc); +} Added: trunk/openvas-client/libnessus/openvas-socket.h =================================================================== --- trunk/openvas-client/libnessus/openvas-socket.h 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/libnessus/openvas-socket.h 2009-04-02 13:40:40 UTC (rev 2999) @@ -0,0 +1,56 @@ +/* OpenVAS-Client + * + * Description: Protos for socket wrappers for W32. + * + * Authors: + * Marcus Brinkmann + * + * Copyright: + * Copyright (C) 2009 Intevation GmbH + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License version 2, + * or, at your option, any later version as published by the Free + * Software Foundation + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + * + * In addition, as a special exception, you have + * permission to link the code of this program with the OpenSSL + * library (or with modified versions of OpenSSL that use the same + * license as OpenSSL), and distribute linked combinations including + * the two. You must obey the GNU General Public License in all + * respects for all of the code used other than OpenSSL. If you + * modify this file, you may extend this exception to your version + * of the file, but you are not obligated to do so. If you do not + * wish to do so, delete this exception statement from your version. + */ + +#ifdef _OPENVAS_SOCKET_H +#define _OPENVAS_SOCKET_H + +#ifdef _WIN32 +#include +#define ETIMEDOUT EINTR +#else +#include +#endif + + +/* These are socket wrapper functions to support an emulation of Unix + domain sockets on Windows W32. */ +int openvas_sock_close (int fd); +int openvas_sock_new (int domain, int type, int proto); +int openvas_sock_connect (int sockfd, struct sockaddr *addr, int addrlen); +int openvas_sock_bind (int sockfd, struct sockaddr *addr, int addrlen); +int openvas_sock_block (int sockfd); +int openvas_sock_unblock (int sockfd); + +#endif Modified: trunk/openvas-client/libnessus/system.c =================================================================== --- trunk/openvas-client/libnessus/system.c 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/libnessus/system.c 2009-04-02 13:40:40 UTC (rev 2999) @@ -52,6 +52,7 @@ */ ptr = malloc(size); if(!ptr){ +#ifndef _WIN32 int i; for(i=0; (i<5) && ptr == NULL ;i++) { @@ -59,6 +60,7 @@ usleep(5000); ptr = malloc(size); } +#endif if( ptr == NULL ) { Modified: trunk/openvas-client/nessus/preferences.c =================================================================== --- trunk/openvas-client/nessus/preferences.c 2009-04-02 13:39:30 UTC (rev 2998) +++ trunk/openvas-client/nessus/preferences.c 2009-04-02 13:40:40 UTC (rev 2999) @@ -1,4 +1,4 @@ -/* Nessus +/* OpenVAS * Copyright (C) 1998 - 2001 Renaud Deraison * Copyright (C) 2004 Intevation GmbH * @@ -824,7 +824,17 @@ static char * get_username(void) { +#ifdef _WIN32 char *user; + + /* Look up the user's name. */ + user = getenv("USERNAME"); + if(user) + return user; + + return ""; +#else + char *user; struct passwd *pwd; /* Look up the user's name. */ @@ -841,18 +851,147 @@ return pwd->pw_name; return ""; +#endif } + +#ifdef _WIN32 +#include +#include +#include + +#define OPENVAS_DEFAULT_HOMEDIR "c:\openvas" +#define RTLD_LAZY 0 + +static __inline__ void * +dlopen (const char * name, int flag) +{ + void * hd = LoadLibrary (name); + return hd; +} + +static __inline__ void * +dlsym (void * hd, const char * sym) +{ + if (hd && sym) + { + void * fnc = GetProcAddress (hd, sym); + if (!fnc) + return NULL; + return fnc; + } + return NULL; +} + +static __inline__ int +dlclose (void * hd) +{ + if (hd) + { + FreeLibrary (hd); + return 0; + } + return -1; +} + + +/* This is a helper function to load and run a Windows function from + either of one DLLs. */ +static HRESULT +w32_shgetfolderpath (HWND a, int b, HANDLE c, DWORD d, LPSTR e) +{ + static int initialized; + static HRESULT (WINAPI * func)(HWND,int,HANDLE,DWORD,LPSTR); + + if (!initialized) + { + static char *dllnames[] = { "shell32.dll", "shfolder.dll", NULL }; + void *handle; + int i; + + initialized = 1; + + for (i=0, handle = NULL; !handle && dllnames[i]; i++) + { + handle = dlopen (dllnames[i], RTLD_LAZY); + if (handle) + { + func = dlsym (handle, "SHGetFolderPathA"); + if (!func) + { + dlclose (handle); + handle = NULL; + } + } + } + } + + if (func) + return func (a,b,c,d,e); + else + return -1; +} + +#ifndef CSIDL_APPDATA +#define CSIDL_APPDATA 0x001a +#endif +#ifndef CSIDL_LOCAL_APPDATA +#define CSIDL_LOCAL_APPDATA 0x001c +#endif +#ifndef CSIDL_COMMON_APPDATA +#define CSIDL_COMMON_APPDATA 0x0023 +#endif +#ifndef CSIDL_FLAG_CREATE +#define CSIDL_FLAG_CREATE 0x8000 +#endif + +/* Get the standard home directory. This function does not consider a + registry value (under W32) or the environment variable. */ +static char * +standard_homedir (void) +{ + static char *dir; + + if (!dir) + { + char path[MAX_PATH]; + + /* It might be better to use LOCAL_APPDATA because this is + defined as "non roaming" and thus more likely to be kept + locally. For private keys this is desired. However, given + that many users copy private keys anyway forth and back, + using a system roaming services might be better than to let + them do it manually. A security conscious user will anyway + use the registry entry to have better control. */ + if (w32_shgetfolderpath (NULL, CSIDL_APPDATA|CSIDL_FLAG_CREATE, + NULL, 0, path) >= 0) + { + dir = malloc (strlen (path) + 1); + strcpy (dir, path); + } + else + dir = OPENVAS_DEFAULT_HOMEDIR; + } + return dir; +} + +#endif + char * -prefs_get_nessushome (void) +prefs_get_nessushome(void) { char *home; - struct passwd *pwd; home = getenv("NESSUSHOME"); if (home) return home; +#ifdef _WIN32 + return standard_homedir (); +#else + + struct passwd *pwd; + home = getenv ("HOME"); if (home) return home; @@ -862,4 +1001,5 @@ return pwd->pw_dir; return ""; +#endif } From scm-commit at wald.intevation.org Thu Apr 2 16:41:00 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 16:41:00 +0200 (CEST) Subject: [Openvas-commits] r3000 - trunk/tools Message-ID: <20090402144100.1207A4081E@pyrosoma.intevation.org> Author: mime Date: 2009-04-02 16:40:59 +0200 (Thu, 02 Apr 2009) New Revision: 3000 Modified: trunk/tools/build-openvas.sh Log: Latest versions bump Modified: trunk/tools/build-openvas.sh =================================================================== --- trunk/tools/build-openvas.sh 2009-04-02 13:40:40 UTC (rev 2999) +++ trunk/tools/build-openvas.sh 2009-04-02 14:40:59 UTC (rev 3000) @@ -103,7 +103,7 @@ TARS[3]="openvas-plugins"; if [ ! $noClient ]; then - DOWNLOADS[4]="http://wald.intevation.org/frs/download.php/570/openvas-client-2.0.2.tar.gz"; # Download only if !$noClient + DOWNLOADS[4]="http://wald.intevation.org/frs/download.php/575/openvas-client-2.0.3.tar.gz"; # Download only if !$noClient TARS[4]="openvas-client"; fi From scm-commit at wald.intevation.org Thu Apr 2 16:42:17 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 16:42:17 +0200 (CEST) Subject: [Openvas-commits] r3001 - trunk/doc/website Message-ID: <20090402144217.F2F1B4081E@pyrosoma.intevation.org> Author: jan Date: 2009-04-02 16:42:16 +0200 (Thu, 02 Apr 2009) New Revision: 3001 Added: trunk/doc/website/related-tools.htm4 Modified: trunk/doc/website/template_header.m4 Log: Adding new page "related tools" with, so far, one entry: autonessus. Added: trunk/doc/website/related-tools.htm4 =================================================================== --- trunk/doc/website/related-tools.htm4 2009-04-02 14:40:59 UTC (rev 3000) +++ trunk/doc/website/related-tools.htm4 2009-04-02 14:42:16 UTC (rev 3001) @@ -0,0 +1,50 @@ +m4_dnl -*-html-*- +m4_include(`template.m4') + +m4_dnl OpenVAS +m4_dnl $Id$ +m4_dnl Description: List of tools that are integrated into OpenVAS Server. +m4_dnl +m4_dnl Authors: +m4_dnl Jan-Oliver Wagner +m4_dnl +m4_dnl Copyright: +m4_dnl Copyright (C) 2009 Intevation GmbH +m4_dnl +m4_dnl This program is free software; you can redistribute it and/or modify +m4_dnl it under the terms of the GNU General Public License version 2, +m4_dnl as published by the Free Software Foundation. +m4_dnl +m4_dnl This program is distributed in the hope that it will be useful, +m4_dnl but WITHOUT ANY WARRANTY; without even the implied warranty of +m4_dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +m4_dnl GNU General Public License for more details. +m4_dnl +m4_dnl You should have received a copy of the GNU General Public License +m4_dnl along with this program; if not, write to the Free Software +m4_dnl Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + + +PAGE_START +

      Security tools that are related to OpenVAS

      + +

      +This page is about tools that are in some way related to OpenVAS. +

      + +

      Autonessus

      + +

      +Autonessus automates regular OpenVAS scans and provides delta reporting. +The goal is to reduce the analysis time for subsequent scans of the same +infrastructure by only reporting delta findings. +

      + +

      +Homepage: http://www.autonessus.com/ +

      + +

      +Status (20090402): Since the recent release 1.3.0, Autonessus supports now also +OpenVAS. +

      Modified: trunk/doc/website/template_header.m4 =================================================================== --- trunk/doc/website/template_header.m4 2009-04-02 14:40:59 UTC (rev 3000) +++ trunk/doc/website/template_header.m4 2009-04-02 14:42:16 UTC (rev 3001) @@ -74,6 +74,7 @@

      Information/Howtos

      Integrated tools
      + Related tools
      Security info sources
      NVT creation process
      Trusted NVTs
      From scm-commit at wald.intevation.org Thu Apr 2 18:15:21 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 18:15:21 +0200 (CEST) Subject: [Openvas-commits] r3002 - in trunk/openvas-plugins: . scripts Message-ID: <20090402161521.3A6D340830@pyrosoma.intevation.org> Author: mime Date: 2009-04-02 18:15:11 +0200 (Thu, 02 Apr 2009) New Revision: 3002 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: Bugfix Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 14:42:16 UTC (rev 3001) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 16:15:11 UTC (rev 3002) @@ -1,3 +1,8 @@ +2009-04-02 Michael Meyer + * scripts/remote-detect-WindowsSharepointServices.nasl: + Bugfix. (Reports WindowsSharepointServices on my + apache). + 2009-04-02 Chandrashekhar B * scripts/gb_openssl_detect_win.nasl: Addressed duplicate script ID issue Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-02 14:42:16 UTC (rev 3001) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-02 16:15:11 UTC (rev 3002) @@ -128,7 +128,8 @@ set_kb_item(name:"ASPX/enabled", value:TRUE); report += "\n" + xPoweredBy[0]; } - - security_note(port:port, data:report); + if( report ) { + security_note(port:port, data:report); + } } } From scm-commit at wald.intevation.org Thu Apr 2 19:46:22 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 19:46:22 +0200 (CEST) Subject: [Openvas-commits] r3003 - trunk/openvas-plugins Message-ID: <20090402174622.9B0494082E@pyrosoma.intevation.org> Author: mime Date: 2009-04-02 19:46:21 +0200 (Thu, 02 Apr 2009) New Revision: 3003 Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugin Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 16:15:11 UTC (rev 3002) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 17:46:21 UTC (rev 3003) @@ -1,4 +1,8 @@ 2009-04-02 Michael Meyer + * scripts/Turnkey_eBook_store_xss_34324.nasl: + Added new plugin + +2009-04-02 Michael Meyer * scripts/remote-detect-WindowsSharepointServices.nasl: Bugfix. (Reports WindowsSharepointServices on my apache). From scm-commit at wald.intevation.org Thu Apr 2 19:55:51 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 19:55:51 +0200 (CEST) Subject: [Openvas-commits] r3004 - in trunk/openvas-plugins: . scripts Message-ID: <20090402175551.99BB94082E@pyrosoma.intevation.org> Author: mime Date: 2009-04-02 19:55:50 +0200 (Thu, 02 Apr 2009) New Revision: 3004 Added: trunk/openvas-plugins/scripts/Turnkey_eBook_store_xss_34324.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Forget to do svn add Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 17:46:21 UTC (rev 3003) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 17:55:50 UTC (rev 3004) @@ -1,5 +1,9 @@ 2009-04-02 Michael Meyer * scripts/Turnkey_eBook_store_xss_34324.nasl: + Forget to do 'svn add' for this plugin. + +2009-04-02 Michael Meyer + * scripts/Turnkey_eBook_store_xss_34324.nasl: Added new plugin 2009-04-02 Michael Meyer Added: trunk/openvas-plugins/scripts/Turnkey_eBook_store_xss_34324.nasl =================================================================== --- trunk/openvas-plugins/scripts/Turnkey_eBook_store_xss_34324.nasl 2009-04-02 17:46:21 UTC (rev 3003) +++ trunk/openvas-plugins/scripts/Turnkey_eBook_store_xss_34324.nasl 2009-04-02 17:55:50 UTC (rev 3004) @@ -0,0 +1,86 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# Turnkey eBook Store 'keywords' Parameter Cross Site Scripting +# Vulnerability +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100098); + script_bugtraq_id(34324); + script_version ("1.0"); + + script_name(english:"Turnkey eBook Store 'keywords' Parameter Cross Site Scripting Vulnerability"); + desc["english"] = " + + Overview: + + Turnkey eBook Store is prone to a cross-site scripting vulnerability. + + An attacker may leverage this issue to execute arbitrary script code + in the browser of an unsuspecting user in the context of the affected + site and to steal cookie-based authentication credentials. + + Turnkey eBook Store 1.1 is vulnerable; other versions may also be + affected. + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if Turnkey eBook Store is prone to Cross Site Scripting vulnerabilitie"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port)) exit(0); + +dir = make_list(cgi_dirs()); + +foreach d (dir) +{ + url = string(d, '/index.php?cmd=search&keywords=">'); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if ( egrep(pattern:"", string: buf) ) + + { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/Turnkey_eBook_store_xss_34324.nasl ___________________________________________________________________ Name: svn:keywords + Id From scm-commit at wald.intevation.org Thu Apr 2 20:36:01 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 20:36:01 +0200 (CEST) Subject: [Openvas-commits] r3005 - in trunk/openvas-plugins: . scripts Message-ID: <20090402183601.C81EE40828@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-02 20:36:00 +0200 (Thu, 02 Apr 2009) New Revision: 3005 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: Minor fix: just set the description Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-02 17:55:50 UTC (rev 3004) +++ trunk/openvas-plugins/ChangeLog 2009-04-02 18:36:00 UTC (rev 3005) @@ -1,3 +1,7 @@ +2009-04-02 Christian Eric Edjenguele + * scripts/remote-detect-WindowsSharePointServices.nasl: + Minor Fix, just set the description in the script code + 2009-04-02 Michael Meyer * scripts/Turnkey_eBook_store_xss_34324.nasl: Forget to do 'svn add' for this plugin. Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-02 17:55:50 UTC (rev 3004) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-02 18:36:00 UTC (rev 3005) @@ -1,6 +1,6 @@ # OpenVAS Vulnerability Test # $Id$ -# Description: This script ensure that the Sybase EAServer is installed and running +# Description: This script ensure that Windows SharePointServices is installed and running # # # Author: From scm-commit at wald.intevation.org Thu Apr 2 21:10:00 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 21:10:00 +0200 (CEST) Subject: [Openvas-commits] r3006 - in trunk/openvas-client: . include nessus src/gui Message-ID: <20090402191000.D27614082F@pyrosoma.intevation.org> Author: jan Date: 2009-04-02 21:09:59 +0200 (Thu, 02 Apr 2009) New Revision: 3006 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/configure trunk/openvas-client/configure.in trunk/openvas-client/include/corevers.h.in trunk/openvas-client/nessus.tmpl.in trunk/openvas-client/nessus/nessus.c trunk/openvas-client/src/gui/about_dlg.c Log: * configure.in, nessus.tmpl.in, include/corevers.h.in, nessus/nessus.c, src/gui/about_dlg.c: Renaming NESSUS_[MAJOR,MINOR,PATCH,RC,VERSION,FULL_VERSION] to OPENVASCLIENT_[...] * configure: updated. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/ChangeLog 2009-04-02 19:09:59 UTC (rev 3006) @@ -1,5 +1,14 @@ 2009-04-02 Jan-Oliver Wagner + * configure.in, nessus.tmpl.in, include/corevers.h.in, + nessus/nessus.c, src/gui/about_dlg.c: + Renaming NESSUS_[MAJOR,MINOR,PATCH,RC,VERSION,FULL_VERSION] to + OPENVASCLIENT_[...] + + * configure: updated. + +2009-04-02 Jan-Oliver Wagner + Further patches by Marcus Brinkmann towards a crosscompiling OpenVAS-Client based on mingw. Modified: trunk/openvas-client/configure =================================================================== --- trunk/openvas-client/configure 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/configure 2009-04-02 19:09:59 UTC (rev 3006) @@ -691,10 +691,10 @@ PWDD CWALL GTK_VERSION -NESSUS_MAJOR -NESSUS_MINOR -NESSUS_PATCH -NESSUS_RC +OPENVASCLIENT_MAJOR +OPENVASCLIENT_MINOR +OPENVASCLIENT_PATCH +OPENVASCLIENT_RC NESSUS_DATE NESS_COMPILER NESS_OS_NAME @@ -1768,10 +1768,10 @@ save_IFS="${IFS}" IFS=. -read NESSUS_MAJOR NESSUS_MINOR NESSUS_PATCH NESSUS_RC /dev/null || +expr 0 + $OPENVASCLIENT_MAJOR + $OPENVASCLIENT_MINOR + $OPENVASCLIENT_PATCH + 0 >/dev/null || { { echo "$as_me:$LINENO: error: *** Panic: Corrupt version file" >&5 echo "$as_me: error: *** Panic: Corrupt version file" >&2;} { (exit 1); exit 1; }; } @@ -11202,7 +11202,7 @@ test "x$enable_gtk" = "xno" || { -pkg_modules="gtk+-2.0 >= 2.4.0" +pkg_modules="gtk+-2.0 >= 2.6.0" pkg_failed=no { echo "$as_me:$LINENO: checking for GTKCONFIG" >&5 @@ -12104,10 +12104,10 @@ PWDD!$PWDD$ac_delim CWALL!$CWALL$ac_delim GTK_VERSION!$GTK_VERSION$ac_delim -NESSUS_MAJOR!$NESSUS_MAJOR$ac_delim -NESSUS_MINOR!$NESSUS_MINOR$ac_delim -NESSUS_PATCH!$NESSUS_PATCH$ac_delim -NESSUS_RC!$NESSUS_RC$ac_delim +OPENVASCLIENT_MAJOR!$OPENVASCLIENT_MAJOR$ac_delim +OPENVASCLIENT_MINOR!$OPENVASCLIENT_MINOR$ac_delim +OPENVASCLIENT_PATCH!$OPENVASCLIENT_PATCH$ac_delim +OPENVASCLIENT_RC!$OPENVASCLIENT_RC$ac_delim NESSUS_DATE!$NESSUS_DATE$ac_delim NESS_COMPILER!$NESS_COMPILER$ac_delim NESS_OS_NAME!$NESS_OS_NAME$ac_delim Modified: trunk/openvas-client/configure.in =================================================================== --- trunk/openvas-client/configure.in 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/configure.in 2009-04-02 19:09:59 UTC (rev 3006) @@ -20,10 +20,10 @@ dnl version stuff -- jordan save_IFS="${IFS}" IFS=. -read NESSUS_MAJOR NESSUS_MINOR NESSUS_PATCH NESSUS_RC /dev/null || +expr 0 + $OPENVASCLIENT_MAJOR + $OPENVASCLIENT_MINOR + $OPENVASCLIENT_PATCH + 0 >/dev/null || AC_MSG_ERROR([ *** Panic: Corrupt version file]) test "x$prefix" != "xNONE" || prefix=/usr/local @@ -544,10 +544,10 @@ AC_SUBST(CFLAGS) AC_SUBST(CWALL) AC_SUBST(GTK_VERSION) -AC_SUBST(NESSUS_MAJOR) -AC_SUBST(NESSUS_MINOR) -AC_SUBST(NESSUS_PATCH) -AC_SUBST(NESSUS_RC) +AC_SUBST(OPENVASCLIENT_MAJOR) +AC_SUBST(OPENVASCLIENT_MINOR) +AC_SUBST(OPENVASCLIENT_PATCH) +AC_SUBST(OPENVASCLIENT_RC) AC_SUBST(NESSUS_DATE) AC_SUBST(NESS_COMPILER) AC_SUBST(NESS_OS_NAME) Modified: trunk/openvas-client/include/corevers.h.in =================================================================== --- trunk/openvas-client/include/corevers.h.in 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/include/corevers.h.in 2009-04-02 19:09:59 UTC (rev 3006) @@ -22,8 +22,8 @@ #define NESS_OS_VERSION "@NESS_OS_VERSION@" #define PROGNAME "OpenVAS-Client" -#define NESSUS_VERSION "@NESSUS_MAJOR at .@NESSUS_MINOR at .@NESSUS_PATCH@" -#define NESSUS_FULL_VERSION "@NESSUS_MAJOR at .@NESSUS_MINOR at .@NESSUS_PATCH at .@NESSUS_RC@" +#define OPENVASCLIENT_VERSION "@OPENVASCLIENT_MAJOR at .@OPENVASCLIENT_MINOR at .@OPENVASCLIENT_PATCH@" +#define OPENVASCLIENT_FULL_VERSION "@OPENVASCLIENT_MAJOR at .@OPENVASCLIENT_MINOR at .@OPENVASCLIENT_PATCH at .@OPENVASCLIENT_RC@" #ifndef GTK_VERSION #define GTK_VERSION @GTK_VERSION@ Modified: trunk/openvas-client/nessus/nessus.c =================================================================== --- trunk/openvas-client/nessus/nessus.c 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/nessus/nessus.c 2009-04-02 19:09:59 UTC (rev 3006) @@ -824,7 +824,8 @@ if (display_version) { - printf(_("OpenVAS-Client (%s) %s for %s\n\n"), PROGNAME, NESSUS_VERSION, NESS_OS_NAME); + printf(_("OpenVAS-Client (%s) %s for %s\n\n"), PROGNAME, + OPENVASCLIENT_VERSION, NESS_OS_NAME); printf(_("NessusClient origin: (C) 1998 - 2003 Renaud Deraison \n")); printf(_("New code since OpenVAS-Client: (C) 2007, 2008, 2009 Intevation GmbH\n")); printf ("\n"); Modified: trunk/openvas-client/nessus.tmpl.in =================================================================== --- trunk/openvas-client/nessus.tmpl.in 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/nessus.tmpl.in 2009-04-02 19:09:59 UTC (rev 3006) @@ -44,7 +44,7 @@ installuser=@installuser@ localedir=$(datadir)/locale -VERSION=@NESSUS_MAJOR at .@NESSUS_MINOR at .@NESSUS_PATCH@ +VERSION=@OPENVASCLIENT_MAJOR at .@OPENVASCLIENT_MINOR at .@OPENVASCLIENT_PATCH@ # # The server / client modes do not make a lot of sense Modified: trunk/openvas-client/src/gui/about_dlg.c =================================================================== --- trunk/openvas-client/src/gui/about_dlg.c 2009-04-02 18:36:00 UTC (rev 3005) +++ trunk/openvas-client/src/gui/about_dlg.c 2009-04-02 19:09:59 UTC (rev 3006) @@ -141,7 +141,7 @@ text = g_strdup_printf(_("OpenVAS-Client %s" "\nNessusClient origin: Copyright 1998-2007 Renaud Deraison" "\nNew code since OpenVAS-Client: Copyright 2007, 2008, 2009 Intevation GmbH" - "\nLicense: GNU GPL v2"), NESSUS_FULL_VERSION); + "\nLicense: GNU GPL v2"), OPENVASCLIENT_FULL_VERSION); about_add_text(vbox, text); g_free(text); From scm-commit at wald.intevation.org Thu Apr 2 21:42:17 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 21:42:17 +0200 (CEST) Subject: [Openvas-commits] r3007 - trunk/winslad Message-ID: <20090402194217.58BFD4081E@pyrosoma.intevation.org> Author: doj Date: 2009-04-02 21:42:17 +0200 (Thu, 02 Apr 2009) New Revision: 3007 Modified: trunk/winslad/INSTALL.txt Log: we don't need MSYS Modified: trunk/winslad/INSTALL.txt =================================================================== --- trunk/winslad/INSTALL.txt 2009-04-02 19:09:59 UTC (rev 3006) +++ trunk/winslad/INSTALL.txt 2009-04-02 19:42:17 UTC (rev 3007) @@ -1,11 +1,13 @@ Prerequesities --------------- -- Download and install MinGW and its tools from http://sourceforge.net/project/showfiles.php?group_id=2435&package_id=240780 +- Download and install MinGW and its tools from + http://sourceforge.net/project/showfiles.php?group_id=2435&package_id=240780 http://www.mingw.org + use the installer to install the "MinGW base tools", "g++ compiler", "MinGW Make" + add c:\mingw\bin to your path + copy "c:\MinGW\bin\mingw32-make.exe" c:\MinGW\bin\make.exe -- MSYS? http://sourceforge.net/project/showfiles.php?group_id=2435&package_id=24963 +- "make" to compile sladd.exe and some plugins +- "make install" to install into C:\winslad\ From scm-commit at wald.intevation.org Thu Apr 2 21:43:53 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 21:43:53 +0200 (CEST) Subject: [Openvas-commits] r3008 - in trunk/openvas-client: . nessus Message-ID: <20090402194353.9AC8C4081E@pyrosoma.intevation.org> Author: jan Date: 2009-04-02 21:43:52 +0200 (Thu, 02 Apr 2009) New Revision: 3008 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/nessus/monitor_dialog.c Log: * nessus/monitor_dialog.c (monitor_dialog_setup, monitor_list_update, monitor_remove_host, monitor_add_host): Since GTK 2.6 is now minimal version for OpenVAS-Client, the if-clauses for old 2.4 code can be removed. (monitor_stop_test): Removed (not used anymore). Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-02 19:42:17 UTC (rev 3007) +++ trunk/openvas-client/ChangeLog 2009-04-02 19:43:52 UTC (rev 3008) @@ -1,5 +1,13 @@ 2009-04-02 Jan-Oliver Wagner + * nessus/monitor_dialog.c (monitor_dialog_setup, + monitor_list_update, monitor_remove_host, monitor_add_host): + Since GTK 2.6 is now minimal version for OpenVAS-Client, the + if-clauses for old 2.4 code can be removed. + (monitor_stop_test): Removed (not used anymore). + +2009-04-02 Jan-Oliver Wagner + * configure.in, nessus.tmpl.in, include/corevers.h.in, nessus/nessus.c, src/gui/about_dlg.c: Renaming NESSUS_[MAJOR,MINOR,PATCH,RC,VERSION,FULL_VERSION] to Modified: trunk/openvas-client/nessus/monitor_dialog.c =================================================================== --- trunk/openvas-client/nessus/monitor_dialog.c 2009-04-02 19:42:17 UTC (rev 3007) +++ trunk/openvas-client/nessus/monitor_dialog.c 2009-04-02 19:43:52 UTC (rev 3008) @@ -66,7 +66,6 @@ static void monitor_input_callback(struct arglist *); static void monitor_add_host(struct arglist *, char *, int); -static void monitor_stop_test(GtkWidget *, struct context *); static void monitor_list_update(struct arglist *, char *, int); static int monitor_stop_whole_test_destroy(void*, void*, struct arglist *); static int monitor_stop_whole_test(GtkWidget * , struct arglist *); @@ -189,10 +188,7 @@ prefs_context_update(context); w = gtk_window_new(GTK_WINDOW_TOPLEVEL); - if (GTK_CHECK_VERSION(2,6,0)) /* TreeView since GTK 2.6 */ - gtk_window_set_default_size(GTK_WINDOW(w), 320,200); - else - gtk_window_set_default_size(GTK_WINDOW(w), 640,480); + gtk_window_set_default_size(GTK_WINDOW(w), 320,200); /* TODO make the window non-modal * This can be done when context is kept for all called functions */ @@ -221,7 +217,6 @@ gtk_container_add(GTK_CONTAINER(w), box); gtk_widget_show(box); - if (GTK_CHECK_VERSION(2,6,0)) { /* TreeView since GTK 2.6 */ GtkListStore * store; GtkCellRenderer * renderer; GtkTreeViewColumn * column; @@ -275,23 +270,6 @@ w); gtk_widget_show(w); gtk_widget_show (scrolled_window); - } else { /* old style for GTK < 2.6 */ - scrolled_window = gtk_scrolled_window_new(NULL, NULL); - gtk_container_border_width(GTK_CONTAINER (scrolled_window), 10); - gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled_window), - GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); - - gtk_container_border_width(GTK_CONTAINER(scrolled_window), 10); - gtk_box_pack_start(GTK_BOX(box), scrolled_window, TRUE, TRUE, 0); - - w = gtk_list_new(); - gtk_scrolled_window_add_with_viewport(GTK_SCROLLED_WINDOW(scrolled_window), - w); - gtk_widget_show(w); - gtk_widget_show (scrolled_window); - arg_add_value(ctrls, "LIST", ARG_PTR, -1, w); - } - tag = gtk_idle_add((GtkFunction)idle_socket, ctrls); @@ -324,11 +302,6 @@ char * action; char* current = NULL; int max; - gfloat gmax; - gfloat gcurrent; - GList * dlist; - GtkObject * item; - GtkWidget * gtkw; char * list_hostname; int flag = 0; @@ -337,7 +310,6 @@ else parse_nessusd_short_status(msg, &hostname, &action, ¤t, &max); - if (GTK_CHECK_VERSION(2,6,0)) { /* TreeView since GTK 2.6 */ GtkListStore * store = arg_get_value(ctrls, "MON_STORE"); GtkTreeIter iter; int f; @@ -367,46 +339,7 @@ } } while (gtk_tree_model_iter_next(GTK_TREE_MODEL(store), &iter)); } - } else { /* old style for GTK < 2.6 */ - gtkw = arg_get_value(ctrls, "LIST"); - dlist = GTK_LIST(gtkw)->children; - while(dlist && !flag) - { - item = GTK_OBJECT(dlist->data); - list_hostname = gtk_object_get_data(item, "hostname"); - if(!list_hostname){ - fprintf(stderr, _("Error ! Null hostname in the list\n")); - /*exit(1);*/ - return; - } - if(!strcmp(list_hostname, hostname)) - { - GtkWidget * progress_bar; - gfloat f; - - gmax = max; - if (gmax == 0) { - f = 1.0; - } else { - gcurrent = atoi(current); - f = (gcurrent/gmax); - if(f>=1.0)f=1.0; - if(f<=0.0)f=0.0; - } - if( strcmp(action, "portscan") == 0 ) - progress_bar = gtk_object_get_data(item, "progress_bar_portscan"); - else - progress_bar = gtk_object_get_data(item, "progress_bar_attack"); - - gtk_progress_bar_update (GTK_PROGRESS_BAR(progress_bar), f); - - flag = 1; - } - dlist = dlist->next; - } - } - if(!flag) { /* the host was not found, we must add one... */ @@ -424,7 +357,6 @@ static void monitor_remove_host (struct arglist * ctrls, char * host) { - if (GTK_CHECK_VERSION(2,6,0)) { /* TreeView since GTK 2.6 */ GtkListStore * store = arg_get_value(ctrls, "MON_STORE"); GtkTreeIter iter; char * list_hostname; @@ -439,28 +371,6 @@ } } while (gtk_tree_model_iter_next(GTK_TREE_MODEL(store), &iter)); } - } else { /* old style for GTK < 2.6 */ - GtkWidget * item; - GList * list = NULL; - item = gtk_object_get_data(GTK_OBJECT(arg_get_value(ctrls, "LIST")),host); - - if(!item){ - /* - * If this happens, then it's very likely that the server - * thinks the communication has been cut between the client - * and itself. Which is not a good thing. - */ - return; - } - - if(item != (void*)-1) - { - list = g_list_append(list, item); - gtk_list_remove_items(GTK_LIST(arg_get_value(ctrls, "LIST")), list); - gtk_object_remove_data(GTK_OBJECT(arg_get_value(ctrls, "LIST")), host); - g_list_free(list); - } - } } @@ -470,7 +380,6 @@ void monitor_add_host (struct arglist * ctrls, char * hostname, int port) { - if (GTK_CHECK_VERSION(2,6,0)) { /* TreeView since GTK 2.6 */ GtkListStore * store = arg_get_value(ctrls, "MON_STORE"); GtkTreeIter iter; GdkPixbuf *pixbuf = gdk_pixbuf_new_from_xpm_data( @@ -483,121 +392,9 @@ COL_PORTSCAN, 0, COL_CHECKS, 0, -1); - } else { /* old style for GTK < 2.6 */ - GtkWidget * progress_bar_portscan; - GtkWidget * progress_bar_attack; - GtkWidget * table; - GtkWidget * label; - GtkWidget * item; - GtkWidget * button; - GtkWidget * separator; - GtkWidget * box, * hbox; - GdkPixbuf *pixbuf; - GtkWidget *img; - GList * dlist; - struct context * context = arg_get_value(ctrls, "CONTEXT"); +} - item = gtk_list_item_new(); - dlist = NULL; - table = gtk_table_new(4, 3, FALSE); - gtk_table_set_col_spacings(GTK_TABLE(table), 15); - gtk_table_set_row_spacings(GTK_TABLE(table), 5); - - gtk_container_add(GTK_CONTAINER(item), table); - - hbox = gtk_hbox_new(FALSE,0); - gtk_widget_show(hbox); - - gtk_table_attach_defaults(GTK_TABLE(table), hbox, 0,1,0,3); - - - /* - * Host name - */ - box = gtk_vbox_new(TRUE,0); - gtk_widget_show(box); - gtk_box_pack_start(GTK_BOX(hbox), box, FALSE, FALSE, 0); - if(F_show_pixmaps) - { - pixbuf = gdk_pixbuf_new_from_xpm_data((const char **)computer_xpm); - img = gtk_image_new_from_pixbuf(pixbuf); - gtk_box_pack_start(GTK_BOX(box), img, FALSE, FALSE, 0); - gtk_widget_show(img); - } - label = gtk_label_new(hostname); - gtk_object_set_data(GTK_OBJECT(item), "label", label); - gtk_widget_set_usize(label, 150, 15); - gtk_box_pack_start(GTK_BOX(box), label, FALSE, FALSE, 0); - gtk_widget_show(label); - - /* - * Portscan, Attack and Plugin labels - */ - box = gtk_vbox_new(TRUE, 0); - gtk_widget_show(box); - gtk_box_pack_end(GTK_BOX(hbox), box, FALSE, FALSE, 0); - - label = gtk_label_new(_("Portscan:")); - gtk_box_pack_start(GTK_BOX(box), label, FALSE, FALSE, 0); - gtk_widget_show(label); - - label = gtk_label_new(_("Checks:")); - gtk_box_pack_start(GTK_BOX(box), label, FALSE, FALSE, 0); - gtk_widget_show(label); - - /* - * Progress bars - */ - box = gtk_vbox_new(FALSE,0); - gtk_table_attach_defaults(GTK_TABLE(table), box, 1,2,0,3); - gtk_widget_show(box); - progress_bar_portscan = gtk_progress_bar_new(); - /* - gtk_table_attach_defaults(GTK_TABLE(table),progress_bar_portscan, 1,2,0,1); - */ - gtk_box_pack_start(GTK_BOX(box), progress_bar_portscan, TRUE, TRUE,0); - gtk_widget_show(progress_bar_portscan); - - progress_bar_attack = gtk_progress_bar_new(); - /* - gtk_table_attach_defaults(GTK_TABLE(table),progress_bar_attack, 1,2,1,2); - */ - gtk_box_pack_start(GTK_BOX(box), progress_bar_attack, TRUE, TRUE,0); - gtk_widget_show(progress_bar_attack); - - /* - * Stop button - */ - box = gtk_vbox_new(TRUE,0); - gtk_table_attach_defaults(GTK_TABLE(table), box, 2,3,0,2); - gtk_widget_show(box); - - button = gtk_button_new_with_label(_("Stop")); - g_signal_connect(GTK_OBJECT(button), "clicked", - (GtkSignalFunc)monitor_stop_test, context); - gtk_box_pack_start(GTK_BOX(box), button, FALSE, FALSE, 0); - gtk_object_set_data(GTK_OBJECT(button), "hostname", hostname); - gtk_widget_show(button); - - separator = gtk_hseparator_new(); - gtk_table_attach_defaults(GTK_TABLE(table), separator, 0,3,3,4); - gtk_widget_show(separator); - - - gtk_object_set_data(GTK_OBJECT(item), "hostname", hostname); - gtk_object_set_data(GTK_OBJECT(item), "progress_bar_attack", progress_bar_attack); - gtk_object_set_data(GTK_OBJECT(item), "progress_bar_portscan", progress_bar_portscan); - gtk_widget_show(table); - gtk_widget_show(item); - dlist = g_list_append(dlist, item); - gtk_object_set_data(GTK_OBJECT(arg_get_value(ctrls, "LIST")), hostname,item); - gtk_list_append_items(GTK_LIST(arg_get_value(ctrls, "LIST")), dlist); - - } - } - - /** * @brief Stops the connection between nessusd and the client, and reports the * @brief results to the screen. @@ -713,14 +510,4 @@ } } -/** - * @brief This function stops one test. - */ -void -monitor_stop_test (GtkWidget * w,struct context * context) -{ - char * hostname = gtk_object_get_data (GTK_OBJECT(w), "hostname"); - network_printf (context->socket, "CLIENT <|> STOP_ATTACK <|> %s <|> CLIENT\n", hostname); -} - #endif /* USE_GTK */ From scm-commit at wald.intevation.org Thu Apr 2 22:42:08 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Thu, 2 Apr 2009 22:42:08 +0200 (CEST) Subject: [Openvas-commits] r3009 - trunk/winslad Message-ID: <20090402204208.1ABA640828@pyrosoma.intevation.org> Author: doj Date: 2009-04-02 22:42:06 +0200 (Thu, 02 Apr 2009) New Revision: 3009 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp trunk/winslad/main.cpp trunk/winslad/xml.cpp Log: source code docs Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-02 19:43:52 UTC (rev 3008) +++ trunk/winslad/TODO.txt 2009-04-02 20:42:06 UTC (rev 3009) @@ -4,7 +4,6 @@ + http://www.kpym.com/2/kpym/index.htm + http://www.itefix.no/i2/taxonomy/term/33 -- document sources - test on 32, 64bit Windows - ovaldi plugin - write installer, run as slad user Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-02 19:43:52 UTC (rev 3008) +++ trunk/winslad/client.cpp 2009-04-02 20:42:06 UTC (rev 3009) @@ -66,11 +66,15 @@ LocalFree(lpvMessageBuffer); } +/** print all available plugins to STDOUT. + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int show_plugins (sladd_config_t * config) { - assert(config); - if(! config->plugins) - return -2; + // check parameters + if(!config) return -1; + if(! config->plugins) return -2; slad_plugin_t * plugin; for (int p_num = 0; (plugin = config->plugins[p_num]); p_num++) @@ -108,6 +112,14 @@ return 0; } +/** convert a plugin name to a filename. Since a plugin name can + contain colon (:) characters which are not valid filename + characters on Windows, they are replaced with a dollar sign + character ($). + + @param p plugin name + @return filename +*/ static std::string plugin2filename(const std::string& p) { std::string fn; @@ -121,6 +133,12 @@ return fn; } +/** convert a filename to a plugin name. Dollar sign characters ($) in + the filename are replaced with colons (:) in the plugin name. + + @param fn filename + @return plugin name +*/ static std::string filename2plugin(const std::string& fn) { std::string p; @@ -134,9 +152,13 @@ return p; } +/** print result files of terminated and running jobs. + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int show_results(sladd_config_t *config) { - assert(config); + if(!config) return -1; // strip trailing \ from resultpath std::string resultpath=config->resultpath; @@ -147,7 +169,6 @@ if(resultpath.size()<2) return -1; doj::filesInDir_t fid=doj::filesInDir(resultpath); - int z=0; foreach(fid, f) { std::string fn=filename2plugin(*f); @@ -155,66 +176,86 @@ off_t fs=(fn[0]=='T') ? doj::fileSize(*f) : 0; printf("%s:%li at 0xDEADBEEF\n", fn.c_str(), fs); - ++z; } - return z; + return 0; } +/** print a result file to STDOUT and delete result file. + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int show_result(sladd_config_t *config) { - assert(config); + if(!config) return -1; std::string fn=config->resultpath+"\\T$"+plugin2filename(config->arg); std::string res=doj::slurpFile(fn); - writen(1, res.data(), res.size()); + if(!res.empty()) + writen(1, res.data(), res.size()); unlink(fn.c_str()); return 0; } -/* Perform one of the show actions */ +/** Perform one of the show actions + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int cl_show (sladd_config_t * config) { + // check parameters + if(!config) return 1; if (config->arg.empty()) { printf(MSG_NOCOMMAND ": No selection to --show\n"); return 1; } - /* List plugins */ + // List plugins if (config->arg == "plugins") { - show_plugins (config); + return show_plugins (config); } + // list results else if (config->arg == "jobs" || config->arg == "results") { - show_results(config); + return show_results(config); } else { - /* Couldn't identify request directly, let's see if it's a plugin */ + // Couldn't identify request directly, let's see if it's a plugin int coloncount = 0; - for (int i=0; config->arg[i]; i++) - if (config->arg[i] == ':') - coloncount++; + foreach(config->arg, c) + if (*c == ':') + ++coloncount; if (coloncount == 2) { - show_result(config); + return show_result(config); } else { printf (MSG_NOCOMMAND "\n"); } } - return 0; + return 1; } +/** start a background process of sladd.exe which will execute a plugin. + @param p pointer to plugin struct + @param s pointer to set struct + @param e pointer to entry struct + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int start_plugin(slad_plugin_t * p, slad_plugin_set_t * s, slad_plugin_entry_t * e, sladd_config_t * config) { + // check parameters if(!p) return -1; - if(!e) return -2; - if(!config) return -3; + if(!s) return -2; + if(!e) return -3; + if(!config) return -4; + // setup some filenames from p,s,e const std::string pluginName=std::string(p->name)+':'+s->name+':'+e->name; const std::string pluginPath=config->pluginpath+'\\'+p->path; #if 0 @@ -296,12 +337,22 @@ return 1; } +/** execute plugin. + @param p pointer to plugin struct + @param s pointer to set struct + @param e pointer to entry struct + @param config configuration struct which must have been initialized + @return 0 upon success, negative upon error +*/ static int execute_plugin(slad_plugin_t * p, slad_plugin_set_t * s, slad_plugin_entry_t * e, sladd_config_t * config) { + // check parameters if(!p) return -1; - if(!e) return -2; - if(!config) return -3; + if(!s) return -2; + if(!e) return -3; + if(!config) return -4; + // setup some filenames from p,s,e const std::string pluginName=std::string(p->name)+':'+s->name+':'+e->name; const std::string pluginPath=config->pluginpath+'\\'+p->path; #if 0 @@ -324,7 +375,7 @@ std::string cmd; - // check for batch files + // check if plugin is a batch file LPTSTR lpApplicationName=NULL; const std::string binary=e->binary; if(binary.size()>4 && binary[binary.size()-4]=='.') @@ -448,32 +499,48 @@ return 1; } -static void findplugin (const std::string& pluginName, sladd_config_t * config, - slad_plugin_t ** plugin, slad_plugin_set_t ** set, - slad_plugin_entry_t ** entry) +/** find a plugin entry or set from the specification in pluginName. + + @param pluginName plugin specification + @param[in] config configuration struct which must have been initialized + @param[out] plugin plugin structure + @param[out] set set structure + @param[out] entry entry structure + + @return 0 upon success, negative upon error, positive if no match found +*/ +static int findplugin (const std::string& pluginName, sladd_config_t * config, + slad_plugin_t ** plugin, slad_plugin_set_t ** set, + slad_plugin_entry_t ** entry) { - char * tmpstring, * pname, * sname, * ename = NULL; - int p_num = 0, s_num = 0, e_num = 0; - int len; + // check parameters + if(pluginName.empty()) return -1; + if(!config) return -2; + if(!plugin) return -3; + if(!set) return -4; + if(!entry) return -5; - *plugin = NULL; - *set = NULL; - *entry = NULL; - if (!(config->plugins)) { PRINTF("findplugin(): could not find any plugins\n"); - return; + return -6; } + // initialize out parameters + *plugin = NULL; + *set = NULL; + *entry = NULL; + + char * tmpstring, * pname, * sname, * ename = NULL; + pname = tmpstring = strdup (pluginName.c_str()); if (!pname) { - PRINTF("findplugin(): could not strdup command\n"); - return; + PRINTF("findplugin(): could not strdup plugin name\n"); + return -7; } - len = strlen (pname); + int len = strlen (pname); // strip white spaces at the beginning while (*pname && isspace(*pname)) { len--; @@ -485,6 +552,7 @@ pname[len] = 0; } + // set sname and ename strings (pointers) sname = strchr (pname, ':'); if (sname) { *sname = 0; @@ -497,36 +565,57 @@ } } - for (p_num = 0; (*plugin = config->plugins[p_num]); p_num++) - if (!strcasecmp ((*plugin)->name, pname)) { - if (!sname) - return; - for (s_num = 0; (*set = (*plugin)->sets[s_num]); s_num++) - if (!strcasecmp ((*set)->name, sname)) { - if (!ename) return; - for (e_num = 0; (*entry = (*set)->entries[e_num]); e_num++) - if (!strcasecmp ((*entry)->name, ename)) { - free (tmpstring); - return; + // search in config->plugins for a match + int ret=1; + for (int p_num = 0; (*plugin = config->plugins[p_num]); p_num++) + if (!strcasecmp ((*plugin)->name, pname)) + { + if (!sname) + { + ret=0; + goto done; + } + for (int s_num = 0; (*set = (*plugin)->sets[s_num]); s_num++) + if (!strcasecmp ((*set)->name, sname)) + { + if (!ename) + { + ret=0; + goto done; + } + for (int e_num = 0; (*entry = (*set)->entries[e_num]); e_num++) + if (!strcasecmp ((*entry)->name, ename)) + { + ret=0; + goto done; + } } - } - } + } + done: free (tmpstring); + return ret; } +/** find a plugin which was given on the command line to run as background process. + @param config configuration struct which must have been initialized + @return 0 upon success +*/ static int cl_run(sladd_config_t * config) { - slad_plugin_t * p = NULL; - slad_plugin_set_t * s = NULL; - slad_plugin_entry_t * e = NULL; - + // check parameters + if(!config) return -1; if(config->arg.empty()) { printf(MSG_CANTQUEUE ": no plugin name\n"); return -1; } + // determine p,s,e from command line + slad_plugin_t * p = NULL; + slad_plugin_set_t * s = NULL; + slad_plugin_entry_t * e = NULL; + findplugin (config->arg, config, &p, &s, &e); if (!p) @@ -542,6 +631,7 @@ return -1; } + // if an entry was specified, start only that entry if (e) return start_plugin (p, s, e, config); @@ -551,17 +641,21 @@ return -1; } + // if a set was specified, start all entries of that set for (int e_num = 0; (e = s->entries[e_num]); e_num++) start_plugin (p, s, e, config); return 0; } +/** find a plugin which was given on the command line to execute. + @param config configuration struct which must have been initialized + @return 0 upon success +*/ static int cl_execute(sladd_config_t * config) { - slad_plugin_t * p = NULL; - slad_plugin_set_t * s = NULL; - slad_plugin_entry_t * e = NULL; + // check parameters + if(!config) return -1; if(config->arg.empty()) { @@ -569,6 +663,11 @@ return -1; } + // determine p,s,e from command line + slad_plugin_t * p = NULL; + slad_plugin_set_t * s = NULL; + slad_plugin_entry_t * e = NULL; + findplugin (config->arg, config, &p, &s, &e); if (!p) @@ -590,10 +689,14 @@ return -1; } + // execute the found plugin return execute_plugin (p, s, e, config); } -/* Externally visible entry point from main () */ +/** Determine which action to do + @param config configuration struct which must have been initialized + @return 0 upon success +*/ int run_client (sladd_config_t * config) { switch (config->command) Modified: trunk/winslad/main.cpp =================================================================== --- trunk/winslad/main.cpp 2009-04-02 19:43:52 UTC (rev 3008) +++ trunk/winslad/main.cpp 2009-04-02 20:42:06 UTC (rev 3009) @@ -41,11 +41,17 @@ #include -FILE *event_log=0; - +// function defined elsewhere int run_client (sladd_config_t * config); int load_plugin (const char * cfgname, sladd_config_t * config); +/// event log file handle +FILE *event_log=0; + +/** constructor for configuration struct. Some member variables are + initialized with default values, which may be overridden by + environment settings. + */ sladd_config_t::sladd_config_t() : pluginpath(SLADD_PLUGIN_PATH), resultpath(SLADD_RESULT_PATH), @@ -62,6 +68,9 @@ resultpath = envvar; } +/** print help screen then terminate program. + @param arg0 first command line argument (executable name) +*/ static void print_help(char *arg0) { assert(arg0); @@ -71,19 +80,30 @@ printf ("-R, --resultpath=%-21s results directory\n", SLADD_RESULT_PATH); printf ("-s, --show=plugins|jobs| display status\n" "-r, --run=pluginid run a job\n" - "-h, --help display this help\n"); + "-h, --help display this help\n" + "Environment variables: SLADD_PLUGIN_PATH, SLADD_RESULT_PATH\n" + ); - _exit (0); + exit(EXIT_FAILURE); } -static void init_cmdline (int argc, char ** argv, sladd_config_t *config) +/** initialize config from command line + @param argc number of strings in argv + @param argv command line arguments + @param config configuration struct + @return 0 upon success, negative upon error +*/ +static int init_cmdline (int argc, char ** argv, sladd_config_t *config) { - assert(config); - assert(argv); - assert(argc>0); + // check parameters + if(argc<=0) return -1; + if(!argv) return -2; + if(!config) return -3; + // set executable name config->sladd_exe=argv[0]; + // parse command line with GNU getopt_long std::string show, run, execute; int option_index = 0; @@ -125,6 +145,7 @@ } } + // determine action to run if (!show.empty()) { config->command = 's'; @@ -141,42 +162,58 @@ config->arg = execute; } + // if no action, then print helpscreen if (!config->command) print_help (argv[0]); + + return 0; } +/** initialize the plugins member variable of config. The pluginpath + member has to be set, to find the plugin.xml files. + + @param config pointer to configuration struct + @return 0 upon success, negative upon error +*/ static int init_plugins (sladd_config_t *config) { - assert(config); + // check parameters + if(!config) return -1; + if(config->pluginpath.empty()) return -2; + // check that config->pluginpath is a directory struct stat statbuf; if (stat (config->pluginpath.c_str(), &statbuf) < 0) { printf("init_plugins(): stat(%s) error\n", config->pluginpath.c_str()); - return -1; + return -3; } if (!S_ISDIR (statbuf.st_mode)) { printf("init_plugins(): pluginpath is not a directory\n"); - return -1; + return -4; } + // open directory DIR *dir = opendir (config->pluginpath.c_str()); if (!dir) { printf("can't opendir() plugin directory %s: %s\n", config->pluginpath.c_str(), strerror (errno)); - return -1; + return -5; } + // loop through directory struct dirent * entry; while ((entry = readdir (dir))) { if(! strcmp(entry->d_name, ".")) continue; if(! strcmp (entry->d_name, "..")) continue; + // check for a subdirectory std::string tmppath=config->pluginpath+'\\'+entry->d_name; if (!stat (tmppath.c_str(), &statbuf) && S_ISDIR (statbuf.st_mode)) { + // check for plugin.xml in subdirectory tmppath+="\\plugin.xml"; if (!stat (tmppath.c_str(), &statbuf) && S_ISREG (statbuf.st_mode)) { @@ -193,10 +230,22 @@ return 0; } +/** construct and initialize a sladd_config_t object from the command + line, environment and plugins. + + @param argc number of strings in argv + @param argv command line arguments + @return sladd_config_t object upon success, NULL upon error +*/ static sladd_config_t* init(int argc, char ** argv) { sladd_config_t *config = new sladd_config_t; - init_cmdline (argc, argv, config); + if(init_cmdline (argc, argv, config) < 0) + { + printf("could not init command line\n"); + delete config; + return NULL; + } if(init_plugins (config) < 0) { printf("could not init plugins\n"); @@ -214,15 +263,23 @@ return config; } -void cleanup() +/// cleanup function which is run after main() has returned +static void cleanup() { if(event_log) fclose(event_log); } +/** main function of Windows SLAD. + + @param argc number of strings in argv + @param argv command line arguments + @return 0 upon success, positive upon error +*/ int main (int argc, char ** argv) { try { + // initialize config variable sladd_config_t *config = init (argc, argv); if (!config) { @@ -230,9 +287,11 @@ return 1; } + // open log file const std::string logpath=config->pluginpath+"\\sladd.log"; event_log=fopen(logpath.c_str(), "at"); + // register cleanup function for program termination atexit(cleanup); #if 0 @@ -243,8 +302,9 @@ fflush(event_log); #endif + // run const int ret=run_client (config); - PRINTF("exit %s\n", (ret==0)?"success":"failure"); + PRINTF("exit %s\n", (ret==EXIT_SUCCESS)?"success":"failure"); return ret; } catch (std::exception& e) { std::string err="Exception: "; Modified: trunk/winslad/xml.cpp =================================================================== --- trunk/winslad/xml.cpp 2009-04-02 19:43:52 UTC (rev 3008) +++ trunk/winslad/xml.cpp 2009-04-02 20:42:06 UTC (rev 3009) @@ -86,21 +86,28 @@ ST_PLUGINSETENTRYRUNASGROUP }; -static int enqueue (void *** array, void * data) +/** append data to array. + @return true upon success, false upon error +*/ +static bool enqueue (void *** array, void * data) { int elements = 0; + // count number of elemets in array if (*array) for (elements = 0; array[0][elements]; elements++); + // grow by effectively one element void **tmp = (void**) realloc (*array, (elements+2) * sizeof (void *)); if (tmp) { + // append data *array = tmp; (*array)[elements] = data; (*array)[elements+1] = NULL; - return 0; + return true; } - return 1; + // realloc failed... + return false; } const char * getattr (const char * name, const char ** attr) { @@ -222,7 +229,7 @@ return; } plugin->path = strdup (basename (dirname (const_cast(config->pluginpath.c_str())))); - if (enqueue ((void ***) &(config->plugins), plugin)) { + if (! enqueue ((void ***) &(config->plugins), plugin)) { free (plugin); plugin = NULL; return; @@ -255,7 +262,7 @@ PRINTF("xml start(): could not calloc set\n"); return; } - if (enqueue ((void ***) &(plugin->sets), set)) { + if (! enqueue ((void ***) &(plugin->sets), set)) { free (set); set = NULL; return; @@ -287,7 +294,7 @@ PRINTF("xml start(): could not calloc entry\n"); return; } - if (enqueue ((void ***) &(set->entries), entry)) { + if (! enqueue ((void ***) &(set->entries), entry)) { free (entry); entry = NULL; return; @@ -357,17 +364,29 @@ #define BUFSIZE 256 -int load_plugin (const char * cfgname, sladd_config_t * config) { - FILE * file; - int len; - int done = 0; - XML_Parser parser; - char *buffer; - int result; +/** load a plugin and create appropriate structs which are referenced + in config. - assert(config); + @param pluginFN filename of plugin.xml + @param config configuration struct + @return 0 upon success, negative upon error +*/ +int load_plugin (const char * pluginFN, sladd_config_t * config) +{ + // check parameters + if(!pluginFN) return -1; + if(!config) return -1; - parser = XML_ParserCreate (NULL); + // open plugin.xml + FILE *file = fopen (pluginFN, "r"); + if (!file) + { + PRINTF("could not open %s\n", pluginFN); + return -1; + } + + // setup expat parser + XML_Parser parser = XML_ParserCreate (NULL); if (!parser) { PRINTF("could not create XML parser\n"); @@ -379,40 +398,38 @@ XML_UseParserAsHandlerArg (parser); XML_SetUserData (parser, config); - if (!(file = fopen (cfgname, "r"))) - { - PRINTF("could not open %s\n", cfgname); - return -1; - } - const std::string tmp = config->pluginpath; - config->pluginpath = cfgname; + config->pluginpath = pluginFN; + int ret=0; + int done = 0; do { - buffer = (char*) XML_GetBuffer (parser, BUFSIZE); - if (!buffer) { - PRINTF("Got no buffer for XML parsing: %s\n", XML_ErrorString(XML_GetErrorCode(parser))); - config->pluginpath = tmp; - return -1; - } + char *buffer = (char*) XML_GetBuffer (parser, BUFSIZE); + if (!buffer) + { + PRINTF("Got no buffer for XML parsing: %s\n", XML_ErrorString(XML_GetErrorCode(parser))); + ret=-1; + break; + } + int len=0; if (fgets (buffer, BUFSIZE-1, file)) len = strlen (buffer); - else - len = 0; + done = feof (file); - result = XML_Parse(parser, buffer, len, done); - if (result == XML_STATUS_ERROR) { - PRINTF("(%d) |%s|\n", len, (char *) buffer); - PRINTF("Parse error at line %d: %s\n", (int)XML_GetCurrentLineNumber(parser), XML_ErrorString(XML_GetErrorCode(parser))); - config->pluginpath = tmp; - return -1; - } + const int result = XML_Parse(parser, buffer, len, done); + if (result == XML_STATUS_ERROR) + { + PRINTF("(%d) |%s|\n", len, (char *) buffer); + PRINTF("Parse error at line %d: %s\n", (int)XML_GetCurrentLineNumber(parser), XML_ErrorString(XML_GetErrorCode(parser))); + ret=-1; + break; + } } while (!done); fclose (file); XML_ParserFree (parser); config->pluginpath = tmp; - return 0; + return ret; } From scm-commit at wald.intevation.org Fri Apr 3 03:37:30 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 03:37:30 +0200 (CEST) Subject: [Openvas-commits] r3011 - trunk/winslad Message-ID: <20090403013730.9887540829@pyrosoma.intevation.org> Author: doj Date: 2009-04-03 03:37:24 +0200 (Fri, 03 Apr 2009) New Revision: 3011 Added: trunk/winslad/shell.vbs Modified: trunk/winslad/INSTALL.txt trunk/winslad/Makefile trunk/winslad/TODO.txt trunk/winslad/readme.txt Log: restricted shell for SSH server Modified: trunk/winslad/INSTALL.txt =================================================================== --- trunk/winslad/INSTALL.txt 2009-04-02 21:57:44 UTC (rev 3010) +++ trunk/winslad/INSTALL.txt 2009-04-03 01:37:24 UTC (rev 3011) @@ -11,3 +11,7 @@ - "make" to compile sladd.exe and some plugins - "make install" to install into C:\winslad\ + +- install FreeSSHD: http://www.freesshd.com +- use "C:\windows\system32\cscript.exe /nologo c:\winslad\shell.vbs" as + 'Command shell' in SSH setup pane of FreeSSHD. Modified: trunk/winslad/Makefile =================================================================== --- trunk/winslad/Makefile 2009-04-02 21:57:44 UTC (rev 3010) +++ trunk/winslad/Makefile 2009-04-03 01:37:24 UTC (rev 3011) @@ -20,7 +20,7 @@ install: all -$(MKDIR) $(PREFIX) - $(CP) $(EXE) $(PREFIX) + $(CP) $(EXE) shell.vbs $(PREFIX) $(MAKE) -C john $@ $(MAKE) -C oval $@ Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-02 21:57:44 UTC (rev 3010) +++ trunk/winslad/TODO.txt 2009-04-03 01:37:24 UTC (rev 3011) @@ -1,8 +1,2 @@ -- SSH Server für Windows - + http://www.freesshd.com - + http://sshwindows.sourceforge.net/ - + http://www.kpym.com/2/kpym/index.htm - + http://www.itefix.no/i2/taxonomy/term/33 - - test on 32, 64bit Windows - write installer, run as slad user Modified: trunk/winslad/readme.txt =================================================================== --- trunk/winslad/readme.txt 2009-04-02 21:57:44 UTC (rev 3010) +++ trunk/winslad/readme.txt 2009-04-03 01:37:24 UTC (rev 3011) @@ -1,20 +1,15 @@ -The sladd is a daemon to run programs and capture their output for -further processing. The four main options are +The sladd is a program to run plugin programs and capture their output for +further processing. The main options are: --d: start the daemon --r : Run a plugin by id. If no server is found running, a new - one is automatically +-r : Run a plugin by id in background. -s: show various things. These are -s plugins: Show the list of plugins known to the server, or, if the server is not running, that can be read from the plugin's XML files. -s jobs : Show the list of finished or currently running jobs. -s : Show the output of the finished job . --q: terminate a running daemon -Optional parameters are given for the communication port between -server and client (defaults to 17002) via -l, and the location of -plugins (default to /opt/slad/plugins) via -p. +Optional parameters are given for the location of plugins and results. After launch, the program reads its plugin configuration from configuration files in XML format. These files are searched for in @@ -26,7 +21,7 @@ and entries. A "plugin" is a container for grouping sets. Sets are mutually -exclusive contaienrs for entries that may or may be not run, and is +exclusive containers for entries that may or may be not run, and is intended for user selection of the plugins to run. Each plugin may contain up to one default set, while each entry in a set may be enabled as default inside the set. @@ -43,7 +38,7 @@ A set is declared with the plugin with , where id uniquely identifies the set within the plugin. Up to one set -within a plugin may contain a tag with a value +within a plugin may contain a tag with a value of "1" to declare the default set within the plugin. As with the plugins, each set may have a description with the tag. @@ -76,7 +71,7 @@ Supposed to limit the number of output lines recorded from the process. -For the purpose of identifying a command to the daemon all three ids +For the purpose of identifying a command to the daemon all three IDs are used in the notation ::. It's finally up to the calling program to evaluate plugins and sets and offer the user the selections, then call all selected entries. Added: trunk/winslad/shell.vbs =================================================================== --- trunk/winslad/shell.vbs 2009-04-02 21:57:44 UTC (rev 3010) +++ trunk/winslad/shell.vbs 2009-04-03 01:37:24 UTC (rev 3011) @@ -0,0 +1,63 @@ +' use this Visual Basic Restricted Shell with +' c:\windows\system32\cscript.exe /nologo shell.vbs + +' Description: simple restricted shell for WinSLAD +' Authors: Dirk Jagdmann + +' Copyright (C) 2009 DN-Systems Enterprise Internet Solutions GmbH +' Hornemannstr. 11-13, 31137 Hildesheim, Germany + +' This program is free software; you can redistribute it and/or modify +' it under the terms of the GNU General Public License version 2 or later, +' as published by the Free Software Foundation + +' This program is distributed in the hope that it will be useful, +' but WITHOUT ANY WARRANTY; without even the implied warranty of +' MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +' GNU General Public License for more details. + +' You should have received a copy of the GNU General Public License +' along with this program; if not, write to the Free Software +' Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + +Option Explicit +Dim WshShell +Set WshShell = CreateObject("WScript.Shell") + +Dim WshNetwork +Set WshNetwork = WScript.CreateObject("WScript.Network") + +Do While true + ' write prompt + WScript.StdOut.Write "[" + WshNetwork.UserName + "@" + WshNetwork.ComputerName + "\\" + WshNetwork.UserDomain + "] " + WshShell.CurrentDirectory + ">" + + ' read command line + Dim cmdLine + cmdLine = Trim(WScript.StdIn.ReadLine()) + + ' check command line + If UCase(Left(cmdLine, 6)) = "SLADD " Or UCase(Left(cmdLine, 10)) = "SLADD.EXE " Then + ' run command + Dim sladd + Set sladd = WshShell.Exec(cmdLine) + Do While sladd.Status = 0 + WScript.Sleep 100 + Loop + ' check for STDOUT + If Not sladd.StdOut.AtEndOfStream Then + WScript.StdOut.Write sladd.StdOut.ReadAll + End If + ' check for STDERR + If Not sladd.StdErr.AtEndOfStream Then + WScript.Echo "STDERR:" + WScript.StdOut.Write sladd.StdErr.ReadAll + End If + ElseIf UCase(cmdLine) = "EXIT" Then + WScript.quit + ElseIf UCase(cmdLine) = "HELP" Then + WScript.Echo "you can only start the WinSLAD program via 'sladd' or 'sladd.exe' and" + WScript.Echo "at least one argument. Use 'exit' to exit from the restricted shell." + Else + WScript.Echo "command forbidden" + End if +Loop Property changes on: trunk/winslad/shell.vbs ___________________________________________________________________ Name: svn:executable + * From scm-commit at wald.intevation.org Fri Apr 3 08:25:19 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 08:25:19 +0200 (CEST) Subject: [Openvas-commits] r3012 - trunk/openvas-client Message-ID: <20090403062519.DB0C34082D@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-03 08:25:18 +0200 (Fri, 03 Apr 2009) New Revision: 3012 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/Makefile Log: * Makefile: Added buildcheck target; this target is intended to improve QA and should be called to make sure OpenVAS-Client builds correctly before a release. As an initial step, it will try to build OpenVAS-Client as well as the translations in the "po" directory. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-03 01:37:24 UTC (rev 3011) +++ trunk/openvas-client/ChangeLog 2009-04-03 06:25:18 UTC (rev 3012) @@ -1,3 +1,10 @@ +2009-04-03 Michael Wiegand + + * Makefile: Added buildcheck target; this target is intended to improve + QA and should be called to make sure OpenVAS-Client builds correctly + before a release. As an initial step, it will try to build + OpenVAS-Client as well as the translations in the "po" directory. + 2009-04-02 Jan-Oliver Wagner * nessus/monitor_dialog.c (monitor_dialog_setup, Modified: trunk/openvas-client/Makefile =================================================================== --- trunk/openvas-client/Makefile 2009-04-03 01:37:24 UTC (rev 3011) +++ trunk/openvas-client/Makefile 2009-04-03 06:25:18 UTC (rev 3012) @@ -46,6 +46,8 @@ $(MAN_NESSUS_1) : $(MAN_NESSUS_1).in @sed -e '' $(MAN_NESSUS_1).in >$(MAN_NESSUS_1) +buildcheck: all + cd po && make clean: cd nessus && $(MAKE) clean From scm-commit at wald.intevation.org Fri Apr 3 10:01:37 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 10:01:37 +0200 (CEST) Subject: [Openvas-commits] r3013 - in trunk/openvas-client: . libnessus Message-ID: <20090403080137.089C340820@pyrosoma.intevation.org> Author: felix Date: 2009-04-03 10:01:34 +0200 (Fri, 03 Apr 2009) New Revision: 3013 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/libnessus/openvas-socket.h Log: * libnessus/openvas-socket.h: Corrected include guard (resolves compiler warnings). Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-03 06:25:18 UTC (rev 3012) +++ trunk/openvas-client/ChangeLog 2009-04-03 08:01:34 UTC (rev 3013) @@ -1,3 +1,8 @@ +2009-04-03 Felix Wolfsteller + + * libnessus/openvas-socket.h: Corrected include guard (resolves compiler + warnings). + 2009-04-03 Michael Wiegand * Makefile: Added buildcheck target; this target is intended to improve @@ -71,7 +76,7 @@ 2009-04-02 Felix Wolfsteller - * po/de.po: Updated translation. + * po/de.po: Updated german translation. 2009-04-02 Felix Wolfsteller Modified: trunk/openvas-client/libnessus/openvas-socket.h =================================================================== --- trunk/openvas-client/libnessus/openvas-socket.h 2009-04-03 06:25:18 UTC (rev 3012) +++ trunk/openvas-client/libnessus/openvas-socket.h 2009-04-03 08:01:34 UTC (rev 3013) @@ -33,7 +33,7 @@ * wish to do so, delete this exception statement from your version. */ -#ifdef _OPENVAS_SOCKET_H +#ifndef _OPENVAS_SOCKET_H #define _OPENVAS_SOCKET_H #ifdef _WIN32 From scm-commit at wald.intevation.org Fri Apr 3 10:17:38 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 10:17:38 +0200 (CEST) Subject: [Openvas-commits] r3014 - trunk/openvas-plugins Message-ID: <20090403081738.4A5262C057@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-03 10:17:36 +0200 (Fri, 03 Apr 2009) New Revision: 3014 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/Makefile trunk/openvas-plugins/configure trunk/openvas-plugins/configure.in Log: Remove the --enable-install configure option and default to allowing non-root users to install openvas-plugins. This was done for consistency since openvas-plugins was the last module requiring elevated privileges for installation. * configure.in: Removed AC_ARG_ENABLE for install. * configure: Regenerated. * Makefile: Removed setting the owner to $installuser. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 08:01:34 UTC (rev 3013) +++ trunk/openvas-plugins/ChangeLog 2009-04-03 08:17:36 UTC (rev 3014) @@ -1,3 +1,16 @@ +2009-04-03 Michael Wiegand + + Remove the --enable-install configure option and default to allowing + non-root users to install openvas-plugins. This was done for consistency + since openvas-plugins was the last module requiring elevated privileges + for installation. + + * configure.in: Removed AC_ARG_ENABLE for install. + + * configure: Regenerated. + + * Makefile: Removed setting the owner to $installuser. + 2009-04-02 Christian Eric Edjenguele * scripts/remote-detect-WindowsSharePointServices.nasl: Minor Fix, just set the description in the script code Modified: trunk/openvas-plugins/Makefile =================================================================== --- trunk/openvas-plugins/Makefile 2009-04-03 08:01:34 UTC (rev 3013) +++ trunk/openvas-plugins/Makefile 2009-04-03 08:17:36 UTC (rev 3014) @@ -10,7 +10,7 @@ install-sync-script: test -d $(DESTDIR)${sbindir} || $(INSTALL_DIR) -m 755 $(DESTDIR)${sbindir} - $(INSTALL) -o $(installuser) -m 0555 openvas-nvt-sync \ + $(INSTALL) -m 0555 openvas-nvt-sync \ $(DESTDIR)${sbindir} install-dirs: @@ -21,19 +21,19 @@ install-nasl: install-dirs for scripts in scripts/*.nasl; do \ - $(INSTALL) -o $(installuser) -m 444 $$scripts \ + $(INSTALL) -m 444 $$scripts \ $(DESTDIR)${libdir}/openvas/plugins; \ done install-inc: install-dirs for scripts in scripts/*.inc; do \ - $(INSTALL) -o $(installuser) -m 444 $$scripts \ + $(INSTALL) -m 444 $$scripts \ $(DESTDIR)${libdir}/openvas/plugins; \ done install-nes: install-dirs for plugins in bin/*.nes; do \ - $(INSTALL) -o $(installuser) -m 555 $$plugins \ + $(INSTALL) -m 555 $$plugins \ $(DESTDIR)${libdir}/openvas/plugins; \ done Modified: trunk/openvas-plugins/configure =================================================================== --- trunk/openvas-plugins/configure 2009-04-03 08:01:34 UTC (rev 3013) +++ trunk/openvas-plugins/configure 2009-04-03 08:17:36 UTC (rev 3014) @@ -1456,7 +1456,6 @@ --enable-fast-install[=PKGS] optimize for fast installation [default=yes] --disable-libtool-lock avoid locking (might break parallel builds) - --enable-install=user for debugging, install as non-root user Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] @@ -3668,7 +3667,7 @@ ;; *-*-irix6*) # Find out which ABI we are using. - echo '#line 3671 "configure"' > conftest.$ac_ext + echo '#line 3670 "configure"' > conftest.$ac_ext if { (eval echo "$as_me:$LINENO: \"$ac_compile\"") >&5 (eval $ac_compile) 2>&5 ac_status=$? @@ -6286,11 +6285,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:6289: $lt_compile\"" >&5) + (eval echo "\"\$as_me:6288: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:6293: \$? = $ac_status" >&5 + echo "$as_me:6292: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -6554,11 +6553,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:6557: $lt_compile\"" >&5) + (eval echo "\"\$as_me:6556: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:6561: \$? = $ac_status" >&5 + echo "$as_me:6560: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -6658,11 +6657,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:6661: $lt_compile\"" >&5) + (eval echo "\"\$as_me:6660: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 - echo "$as_me:6665: \$? = $ac_status" >&5 + echo "$as_me:6664: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized @@ -8955,7 +8954,7 @@ lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext < conftest.$ac_ext <&5) + (eval echo "\"\$as_me:11393: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:11398: \$? = $ac_status" >&5 + echo "$as_me:11397: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -11495,11 +11494,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:11498: $lt_compile\"" >&5) + (eval echo "\"\$as_me:11497: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 - echo "$as_me:11502: \$? = $ac_status" >&5 + echo "$as_me:11501: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized @@ -13056,11 +13055,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:13059: $lt_compile\"" >&5) + (eval echo "\"\$as_me:13058: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:13063: \$? = $ac_status" >&5 + echo "$as_me:13062: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -13160,11 +13159,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:13163: $lt_compile\"" >&5) + (eval echo "\"\$as_me:13162: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 - echo "$as_me:13167: \$? = $ac_status" >&5 + echo "$as_me:13166: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized @@ -15347,11 +15346,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:15350: $lt_compile\"" >&5) + (eval echo "\"\$as_me:15349: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:15354: \$? = $ac_status" >&5 + echo "$as_me:15353: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -15615,11 +15614,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:15618: $lt_compile\"" >&5) + (eval echo "\"\$as_me:15617: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 - echo "$as_me:15622: \$? = $ac_status" >&5 + echo "$as_me:15621: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. @@ -15719,11 +15718,11 @@ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` - (eval echo "\"\$as_me:15722: $lt_compile\"" >&5) + (eval echo "\"\$as_me:15721: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 - echo "$as_me:15726: \$? = $ac_status" >&5 + echo "$as_me:15725: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized @@ -18688,15 +18687,6 @@ -# Check whether --enable-install was given. -if test "${enable_install+set}" = set; then - enableval=$enable_install; installuser=$enable_install -fi - -: ${installuser:=root} - - - { echo "$as_me:$LINENO: checking for openpty in -lutil" >&5 echo $ECHO_N "checking for openpty in -lutil... $ECHO_C" >&6; } if test "${ac_cv_lib_util_openpty+set}" = set; then Modified: trunk/openvas-plugins/configure.in =================================================================== --- trunk/openvas-plugins/configure.in 2009-04-03 08:01:34 UTC (rev 3013) +++ trunk/openvas-plugins/configure.in 2009-04-03 08:17:36 UTC (rev 3014) @@ -59,12 +59,6 @@ -AC_ARG_ENABLE(install,[ --enable-install=user for debugging, install as non-root user], - installuser=$enable_install) -: ${installuser:=root} - - - dnl containing funny things, like openpty, forkpty dnl this library is deprecated because of portability AC_CHECK_LIB(util, openpty, LIBUTIL="-lutil") From scm-commit at wald.intevation.org Fri Apr 3 10:22:25 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 10:22:25 +0200 (CEST) Subject: [Openvas-commits] r3015 - trunk/openvas-plugins Message-ID: <20090403082225.9EC722C057@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-03 10:22:24 +0200 (Fri, 03 Apr 2009) New Revision: 3015 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/Makefile Log: * Makefile: Added install-minimal target to allow a minimal installation without any *nasl or *inc files. This is useful for testing purposes and when synchronization with a feed will occur anyway after installation. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 08:17:36 UTC (rev 3014) +++ trunk/openvas-plugins/ChangeLog 2009-04-03 08:22:24 UTC (rev 3015) @@ -1,5 +1,12 @@ 2009-04-03 Michael Wiegand + * Makefile: Added install-minimal target to allow a minimal + installation without any *nasl or *inc files. This is useful for testing + purposes and when synchronization with a feed will occur anyway after + installation. + +2009-04-03 Michael Wiegand + Remove the --enable-install configure option and default to allowing non-root users to install openvas-plugins. This was done for consistency since openvas-plugins was the last module requiring elevated privileges Modified: trunk/openvas-plugins/Makefile =================================================================== --- trunk/openvas-plugins/Makefile 2009-04-03 08:17:36 UTC (rev 3014) +++ trunk/openvas-plugins/Makefile 2009-04-03 08:22:24 UTC (rev 3015) @@ -41,6 +41,14 @@ test -d $(DESTDIR)${mandir}/man1 || $(INSTALL_DIR) -m 755 \ $(DESTDIR)${mandir}/man1 +install-minimal : all \ + install-dirs install-nes \ + install-man install-sync-script + + test -d $(DESTDIR)${prefix}/bin || $(INSTALL_DIR) -m 755 \ + $(DESTDIR)${prefix}/bin + + install : all \ install-dirs install-nasl install-inc install-nes \ install-man install-sync-script From scm-commit at wald.intevation.org Fri Apr 3 11:03:37 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 11:03:37 +0200 (CEST) Subject: [Openvas-commits] r3016 - trunk/openvas-client Message-ID: <20090403090337.38D1F40820@pyrosoma.intevation.org> Author: jan Date: 2009-04-03 11:03:35 +0200 (Fri, 03 Apr 2009) New Revision: 3016 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/MANIFEST Log: * MANIFEST: Updated. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-03 08:22:24 UTC (rev 3015) +++ trunk/openvas-client/ChangeLog 2009-04-03 09:03:35 UTC (rev 3016) @@ -1,3 +1,7 @@ +2009-04-03 Jan-Oliver Wagner + + * MANIFEST: Updated. + 2009-04-03 Felix Wolfsteller * libnessus/openvas-socket.h: Corrected include guard (resolves compiler Modified: trunk/openvas-client/MANIFEST =================================================================== --- trunk/openvas-client/MANIFEST 2009-04-03 08:22:24 UTC (rev 3015) +++ trunk/openvas-client/MANIFEST 2009-04-03 09:03:35 UTC (rev 3016) @@ -24,6 +24,7 @@ include/includes.h include/libnessus.h include/ntcompat.h +include/config.w32 install-sh libnessus/addslashes.c libnessus/arglists.c @@ -34,6 +35,8 @@ libnessus/Makefile libnessus/network.c libnessus/network.h +libnessus/openvas-socket.c +libnessus/openvas-socket.h libnessus/rand.c libnessus/rand.h libnessus/resolve.c From scm-commit at wald.intevation.org Fri Apr 3 13:35:36 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 13:35:36 +0200 (CEST) Subject: [Openvas-commits] r3017 - in trunk/openvas-plugins: . scripts Message-ID: <20090403113536.160BA14246@pyrosoma.intevation.org> Author: mime Date: 2009-04-03 13:35:34 +0200 (Fri, 03 Apr 2009) New Revision: 3017 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: My Bugfix from 2009-04-02 has been overwritten by Christians last commit. Added Bugfix again. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 09:03:35 UTC (rev 3016) +++ trunk/openvas-plugins/ChangeLog 2009-04-03 11:35:34 UTC (rev 3017) @@ -1,3 +1,8 @@ +2009-04-03 Michael Meyer + * scripts/remote-detect-WindowsSharepointServices.nasl: + My Bugfix from 2009-04-02 has been overwritten by Christians + last commit. Added Bugfix again. + 2009-04-03 Michael Wiegand * Makefile: Added install-minimal target to allow a minimal Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 09:03:35 UTC (rev 3016) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 11:35:34 UTC (rev 3017) @@ -1,6 +1,6 @@ # OpenVAS Vulnerability Test # $Id$ -# Description: This script ensure that Windows SharePointServices is installed and running +# Description: This script ensure that the Sybase EAServer is installed and running # # # Author: @@ -128,7 +128,7 @@ set_kb_item(name:"ASPX/enabled", value:TRUE); report += "\n" + xPoweredBy[0]; } - if( report ) { + if ( report ) { security_note(port:port, data:report); } } From scm-commit at wald.intevation.org Fri Apr 3 13:44:38 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 13:44:38 +0200 (CEST) Subject: [Openvas-commits] r3018 - in trunk/openvas-plugins: . scripts Message-ID: <20090403114438.4EF6840828@pyrosoma.intevation.org> Author: mime Date: 2009-04-03 13:44:37 +0200 (Fri, 03 Apr 2009) New Revision: 3018 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: Now it should be all ok Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 11:35:34 UTC (rev 3017) +++ trunk/openvas-plugins/ChangeLog 2009-04-03 11:44:37 UTC (rev 3018) @@ -1,5 +1,11 @@ 2009-04-03 Michael Meyer * scripts/remote-detect-WindowsSharepointServices.nasl: + My last commit was from wrong directory. My Bugfix was _not_ + overwritten by Christians last commit, but i overwrite the + fixed description. I need more sleep or coffee. ;-) + +2009-04-03 Michael Meyer + * scripts/remote-detect-WindowsSharepointServices.nasl: My Bugfix from 2009-04-02 has been overwritten by Christians last commit. Added Bugfix again. Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 11:35:34 UTC (rev 3017) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 11:44:37 UTC (rev 3018) @@ -1,8 +1,10 @@ # OpenVAS Vulnerability Test # $Id$ -# Description: This script ensure that the Sybase EAServer is installed and running # +# Description: This script ensure that Windows SharePointServices is +# installed and running # +# # Author: # Christian Eric Edjenguele # @@ -128,8 +130,8 @@ set_kb_item(name:"ASPX/enabled", value:TRUE); report += "\n" + xPoweredBy[0]; } - if ( report ) { + if ( report ) { security_note(port:port, data:report); - } + } } } From scm-commit at wald.intevation.org Fri Apr 3 20:48:36 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 20:48:36 +0200 (CEST) Subject: [Openvas-commits] r3019 - trunk/winslad Message-ID: <20090403184836.943B14082D@pyrosoma.intevation.org> Author: doj Date: 2009-04-03 20:48:36 +0200 (Fri, 03 Apr 2009) New Revision: 3019 Modified: trunk/winslad/Makefile Log: fixed install: Modified: trunk/winslad/Makefile =================================================================== --- trunk/winslad/Makefile 2009-04-03 11:44:37 UTC (rev 3018) +++ trunk/winslad/Makefile 2009-04-03 18:48:36 UTC (rev 3019) @@ -20,7 +20,8 @@ install: all -$(MKDIR) $(PREFIX) - $(CP) $(EXE) shell.vbs $(PREFIX) + $(CP) $(EXE) $(PREFIX) + $(CP) shell.vbs $(PREFIX) $(MAKE) -C john $@ $(MAKE) -C oval $@ From scm-commit at wald.intevation.org Fri Apr 3 21:21:03 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 21:21:03 +0200 (CEST) Subject: [Openvas-commits] r3020 - trunk/winslad Message-ID: <20090403192103.CF6EE40816@pyrosoma.intevation.org> Author: doj Date: 2009-04-03 21:21:03 +0200 (Fri, 03 Apr 2009) New Revision: 3020 Modified: trunk/winslad/TODO.txt trunk/winslad/client.cpp Log: set STDOUT to binary when dumping plugin result Modified: trunk/winslad/TODO.txt =================================================================== --- trunk/winslad/TODO.txt 2009-04-03 18:48:36 UTC (rev 3019) +++ trunk/winslad/TODO.txt 2009-04-03 19:21:03 UTC (rev 3020) @@ -1,2 +1,5 @@ - test on 32, 64bit Windows - write installer, run as slad user + + create slad user and password + + create c:\winslad and files + + optionally install FreeSSHD Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-03 18:48:36 UTC (rev 3019) +++ trunk/winslad/client.cpp 2009-04-03 19:21:03 UTC (rev 3020) @@ -23,12 +23,14 @@ #define WIN32_LEAN_AND_MEAN 1 #include +#include #include +#include +#include #include +#include #include -#include -#include #include "debug.h" #include "struct.h" @@ -191,7 +193,11 @@ std::string fn=config->resultpath+"\\T$"+plugin2filename(config->arg); std::string res=doj::slurpFile(fn); if(!res.empty()) - writen(1, res.data(), res.size()); + { + _setmode(1, _O_BINARY ); + writen(1, res.data(), res.size()); + _setmode(1, _O_TEXT ); + } unlink(fn.c_str()); return 0; } From scm-commit at wald.intevation.org Fri Apr 3 21:26:12 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 21:26:12 +0200 (CEST) Subject: [Openvas-commits] r3021 - trunk/winslad Message-ID: <20090403192612.9ACB540815@pyrosoma.intevation.org> Author: doj Date: 2009-04-03 21:26:12 +0200 (Fri, 03 Apr 2009) New Revision: 3021 Modified: trunk/winslad/client.cpp Log: more const Modified: trunk/winslad/client.cpp =================================================================== --- trunk/winslad/client.cpp 2009-04-03 19:21:03 UTC (rev 3020) +++ trunk/winslad/client.cpp 2009-04-03 19:26:12 UTC (rev 3021) @@ -170,12 +170,12 @@ // check if is is a meaningfull path if(resultpath.size()<2) return -1; - doj::filesInDir_t fid=doj::filesInDir(resultpath); + const doj::filesInDir_t fid=doj::filesInDir(resultpath); foreach(fid, f) { std::string fn=filename2plugin(*f); fn.erase(0, resultpath.size()+1); // strip directory - off_t fs=(fn[0]=='T') ? doj::fileSize(*f) : 0; + const off_t fs=(fn[0]=='T') ? doj::fileSize(*f) : 0; printf("%s:%li at 0xDEADBEEF\n", fn.c_str(), fs); } @@ -190,8 +190,8 @@ static int show_result(sladd_config_t *config) { if(!config) return -1; - std::string fn=config->resultpath+"\\T$"+plugin2filename(config->arg); - std::string res=doj::slurpFile(fn); + const std::string fn=config->resultpath+"\\T$"+plugin2filename(config->arg); + const std::string res=doj::slurpFile(fn); if(!res.empty()) { _setmode(1, _O_BINARY ); From scm-commit at wald.intevation.org Fri Apr 3 22:27:26 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Fri, 3 Apr 2009 22:27:26 +0200 (CEST) Subject: [Openvas-commits] r3022 - in trunk/openvas-plugins: . scripts Message-ID: <20090403202726.9A1EF40815@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-03 22:27:25 +0200 (Fri, 03 Apr 2009) New Revision: 3022 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl Log: Various enhancements, OS fingerprint and version detection Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 19:26:12 UTC (rev 3021) +++ trunk/openvas-plugins/ChangeLog 2009-04-03 20:27:25 UTC (rev 3022) @@ -1,3 +1,10 @@ +2009-04-03 Christian Eric Edjenguele + * scripts/remote-detect-windowsSharepointservices.nasl: + Added OS detection using IIS signature, + Grab WSS Version using regex instead of revcomp function, + also tested on WSS 2.0, + TODO: detect WSS service pack + 2009-04-03 Michael Meyer * scripts/remote-detect-WindowsSharepointServices.nasl: My last commit was from wrong directory. My Bugfix was _not_ Modified: trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 19:26:12 UTC (rev 3021) +++ trunk/openvas-plugins/scripts/remote-detect-WindowsSharepointServices.nasl 2009-04-03 20:27:25 UTC (rev 3022) @@ -8,7 +8,7 @@ # Author: # Christian Eric Edjenguele # -# TODO: implement service pack gathering using the minor version number (4518 - SP1) +# TODO: implement service pack gathering using the minor version number # source: http://www.microsoft.com/downloads/details.aspx?FamilyId=D51730B5-48FC-4CA2-B454-8DC2CAF93951&displaylang=en#Requirements # System Requirements for WSS 3.0 - MicrosoftSharePointTeamServices: 12.0.0.4518 # @@ -76,7 +76,6 @@ include("misc_func.inc"); include("http_func.inc"); include("http_keepalive.inc"); -include("revisions-lib.inc"); port = get_http_port(default:80); @@ -109,18 +108,54 @@ aspNetVersion = eregmatch(pattern:"X-AspNet-Version: ([0-9.]+)",string:response, icase:TRUE); if(mstsVersion){ + + # TODO: extract the service pack using the [0-9] pattern (minor version number) + wssVerion = ''; + set_kb_item(name:"WindowsSharePointServices/installed", value:TRUE); set_kb_item(name:"MicrosoftSharePointTeamServices/version", value:mstsVersion[1]); - if(revcomp(a:mstsVersion[1], b:"12.0.0") >= 0){ - set_kb_item(name:"WindowsSharePointServices/version", value:"3.0"); - # TODO: detect Service Pack - } - report = "Detected: " + mstsVersion[0]; + + if( eregmatch(pattern:"(6.0.2.[0-9]+)", string:mstsVersion[1], icase:TRUE) ){ + wssVersion = "2.0"; + set_kb_item(name:"WindowsSharePointServices/version", value:wssVerion); + } + if( eregmatch(pattern:"(12.[0-9.]+)", string:mstsVersion[1], icase:TRUE) ){ + wssVersion = "3.0"; + set_kb_item(name:"WindowsSharePointServices/version", value:wssVersion); + } + + report = "Detected: " + mstsVersion[0]; + if(wssVersion) + report += "\n" + "Windows SharePoint Services " + wssVersion; } if(dotNetServer){ + + # OS fingerprint using IIS signature + osVersion = ''; + if( eregmatch(pattern:"(7.[0-9]+)", string:dotNetServer[1], icase:TRUE) ){ + osVersion = "Windows Longhorn"; + set_kb_item(name:"wssOS/version", value:osVersion); + } + if( eregmatch(pattern:"(6.[0-9]+)", string:dotNetServer[1], icase:TRUE) ){ + osVersion = "Windows Server 2003"; + set_kb_item(name:"wssOS/version", value:osVersion); + + } + if( eregmatch(pattern:"(5.1)", string:dotNetServer[1], icase:TRUE) ){ + osVersion = "Windows XP"; + set_kb_item(name:"wssOS/version", value:osVersion); + + } + if( eregmatch(pattern:"(5.0)", string:dotNetServer[1], icase:TRUE) ){ + osVersion = "Windows Server 2000"; + set_kb_item(name:"wssOS/version", value:osVersion); + } + set_kb_item(name:"Microsoft-IIS/installed", value:TRUE); set_kb_item(name:"Microsoft-IIS/version", value:dotNetServer[1]); report += "\n" + dotNetServer[0]; + if(osVersion) + report += "\n" + "Operating System Type: " + osVersion; } if(aspNetVersion){ set_kb_item(name:"aspNetVersion/version", value:aspNetVersion[1]); From scm-commit at wald.intevation.org Sat Apr 4 19:11:16 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Sat, 4 Apr 2009 19:11:16 +0200 (CEST) Subject: [Openvas-commits] r3023 - in trunk/openvas-plugins: . scripts Message-ID: <20090404171116.9E8F0407FB@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-04 19:11:14 +0200 (Sat, 04 Apr 2009) New Revision: 3023 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl Log: set plugin dependency check, fix error in description, modified set_kb_item Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-03 20:27:25 UTC (rev 3022) +++ trunk/openvas-plugins/ChangeLog 2009-04-04 17:11:14 UTC (rev 3023) @@ -1,3 +1,9 @@ +2009-04-04 Christian Eric Edjenguele + * scripts/remote-detect-sybase-easerver.nasl + * scripts/remote-detect-sybase-easerver-mgmt.nasl: + Added plugin dependency check, minor change in desciption + and set_kb_item. + 2009-04-03 Christian Eric Edjenguele * scripts/remote-detect-windowsSharepointservices.nasl: Added OS detection using IIS signature, Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-03 20:27:25 UTC (rev 3022) +++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-04 17:11:14 UTC (rev 3023) @@ -1,6 +1,6 @@ # OpenVAS Vulnerability Test # $Id$ -# Description: This script ensure that the Sybase AEServer management console is running +# Description: This script ensure that the Sybase EAServer management console is running # # remote-detect-sybase-easerver-mgmt.nasl # @@ -70,6 +70,9 @@ http_servers = get_kb_list("Services/www"); soc_timeout = 10; +if(!get_kb_item("SybaseEAServer/installed")) + exit(0); + # if the server accept clear http if(http_server) { Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl 2009-04-03 20:27:25 UTC (rev 3022) +++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver.nasl 2009-04-04 17:11:14 UTC (rev 3023) @@ -89,7 +89,7 @@ if(reply) { if(("Sybase EAServer<" >< reply || egrep(pattern:"Sybase EAServer", string:reply))) -set_kb_item (name:"Sybase/installed", value:TRUE); +set_kb_item (name:"SybaseEAServer/installed", value:TRUE); security_note(port); } } @@ -105,6 +105,6 @@ if( r == NULL )exit(0); if(("<TITLE>Sybase EAServer<" >< r || egrep(pattern:"Sybase EAServer", string:r))) -set_kb_item (name:"Sybase/installed", value:TRUE); +set_kb_item (name:"SybaseEAServer/installed", value:TRUE); security_note(port); } From scm-commit at wald.intevation.org Sat Apr 4 21:58:11 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Sat, 4 Apr 2009 21:58:11 +0200 (CEST) Subject: [Openvas-commits] r3024 - in trunk/openvas-plugins: . scripts Message-ID: <20090404195811.F2442407F0@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-04 21:58:10 +0200 (Sat, 04 Apr 2009) New Revision: 3024 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-MS06-033.nasl trunk/openvas-plugins/scripts/remote-MS06-056.nasl trunk/openvas-plugins/scripts/remote-MS07-040.nasl trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl Log: used revcomp from revisions-lib.inc in remote-MS* plugins for version string comparison, set script_require_keys for remote-detect-sybase-easerver-mgmt.nasl plugin, forgot to do this in my last commit Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-04 17:11:14 UTC (rev 3023) +++ trunk/openvas-plugins/ChangeLog 2009-04-04 19:58:10 UTC (rev 3024) @@ -1,3 +1,14 @@ +2009-04-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org> + * scripts/remote-detect-sybase-easerver-mgmt.nasl + * scripts/remote-MS07-040.nasl + * scripts/remote-MS06-056.nasl + * scripts/remote-MS06-033.nasl: + Added script_require_keys for plugin + remote-detect-sybase-easerver-mgmt.nasl, + updated remote-MS0* plugins used revcomp from revisions-lib.inc for + versions string comparison + + 2009-04-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org> * scripts/remote-detect-sybase-easerver.nasl * scripts/remote-detect-sybase-easerver-mgmt.nasl: Modified: trunk/openvas-plugins/scripts/remote-MS06-033.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS06-033.nasl 2009-04-04 17:11:14 UTC (rev 3023) +++ trunk/openvas-plugins/scripts/remote-MS06-033.nasl 2009-04-04 19:58:10 UTC (rev 3024) @@ -103,6 +103,8 @@ # The script code starts here # +include("revisions-lib.inc"); + dotnet = get_kb_item("dotNET/version"); port = get_kb_item("dotNet/port"); @@ -111,28 +113,12 @@ else { - dotnetlist = split(dotnet, sep:'.'); - # check if this return the list length - l = max_index(dotnetlist) - 1; - - # creates a hash to save - dotnetversion = make_array('None', FALSE); - # Microsoft .NET Framework version 2.0 - dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 ); - dotnetversion['2.0.two'] = ( l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 101); - + if(revcomp(a:dotnet, b:"2.0.50727.101") == -1){ - - foreach version (dotnetversion) - { - - if (version == TRUE) - # Report 'Microsoft ASP.NET Application Folder Information Disclosure Vulnerability (MS06-033)' - report = 'Detected Microsoft .Net Framework version: ' + dotnet; - security_hole(port:port, data:report); + # Report 'Microsoft ASP.NET Application Folder Information Disclosure Vulnerability (MS06-033)' + report = 'Missing MS06-033 patch, detected Microsoft .Net Framework version: ' + dotnet; + security_hole(port:port, data:report); } } - - Modified: trunk/openvas-plugins/scripts/remote-MS06-056.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS06-056.nasl 2009-04-04 17:11:14 UTC (rev 3023) +++ trunk/openvas-plugins/scripts/remote-MS06-056.nasl 2009-04-04 19:58:10 UTC (rev 3024) @@ -106,6 +106,7 @@ # The script code starts here # +include("revisions-lib.inc"); dotnet = get_kb_item("dotNET/version"); port = get_kb_item("dotNet/port"); @@ -115,24 +116,11 @@ else { - dotnetlist = split(dotnet, sep:'.'); - l = max_index(dotnetlist) - 1; - # Microsoft .NET Framework version 2.0 - dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 ); - dotnetversion['2.0.two'] = (l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 210 ); - + if(revcomp(a:dotnet, b:"2.0.50727.210") == -1){ - - foreach version (dotnetversion) - { - - if (version == TRUE) - # Report 'Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability (MS06-056)' - report = 'Detected Microsoft .Net Framework version: ' + dotnet; - security_hole(port:port, data:report); + # Report 'Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability (MS06-056)' + report = 'Missing MS06-056 patch, detected Microsoft .Net Framework version: ' + dotnet; + security_hole(port:port, data:report); } } - - - Modified: trunk/openvas-plugins/scripts/remote-MS07-040.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 17:11:14 UTC (rev 3023) +++ trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 19:58:10 UTC (rev 3024) @@ -77,6 +77,7 @@ # The script code starts here # +include("revisions-lib.inc"); dotnet = get_kb_item("dotNET/version"); port = get_kb_item("dotNET/port"); @@ -86,30 +87,18 @@ else { - dotnetlist = split(dotnet, sep:'.'); - l = max_index(dotnetlist) - 1; - - # Microsoft .NET Framework version < 1.0 Service Pack 3 - dotnetversion['1.0.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 3705 ); - dotnetversion['1.0.two'] = (l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 3705 && int(dotnetlist[3]) < 6060 ); - - # Microsoft .NET Framework version < 1.1 Service Pack 1 - dotnetversion['1.1.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) < 4322 ); - dotnetversion['1.1.two'] = (l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) == 4322 && int(dotnetlist[3]) < 2407 ); - - # Microsoft .NET Framework version < 2.0 Service Pack 2 - dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 ); - dotnetversion['2.0.two'] = (l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 832 ); - + # Microsoft .NET Framework version < [1.0 SP3, 1.1 SP1, 2.0 SP2] + dotnetversion['1.0'] = revcomp(revcomp(a:dotnet, b:"1.0.3705.6060"); + dotnetversion['1.1'] = revcom(revcomp(a:dotnet, b:"1.1.4332.2407"); + dotnetversion['2.0'] = revcomp(a:dotnet, b:"2.0.50727.832"); + foreach version (dotnetversion) { - if (version == TRUE) + if (version == -1) - report = 'Detected Microsoft .Net Framework version: ' + dotnet; - - # report MS04-040 vulnerability + # report MS07-04 vulnerability + report = 'Missing MS07-040 patch, detected Microsoft .Net Framework version: ' + dotnet; security_hole(port:port, data:report); } } - Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-04 17:11:14 UTC (rev 3023) +++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-04 19:58:10 UTC (rev 3024) @@ -54,7 +54,7 @@ script_family(english:family["english"]); script_dependencies("find_service.nes", "remote-detect-sybase-easerver.nasl"); script_require_ports("Services/www"); - +script_require_keys("SybaseEAServer/installed"); exit(0); } From scm-commit at wald.intevation.org Sun Apr 5 00:29:41 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Sun, 5 Apr 2009 00:29:41 +0200 (CEST) Subject: [Openvas-commits] r3025 - in trunk/openvas-plugins: . scripts Message-ID: <20090404222941.E59C3407F0@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-05 00:29:39 +0200 (Sun, 05 Apr 2009) New Revision: 3025 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-MS05-004.nasl trunk/openvas-plugins/scripts/remote-MS07-040.nasl Log: used revcomp for remote-MS05-004.nasl plugin, code format for remote-MS07-040.nasl script. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-04 19:58:10 UTC (rev 3024) +++ trunk/openvas-plugins/ChangeLog 2009-04-04 22:29:39 UTC (rev 3025) @@ -1,3 +1,9 @@ +2009-05-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org> + * scripts/remote-MS07-040.nasl + * scripts/remote-MS05-004.nasl: + also used revcomp forremote-MS05-004.nasl plugin, minor change in + remote-MS07-040.nasl script. + 2009-04-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org> * scripts/remote-detect-sybase-easerver-mgmt.nasl * scripts/remote-MS07-040.nasl Modified: trunk/openvas-plugins/scripts/remote-MS05-004.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS05-004.nasl 2009-04-04 19:58:10 UTC (rev 3024) +++ trunk/openvas-plugins/scripts/remote-MS05-004.nasl 2009-04-04 22:29:39 UTC (rev 3025) @@ -124,6 +124,8 @@ # The script code starts here # +include("revisions-lib.inc"); + dotnet = get_kb_item("dotNET/version"); port = get_kb_item("dotNet/port"); @@ -132,30 +134,19 @@ else { - dotnetlist = split(dotnet, sep:'.'); - # check if this return the list length - l = max_index(dotnetlist) - 1; - # Microsoft .Net Framework version 1.0 - dotnetversion['1.0.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 3705 ); - dotnetversion['1.0.two'] = ( l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 3705 && - int(dotnetlist[3]) < 6021 && int(dotnetlist[3]) > 1000 ); - dotnetversion['1.0.three'] = ( l > 3 && dotnetlist[0] == 1 && dotnetlist[1] == 0 && dotnetlist[2] == 3705 && dotnetlist[3] < 556 ); + dotnetversion['1.0'] = revcomp(a:dotnet, b:"1.0.3705.6021"); + + # Microsoft .Net Framework 1.1 + dotnetversion['1.1'] = revcomp(a:dotnetVersion, b:"1.1.4322.2037"); - # Microsoft .Net Framework version 1.1 - dotnetversion['1.1.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) < 4322 ); - dotnetversion['1.1.two'] = ( l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) == 4322 && - int(dotnetlist[3]) < 2037 && int(dotnetlist[3]) > 2000 ); - dotnetversion['1.1.three'] = ( l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) == 4322 && - int(dotnetlist[3]) < 1085 ); - foreach version (dotnetversion) { - if (version == TRUE) + if (version == -1){ # Report 'Microsoft ASP.NET Path Validation Vulnerability (MS05-004)' - report = 'Detected Microsoft .Net Framework version: ' + dotnet; + report = 'Missing MS05-004 patch, detected Microsoft .Net Framework version: ' + dotnet; security_hole(port:port, data:report); + } } } - Modified: trunk/openvas-plugins/scripts/remote-MS07-040.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 19:58:10 UTC (rev 3024) +++ trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 22:29:39 UTC (rev 3025) @@ -95,10 +95,11 @@ foreach version (dotnetversion) { - if (version == -1) + if (version == -1){ # report MS07-04 vulnerability report = 'Missing MS07-040 patch, detected Microsoft .Net Framework version: ' + dotnet; security_hole(port:port, data:report); + } } } From scm-commit at wald.intevation.org Sun Apr 5 13:52:06 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Sun, 5 Apr 2009 13:52:06 +0200 (CEST) Subject: [Openvas-commits] r3026 - in trunk/openvas-plugins: . scripts Message-ID: <20090405115206.F08B9407DD@pyrosoma.intevation.org> Author: mime Date: 2009-04-05 13:52:05 +0200 (Sun, 05 Apr 2009) New Revision: 3026 Added: trunk/openvas-plugins/scripts/JobHut_34300.nasl trunk/openvas-plugins/scripts/community_cms_34303.nasl trunk/openvas-plugins/scripts/gravity_board_x_34370.nasl trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl trunk/openvas-plugins/scripts/oscommerce_34348.nasl trunk/openvas-plugins/scripts/webEdition_34323.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/ChangeLog 2009-04-05 11:52:05 UTC (rev 3026) @@ -1,3 +1,12 @@ +2009-04-05 Michael Meyer <mime at gmx.de> + * scripts/gravity_board_x_detect.nasl, + scripts/oscommerce_34348.nasl, + scripts/JobHut_34300.nasl, + scripts/community_cms_34303.nasl, + scripts/webEdition_34323.nasl, + scripts/gravity_board_x_34370.nasl: + Added new plugins + 2009-05-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org> * scripts/remote-MS07-040.nasl * scripts/remote-MS05-004.nasl: Added: trunk/openvas-plugins/scripts/JobHut_34300.nasl =================================================================== --- trunk/openvas-plugins/scripts/JobHut_34300.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/JobHut_34300.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,85 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# JobHut 'browse.php' SQL Injection Vulnerability +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100102); + script_bugtraq_id(34300); + script_version ("1.0"); + + script_name(english:"JobHut 'browse.php' SQL Injection Vulnerability"); + desc["english"] = " + + Overview: + JobHut is prone to an SQL-injection vulnerability because it fails + to sufficiently sanitize user-supplied data before using it in an + SQL query. + + Exploiting this issue could allow an attacker to compromise the + application, access or modify data, or exploit latent + vulnerabilities in the underlying database. + + JobHut 1.2 is vulnerable; other versions may also be affected. + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if JobHut is prone to SQL Injection Vulnerability"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port)) exit(0); + +dir = make_list("/jobs",cgi_dirs()); + +foreach d (dir) +{ + url = string(d, '/browse.php?pk=-1%20union%20select%201234567,2--'); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if ( egrep(pattern:"Results [0-9-]+ of 1234567 job\(s\) found", string: buf) ) + + { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/JobHut_34300.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/community_cms_34303.nasl =================================================================== --- trunk/openvas-plugins/scripts/community_cms_34303.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/community_cms_34303.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,87 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# Community CMS 'index.php' and 'view.php' SQL Injection +# Vulnerabilities +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100104); + script_bugtraq_id(34303); + script_version ("1.0"); + + script_name(english:"Community CMS 'index.php' and 'view.php' SQL Injection Vulnerabilities"); + desc["english"] = " + + Overview: + Community CMS is prone to multiple SQL-injection vulnerabilities + because it fails to sufficiently sanitize user-supplied data before + using it in SQL queries. + + Exploiting these issues could allow an attacker to compromise the + application, access or modify data, or exploit latent + vulnerabilities in the underlying database. + + Community CMS 0.5 is vulnerable; earlier versions may also be + affected. + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if Community CMS is prone to SQL Injection Vulnerabilities"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port)) exit(0); + +dir = make_list("/cms",cgi_dirs()); + +foreach d (dir) +{ + url = string(d, '/view.php?article_id=-1%20UNION%20ALL%20SELECT%201,2,3,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,5,6,7,8,9'); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if ( egrep(pattern:"OpenVAS-SQL-Injection-Test", string: buf) ) + + { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/community_cms_34303.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/gravity_board_x_34370.nasl =================================================================== --- trunk/openvas-plugins/scripts/gravity_board_x_34370.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/gravity_board_x_34370.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,105 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# Gravity Board X Multiple SQL Injection Vulnerabilities and Remote +# Command Execution Vulnerability +# +# Authors +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100101); + script_bugtraq_id(34370); + script_version ("1.0"); + + script_name(english:"Gravity Board X Multiple SQL Injection Vulnerabilities and Remote Command Execution Vulnerability"); + desc["english"] = " + + Overview: + Gravity Board X is prone to multiple SQL-injection vulnerabilities + and a remote command-execution because it fails to sufficiently + sanitize user-supplied data before using it in an SQL query. + + Exploiting these issues could allow an attacker to execute arbitrary + code, compromise the application. access or modify data, or exploit + latent vulnerabilities in the underlying database. + + Gravity Board X 2.0 is vulnerable; other versions may also be + affected. + + See also: + http://www.securityfocus.com/bid/34370 + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if Gravity Board X is vulnerable to Multiple Vulnerabilities"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("gravity_board_x_detect.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +if(!version = get_kb_item(string("www/", port, "/GravityX")))exit(0); +if(!matches = eregmatch(string:version, pattern:"^(.+) under (/.*)$"))exit(0); + +vers = matches[1]; +dir = matches[2]; + +if(!isnull(vers) && vers >!< "unknown") { + + if(ereg(pattern: "^2.0 BETA$", string: vers)) { + VULN = TRUE; + } + +} else { +# No version found, try to exploit. + if(!isnull(dir)) { + url = string(dir, "/index.php?action=viewboard&board_id=-1%27+union+select+0,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,2+from+gbx_members+where+1=%271"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + if(egrep(pattern:"OpenVAS-SQL-Injection-Test", string: buf)) + { + VULN = TRUE; + } + } +} + +if(VULN) { + + security_warning(port:port); + exit(0); + +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/gravity_board_x_34370.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,109 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# Gravity Board X Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running Gravity Board X, a free forum software written + in PHP and MySQL. + + See also: + http://www.gravityboardx.com/ + + Risk factor : None"; + +if (description) +{ + script_id(100100); + script_version ("1.0"); + + script_name(english:"Gravity Board X Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of Gravity Board X"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/gravity","/forum","/board",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: ".*Gravity Board X.*", string: buf, icase: TRUE) && egrep(pattern: "Powered by", string: buf, icase: TRUE)) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: "<a href=[^>]+>Gravity Board X</a>.*v([0-9.]+ *[BETA]*)",icase:TRUE, multiline: TRUE); + + if ( !isnull(version[1]) ) { + vers=chomp(version[1]); + } + + set_kb_item(name: string("www/", port, "/GravityX"), value: string(vers," under ",install)); + + info = string("None\n\nGravity Board X Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + security_note(port:port,data:desc); + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/oscommerce_34348.nasl =================================================================== --- trunk/openvas-plugins/scripts/oscommerce_34348.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/oscommerce_34348.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,89 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# osCommerce 'oscid' Session Fixation Vulnerability +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100099); + script_bugtraq_id(34348); + script_version ("1.0"); + + script_name(english:"osCommerce 'oscid' Session Fixation Vulnerability"); + desc["english"] = " + + Overview: + osCommerce is prone to a session-fixation vulnerability. + + Attackers can exploit this issue to hijack a user's session and gain + unauthorized access to the affected application. + + The following are vulnerable: + + osCommerce 2.2 + osCommerce 3.0 Beta + + Other versions may also be affected. + + See also: + http://www.securityfocus.com/bid/34348 + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if osCommerce is vulnerable to Session Fixation"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("oscommerce_detect.nasl"); + script_require_keys("Software/osCommerce"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +if(!dir = get_kb_list("Software/osCommerce/dir"))exit(0); + +foreach d (dir) +{ + url = string(d, "/index.php?osCsid=a815a815a815a815"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )exit(0); + if(egrep(pattern:"[a-zA-Z]+\.php\?osCsid=a815a815a815a815", string: buf) && !egrep(pattern:"Set-Cookie: osCsid=[a-zA-Z0-9]+" , string: buf) ) + { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/oscommerce_34348.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/webEdition_34323.nasl =================================================================== --- trunk/openvas-plugins/scripts/webEdition_34323.nasl 2009-04-04 22:29:39 UTC (rev 3025) +++ trunk/openvas-plugins/scripts/webEdition_34323.nasl 2009-04-05 11:52:05 UTC (rev 3026) @@ -0,0 +1,86 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# webEdition CMS 'WE_LANGUAGE' Parameter Local File Include +# Vulnerability +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100103); + script_bugtraq_id(34323); + script_version ("1.0"); + + script_name(english:"webEdition CMS 'WE_LANGUAGE' Parameter Local File Include Vulnerability"); + desc["english"] = " + + Overview: + webEdition CMS is prone to a local file-include vulnerability + because it fails to properly sanitize user-supplied input. + + An attacker can exploit this vulnerability to view and execute + arbitrary local files in the context of the webserver process. This + may aid in further attacks. + + webEdition CMS 6.0.0.4 is vulnerable; other versions may also be + affected. + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if webEdition is prone to Local File Include Vulnerability"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port)) exit(0); + +dir = make_list("/webEdition","/cms",cgi_dirs()); + +foreach d (dir) +{ + url = string(d, '/index.php?WE_LANGUAGE=../../../../../../../../etc/passwd%00'); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if ( egrep(pattern:"root:.*:0:[01]:.*", string: buf) ) + + { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/webEdition_34323.nasl ___________________________________________________________________ Name: svn:keywords + Id From scm-commit at wald.intevation.org Sun Apr 5 20:39:43 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Sun, 5 Apr 2009 20:39:43 +0200 (CEST) Subject: [Openvas-commits] r3027 - in trunk/openvas-plugins: . scripts Message-ID: <20090405183943.97A55407AF@pyrosoma.intevation.org> Author: mime Date: 2009-04-05 20:39:41 +0200 (Sun, 05 Apr 2009) New Revision: 3027 Added: trunk/openvas-plugins/scripts/cutenews_detect.nasl trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-05 11:52:05 UTC (rev 3026) +++ trunk/openvas-plugins/ChangeLog 2009-04-05 18:39:41 UTC (rev 3027) @@ -1,4 +1,9 @@ 2009-04-05 Michael Meyer <mime at gmx.de> + * scripts/phpmyfaq_detect.nasl, + scripts/cutenews_detect.nasl: + Added new plugins + +2009-04-05 Michael Meyer <mime at gmx.de> * scripts/gravity_board_x_detect.nasl, scripts/oscommerce_34348.nasl, scripts/JobHut_34300.nasl, Added: trunk/openvas-plugins/scripts/cutenews_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/cutenews_detect.nasl 2009-04-05 11:52:05 UTC (rev 3026) +++ trunk/openvas-plugins/scripts/cutenews_detect.nasl 2009-04-05 18:39:41 UTC (rev 3027) @@ -0,0 +1,109 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# CuteNews Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running CuteNews, a powerful and easy to use news + management system that uses flat files to store its database. + + See also: + http://cutephp.com/cutenews/ + + Risk factor : None"; + +if (description) +{ + script_id(100105); + script_version ("1.0"); + + script_name(english:"CuteNews Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of CuteNews"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/cutenews","/news",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "Powered by <a [^>]+>CuteNews", string: buf, icase: TRUE)) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: "Powered by <a [^>]+>CuteNews v*([0-9.]+)</a>",icase:TRUE); + + if ( !isnull(version[1]) ) { + vers=version[1]; + } + + set_kb_item(name: string("www/", port, "/cutenews"), value: string(vers," under ",install)); + + info = string("None\n\nCuteNews Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + security_note(port:port,data:desc); + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/cutenews_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl 2009-04-05 11:52:05 UTC (rev 3026) +++ trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl 2009-04-05 18:39:41 UTC (rev 3027) @@ -0,0 +1,109 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# phpMyFAQ Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running phpMyFAQ, an open source FAQ system using PHP + and available for many databases. + + See also: + http://www.phpmyfaq.de + + Risk factor : None"; + +if (description) +{ + script_id(100106); + script_version ("1.0"); + + script_name(english:"phpMyFAQ Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of phpMyFAQ"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/faq",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "Powered by <a [^>]+>phpMyFAQ", string: buf, icase: TRUE)) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: "Powered by <a [^>]+>phpMyFAQ</a> ([0-9.]+)",icase:TRUE); + + if ( !isnull(version[1]) ) { + vers=version[1]; + } + + set_kb_item(name: string("www/", port, "/phpmyfaq"), value: string(vers," under ",install)); + + info = string("None\n\nphpMyFAQ Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + security_note(port:port,data:desc); + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id From scm-commit at wald.intevation.org Mon Apr 6 09:21:32 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 09:21:32 +0200 (CEST) Subject: [Openvas-commits] r3028 - in trunk/openvas-server: . openvasd Message-ID: <20090406072132.C9D2740776@pyrosoma.intevation.org> Author: felix Date: 2009-04-06 09:21:32 +0200 (Mon, 06 Apr 2009) New Revision: 3028 Modified: trunk/openvas-server/ChangeLog trunk/openvas-server/openvasd/nasl_plugins.c Log: * openvasd/nasl_plugins.c: Minor reformatting, doc. Modified: trunk/openvas-server/ChangeLog =================================================================== --- trunk/openvas-server/ChangeLog 2009-04-05 18:39:41 UTC (rev 3027) +++ trunk/openvas-server/ChangeLog 2009-04-06 07:21:32 UTC (rev 3028) @@ -1,3 +1,7 @@ +2009-04-06 Felix Wolfsteller <felix.wolfsteller at intevation.de> + + * openvasd/nasl_plugins.c: Minor reformatting, doc. + 2009-04-02 Felix Wolfsteller <felix.wolfsteller at intevation.de> Removed build-breaking debug code. Modified: trunk/openvas-server/openvasd/nasl_plugins.c =================================================================== --- trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-05 18:39:41 UTC (rev 3027) +++ trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-06 07:21:32 UTC (rev 3028) @@ -23,10 +23,12 @@ * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. -* -* */ +/** + * @brief The nasl - plugin class. Loads or launches nasl- plugins. + */ + #include <includes.h> #include <glib.h> @@ -37,8 +39,14 @@ #include "preferences.h" #include "processes.h" #include "log.h" -/* - * Initialize the nasl system + +/** + * @brief Initialize the nasl system. + * + * @param prefs Ignored + * @param nasl Ignored + * + * @return nasl_plugin_class struct. */ static pl_class_t* nasl_plugin_init (struct arglist* prefs, struct arglist* nasl) @@ -56,11 +64,15 @@ * The plugin is first attempted to be loaded from the cache (.desc) calling * store_load_plugin. If that fails, it is parsed (via exec_nasl_script) and * added to the store. + * If a plugin with the same (file)name is already present in the plugins + * arglist, it will be replaced. * - * @param folder Path to the plugin folder. - * @param name File-name of the plugin. - * @param plugins The arglist that the plugin shall be added to. + * @param folder Path to the plugin folder. + * @param name File-name of the plugin (will be used as key in plugins). + * @param plugins The arglist that the plugin shall be added to (with parameter + * name as the key). * @param preferences The plugins preferences. + * * @return Pointer to the plugin (as arglist). NULL in case of errors. */ static struct arglist * @@ -137,6 +149,7 @@ plug_set_launch (plugin_args, LAUNCH_DISABLED); prev_plugin = arg_get_value (plugins, name); + // Was a plugin with the same filename already loaded? If so, remove it. if (prev_plugin == NULL) arg_add_value (plugins, name, ARG_ARGLIST, -1, plugin_args); else @@ -245,12 +258,12 @@ setrlimit (RLIMIT_DATA, &rlim); } #endif - setproctitle("testing %s (%s)", (char*)arg_get_value(arg_get_value(args, "HOSTNAME"), "NAME"), (char*)arg_get_value(g_args, "name")); - signal(SIGTERM, _exit); + setproctitle ("testing %s (%s)", (char*)arg_get_value(arg_get_value(args, "HOSTNAME"), "NAME"), (char*)arg_get_value(g_args, "name")); + signal (SIGTERM, _exit); nasl_mode = NASL_EXEC_DONT_CLEANUP; - if ( preferences_nasl_no_signature_check(preferences) > 0 ) - nasl_mode |= NASL_ALWAYS_SIGNED; + if (preferences_nasl_no_signature_check(preferences) > 0 ) + nasl_mode |= NASL_ALWAYS_SIGNED; exec_nasl_script(args, name, nasl_mode); internal_send(soc, NULL, INTERNAL_COMM_MSG_TYPE_CTRL | INTERNAL_COMM_CTRL_FINISHED); @@ -258,7 +271,7 @@ /** * @brief The NASL NVT class. - * + * * @ref pl_class_s */ pl_class_t nasl_plugin_class = { From scm-commit at wald.intevation.org Mon Apr 6 10:10:47 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 10:10:47 +0200 (CEST) Subject: [Openvas-commits] r3029 - in trunk/openvas-plugins: . scripts Message-ID: <20090406081047.F3DF140410@pyrosoma.intevation.org> Author: felix Date: 2009-04-06 10:10:45 +0200 (Mon, 06 Apr 2009) New Revision: 3029 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/amap.nasl trunk/openvas-plugins/scripts/hydra_cisco.nasl trunk/openvas-plugins/scripts/hydra_cisco_enable.nasl trunk/openvas-plugins/scripts/hydra_cvs.nasl trunk/openvas-plugins/scripts/hydra_ftp.nasl trunk/openvas-plugins/scripts/hydra_http.nasl trunk/openvas-plugins/scripts/hydra_http_proxy.nasl trunk/openvas-plugins/scripts/hydra_icq.nasl trunk/openvas-plugins/scripts/hydra_imap.nasl trunk/openvas-plugins/scripts/hydra_ldap.nasl trunk/openvas-plugins/scripts/hydra_mssql.nasl trunk/openvas-plugins/scripts/hydra_mysql.nasl trunk/openvas-plugins/scripts/hydra_nntp.nasl trunk/openvas-plugins/scripts/hydra_options.nasl trunk/openvas-plugins/scripts/hydra_pcnfs.nasl trunk/openvas-plugins/scripts/hydra_pop3.nasl trunk/openvas-plugins/scripts/hydra_postgres.nasl trunk/openvas-plugins/scripts/hydra_rexec.nasl trunk/openvas-plugins/scripts/hydra_sapr3.nasl trunk/openvas-plugins/scripts/hydra_smb.nasl trunk/openvas-plugins/scripts/hydra_smtp_auth.nasl trunk/openvas-plugins/scripts/hydra_snmp.nasl trunk/openvas-plugins/scripts/hydra_socks5.nasl trunk/openvas-plugins/scripts/hydra_ssh2.nasl trunk/openvas-plugins/scripts/hydra_telnet.nasl trunk/openvas-plugins/scripts/hydra_vnc.nasl trunk/openvas-plugins/scripts/snmpwalk_portscan.nasl Log: Removed inlined signatures. * scripts/hydra_postgres.nasl, scripts/hydra_cisco.nasl, scripts/hydra_ftp.nasl, scripts/hydra_ssh2.nasl, scripts/hydra_telnet.nasl, scripts/hydra_imap.nasl, scripts/hydra_mysql.nasl, scripts/hydra_http_proxy.nasl, scripts/hydra_sapr3.nasl, scripts/hydra_vnc.nasl, scripts/hydra_socks5.nasl, scripts/hydra_nntp.nasl, scripts/amap.nasl, scripts/hydra_icq.nasl, scripts/hydra_smtp_auth.nasl, scripts/hydra_pcnfs.nasl, scripts/hydra_options.nasl, scripts/hydra_ldap.nasl, scripts/hydra_snmp.nasl, scripts/hydra_mssql.nasl, scripts/hydra_smb.nasl, scripts/hydra_pop3.nasl, scripts/snmpwalk_portscan.nasl, scripts/hydra_cisco_enable.nasl, scripts/hydra_http.nasl, scripts/hydra_rexec.nasl, scripts/hydra_cvs.nasl: Removed obsolete inlined signatures. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/ChangeLog 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,3 +1,22 @@ +2009-04-06 Felix Wolfsteller <felix.wolfsteller at intevation.de> + + Removed inlined signatures. + + * scripts/hydra_postgres.nasl, scripts/hydra_cisco.nasl, + scripts/hydra_ftp.nasl, scripts/hydra_ssh2.nasl, + scripts/hydra_telnet.nasl, scripts/hydra_imap.nasl, + scripts/hydra_mysql.nasl, scripts/hydra_http_proxy.nasl, + scripts/hydra_sapr3.nasl, scripts/hydra_vnc.nasl, + scripts/hydra_socks5.nasl, scripts/hydra_nntp.nasl, scripts/amap.nasl, + scripts/hydra_icq.nasl, scripts/hydra_smtp_auth.nasl, + scripts/hydra_pcnfs.nasl, scripts/hydra_options.nasl, + scripts/hydra_ldap.nasl, scripts/hydra_snmp.nasl, + scripts/hydra_mssql.nasl, scripts/hydra_smb.nasl, + scripts/hydra_pop3.nasl, scripts/snmpwalk_portscan.nasl, + scripts/hydra_cisco_enable.nasl, scripts/hydra_http.nasl, + scripts/hydra_rexec.nasl, scripts/hydra_cvs.nasl: Removed obsolete + inlined signatures. + 2009-04-05 Michael Meyer <mime at gmx.de> * scripts/phpmyfaq_detect.nasl, scripts/cutenews_detect.nasl: Modified: trunk/openvas-plugins/scripts/amap.nasl =================================================================== --- trunk/openvas-plugins/scripts/amap.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/amap.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_cisco.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_cisco.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_cisco.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_cisco_enable.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_cisco_enable.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_cisco_enable.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_cvs.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_cvs.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_cvs.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_ftp.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_ftp.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_ftp.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 43db7592f7d8c3d8c615614927d559cb21bc4363eafe202196d15bd68ffda6b0ca57e0cb6a26f30aa90334b8663417f69bd4becb1330271d220bd68837d09a737ebb2e85091396682f677302a89aff5e39945d5b909bc3cdaa753d118b2dd4d2eb5ae1c4018c10091371864649eeb7e303ff23d74bcd8a4bc423dd9d451b74b8657206b715fc51f09da20b9ff3ac961b860f3f5ffc7adf25d6acd4c6d5843b8eb73d1929e06a50bca01d802d248c44bd15d40d2505ba80368a0aec385e05998cd01c770b5ef0d0352db4bcd53377c7ecedabe6df21ab23d641aeb42acf31806be8a77cf57796611b19767d57d504b681d43b6b47eff518fe24808f42cbaf054a27ecc6cb666c9321466cb9f3a227128f030f7339a086116087333503a97ce19d2828b94bbb8534817929c5a825f2d099dc6ccb71702927b6f1e1f532530739cf599590126067432f91c976468ce818b940234f0745e2a24f4e53b6ef0ff30d0dc2a6d51981ce79b5bfd690a555c5c336baa8019cdc80bb0bd2a11f6f43df771fff5d66b5630fff6a3fbe207e6468c3f021e4dc440f9554156413e51ec52481e124636735d68d1d2bbac9a90b861d8ee585082477f42bb816a4b016a31314a19d9fab414f99f0891abe5a61ae89b605b2e0218acc6bd965c74f79b468f47977375ea2dc6a2e439334f5b13d68884fa177ee8bbcc83e19c75247cdcdbfd76d6094 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_http.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_http.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_http.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_http_proxy.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_http_proxy.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_http_proxy.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_icq.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_icq.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_icq.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_imap.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_imap.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_imap.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_ldap.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_ldap.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_ldap.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 6c9e72e744b87099613ee12fc406a247271bebaeba143c93165ed8108d3f8842f14539832cff82edc0dbab06d632df8fd111561e4262c47c0996da07e6193a117db02ad0ad8baf585b0b856fa8b1a99968f13cbd3000a88187782489cc046b8ca2706d77554f03feed35afae3a4c62185e6442d74ac074a21d7d5eb57531b63bc2002c34fe3aa0081c6651e4fd76fdf980adeaf2fae609c4dd7a81ec518d0d3f4a83041c487bca6ff12198e4140a367bc46c951bc15405fac88681e9b69c4b6573b0dba30cd5c6fb5d4edb80fa523d839cda09020d9e90753fe0581af296f657a5b37a9a858d0594d8c1af19e851b99ecbabb179fc1de68fec6cc7dc93ced06e8acb2a3b7c38133e3f65859f60b5f728c6f8df0a32e78a6848363c19cd03411ffdb66bc234b0974257fdbe910511fad8ce8616c59fe6b8f82332ed1fb9d3405d0358ee5a1c9676420fe0627630b8782d37ac69e87eb2eb45aef58e167eaec306417d9b94ff859df60f4fe80f45847caad87477adb1e163a5d884c9810532465eab2ff076b4082b9d3d1f8a9880ca8b3e52240d3d36827968fcabc369173c2c4a3677e84e2994ec458080369f108c2097efe6c5231da6bcc9ffb71b85435c72c475c806169fd0dd64f195cd553c1aad79ad44fa947a6a0ba68189ff9432507fa18e638b6412071bd48322fd34d25e0243e6715f5d122b5f109bc93db64a0bf178 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_mssql.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_mssql.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_mssql.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_mysql.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_mysql.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_mysql.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <mikhail at nessus.org> # Modified: trunk/openvas-plugins/scripts/hydra_nntp.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_nntp.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_nntp.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_options.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_options.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_options.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_pcnfs.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_pcnfs.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_pcnfs.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_pop3.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_pop3.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_pop3.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_postgres.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_postgres.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_postgres.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <mikhail at nessus.org> # Modified: trunk/openvas-plugins/scripts/hydra_rexec.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_rexec.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_rexec.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_sapr3.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_sapr3.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_sapr3.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_smb.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_smb.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_smb.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_smtp_auth.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_smtp_auth.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_smtp_auth.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_snmp.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_snmp.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_snmp.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 0e071404129e82d994aa700dffd189c50d85d44fdd5af1f75c01151a9effbea0a3637ba73c47494b728eb60ec7f0f9a0bd1695d3d13d6e64846a378204c21d8649133f02defd1fed3b80965cb337b1f0c4e6ec453af504febdd243fa9773d456a48f77a3181cc1fc5bf13f1739a45e19e373038a5dce3b39cf6ac5c7badeea255de0e3d0d39bc930f9ad844293f3ac934f77e60079269f33dee9250b794b21655a3681822972399d6e6c9fd2643e81fcd9c046d4d9044fd80141b2ce9a72047f9b5f6d3e14e93b0d74aa93188baa1bbfb2c313bc8909ce6c3095371ffc789b8a05a48ba9cb883e7a7007bbb5417f840cecadc563b78c7d10a95ce9eac4eeacd8b93b6fe1f0d5a7c8170fe5f12d18b0a7377307cc9d2cce6790c3a33dbe9f7d065672d07e67337d2e83bd1cfcc0c3fc22c815f84122dce9d4c75c6b92f03505d7adcd2b9e2c1be57ad0881648a4f405c972b1382fed9ce0a46f2d6efc1983c02776caea6470dd859f2b5583e07ca066041170d62a837ffb504bd356ddf12e9a2f979fd0b62a2b6a1d2e6e12bf67e80ba06a9a11f87e11c82addc56dea5aaa4ef0703deeda96823f81a6da8b8c26002f376ef25c933df9a39c6de330db3c8ddc223fd1f759d1fc7ea3b0f8c4acbd70ae01968e7f1bfa2c20ecbf0a47ce0098f0057598095a45f66369e14b3d0a8b3d6028bbc5f6f7d962783694d074afbfb35a3e # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_socks5.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_socks5.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_socks5.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 8173e4b76ea29069e90a67c164ed4a70bc6d4fde86632e791dbf13f90eb741eb2bf0a4f88e5c32fb03c33dc78df883d1b444b8343e1250c470da123077d1fad17fddb06fc6dc23e271425c6db4a55613eb30c54835660db249e619c32284f467939499684a81904e0c13ecb516e280bbde0a1efcdddc3b23e9f8a907970c7e06f8489c82abdee65b183b7e68a2955d54a57693eebc61fe6051b50c3a80a554fe6a1f270b10130126726c7d94c89a120fc3839c49e21ae2ced40d1da297ab71ef93997fa477f72200182ad1c210040827b620d094964e75ac9f0c6aecb1c1417e31e890964f0a085a4ad7f6b2780ebfffc1eb75104431520f36c3ff2958a7b8d64f01b383b7b2297904146dcae7a03d5d5faa72441fc411353aea97f57692b7668fd95ae558aa0771e15b909565ba675e4c5eb1398d9ac4b9b4fac5b7d0e4c0491b143c1553d507291b066b5a3a5c5cca335a85d206936606733d877a7bb3e0f404623acb7575428c2465a8bce71118047e82a3325dfdd5d9bcdeda7b4cb2ded37b76c3837afbd21bc6262f092b53d40e2cd443f02305838813151fb9dd1f60095740ae2437f3d933ad196215949cfd734464d22627134a59cd8f58e852e37bd3f8c0e3b0d941053ccf7f7371b2b047719ecf92edd9d386a57efa3067cb0b5f0feb7750515eec4bde83fcd0fc549fed5ee91e1f710a44eca442effc96c9e14347 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_ssh2.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_ssh2.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_ssh2.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_telnet.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_telnet.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_telnet.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/hydra_vnc.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_vnc.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/hydra_vnc.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # Modified: trunk/openvas-plugins/scripts/snmpwalk_portscan.nasl =================================================================== --- trunk/openvas-plugins/scripts/snmpwalk_portscan.nasl 2009-04-06 07:21:32 UTC (rev 3028) +++ trunk/openvas-plugins/scripts/snmpwalk_portscan.nasl 2009-04-06 08:10:45 UTC (rev 3029) @@ -1,4 +1,3 @@ -#TRUSTED 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 # # This script was written by Michel Arboi <arboi at alussinan.org> # From scm-commit at wald.intevation.org Mon Apr 6 16:14:44 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 16:14:44 +0200 (CEST) Subject: [Openvas-commits] r3030 - in trunk/openvas-libnasl: . packaging/debian Message-ID: <20090406141444.430954079C@pyrosoma.intevation.org> Author: mwiegand Date: 2009-04-06 16:14:43 +0200 (Mon, 06 Apr 2009) New Revision: 3030 Modified: trunk/openvas-libnasl/ChangeLog trunk/openvas-libnasl/packaging/debian/rules Log: * packaging/debian/rules: Set the value for sysconfdir to /etc to be consistent with openvas-server. Otherwise openvas-libnasl will guess an incorrect value for the gnupg homedir. Modified: trunk/openvas-libnasl/ChangeLog =================================================================== --- trunk/openvas-libnasl/ChangeLog 2009-04-06 08:10:45 UTC (rev 3029) +++ trunk/openvas-libnasl/ChangeLog 2009-04-06 14:14:43 UTC (rev 3030) @@ -1,3 +1,9 @@ +2009-04-06 Michael Wiegand <michael.wiegand at intevation.de> + + * packaging/debian/rules: Set the value for sysconfdir to /etc to be + consistent with openvas-server. Otherwise openvas-libnasl will guess an + incorrect value for the gnupg homedir. + 2009-03-20 Michael Wiegand <michael.wiegand at intevation.de> * configure.in: Added check for gcrypt.h which properly sets $LIBS so Modified: trunk/openvas-libnasl/packaging/debian/rules =================================================================== --- trunk/openvas-libnasl/packaging/debian/rules 2009-04-06 08:10:45 UTC (rev 3029) +++ trunk/openvas-libnasl/packaging/debian/rules 2009-04-06 14:14:43 UTC (rev 3030) @@ -41,7 +41,7 @@ ifneq "$(wildcard /usr/share/misc/config.guess)" "" cp -f /usr/share/misc/config.guess config.guess endif - ./configure $(CROSS) --prefix=/usr --mandir=\$${prefix}/share/man --infodir=\$${prefix}/share/info --localstatedir=/var CFLAGS="$(CFLAGS)" LDFLAGS="-Wl,-z,defs" + ./configure $(CROSS) --sysconfdir=/etc --prefix=/usr --mandir=\$${prefix}/share/man --infodir=\$${prefix}/share/info --localstatedir=/var CFLAGS="$(CFLAGS)" LDFLAGS="-Wl,-z,defs" build: build-stamp From scm-commit at wald.intevation.org Mon Apr 6 18:10:46 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 18:10:46 +0200 (CEST) Subject: [Openvas-commits] r3031 - in trunk/openvas-plugins: . scripts Message-ID: <20090406161046.B4F314079F@pyrosoma.intevation.org> Author: mime Date: 2009-04-06 18:10:45 +0200 (Mon, 06 Apr 2009) New Revision: 3031 Added: trunk/openvas-plugins/scripts/invision_power_board_detect.nasl trunk/openvas-plugins/scripts/phorum_detect.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-06 14:14:43 UTC (rev 3030) +++ trunk/openvas-plugins/ChangeLog 2009-04-06 16:10:45 UTC (rev 3031) @@ -1,3 +1,8 @@ +2009-04-06 Michael Meyer <mime at gmx.de> + * scripts/invision_power_board_detect.nasl, + scripts/phorum_detect.nasl: + Added new plugins + 2009-04-06 Felix Wolfsteller <felix.wolfsteller at intevation.de> Removed inlined signatures. Added: trunk/openvas-plugins/scripts/invision_power_board_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/invision_power_board_detect.nasl 2009-04-06 14:14:43 UTC (rev 3030) +++ trunk/openvas-plugins/scripts/invision_power_board_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) @@ -0,0 +1,111 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# IP.Board Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running IP.Board, an outstanding bulletin board system. + + See also: + http://www.invisionpower.com/community/board/ + + Risk factor : None"; + +if (description) +{ + script_id(100107); + script_version ("1.0"); + + script_name(english:"IP.Board Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of IP.Board"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); +include("global_settings.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/forum","/board","/invboard","/community",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "Powered by <a [^>]+>[Invision Power Board|IP.Board]", string: buf, icase: TRUE) ) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: "v*([0-9.]+[a-zA-Z ]*) ©.*[0-9]{4}.*IPS.*",icase:TRUE); + + if ( !isnull(version[1]) ) { + vers=version[1]; + } + + set_kb_item(name: string("www/", port, "/invision_power_board"), value: string(vers," under ",install)); + + info = string("None\n\nIP.Board Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/invision_power_board_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id Added: trunk/openvas-plugins/scripts/phorum_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/phorum_detect.nasl 2009-04-06 14:14:43 UTC (rev 3030) +++ trunk/openvas-plugins/scripts/phorum_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) @@ -0,0 +1,112 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# phorum Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running phorum, a PHP and MySQL based Open Source + forum software. + + See also: + http://www.phorum.org/ + + Risk factor : None"; + +if (description) +{ + script_id(100108); + script_version ("1.0"); + + script_name(english:"phorum Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of phorum"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); +include("global_settings.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/forum","/board","/phorum",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/admin.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "<title>Phorum Admin", string: buf, icase: TRUE) ) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: 'version ([0-9.]+[^<]*)<',icase:TRUE); + + if ( !isnull(version[1]) ) { + vers=version[1]; + } + + set_kb_item(name: string("www/", port, "/phorum"), value: string(vers," under ",install)); + + info = string("None\n\nphorum Version '"); + info += string(vers); + info += string("' was detected on the remote host in the following directory(s):\n\n"); + info += string(install, "\n"); + + desc = ereg_replace( + string:desc["english"], + pattern:"None$", + replace:info + ); + + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/phorum_detect.nasl ___________________________________________________________________ Name: svn:keywords + Id From scm-commit at wald.intevation.org Mon Apr 6 19:30:59 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 19:30:59 +0200 (CEST) Subject: [Openvas-commits] r3032 - in trunk/openvas-plugins: . scripts Message-ID: <20090406173059.494FF40788@pyrosoma.intevation.org> Author: mime Date: 2009-04-06 19:30:57 +0200 (Mon, 06 Apr 2009) New Revision: 3032 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl trunk/openvas-plugins/scripts/bugzilla_detect.nasl trunk/openvas-plugins/scripts/cutenews_detect.nasl trunk/openvas-plugins/scripts/cvstrac_detect.nasl trunk/openvas-plugins/scripts/deluxeBB_detect.nasl trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl trunk/openvas-plugins/scripts/mambo_detect.nasl trunk/openvas-plugins/scripts/mantis_detect.nasl trunk/openvas-plugins/scripts/oscommerce_detect.nasl trunk/openvas-plugins/scripts/phpbb_detect.nasl trunk/openvas-plugins/scripts/phpgroupware_detect.nasl trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl Log: Respect settings of "Report verbosity" Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/ChangeLog 2009-04-06 17:30:57 UTC (rev 3032) @@ -1,3 +1,18 @@ +2009-04-06 Michael Meyer * scripts/invision_power_board_detect.nasl, scripts/phorum_detect.nasl: Modified: trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/TinyPHPForum_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -55,6 +55,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -101,7 +102,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } Modified: trunk/openvas-plugins/scripts/bugzilla_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/bugzilla_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/bugzilla_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -58,6 +58,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -131,7 +132,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/cutenews_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/cutenews_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/cutenews_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -56,6 +56,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -101,7 +102,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } Modified: trunk/openvas-plugins/scripts/cvstrac_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/cvstrac_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/cvstrac_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -56,6 +56,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -99,7 +100,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/deluxeBB_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/deluxeBB_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/deluxeBB_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -55,6 +55,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -106,7 +107,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/gravity_board_x_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -56,6 +56,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -101,7 +102,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } Modified: trunk/openvas-plugins/scripts/mambo_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/mambo_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/mambo_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -55,6 +55,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -188,7 +189,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/mantis_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/mantis_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/mantis_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -55,6 +55,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -105,7 +106,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/oscommerce_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/oscommerce_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/oscommerce_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -51,6 +51,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -123,7 +124,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } Modified: trunk/openvas-plugins/scripts/phpbb_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/phpbb_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/phpbb_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -55,6 +55,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -113,7 +114,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/phpgroupware_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/phpgroupware_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/phpgroupware_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -56,6 +56,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -109,7 +110,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } } Modified: trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl 2009-04-06 16:10:45 UTC (rev 3031) +++ trunk/openvas-plugins/scripts/phpmyfaq_detect.nasl 2009-04-06 17:30:57 UTC (rev 3032) @@ -56,6 +56,7 @@ include("http_func.inc"); include("http_keepalive.inc"); +include("global_settings.inc"); port = get_http_port(default:80); @@ -101,7 +102,9 @@ replace:info ); - security_note(port:port,data:desc); + if(report_verbosity > 0) { + security_note(port:port,data:desc); + } exit(0); } From scm-commit at wald.intevation.org Mon Apr 6 20:27:11 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 20:27:11 +0200 (CEST) Subject: [Openvas-commits] r3033 - trunk/openvas-plugins/scripts Message-ID: <20090406182711.177F040788@pyrosoma.intevation.org> Author: edjenguele Date: 2009-04-06 20:27:09 +0200 (Mon, 06 Apr 2009) New Revision: 3033 Modified: trunk/openvas-plugins/scripts/remote-MS07-040.nasl Log: Fix syntax error: this was commented (#) during test ... Modified: trunk/openvas-plugins/scripts/remote-MS07-040.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-06 17:30:57 UTC (rev 3032) +++ trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-06 18:27:09 UTC (rev 3033) @@ -88,8 +88,8 @@ else { # Microsoft .NET Framework version < [1.0 SP3, 1.1 SP1, 2.0 SP2] - dotnetversion['1.0'] = revcomp(revcomp(a:dotnet, b:"1.0.3705.6060"); - dotnetversion['1.1'] = revcom(revcomp(a:dotnet, b:"1.1.4332.2407"); + dotnetversion['1.0'] = revcomp(a:dotnet, b:"1.0.3705.6060"); + dotnetversion['1.1'] = revcomp(a:dotnet, b:"1.1.4332.2407"); dotnetversion['2.0'] = revcomp(a:dotnet, b:"2.0.50727.832"); foreach version (dotnetversion) From scm-commit at wald.intevation.org Tue Apr 7 07:29:55 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 07:29:55 +0200 (CEST) Subject: [Openvas-commits] r3035 - in trunk/openvas-plugins: . scripts Message-ID: <20090407052955.786B7407B2@pyrosoma.intevation.org> Author: chandra Date: 2009-04-07 07:29:53 +0200 (Tue, 07 Apr 2009) New Revision: 3035 Added: trunk/openvas-plugins/scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl trunk/openvas-plugins/scripts/gb_gdiplus_int_overflow_vuln.nasl trunk/openvas-plugins/scripts/gb_ms_powerpoint_code_exec_vuln.nasl trunk/openvas-plugins/scripts/gb_trillian_bof_vuln.nasl trunk/openvas-plugins/scripts/gb_trillian_detect.nasl Modified: trunk/openvas-plugins/ChangeLog Log: Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 05:29:53 UTC (rev 3035) @@ -1,3 +1,11 @@ +2009-04-07 Chandrashekhar B + * scripts/gb_gdiplus_int_overflow_vuln.nasl, + scripts/gb_ms_powerpoint_code_exec_vuln.nasl, + scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl, + scripts/gb_trillian_bof_vuln.nasl, + scripts/gb_trillian_detect.nasl: + Added new plugins + 2009-04-06 Thomas Reinke * glsa_200903_40.nasl glsa_200903_41.nasl glsa_200904_01.nasl glsa_200904_02.nasl glsa_200904_03.nasl glsa_200904_04.nasl Added: trunk/openvas-plugins/scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl 2009-04-07 05:29:53 UTC (rev 3035) @@ -0,0 +1,86 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_apple_safari_xml_dos_vuln_win_apr09.nasl 1419 2009-04-03 10:40:26Z apr $ +# +# Apple Safari Denial of Service Vulnerability (Win) - Apr09 +# +# Authors: +# Nikita MR +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800549); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-1233"); + script_bugtraq_id(34318); + script_name(english:"Apple Safari Denial of Service Vulnerability (Win) - Apr09"); + desc["english"] = " + + Overview: This host is running Apple Safari Web Browser and is prone + to denial of service vulnerability. + + Vulnerability Insight: + Improper parsing of XML documents while persuading a victim to open a + specially-crafted XML document containing an overly large number of nested + elements crashes the Browser. + + Impact: + Attacker could exploit this vulnerability to cause the browser to crash. + + Impact Level: Application + + Affected Software/OS: + Apple Safari version 4 beta and prior on Windows. + + Fix: No solution or patch is available as on 06th April, 2009. Information + regarding this issue will be updated once the solution details are available. + For updates refer, http://www.apple.com/support/downloads + + References: + http://www.milw0rm.com/exploits/8325 + http://xforce.iss.net/xforce/xfdb/49527 + + CVSS Score: + CVSS Base Score : 7.1 (AV:N/AC:M/Au:NR/C:N/I:N/A:C) + CVSS Temporal Score : 6.4 + Risk factor : High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of Apple Safari"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("secpod_apple_safari_detect_win_900003.nasl"); + script_require_keys("AppleSafari/Version"); + exit(0); +} + + +include("version_func.inc"); + +safariVer = get_kb_item("AppleSafari/Version"); +if(!safariVer){ + exit(0); +} + +# Apple Safari Version <= (4.28.16.0) 4 build 528.16 +if(version_is_less_equal(version:safariVer, test_version:"4.28.16.0")){ + security_hole(0); +} Added: trunk/openvas-plugins/scripts/gb_gdiplus_int_overflow_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_gdiplus_int_overflow_vuln.nasl 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/scripts/gb_gdiplus_int_overflow_vuln.nasl 2009-04-07 05:29:53 UTC (rev 3035) @@ -0,0 +1,135 @@ +############################################################################## +# OpenVAS Vulnerability Test +# $Id: gb_gdiplus_int_overflow_vuln.nasl 1387 2009-04-02 09:09:37Z mar $ +# +# Microsoft GDIPlus Library File Integer Overflow Vulnerability +# +# Authors: +# Sujit Ghosal +# +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800267); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-1217"); + script_bugtraq_id(34250); + script_name(english:"Microsoft GDIPlus Library File Integer Overflow Vulnerability"); + desc["english"] = " + + Overview: This host is having GDIPlus Library and is prone to Integer Overflow + Vulnerability. + + Vulnerability Insight: + The flaw is in 'GpFont::SetData' Function which has an off-by-one error in the + gdiplus.dll file. + + Impact: + Successful exploitation will let the attacker cause application execution + termination and also denial of service via a crafted EMF File. + + Impact Level: System/Application + + Affected Software/OS: + Microsoft Windows XP Service Pack 2/3 and prior. + Microsoft Windows 2003 Service Pack 2 and prior. + + Fix: + No solution or patch is available as on 07th April, 2009. Information + regarding this issue will be updated once the solution are available. + For further updates refer, + http://www.microsoft.com/technet/security/advisory/default.mspx + + References: + http://xforce.iss.net/xforce/xfdb/49438 + http://www.vupen.com/english/advisories/2009/0832 + http://bl4cksecurity.blogspot.com/2009/03/microsoft-gdiplus-emf-gpfontsetdata.html + http://blogs.technet.com/srd/archive/2009/03/26/new-emf-gdiplus-dll-crash-not-exploitable-for-code-execution.aspx + + CVSS Score: + CVSS Base Score : 9.3 (AV:N/AC:M/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 8.4 + Risk factor : Critical"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of gdiplus.dll"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Denial of Service"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_reg.inc"); +include("version_func.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +if(hotfix_check_sp(xp:4, win2003:3) <= 0){ + exit(0); +} + +getPath = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion", + item:"MediaPath"); +if(!getPath){ + exit(0); +} + +appendPath = getPath - "Media" + "WinSxS\x86_Microsoft.Windows.GdiPlus" + + "_6595b64144ccf1df_1.0.0.0_x-ww_8D353f13\gdiplus.dll"; + +share = ereg_replace(pattern:"([A-Z]):.*", replace:"\1$", string:appendPath); +file = ereg_replace(pattern:"[A-Z]:(.*)", replace:"\1", string:appendPath); + +gdiVer = GetVer(file:file, share:share); +if(!gdiVer){ + exit(0); +} + +# Windows XP +if(hotfix_check_sp(xp:4) > 0) +{ + SP = get_kb_item("SMB/WinXP/ServicePack"); + if("Service Pack 1" >< SP || "Service Pack 2" >< SP || "Service Pack 3" >< SP) + { + # Grep for gdiplus.dll <= 5.1.3097.0 + if(version_is_less_equal(version:gdiVer, test_version:"5.1.3097.0")){ + security_hole(0); + } + } + exit(0); +} + +# Windows 2003 +if(hotfix_check_sp(win2003:3) > 0) +{ + SP = get_kb_item("SMB/Win2003/ServicePack"); + if("Service Pack 1" >< SP || "Service Pack 2" >< SP) + { + # Grep for gdiplus.dll version <= 5.1.3097.0 + if(version_is_less_equal(version:gdiVer, test_version:"5.1.3097.0")){ + security_hole(0); + } + } +} Added: trunk/openvas-plugins/scripts/gb_ms_powerpoint_code_exec_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_ms_powerpoint_code_exec_vuln.nasl 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/scripts/gb_ms_powerpoint_code_exec_vuln.nasl 2009-04-07 05:29:53 UTC (rev 3035) @@ -0,0 +1,105 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_ms_powerpoint_code_exec_vuln.nasl 1397 2009-04-03 14:21:24Z apr $ +# +# Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (969136) +# +# Authors: +# Sharath S +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://www.intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800382); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2009-0556"); + script_bugtraq_id(34351); + script_name(english:"Microsoft PowerPoint File Parsing Remote Code Execution Vulnerability (969136)"); + desc["english"] = " + + Overview: The host is installed with Microsoft PowerPoint and is prone to + file parsing remote code execution vulnerability. + + Vulnerability Insight: + This flaw is caused when powerpoint accesses an invalid object in memory + while parsing a specially crafted powerpoint file. + + Impact: + Successful exploitation will let the attacker execute arbitrary codes in the + context of the application crafting a malicious powerpoint file. + + Impact Level: System/Application + + Affected Software/OS: + MS PowerPoint 2000 Service Pack 3 and prior + MS PowerPoint 2002 Service Pack 3 and prior + MS PowerPoint 2003 Service Pack 3 and prior + + Fix: No solution or patch is available as on 07th April, 2009. Information + regarding this issue will be updated once the solution details are available. + For updates refer, http://office.microsoft.com/en-us/powerpoint/default.aspx + + Workaround: + For workaround see the Suggested Actions mentioned. + http://www.microsoft.com/technet/security/advisory/969136.mspx + + References: + http://www.kb.cert.org/vuls/id/627331 + http://support.microsoft.com/kb/969136 + http://blogs.technet.com/srd/archive/2009/04/02/investigating-the-new-powerpoint-issue.aspx + http://blogs.technet.com/mmpc/archive/2009/04/02/new-0-day-exploits-using-powerpoint-files.aspx + + CVSS Score: + CVSS Base Score : 9.3 (AV:N/AC:M/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 7.5 + Risk factor : High"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of Microsoft PowerPoint"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Windows"); + script_dependencies("secpod_ms_office_detection_900025.nasl", + "secpod_office_products_version_900032.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("version_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +officeVer = get_kb_item("MS/Office/Ver"); +if(officeVer =~ "^(9|10|11)\..*") +{ + # Grep for MS Office PowerPoint Version <= (9.0.8969, 10.0.6842 and 11.0.8227) + ppVer = get_kb_item("SMB/Office/PowerPnt/Version"); + if(ppVer) + { + if(version_in_range(version:ppVer, test_version:"9.0", test_version2:"9.0.8969.0") || + version_in_range(version:ppVer, test_version:"10.0", test_version2:"10.0.6842.0")|| + version_in_range(version:ppVer, test_version:"11.0", test_version2:"11.0.8227.0")){ + security_hole(0); + } + } +} Added: trunk/openvas-plugins/scripts/gb_trillian_bof_vuln.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_trillian_bof_vuln.nasl 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/scripts/gb_trillian_bof_vuln.nasl 2009-04-07 05:29:53 UTC (rev 3035) @@ -0,0 +1,85 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: gb_trillian_bof_vuln.nasl 1348 2009-04-01 15:10:29Z apr $ +# +# Trillian Buffer Overflow Vulnerability +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http://intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800265); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2008-6563"); + script_bugtraq_id(28747); + script_name(english:"Trillian Buffer Overflow Vulnerability"); + desc["english"] = " + + Overview: This host is installed with Trillian and is prone to buffer + overflow vulnerability. + + Vulnerability Insight: + The application fails to perform adequate boundary checks on user supplied + data resulting in a parsing error while processing malformed DTD files. + + Impact: + Successful exploitation will let the attacker execute arbitrary code or + to cause denial of service. + + Affected Software/OS: + Trillian IM Client version 3.1.9.0 and prior. + + Fix: No solution or patch is available as on 7th April, 2009. Information + regarding this issue will updated once the solution details are available. + For further updates refer, http://blog.ceruleanstudios.com + + References: + http://osvdb.org/51130 + http://xforce.iss.net/xforce/xfdb/41782 + http://www.securityfocus.com/archive/1/archive/1/490772/100/0/threaded + + CVSS Score: + CVSS Base Score : 9.3 (AV:N/AC:M/Au:NR/C:C/I:C/A:C) + CVSS Temporal Score : 8.4 + Risk factor: Critical"; + + script_description(english:desc["english"]); + script_summary(english:"Check for the version of Trillian"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Buffer overflow"); + script_dependencies("gb_trillian_detect.nasl"); + script_require_keys("Trillian/Ver"); + exit(0); +} + + +include("version_func.inc"); + +version = get_kb_item("Trillian/Ver"); +if(!version){ + exit(0); +} + +# Grep for Trillian version 3.1.9.0 or prior +if(version_is_less(version:version, test_version:"3.1.9.0")){ + security_hole(0); +} Added: trunk/openvas-plugins/scripts/gb_trillian_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/gb_trillian_detect.nasl 2009-04-06 18:58:11 UTC (rev 3034) +++ trunk/openvas-plugins/scripts/gb_trillian_detect.nasl 2009-04-07 05:29:53 UTC (rev 3035) @@ -0,0 +1,71 @@ +############################################################################## +# OpenVAS Vulnerability Test +# $Id: gb_trillian_detect.nasl 1348 2009-04-01 14:01:24Z apr $ +# +# Trillian Version Detection +# +# Authors: +# Sujit Ghosal +# +# Copyright: +# Copyright (c) 2009 Intevation GmbH, http//intevation.net +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if(description) +{ + script_id(800264); + script_version("$Revision: 1.0 $"); + script_name(english:"Trillian Version Detection"); + desc["english"] = " + Overview : This script finds the installed Trillian and saves the + result in KB item. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Set Version of Trillian in KB"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 Intevation GmbH"); + script_family(english:"Service detection"); + script_dependencies("secpod_reg_enum.nasl"); + script_require_keys("SMB/WindowsVersion"); + exit(0); +} + + +include("smb_nt.inc"); +include("secpod_smb_func.inc"); + +if(!get_kb_item("SMB/WindowsVersion")){ + exit(0); +} + +key = "SOFTWARE\Clients\IM\Trillian"; +regKey = registry_key_exists(key:key); +if(!regKey){ + exit(0); +} + +key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Trillian"; +exePath = registry_get_sz(key:key, item:"DisplayIcon"); +dllFile = exePath - "trillian.exe" + "toolkit.dll"; +if(dllFile != NULL) +{ + share = ereg_replace(pattern:"([A-Z]):.*", replace:"\1$", string:dllFile); + file = ereg_replace(pattern:"[A-Z]:(.*)", replace:"\1", string:dllFile); + triVer = GetVer(file:file, share:share); + set_kb_item(name:"Trillian/Ver", value:triVer); +} Property changes on: trunk/openvas-plugins/scripts/gb_trillian_detect.nasl ___________________________________________________________________ Name: svn:executable + * From scm-commit at wald.intevation.org Mon Apr 6 20:58:17 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Mon, 6 Apr 2009 20:58:17 +0200 (CEST) Subject: [Openvas-commits] r3034 - in trunk/openvas-plugins: . scripts Message-ID: <20090406185817.243AD407A6@pyrosoma.intevation.org> Author: reinke Date: 2009-04-06 20:58:11 +0200 (Mon, 06 Apr 2009) New Revision: 3034 Added: trunk/openvas-plugins/scripts/RHSA_2009_0326.nasl trunk/openvas-plugins/scripts/RHSA_2009_0397.nasl trunk/openvas-plugins/scripts/RHSA_2009_0398.nasl trunk/openvas-plugins/scripts/RHSA_2009_0402.nasl trunk/openvas-plugins/scripts/deb_1756_1.nasl trunk/openvas-plugins/scripts/deb_1757_1.nasl trunk/openvas-plugins/scripts/deb_1758_1.nasl trunk/openvas-plugins/scripts/deb_1759_1.nasl trunk/openvas-plugins/scripts/deb_1760_1.nasl trunk/openvas-plugins/scripts/deb_1761_1.nasl trunk/openvas-plugins/scripts/deb_1762_1.nasl trunk/openvas-plugins/scripts/fcore_2009_2688.nasl trunk/openvas-plugins/scripts/fcore_2009_3099.nasl trunk/openvas-plugins/scripts/fcore_2009_3100.nasl trunk/openvas-plugins/scripts/fcore_2009_3101.nasl trunk/openvas-plugins/scripts/fcore_2009_3161.nasl trunk/openvas-plugins/scripts/fcore_2009_3280.nasl trunk/openvas-plugins/scripts/fcore_2009_3283.nasl trunk/openvas-plugins/scripts/glsa_200903_40.nasl trunk/openvas-plugins/scripts/glsa_200903_41.nasl trunk/openvas-plugins/scripts/glsa_200904_01.nasl trunk/openvas-plugins/scripts/glsa_200904_02.nasl trunk/openvas-plugins/scripts/glsa_200904_03.nasl trunk/openvas-plugins/scripts/glsa_200904_04.nasl trunk/openvas-plugins/scripts/glsa_200904_05.nasl trunk/openvas-plugins/scripts/mdksa_2009_080.nasl trunk/openvas-plugins/scripts/mdksa_2009_081.nasl trunk/openvas-plugins/scripts/mdksa_2009_082.nasl trunk/openvas-plugins/scripts/mdksa_2009_083.nasl trunk/openvas-plugins/scripts/mdksa_2009_084.nasl trunk/openvas-plugins/scripts/mdksa_2009_085.nasl trunk/openvas-plugins/scripts/mdksa_2009_086.nasl trunk/openvas-plugins/scripts/mdksa_2009_087.nasl trunk/openvas-plugins/scripts/ovcesa2009_0326.nasl trunk/openvas-plugins/scripts/ovcesa2009_0398.nasl trunk/openvas-plugins/scripts/ovcesa2009_0398_01.nasl trunk/openvas-plugins/scripts/suse_sa_2009_016.nasl trunk/openvas-plugins/scripts/suse_sr_2009_008.nasl trunk/openvas-plugins/scripts/ubuntu_745_1.nasl trunk/openvas-plugins/scripts/ubuntu_746_1.nasl trunk/openvas-plugins/scripts/ubuntu_747_1.nasl trunk/openvas-plugins/scripts/ubuntu_748_1.nasl trunk/openvas-plugins/scripts/ubuntu_749_1.nasl trunk/openvas-plugins/scripts/ubuntu_750_1.nasl Modified: trunk/openvas-plugins/ChangeLog Log: New scripts added Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/ChangeLog 2009-04-06 18:58:11 UTC (rev 3034) @@ -1,3 +1,21 @@ +2009-04-06 Thomas Reinke + * glsa_200903_40.nasl glsa_200903_41.nasl glsa_200904_01.nasl + glsa_200904_02.nasl glsa_200904_03.nasl glsa_200904_04.nasl + glsa_200904_05.nasl suse_sa_2009_016.nasl suse_sr_2009_008.nasl + ubuntu_745_1.nasl ubuntu_746_1.nasl ubuntu_747_1.nasl + ubuntu_748_1.nasl ubuntu_749_1.nasl ubuntu_750_1.nasl + mdksa_2009_080.nasl mdksa_2009_081.nasl mdksa_2009_082.nasl + mdksa_2009_083.nasl mdksa_2009_084.nasl mdksa_2009_085.nasl + mdksa_2009_086.nasl mdksa_2009_087.nasl RHSA_2009_0326.nasl + RHSA_2009_0397.nasl RHSA_2009_0398.nasl RHSA_2009_0402.nasl + fcore_2009_2688.nasl fcore_2009_3099.nasl fcore_2009_3100.nasl + fcore_2009_3101.nasl fcore_2009_3161.nasl fcore_2009_3280.nasl + fcore_2009_3283.nasl ovcesa2009_0326.nasl ovcesa2009_0398.nasl + ovcesa2009_0398_01.nasl deb_1756_1.nasl deb_1757_1.nasl + deb_1758_1.nasl deb_1759_1.nasl deb_1760_1.nasl deb_1761_1.nasl + deb_1762_1.nasl + New scripts + 2009-04-06 Michael Meyer +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63712); + script_cve_id("CVE-2008-3528", "CVE-2008-5700", "CVE-2009-0028", "CVE-2009-0269", "CVE-2009-0322", "CVE-2009-0675", "CVE-2009-0676", "CVE-2009-0778"); + script_version ("$"); + name["english"] = "RedHat Security Advisory RHSA-2009:0326"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates to the kernel announced in +advisory RHSA-2009:0326. + +Security fixes: + +* memory leaks were found on some error paths in the icmp_send() +function in the Linux kernel. This could, potentially, cause the network +connectivity to cease. (CVE-2009-0778, Important) + +* Chris Evans reported a deficiency in the clone() system call when called +with the CLONE_PARENT flag. This flaw permits the caller (the parent +process) to indicate an arbitrary signal it wants to receive when its child +process exits. This could lead to a denial of service of the parent +process. (CVE-2009-0028, Moderate) + +* an off-by-one underflow flaw was found in the eCryptfs subsystem. This +could potentially cause a local denial of service when the readlink() +function returned an error. (CVE-2009-0269, Moderate) + +* a deficiency was found in the Remote BIOS Update (RBU) driver for Dell +systems. This could allow a local, unprivileged user to cause a denial of +service by reading zero bytes from the image_type or packet_size files in +/sys/devices/platform/dell_rbu/. (CVE-2009-0322, Moderate) + +* an inverted logic flaw was found in the SysKonnect FDDI PCI adapter +driver, allowing driver statistics to be reset only when the CAP_NET_ADMIN +capability was absent (local, unprivileged users could reset driver +statistics). (CVE-2009-0675, Moderate) + +* the sock_getsockopt() function in the Linux kernel did not properly +initialize a data structure that can be directly returned to user-space +when the getsockopt() function is called with SO_BSDCOMPAT optname set. +This flaw could possibly lead to memory disclosure. +(CVE-2009-0676, Moderate) + +* the ext2 and ext3 file system code failed to properly handle corrupted +data structures, leading to a possible local denial of service when read +or write operations were performed on a specially-crafted file system. +(CVE-2008-3528, Low) + +* a deficiency was found in the libATA implementation. This could, +potentially, lead to a local denial of service. Note: by default, the +/dev/sg* devices are accessible only to the root user. +(CVE-2008-5700, Low) + +All users should upgrade to these updated packages, which contain +backported patches to correct these issues. The system must be rebooted for +this update to take effect. + +Solution: +Please note that this update is available via +Red Hat Network. To use Red Hat Network, launch the Red +Hat Update Agent with the following command: up2date + +http://rhn.redhat.com/errata/RHSA-2009-0326.html +http://www.redhat.com/security/updates/classification/#important +http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/Release_Notes/index.html#d0e497 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Redhat Security Advisory RHSA-2009:0326"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Red Hat Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"kernel", rpm:"kernel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE", rpm:"kernel-PAE~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE-debuginfo", rpm:"kernel-PAE-debuginfo~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE-devel", rpm:"kernel-PAE-devel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug-debuginfo", rpm:"kernel-debug-debuginfo~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debuginfo", rpm:"kernel-debuginfo~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debuginfo-common", rpm:"kernel-debuginfo-common~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-headers", rpm:"kernel-headers~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen", rpm:"kernel-xen~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen-debuginfo", rpm:"kernel-xen-debuginfo~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen-devel", rpm:"kernel-xen-devel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-kdump", rpm:"kernel-kdump~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-kdump-debuginfo", rpm:"kernel-kdump-debuginfo~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-kdump-devel", rpm:"kernel-kdump-devel~2.6.18~128.1.6.el5", rls:"RHENT_5")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/RHSA_2009_0397.nasl =================================================================== --- trunk/openvas-plugins/scripts/RHSA_2009_0397.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/RHSA_2009_0397.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,117 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory RHSA-2009:0397 () +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63709); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "RedHat Security Advisory RHSA-2009:0397"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory RHSA-2009:0397. + +Mozilla Firefox is an open source Web browser. XULRunner provides the XUL +Runtime environment for Mozilla Firefox. + +A memory corruption flaw was discovered in the way Firefox handles XML +files containing an XSLT transform. A remote attacker could use this flaw +to crash Firefox or, potentially, execute arbitrary code as the user +running Firefox. (CVE-2009-1169) + +A flaw was discovered in the way Firefox handles certain XUL garbage +collection events. A remote attacker could use this flaw to crash Firefox +or, potentially, execute arbitrary code as the user running Firefox. +(CVE-2009-1044) + +For technical details regarding these flaws, refer to the Mozilla security +advisories. You can find a link to the Mozilla advisories in the References +section of this errata. + +Firefox users should upgrade to these updated packages, which resolve these +issues. For Red Hat Enterprise Linux 4, they contain backported patches to +the firefox package. For Red Hat Enterprise Linux 5, they contain +backported patches to the xulrunner packages. After installing the update, +Firefox must be restarted for the changes to take effect. + +Solution: +Please note that this update is available via +Red Hat Network. To use Red Hat Network, launch the Red +Hat Update Agent with the following command: up2date + +http://rhn.redhat.com/errata/RHSA-2009-0397.html +http://www.redhat.com/security/updates/classification/#critical +http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.8 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Redhat Security Advisory RHSA-2009:0397"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Red Hat Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"firefox", rpm:"firefox~3.0.7~3.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-debuginfo", rpm:"firefox-debuginfo~3.0.7~3.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner", rpm:"xulrunner~1.9.0.7~3.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner-debuginfo", rpm:"xulrunner-debuginfo~1.9.0.7~3.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner-devel", rpm:"xulrunner-devel~1.9.0.7~3.el5", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner-devel-unstable", rpm:"xulrunner-devel-unstable~1.9.0.7~3.el5", rls:"RHENT_5")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/RHSA_2009_0398.nasl =================================================================== --- trunk/openvas-plugins/scripts/RHSA_2009_0398.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/RHSA_2009_0398.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,176 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory RHSA-2009:0398 () +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63710); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "RedHat Security Advisory RHSA-2009:0398"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory RHSA-2009:0398. + +SeaMonkey is an open source Web browser, email and newsgroup client, IRC +chat client, and HTML editor. + +A memory corruption flaw was discovered in the way SeaMonkey handles XML +files containing an XSLT transform. A remote attacker could use this flaw +to crash SeaMonkey or, potentially, execute arbitrary code as the user +running SeaMonkey. (CVE-2009-1169) + +A flaw was discovered in the way SeaMonkey handles certain XUL garbage +collection events. A remote attacker could use this flaw to crash SeaMonkey +or, potentially, execute arbitrary code as the user running SeaMonkey. +(CVE-2009-1044) + +All SeaMonkey users should upgrade to these updated packages, which correct +these issues. After installing the update, SeaMonkey must be restarted for +the changes to take effect. + +Solution: +Please note that this update is available via +Red Hat Network. To use Red Hat Network, launch the Red +Hat Update Agent with the following command: up2date + +http://rhn.redhat.com/errata/RHSA-2009-0398.html +http://www.redhat.com/security/updates/classification/#critical + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Redhat Security Advisory RHSA-2009:0398"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Red Hat Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.32.el2", rls:"RHENT_2.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-debuginfo", rpm:"seamonkey-debuginfo~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.36.el3", rls:"RHENT_3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-debuginfo", rpm:"seamonkey-debuginfo~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~40.el4", rls:"RHENT_4")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/RHSA_2009_0402.nasl =================================================================== --- trunk/openvas-plugins/scripts/RHSA_2009_0402.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/RHSA_2009_0402.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,110 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory RHSA-2009:0402 () +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63711); + script_cve_id("CVE-2008-4190", "CVE-2009-0790"); + script_version ("$"); + name["english"] = "RedHat Security Advisory RHSA-2009:0402"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory RHSA-2009:0402. + +Openswan is a free implementation of Internet Protocol Security (IPsec) +and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide +both authentication and encryption services. These services allow you to +build secure tunnels through untrusted networks. Everything passing through +the untrusted network is encrypted by the IPsec gateway machine, and +decrypted by the gateway at the other end of the tunnel. The resulting +tunnel is a virtual private network (VPN). + +Gerd v. Egidy discovered a flaw in the Dead Peer Detection (DPD) in +Openswan's pluto IKE daemon. A remote attacker could use a malicious DPD +packet to crash the pluto daemon. (CVE-2009-0790) + +It was discovered that Openswan's livetest script created temporary files +in an insecure manner. A local attacker could use this flaw to overwrite +arbitrary files owned by the user running the script. (CVE-2008-4190) + +Note: The livetest script is an incomplete feature and was not +automatically executed by any other script distributed with Openswan, or +intended to be used at all, as was documented in its man page. In these +updated packages, the script only prints an informative message and exits +immediately when run. + +All users of openswan are advised to upgrade to these updated packages, +which contain backported patches to correct these issues. After installing +this update, the ipsec service will be restarted automatically. + +Solution: +Please note that this update is available via +Red Hat Network. To use Red Hat Network, launch the Red +Hat Update Agent with the following command: up2date + +http://rhn.redhat.com/errata/RHSA-2009-0402.html +http://www.redhat.com/security/updates/classification/#important + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Redhat Security Advisory RHSA-2009:0402"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Red Hat Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"openswan", rpm:"openswan~2.6.14~1.el5_3.2", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openswan-debuginfo", rpm:"openswan-debuginfo~2.6.14~1.el5_3.2", rls:"RHENT_5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openswan-doc", rpm:"openswan-doc~2.6.14~1.el5_3.2", rls:"RHENT_5")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1756_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1756_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1756_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,138 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1756-1 (xulrunner) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63728); + script_cve_id("CVE-2009-1169", "CVE-2009-1044"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1756-1 (xulrunner)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to xulrunner +announced via advisory DSA 1756-1. + +Several remote vulnerabilities have been discovered in Xulrunner, a +runtime environment for XUL applications, such as the Iceweasel web +browser. The Common Vulnerabilities and Exposures project identifies +the following problems: + +CVE-2009-1169 + +Security researcher Guido Landi discovered that a XSL stylesheet could +be used to crash the browser during a XSL transformation. An attacker +could potentially use this crash to run arbitrary code on a victim's +computer. + +CVE-2009-1044 + +Security researcher Nils reported via TippingPoint's Zero Day Initiative +that the XUL tree method _moveToEdgeShift was in some cases triggering +garbage collection routines on objects which were still in use. In such +cases, the browser would crash when attempting to access a previously +destroyed object and this crash could be used by an attacker to run +arbitrary code on a victim's computer. + +Note that after installing these updates, you will need to restart any +packages using xulrunner, typically iceweasel or epiphany. + +For the stable distribution (lenny), these problems have been fixed in version +1.9.0.7-0lenny2. + +As indicated in the Etch release notes, security support for the +Mozilla products in the oldstable distribution needed to be stopped +before the end of the regular Etch security maintenance life cycle. +You are strongly encouraged to upgrade to stable or switch to a still +supported browser. + +For the unstable distribution (sid), these problems have been fixed in +version 1.9.0.8-1 + +We recommend that you upgrade your xulrunner package. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201756-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1756-1 (xulrunner)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"libmozillainterfaces-java", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"spidermonkey-bin", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-dev", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libmozjs1d-dbg", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libmozjs-dev", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"python-xpcom", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libmozjs1d", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-dbg", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.7-0lenny2", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1757_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1757_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1757_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,99 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1757-1 (auth2db) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63729); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1757-1 (auth2db)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to auth2db +announced via advisory DSA 1757-1. + + +It was discovered that auth2db, an IDS logger, log viewer and alert +generator, is prone to an SQL injection vulnerability, when used with +multibyte character encodings. + + +For the stable distribution (lenny), this problem has been fixed in +version 0.2.5-2+dfsg-1+lenny1. + +The oldstable distribution (etch) doesn't contain auth2db. + +For the testing distribution (squeeze), this problem will be fixed soon. + +For the unstable distribution (sid), this problem has been fixed in +version 0.2.5-2+dfsg-1.1. + +We recommend that you upgrade your auth2db packages. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201757-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1757-1 (auth2db)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"auth2db", ver:"0.2.5-2+dfsg-1+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"auth2db-filters", ver:"0.2.5-2+dfsg-1+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"auth2db-common", ver:"0.2.5-2+dfsg-1+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"auth2db-frontend", ver:"0.2.5-2+dfsg-1+lenny1", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1758_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1758_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1758_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,88 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1758-1 (nss-ldapd) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63730); + script_cve_id("CVE-2009-1073"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1758-1 (nss-ldapd)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to nss-ldapd +announced via advisory DSA 1758-1. + +Leigh James that discovered that nss-ldapd, an NSS module for using +LDAP as a naming service, by default creates the configuration file +/etc/nss-ldapd.conf world-readable which could leak the configured +LDAP password if one is used for connecting to the LDAP server. + +The old stable distribution (etch) doesn't contain nss-ldapd. + +For the stable distribution (lenny) this problem has been fixed in +version 0.6.7.1. + +For the unstable distribution (sid) this problem has been fixed in +version 0.6.8. + +We recommend that you upgrade your nss-ldapd package. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201758-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1758-1 (nss-ldapd)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"libnss-ldapd", ver:"0.6.7.1", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1759_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1759_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1759_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,93 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1759-1 (strongswan) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63731); + script_cve_id("CVE-2009-0790"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1759-1 (strongswan)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to strongswan +announced via advisory DSA 1759-1. + + +Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an +IPSec implementation for linux, is prone to a denial of service attack +via a malicious packet. + + +For the stable distribution (lenny), this problem has been fixed in +version 4.2.4-5+lenny1. + +For the oldstable distribution (etch), this problem has been fixed in +version 2.8.0+dfsg-1+etch1. + +For the testing distribution (squeeze) and the unstable distribution +(sid), this problem will be fixed soon. + +We recommend that you upgrade your strongswan packages. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201759-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1759-1 (strongswan)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"strongswan", ver:"2.8.0+dfsg-1+etch1", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"strongswan", ver:"4.2.4-5+lenny1", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1760_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1760_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1760_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,117 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1760-1 (openswan) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63732); + script_cve_id("CVE-2008-4190", "CVE-2009-0790"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1760-1 (openswan)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to openswan +announced via advisory DSA 1760-1. + + +Two vulnerabilities have been discovered in openswan, an IPSec +implementation for linux. The Common Vulnerabilities and Exposures +project identifies the following problems: + + +CVE-2008-4190 + +Dmitry E. Oboukhov discovered that the livetest tool is using temporary +files insecurely, which could lead to a denial of service attack. + + +CVE-2009-0790 + +Gerd v. Egidy discovered that the Pluto IKE daemon in openswan is prone +to a denial of service attack via a malicious packet. + + +For the stable distribution (lenny), this problem has been fixed in +version 2.4.12+dfsg-1.3+lenny1. + +For the oldstable distribution (etch), this problem has been fixed in +version 2.4.6+dfsg.2-1.1+etch1. + +For the testing distribution (squeeze) and the unstable distribution +(sid), this problem will be fixed soon. + +We recommend that you upgrade your openswan packages. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201760-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1760-1 (openswan)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"linux-patch-openswan", ver:"2.4.6+dfsg.2-1.1+etch1", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openswan-modules-source", ver:"2.4.6+dfsg.2-1.1+etch1", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openswan", ver:"2.4.6+dfsg.2-1.1+etch1", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openswan-modules-source", ver:"2.4.12+dfsg-1.3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"linux-patch-openswan", ver:"2.4.12+dfsg-1.3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openswan", ver:"2.4.12+dfsg-1.3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1761_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1761_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1761_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,99 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1761-1 (moodle) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63734); + script_cve_id("CVE-2009-1171"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1761-1 (moodle)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to moodle +announced via advisory DSA 1761-1. + + +Christian J. Eibl discovered that the TeX filter of Moodle, a web-based +course management system, doesn't check user input for certain TeX commands +which allows an attacker to include and display the content of arbitrary system +files. + +Note that this doesn't affect installations that only use the mimetex +environment. + +For the oldstable distribution (etch), this problem has been fixed in +version 1.6.3-2+etch3. + +For the stable distribution (lenny), this problem has been fixed in +version 1.8.2.dfsg-3+lenny2. + +For the testing distribution (squeeze), this problem will be fixed soon. + +For the unstable distribution (sid), this problem has been fixed in +version 1.8.2.dfsg-5. + + +We recommend that you upgrade your moodle packages. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201761-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1761-1 (moodle)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"moodle", ver:"1.6.3-2+etch3", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"moodle", ver:"1.8.2.dfsg-3+lenny2", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/deb_1762_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/deb_1762_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/deb_1762_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,115 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory DSA 1762-1 (icu) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63733); + script_cve_id("CVE-2008-1036"); + script_version ("$"); + name["english"] = "Debian Security Advisory DSA 1762-1 (icu)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to icu +announced via advisory DSA 1762-1. + + +It was discovered that icu, the internal components for Unicode, did +not properly sanitise invalid encoded data, which could lead to cross- +site scripting attacks. + + +For the stable distribution (lenny), this problem has been fixed in +version 3.8.1-3+lenny1. + +For the oldstable distribution (etch), this problem has been fixed in +version 3.6-2etch2. + +For the testing distribution (squeeze) and the unstable distribution +(sid), this problem has been fixed in version 4.0.1-1. + + +We recommend that you upgrade your icu packages. + +Solution: +https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201762-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Debian Security Advisory DSA 1762-1 (icu)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Debian Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"icu-doc", ver:"3.6-2etch2", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36", ver:"3.6-2etch2", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36-dev", ver:"3.6-2etch2", rls:"DEB4.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu-dev", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38-dbg", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu-dev", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu38", ver:"3.8.1-3+lenny1", rls:"DEB5.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_2688.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_2688.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_2688.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,111 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-2688 (glib2) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63725); + script_cve_id("CVE-2008-4316"); + script_version ("$"); + name["english"] = "Fedora Core 9 FEDORA-2009-2688 (glib2)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to glib2 +announced via advisory FEDORA-2009-2688. + +GLib is the low-level core library that forms the basis +for projects such as GTK+ and GNOME. It provides data structure +handling for C, portability wrappers, and interfaces for such runtime +functionality as an event loop, threads, dynamic loading, and an +object system. + +This package provides version 2 of GLib. + +Update Information: + +This update fixes possible integer overflows in the base64 handling functions. +This has been reported in CVE-2008-4316. + +ChangeLog: + +* Thu Mar 12 2009 Matthias Clasen - 2.16.6-3 +- Fix integer overflows in the base64 handling functions. CVE-2008-4316 + +References: + +[ 1 ] Bug #474770 - CVE-2008-4316 glib2: integer overflows in the base64 handling functions (oCERT-2008-015) +https://bugzilla.redhat.com/show_bug.cgi?id=474770 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update glib2' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-2688 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 9 FEDORA-2009-2688 (glib2)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"glib2", rpm:"glib2~2.16.6~3.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib2-devel", rpm:"glib2-devel~2.16.6~3.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib2-static", rpm:"glib2-static~2.16.6~3.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib2-debuginfo", rpm:"glib2-debuginfo~2.16.6~3.fc9", rls:"FC9")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3099.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3099.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3099.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,104 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3099 (firefox) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63721); + script_cve_id("CVE-2009-1169", "CVE-2009-1044"); + script_version ("$"); + name["english"] = "Fedora Core 9 FEDORA-2009-3099 (firefox)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to firefox +announced via advisory FEDORA-2009-3099. + +Update Information: + +Mozilla Firefox is an open source Web browser. XULRunner provides the XUL +Runtime environment for Mozilla Firefox. A memory corruption flaw was +discovered in the way Firefox handles XML files containing an XSLT transform. A +remote attacker could use this flaw to crash Firefox or, potentially, execute +arbitrary code as the user running Firefox. (CVE-2009-1169) A flaw was +discovered in the way Firefox handles certain XUL garbage collection events. A +remote attacker could use this flaw to crash Firefox or, potentially, execute +arbitrary code as the user running Firefox. (CVE-2009-1044) + +This update also provides depending packages rebuilt against new Firefox +version. Miro updates to upstream 2.0.3. Provides new features and +fixes various bugs in 1.2.x series + +ChangeLog: + +* Fri Mar 27 2009 Christopher Aillon - 3.0.8-1 +- Update to 3.0.8 +* Wed Mar 4 2009 Jan Horak - 3.0.7-1 +- Update to 3.0.7 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update firefox' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3099 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 9 FEDORA-2009-3099 (firefox)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"firefox", rpm:"firefox~3.0.8~1.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-debuginfo", rpm:"firefox-debuginfo~3.0.8~1.fc9", rls:"FC9")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3100.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3100.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3100.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,99 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3100 (firefox) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63722); + script_cve_id("CVE-2009-1169", "CVE-2009-1044"); + script_version ("$"); + name["english"] = "Fedora Core 10 FEDORA-2009-3100 (firefox)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to firefox +announced via advisory FEDORA-2009-3100. + +Update Information: + +A memory corruption flaw was discovered in the way Firefox handles XML files +containing an XSLT transform. A remote attacker could use this flaw to crash +Firefox or, potentially, execute arbitrary code as the user running Firefox. +(CVE-2009-1169) A flaw was discovered in the way Firefox handles certain XUL +garbage collection events. A remote attacker could use this flaw to crash +Firefox or, potentially, execute arbitrary code as the user running Firefox. +(CVE-2009-1044) + +ChangeLog: + +* Fri Mar 27 2009 Christopher Aillon - 3.0.8-1 +- Update to 3.0.8 +* Wed Mar 4 2009 Jan Horak - 3.0.7-1 +- Update to 3.0.7 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update firefox' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3100 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 10 FEDORA-2009-3100 (firefox)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"firefox", rpm:"firefox~3.0.8~1.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-debuginfo", rpm:"firefox-debuginfo~3.0.8~1.fc10", rls:"FC10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3101.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3101.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3101.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,121 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3101 (seamonkey) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63723); + script_cve_id("CVE-2009-1044", "CVE-2009-1169", "CVE-2009-0776", "CVE-2009-0771", "CVE-2009-0772", "CVE-2009-0773", "CVE-2009-0774", "CVE-2009-0357", "CVE-2009-0352", "CVE-2009-0353"); + script_version ("$"); + name["english"] = "Fedora Core 9 FEDORA-2009-3101 (seamonkey)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to seamonkey +announced via advisory FEDORA-2009-3101. + +SeaMonkey is an all-in-one Internet application suite. It includes +a browser, mail/news client, IRC client, JavaScript debugger, and +a tool to inspect the DOM for web pages. It is derived from the +application formerly known as Mozilla Application Suite. + +Update Information: + +http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html + +ChangeLog: + +* Fri Mar 27 2009 Christopher Aillon - 1.15.1-3 +- Add patches for MFSA-2009-12, MFSA-2009-13 +* Wed Mar 25 2009 Christopher Aillon - 1.15.1-2 +- Update default homepage + +References: + +[ 1 ] Bug #492212 - CVE-2009-1044 Firefox XUL garbage collection issue (cansecwest pwn2own) +https://bugzilla.redhat.com/show_bug.cgi?id=492212 +[ 2 ] Bug #492211 - CVE-2009-1169 Firefox XSLT memory corruption issue +https://bugzilla.redhat.com/show_bug.cgi?id=492211 +[ 3 ] Bug #488290 - CVE-2009-0776 Firefox XML data theft via RDFXMLDataSource and cross-domain redirect +https://bugzilla.redhat.com/show_bug.cgi?id=488290 +[ 4 ] Bug #488272 - CVE-2009-0771 Firefox 3 Layout Engine Crashes +https://bugzilla.redhat.com/show_bug.cgi?id=488272 +[ 5 ] Bug #488273 - CVE-2009-0772 Firefox 2 and 3 - Layout engine crashes +https://bugzilla.redhat.com/show_bug.cgi?id=488273 +[ 6 ] Bug #488276 - CVE-2009-0773 Firefox 3 crashes in the JavaScript engine +https://bugzilla.redhat.com/show_bug.cgi?id=488276 +[ 7 ] Bug #488283 - CVE-2009-0774 Firefox 2 and 3 crashes in the JavaScript engine +https://bugzilla.redhat.com/show_bug.cgi?id=488283 +[ 8 ] Bug #483145 - CVE-2009-0357 Firefox XMLHttpRequest allows reading HTTPOnly cookies +https://bugzilla.redhat.com/show_bug.cgi?id=483145 +[ 9 ] Bug #483139 - CVE-2009-0352 Firefox layout crashes with evidence of memory corruption +https://bugzilla.redhat.com/show_bug.cgi?id=483139 +[ 10 ] Bug #483141 - CVE-2009-0353 Firefox javascript crashes with evidence of memory corruption +https://bugzilla.redhat.com/show_bug.cgi?id=483141 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update seamonkey' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3101 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 9 FEDORA-2009-3101 (seamonkey)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.1.15~3.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-debuginfo", rpm:"seamonkey-debuginfo~1.1.15~3.fc9", rls:"FC9")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3161.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3161.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3161.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,116 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3161 (seamonkey) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63724); + script_cve_id("CVE-2009-1044", "CVE-2009-1169", "CVE-2009-0776", "CVE-2009-0771", "CVE-2009-0772", "CVE-2009-0773", "CVE-2009-0774", "CVE-2009-0357", "CVE-2009-0352", "CVE-2009-0353"); + script_version ("$"); + name["english"] = "Fedora Core 10 FEDORA-2009-3161 (seamonkey)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to seamonkey +announced via advisory FEDORA-2009-3161. + +Update Information: + +http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html + +ChangeLog: + +* Fri Mar 27 2009 Christopher Aillon - 1.15.1-3 +- Add patches for MFSA-2009-12, MFSA-2009-13 +* Wed Mar 25 2009 Christopher Aillon - 1.15.1-2 +- Update default homepage + +References: + +[ 1 ] Bug #492212 - CVE-2009-1044 Firefox XUL garbage collection issue (cansecwest pwn2own) +https://bugzilla.redhat.com/show_bug.cgi?id=492212 +[ 2 ] Bug #492211 - CVE-2009-1169 Firefox XSLT memory corruption issue +https://bugzilla.redhat.com/show_bug.cgi?id=492211 +[ 3 ] Bug #488290 - CVE-2009-0776 Firefox XML data theft via RDFXMLDataSource and cross-domain redirect +https://bugzilla.redhat.com/show_bug.cgi?id=488290 +[ 4 ] Bug #488272 - CVE-2009-0771 Firefox 3 Layout Engine Crashes +https://bugzilla.redhat.com/show_bug.cgi?id=488272 +[ 5 ] Bug #488273 - CVE-2009-0772 Firefox 2 and 3 - Layout engine crashes +https://bugzilla.redhat.com/show_bug.cgi?id=488273 +[ 6 ] Bug #488276 - CVE-2009-0773 Firefox 3 crashes in the JavaScript engine +https://bugzilla.redhat.com/show_bug.cgi?id=488276 +[ 7 ] Bug #488283 - CVE-2009-0774 Firefox 2 and 3 crashes in the JavaScript engine +https://bugzilla.redhat.com/show_bug.cgi?id=488283 +[ 8 ] Bug #483145 - CVE-2009-0357 Firefox XMLHttpRequest allows reading HTTPOnly cookies +https://bugzilla.redhat.com/show_bug.cgi?id=483145 +[ 9 ] Bug #483139 - CVE-2009-0352 Firefox layout crashes with evidence of memory corruption +https://bugzilla.redhat.com/show_bug.cgi?id=483139 +[ 10 ] Bug #483141 - CVE-2009-0353 Firefox javascript crashes with evidence of memory corruption +https://bugzilla.redhat.com/show_bug.cgi?id=483141 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update seamonkey' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3161 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 10 FEDORA-2009-3161 (seamonkey)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.1.15~3.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-debuginfo", rpm:"seamonkey-debuginfo~1.1.15~3.fc10", rls:"FC10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3280.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3280.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3280.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,347 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3280 (moodle) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63726); + script_cve_id("CVE-2009-1171", "CVE-2009-0499", "CVE-2008-5153", "CVE-2008-4796"); + script_version ("$"); + name["english"] = "Fedora Core 10 FEDORA-2009-3280 (moodle)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to moodle +announced via advisory FEDORA-2009-3280. + +Moodle is a course management system (CMS) - a free, Open Source software +package designed using sound pedagogical principles, to help educators create +effective online learning communities. + +Update Information: + +CVE-2009-1171: The TeX filter in Moodle 1.6 before 1.6.9+, 1.7 before 1.7.7+, +1.8 before 1.8.9, and 1.9 before 1.9.5 allows user-assisted attackers to read +arbitrary files via an input command in a $$ sequence, which causes LaTeX to +include the contents of the file. + +Upstream bug and CVS commit: +http://tracker.moodle.org/browse/MDL-18552 +http://cvs.moodle.org/moodle/filter/tex/filter.php?r1=1.18.4.4&r2=1.18.4.5 + +References: +http://www.securityfocus.com/archive/1/archive/1/502231/100/0/threaded +http://www.securityfocus.com/bid/34278 +http://www.milw0rm.com/exploits/8297 + +Upstream further reported that the above patch is not sufficient and following +change should be used instead: + For >=1.9.0: http://git.catalyst.net.nz/gw?p=moodle-r2.git;a=commitdiff;h=b950f126018a9e16a298d278375a0eedf791e5dd + For 1.6.* - 1.8.*: http://git.catalyst.net.nz/gw?p=moodle-r2.git;a=commitdiff;h=cc9bf1486e7ea9e8cda1e4522b96e07245459a0d + +ChangeLog: + +* Wed Apr 1 2009 Jon Ciesla - 1.9.4-6 +- Patch for CVE-2009-1171, BZ 493109. +* Tue Mar 24 2009 Jon Ciesla - 1.9.4-5 +- Update for freefont->gnu-free-fonts change. + +References: + +[ 1 ] Bug #493109 - CVE-2009-1171 moodle: file disclosure flaw in TeX filter +https://bugzilla.redhat.com/show_bug.cgi?id=493109 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update moodle' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3280 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 10 FEDORA-2009-3280 (moodle)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"moodle", rpm:"moodle~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-af", rpm:"moodle-af~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ar", rpm:"moodle-ar~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-be", rpm:"moodle-be~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bg", rpm:"moodle-bg~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bn", rpm:"moodle-bn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bs", rpm:"moodle-bs~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ca", rpm:"moodle-ca~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-cs", rpm:"moodle-cs~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-cy", rpm:"moodle-cy~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-da", rpm:"moodle-da~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-de", rpm:"moodle-de~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-de_du", rpm:"moodle-de_du~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-el", rpm:"moodle-el~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-es", rpm:"moodle-es~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-et", rpm:"moodle-et~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-eu", rpm:"moodle-eu~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fa", rpm:"moodle-fa~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fi", rpm:"moodle-fi~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fil", rpm:"moodle-fil~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fr", rpm:"moodle-fr~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fr_ca", rpm:"moodle-fr_ca~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ga", rpm:"moodle-ga~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-gl", rpm:"moodle-gl~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-gu", rpm:"moodle-gu~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-he", rpm:"moodle-he~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hi", rpm:"moodle-hi~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hr", rpm:"moodle-hr~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hu", rpm:"moodle-hu~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hy", rpm:"moodle-hy~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-id", rpm:"moodle-id~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-is", rpm:"moodle-is~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-it", rpm:"moodle-it~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ja", rpm:"moodle-ja~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ka", rpm:"moodle-ka~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-kk", rpm:"moodle-kk~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-km", rpm:"moodle-km~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-kn", rpm:"moodle-kn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ko", rpm:"moodle-ko~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lo", rpm:"moodle-lo~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lt", rpm:"moodle-lt~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lv", rpm:"moodle-lv~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mi_tn", rpm:"moodle-mi_tn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mi_wwow", rpm:"moodle-mi_wwow~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mk", rpm:"moodle-mk~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ml", rpm:"moodle-ml~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mn", rpm:"moodle-mn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ms", rpm:"moodle-ms~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-nl", rpm:"moodle-nl~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-nn", rpm:"moodle-nn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-no", rpm:"moodle-no~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-no_gr", rpm:"moodle-no_gr~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pl", rpm:"moodle-pl~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pt", rpm:"moodle-pt~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pt_br", rpm:"moodle-pt_br~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ro", rpm:"moodle-ro~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ru", rpm:"moodle-ru~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-si", rpm:"moodle-si~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sk", rpm:"moodle-sk~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sl", rpm:"moodle-sl~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sm", rpm:"moodle-sm~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-so", rpm:"moodle-so~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sq", rpm:"moodle-sq~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_cr", rpm:"moodle-sr_cr~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_cr_bo", rpm:"moodle-sr_cr_bo~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_lt", rpm:"moodle-sr_lt~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sv", rpm:"moodle-sv~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ta", rpm:"moodle-ta~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ta_lk", rpm:"moodle-ta_lk~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-th", rpm:"moodle-th~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-tl", rpm:"moodle-tl~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-to", rpm:"moodle-to~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-tr", rpm:"moodle-tr~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-uk", rpm:"moodle-uk~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-uz", rpm:"moodle-uz~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-vi", rpm:"moodle-vi~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-zh_cn", rpm:"moodle-zh_cn~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-zh_tw", rpm:"moodle-zh_tw~1.9.4~6.fc10", rls:"FC10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/fcore_2009_3283.nasl =================================================================== --- trunk/openvas-plugins/scripts/fcore_2009_3283.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/fcore_2009_3283.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,347 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory FEDORA-2009-3283 (moodle) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63727); + script_cve_id("CVE-2009-1171", "CVE-2009-0499", "CVE-2008-5153", "CVE-2008-4796"); + script_version ("$"); + name["english"] = "Fedora Core 9 FEDORA-2009-3283 (moodle)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to moodle +announced via advisory FEDORA-2009-3283. + +Moodle is a course management system (CMS) - a free, Open Source software +package designed using sound pedagogical principles, to help educators create +effective online learning communities. + +Update Information: + +CVE-2009-1171: The TeX filter in Moodle 1.6 before 1.6.9+, 1.7 before 1.7.7+, +1.8 before 1.8.9, and 1.9 before 1.9.5 allows user-assisted attackers to read +arbitrary files via an input command in a $$ sequence, which causes LaTeX to +include the contents of the file. + +Upstream bug and CVS commit: +http://tracker.moodle.org/browse/MDL-18552 +http://cvs.moodle.org/moodle/filter/tex/filter.php?r1=1.18.4.4&r2=1.18.4.5 + +References: +http://www.securityfocus.com/archive/1/archive/1/502231/100/0/threaded +http://www.securityfocus.com/bid/34278 +http://www.milw0rm.com/exploits/8297 + +Upstream further reported that the above patch is not sufficient and following +change should be used instead: + For >=1.9.0: http://git.catalyst.net.nz/gw?p=moodle-r2.git;a=commitdiff;h=b950f126018a9e16a298d278375a0eedf791e5dd + For 1.6.* - 1.8.*: http://git.catalyst.net.nz/gw?p=moodle-r2.git;a=commitdiff;h=cc9bf1486e7ea9e8cda1e4522b96e07245459a0d + +ChangeLog: + +* Wed Apr 1 2009 Jon Ciesla - 1.9.4-6 +- Patch for CVE-2009-1171, BZ 493109. +* Tue Mar 24 2009 Jon Ciesla - 1.9.4-5 +- Update for freefont->gnu-free-fonts change. + +References: + +[ 1 ] Bug #493109 - CVE-2009-1171 moodle: file disclosure flaw in TeX filter +https://bugzilla.redhat.com/show_bug.cgi?id=493109 + +Solution: Apply the appropriate updates. + +This update can be installed with the yum update program. Use +su -c 'yum update moodle' at the command line. +For more information, refer to Managing Software with yum, +available at http://docs.fedoraproject.org/yum/. + +https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3283 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Fedora Core 9 FEDORA-2009-3283 (moodle)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Fedora Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"moodle", rpm:"moodle~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-af", rpm:"moodle-af~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ar", rpm:"moodle-ar~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-be", rpm:"moodle-be~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bg", rpm:"moodle-bg~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bn", rpm:"moodle-bn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-bs", rpm:"moodle-bs~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ca", rpm:"moodle-ca~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-cs", rpm:"moodle-cs~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-cy", rpm:"moodle-cy~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-da", rpm:"moodle-da~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-de", rpm:"moodle-de~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-de_du", rpm:"moodle-de_du~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-el", rpm:"moodle-el~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-es", rpm:"moodle-es~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-et", rpm:"moodle-et~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-eu", rpm:"moodle-eu~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fa", rpm:"moodle-fa~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fi", rpm:"moodle-fi~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fil", rpm:"moodle-fil~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fr", rpm:"moodle-fr~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-fr_ca", rpm:"moodle-fr_ca~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ga", rpm:"moodle-ga~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-gl", rpm:"moodle-gl~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-gu", rpm:"moodle-gu~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-he", rpm:"moodle-he~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hi", rpm:"moodle-hi~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hr", rpm:"moodle-hr~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hu", rpm:"moodle-hu~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-hy", rpm:"moodle-hy~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-id", rpm:"moodle-id~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-is", rpm:"moodle-is~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-it", rpm:"moodle-it~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ja", rpm:"moodle-ja~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ka", rpm:"moodle-ka~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-kk", rpm:"moodle-kk~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-km", rpm:"moodle-km~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-kn", rpm:"moodle-kn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ko", rpm:"moodle-ko~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lo", rpm:"moodle-lo~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lt", rpm:"moodle-lt~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-lv", rpm:"moodle-lv~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mi_tn", rpm:"moodle-mi_tn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mi_wwow", rpm:"moodle-mi_wwow~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mk", rpm:"moodle-mk~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ml", rpm:"moodle-ml~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-mn", rpm:"moodle-mn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ms", rpm:"moodle-ms~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-nl", rpm:"moodle-nl~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-nn", rpm:"moodle-nn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-no", rpm:"moodle-no~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-no_gr", rpm:"moodle-no_gr~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pl", rpm:"moodle-pl~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pt", rpm:"moodle-pt~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-pt_br", rpm:"moodle-pt_br~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ro", rpm:"moodle-ro~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ru", rpm:"moodle-ru~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-si", rpm:"moodle-si~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sk", rpm:"moodle-sk~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sl", rpm:"moodle-sl~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sm", rpm:"moodle-sm~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-so", rpm:"moodle-so~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sq", rpm:"moodle-sq~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_cr", rpm:"moodle-sr_cr~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_cr_bo", rpm:"moodle-sr_cr_bo~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sr_lt", rpm:"moodle-sr_lt~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-sv", rpm:"moodle-sv~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ta", rpm:"moodle-ta~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-ta_lk", rpm:"moodle-ta_lk~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-th", rpm:"moodle-th~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-tl", rpm:"moodle-tl~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-to", rpm:"moodle-to~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-tr", rpm:"moodle-tr~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-uk", rpm:"moodle-uk~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-uz", rpm:"moodle-uz~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-vi", rpm:"moodle-vi~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-zh_cn", rpm:"moodle-zh_cn~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} +if(isrpmvuln(pkg:"moodle-zh_tw", rpm:"moodle-zh_tw~1.9.4~6.fc9", rls:"FC9")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200903_40.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200903_40.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200903_40.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,86 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63737); + script_cve_id("CVE-2008-1372"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200903-40 (analog)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200903-40. + +A Denial of Service vulnerability was discovered in Analog. + +Solution: +All Analog users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=app-admin/analog-6.0-r2' + +NOTE: Analog is now linked against the system bzip2 library. + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200903-40 +http://bugs.gentoo.org/show_bug.cgi?id=249140 +http://www.gentoo.org/security/en/glsa/glsa-200804-02.xml + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200903-40 (analog)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"app-admin/analog", unaffected: make_list("ge 6.0-r2"), vulnerable: make_list("lt 6.0-r2"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200903_41.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200903_41.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200903_41.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,89 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63738); + script_cve_id("CVE-2008-5983", "CVE-2009-0314"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200903-41 (gedit)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200903-41. + +A vulnerability in gedit might allow local attackers to execute arbitrary +code. + +Solution: +All gedit 2.22.x users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=app-editors/gedit-2.22.3-r1' + +All gedit 2.24.x users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=app-editors/gedit-2.24.3' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200903-41 +http://bugs.gentoo.org/show_bug.cgi?id=257004 + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200903-41 (gedit)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"app-editors/gedit", unaffected: make_list("rge 2.22.3-r1", "ge 2.24.3"), vulnerable: make_list("lt 2.24.3"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200904_01.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200904_01.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200904_01.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,85 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63739); + script_cve_id("CVE-2008-6508", "CVE-2008-6509", "CVE-2008-6510", "CVE-2008-6511", "CVE-2009-0496", "CVE-2009-0497"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200904-01 (openfire)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200904-01. + +Multiple vulnerabilities were discovered in Openfire, the worst of which +may allow remote execution of arbitrary code. + +Solution: +All Openfire users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=net-im/openfire-3.6.3' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-01 +http://bugs.gentoo.org/show_bug.cgi?id=246008 +http://bugs.gentoo.org/show_bug.cgi?id=254309 + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200904-01 (openfire)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"net-im/openfire", unaffected: make_list("ge 3.6.3"), vulnerable: make_list("lt 3.6.3"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200904_02.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200904_02.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200904_02.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,89 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63740); + script_cve_id("CVE-2008-4316"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200904-02 (glib)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200904-02. + +Multiple integer overflows might allow for the execution of arbitrary code +when performing base64 conversion. + +Solution: +All GLib 2.18 users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=dev-libs/glib-2.18.4-r1' + +All GLib 2.16 users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=dev-libs/glib-2.16.6-r1' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-02 +http://bugs.gentoo.org/show_bug.cgi?id=249214 + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200904-02 (glib)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"dev-libs/glib", unaffected: make_list("ge 2.18.4-r1", "rge 2.16.6-r1", "lt 2"), vulnerable: make_list("lt 2.18.4-r1"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200904_03.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200904_03.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200904_03.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,84 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63741); + script_cve_id("CVE-2009-0318"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200904-03 (gnumeric)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200904-03. + +An untrusted search path vulnerability in Gnumeric might result in the +execution of arbitrary code. + +Solution: +All Gnumeric users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=app-office/gnumeric-1.8.4-r1' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-03 +http://bugs.gentoo.org/show_bug.cgi?id=257012 + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200904-03 (gnumeric)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"app-office/gnumeric", unaffected: make_list("ge 1.8.4-r1"), vulnerable: make_list("lt 1.8.4-r1"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200904_04.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200904_04.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200904_04.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,83 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63742); + script_cve_id("CVE-2009-0661"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200904-04 (weechat)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200904-04. + +A processing error in WeeChat might lead to a Denial of Service. + +Solution: +All WeeChat users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=net-irc/weechat-0.2.6.1' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-04 +http://bugs.gentoo.org/show_bug.cgi?id=262997 + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200904-04 (weechat)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"net-irc/weechat", unaffected: make_list("ge 0.2.6.1"), vulnerable: make_list("lt 0.2.6.1"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/glsa_200904_05.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200904_05.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/glsa_200904_05.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,85 @@ +# +# OpenVAS Vulnerability Test +# $ +# Description: Auto generated from Gentoo's XML based advisory +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisories, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + + +if(description) +{ + script_id(63743); + script_cve_id("CVE-2008-5077", "CVE-2009-0021"); + script_version ("$"); + name["english"] = "Gentoo Security Advisory GLSA 200904-05 (ntp)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory GLSA 200904-05. + +An error in the OpenSSL certificate chain validation in ntp might allow for +spoofing attacks. + +Solution: +All ntp users should upgrade to the latest version: + + # emerge --sync + # emerge --ask --oneshot --verbose '>=net-misc/ntp-4.2.4_p6' + +http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-05 +http://bugs.gentoo.org/show_bug.cgi?id=254098 +http://www.gentoo.org/security/en/glsa/glsa-200902-02.xml + +Risk factor : Medium"; + + script_description(english:desc["english"]); + + summary["english"] = "Gentoo Security Advisory GLSA 200904-05 (ntp)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Gentoo Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/gentoo"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-gentoo.inc"); +vuln = 0; +if(ispkgvuln(pkg:"net-misc/ntp", unaffected: make_list("ge 4.2.4_p6"), vulnerable: make_list("lt 4.2.4_p6"))) { + vuln=1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_080.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_080.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_080.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,149 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:080 (glib2.0) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63713); + script_cve_id("CVE-2008-4316"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:080 (glib2.0)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to glib2.0 +announced via advisory MDVSA-2009:080. + +Multiple integer overflows in GLib's Base64 encoding and decoding +functions enable attackers (possibly remote ones, depending on +the applications glib2 is linked against with - mostly GNOME ones) +either to cause denial of service and to execute arbitrary code via +an untrusted input (CVE-2008-4316). + +This update provide the fix for that security issue. + +Affected: 2008.0, 2008.1, 2009.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:080 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:080 (glib2.0)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"glib2.0-common", rpm:"glib2.0-common~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib-gettextize", rpm:"glib-gettextize~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0_0", rpm:"libglib2.0_0~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0_0-devel", rpm:"libglib2.0_0-devel~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0_0", rpm:"lib64glib2.0_0~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0_0-devel", rpm:"lib64glib2.0_0-devel~2.14.1~2.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib2.0-common", rpm:"glib2.0-common~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib-gettextize", rpm:"glib-gettextize~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgio2.0_0", rpm:"libgio2.0_0~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0_0", rpm:"libglib2.0_0~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0-devel", rpm:"libglib2.0-devel~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gio2.0_0", rpm:"lib64gio2.0_0~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0_0", rpm:"lib64glib2.0_0~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0-devel", rpm:"lib64glib2.0-devel~2.16.2~1.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib2.0-common", rpm:"glib2.0-common~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"glib-gettextize", rpm:"glib-gettextize~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgio2.0_0", rpm:"libgio2.0_0~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0_0", rpm:"libglib2.0_0~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libglib2.0-devel", rpm:"libglib2.0-devel~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gio2.0_0", rpm:"lib64gio2.0_0~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0_0", rpm:"lib64glib2.0_0~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64glib2.0-devel", rpm:"lib64glib2.0-devel~2.18.1~1.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_081.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_081.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_081.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,108 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:081 (libsoup) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63714); + script_cve_id("CVE-2009-0585"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:081 (libsoup)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to libsoup +announced via advisory MDVSA-2009:081. + +An integer overflow in libsoup Base64 encoding and decoding functions +enables attackers either to cause denial of service and to execute +arbitrary code (CVE-2009-0585). + +This update provides the fix for that security issue. + +Affected: 2008.0, Corporate 3.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:081 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:081 (libsoup)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"libsoup-2.2_8", rpm:"libsoup-2.2_8~2.2.100~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsoup-2.2_8-devel", rpm:"libsoup-2.2_8-devel~2.2.100~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64soup-2.2_8", rpm:"lib64soup-2.2_8~2.2.100~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64soup-2.2_8-devel", rpm:"lib64soup-2.2_8-devel~2.2.100~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsoup", rpm:"libsoup~1.99.28~1.2.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsoup-2.0_0", rpm:"libsoup-2.0_0~1.99.28~1.2.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsoup-2.0_0-devel", rpm:"libsoup-2.0_0-devel~1.99.28~1.2.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64soup-2.0_0", rpm:"lib64soup-2.0_0~1.99.28~1.2.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64soup-2.0_0-devel", rpm:"lib64soup-2.0_0-devel~1.99.28~1.2.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_082.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_082.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_082.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,183 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:082 (krb5) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63715); + script_cve_id("CVE-2009-0845"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:082 (krb5)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to krb5 +announced via advisory MDVSA-2009:082. + +The spnego_gss_accept_sec_context function in +lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.6.3, +when SPNEGO is used, allows remote attackers to cause a denial of +service (NULL pointer dereference and application crash) via invalid +ContextFlags data in the reqFlags field in a negTokenInit token +(CVE-2009-0845). + +This update provides the fix for that security issue. + +Affected: 2008.0, 2008.1, 2009.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:082 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:082 (krb5)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"ftp-client-krb5", rpm:"ftp-client-krb5~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"ftp-server-krb5", rpm:"ftp-server-krb5~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5", rpm:"krb5~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-server", rpm:"krb5-server~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-workstation", rpm:"krb5-workstation~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53", rpm:"libkrb53~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53-devel", rpm:"libkrb53-devel~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-client-krb5", rpm:"telnet-client-krb5~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-server-krb5", rpm:"telnet-server-krb5~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53", rpm:"lib64krb53~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53-devel", rpm:"lib64krb53-devel~1.6.2~7.2mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"ftp-client-krb5", rpm:"ftp-client-krb5~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"ftp-server-krb5", rpm:"ftp-server-krb5~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5", rpm:"krb5~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-server", rpm:"krb5-server~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-workstation", rpm:"krb5-workstation~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53", rpm:"libkrb53~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53-devel", rpm:"libkrb53-devel~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-client-krb5", rpm:"telnet-client-krb5~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-server-krb5", rpm:"telnet-server-krb5~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53", rpm:"lib64krb53~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53-devel", rpm:"lib64krb53-devel~1.6.3~6.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"ftp-client-krb5", rpm:"ftp-client-krb5~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"ftp-server-krb5", rpm:"ftp-server-krb5~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5", rpm:"krb5~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-server", rpm:"krb5-server~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"krb5-workstation", rpm:"krb5-workstation~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53", rpm:"libkrb53~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libkrb53-devel", rpm:"libkrb53-devel~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-client-krb5", rpm:"telnet-client-krb5~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"telnet-server-krb5", rpm:"telnet-server-krb5~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53", rpm:"lib64krb53~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64krb53-devel", rpm:"lib64krb53-devel~1.6.3~6.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_083.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_083.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_083.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,767 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:083 (mozilla-thunderbird) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63717); + script_cve_id("CVE-2009-0040", "CVE-2009-0776", "CVE-2009-0771", "CVE-2009-0772", "CVE-2009-0773", "CVE-2009-0774", "CVE-2009-0352", "CVE-2009-0353"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:083 (mozilla-thunderbird)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to mozilla-thunderbird +announced via advisory MDVSA-2009:083. + +A number of security vulnerabilities have been discovered in previous +versions, and corrected in the latest Mozilla Thunderbird program, +version 2.0.0.21 (CVE-2009-0040, CVE-2009-0776, CVE-2009-0771, +CVE-2009-0772, CVE-2009-0773, CVE-2009-0774, CVE-2009-0352, +CVE-2009-0353). + +This update provides the latest Thunderbird to correct these issues. + +Additionaly, Mozilla Thunderbird released with Mandriva Linux 2009.0, +when used with Enigmail extension on x86_64 architechture, would freeze +whenever any Enigmail function was used (bug #45001). Also, when used +on i586 architecture, Thunderbird would crash when sending an email, +if a file with an unknown extension was attached to it. (bug #46107) + +This update also fixes those issues. + +Affected: 2008.1, 2009.0, Corporate 3.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:083 +http://www.mozilla.org/security/known-vulnerabilities/thunderbird20.html#thunderbird2.0.0.21 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:083 (mozilla-thunderbird)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"beagle", rpm:"beagle~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-crawl-system", rpm:"beagle-crawl-system~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-doc", rpm:"beagle-doc~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-epiphany", rpm:"beagle-epiphany~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-evolution", rpm:"beagle-evolution~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-gui", rpm:"beagle-gui~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-beagle", rpm:"mozilla-firefox-ext-beagle~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird", rpm:"mozilla-thunderbird~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-af", rpm:"mozilla-thunderbird-af~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-be", rpm:"mozilla-thunderbird-be~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-beagle", rpm:"mozilla-thunderbird-beagle~0.3.3~7.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-bg", rpm:"mozilla-thunderbird-bg~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ca", rpm:"mozilla-thunderbird-ca~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-cs", rpm:"mozilla-thunderbird-cs~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-da", rpm:"mozilla-thunderbird-da~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-de", rpm:"mozilla-thunderbird-de~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-devel", rpm:"mozilla-thunderbird-devel~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-el", rpm:"mozilla-thunderbird-el~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-en_GB", rpm:"mozilla-thunderbird-en_GB~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail", rpm:"mozilla-thunderbird-enigmail~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ar", rpm:"mozilla-thunderbird-enigmail-ar~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ca", rpm:"mozilla-thunderbird-enigmail-ca~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-cs", rpm:"mozilla-thunderbird-enigmail-cs~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-de", rpm:"mozilla-thunderbird-enigmail-de~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-el", rpm:"mozilla-thunderbird-enigmail-el~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es", rpm:"mozilla-thunderbird-enigmail-es~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es_AR", rpm:"mozilla-thunderbird-enigmail-es_AR~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fi", rpm:"mozilla-thunderbird-enigmail-fi~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fr", rpm:"mozilla-thunderbird-enigmail-fr~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-hu", rpm:"mozilla-thunderbird-enigmail-hu~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-it", rpm:"mozilla-thunderbird-enigmail-it~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ja", rpm:"mozilla-thunderbird-enigmail-ja~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ko", rpm:"mozilla-thunderbird-enigmail-ko~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nb", rpm:"mozilla-thunderbird-enigmail-nb~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nl", rpm:"mozilla-thunderbird-enigmail-nl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pl", rpm:"mozilla-thunderbird-enigmail-pl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt", rpm:"mozilla-thunderbird-enigmail-pt~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt_BR", rpm:"mozilla-thunderbird-enigmail-pt_BR~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ro", rpm:"mozilla-thunderbird-enigmail-ro~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ru", rpm:"mozilla-thunderbird-enigmail-ru~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sk", rpm:"mozilla-thunderbird-enigmail-sk~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sl", rpm:"mozilla-thunderbird-enigmail-sl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sv", rpm:"mozilla-thunderbird-enigmail-sv~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-tr", rpm:"mozilla-thunderbird-enigmail-tr~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_CN", rpm:"mozilla-thunderbird-enigmail-zh_CN~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_TW", rpm:"mozilla-thunderbird-enigmail-zh_TW~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_AR", rpm:"mozilla-thunderbird-es_AR~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_ES", rpm:"mozilla-thunderbird-es_ES~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-et_EE", rpm:"mozilla-thunderbird-et_EE~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-eu", rpm:"mozilla-thunderbird-eu~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fi", rpm:"mozilla-thunderbird-fi~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fr", rpm:"mozilla-thunderbird-fr~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ga", rpm:"mozilla-thunderbird-ga~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-gu_IN", rpm:"mozilla-thunderbird-gu_IN~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-he", rpm:"mozilla-thunderbird-he~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-hu", rpm:"mozilla-thunderbird-hu~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-it", rpm:"mozilla-thunderbird-it~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ja", rpm:"mozilla-thunderbird-ja~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ko", rpm:"mozilla-thunderbird-ko~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-lt", rpm:"mozilla-thunderbird-lt~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-mk", rpm:"mozilla-thunderbird-mk~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-moztraybiff", rpm:"mozilla-thunderbird-moztraybiff~1.2.3~4.5mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nb_NO", rpm:"mozilla-thunderbird-nb_NO~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nl", rpm:"mozilla-thunderbird-nl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nn_NO", rpm:"mozilla-thunderbird-nn_NO~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pa_IN", rpm:"mozilla-thunderbird-pa_IN~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pl", rpm:"mozilla-thunderbird-pl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_BR", rpm:"mozilla-thunderbird-pt_BR~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_PT", rpm:"mozilla-thunderbird-pt_PT~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ru", rpm:"mozilla-thunderbird-ru~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sk", rpm:"mozilla-thunderbird-sk~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sl", rpm:"mozilla-thunderbird-sl~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sv_SE", rpm:"mozilla-thunderbird-sv_SE~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-tr", rpm:"mozilla-thunderbird-tr~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-uk", rpm:"mozilla-thunderbird-uk~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_CN", rpm:"mozilla-thunderbird-zh_CN~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_TW", rpm:"mozilla-thunderbird-zh_TW~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"nsinstall", rpm:"nsinstall~2.0.0.21~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle", rpm:"beagle~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-crawl-system", rpm:"beagle-crawl-system~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-doc", rpm:"beagle-doc~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-epiphany", rpm:"beagle-epiphany~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-evolution", rpm:"beagle-evolution~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-gui", rpm:"beagle-gui~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-gui-qt", rpm:"beagle-gui-qt~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-libs", rpm:"beagle-libs~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ext-beagle", rpm:"firefox-ext-beagle~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird", rpm:"mozilla-thunderbird~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-af", rpm:"mozilla-thunderbird-af~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-be", rpm:"mozilla-thunderbird-be~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-beagle", rpm:"mozilla-thunderbird-beagle~0.3.8~13.8mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-bg", rpm:"mozilla-thunderbird-bg~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ca", rpm:"mozilla-thunderbird-ca~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-cs", rpm:"mozilla-thunderbird-cs~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-da", rpm:"mozilla-thunderbird-da~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-de", rpm:"mozilla-thunderbird-de~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-devel", rpm:"mozilla-thunderbird-devel~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-el", rpm:"mozilla-thunderbird-el~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-en_GB", rpm:"mozilla-thunderbird-en_GB~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail", rpm:"mozilla-thunderbird-enigmail~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ar", rpm:"mozilla-thunderbird-enigmail-ar~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ca", rpm:"mozilla-thunderbird-enigmail-ca~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-cs", rpm:"mozilla-thunderbird-enigmail-cs~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-de", rpm:"mozilla-thunderbird-enigmail-de~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-el", rpm:"mozilla-thunderbird-enigmail-el~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es", rpm:"mozilla-thunderbird-enigmail-es~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es_AR", rpm:"mozilla-thunderbird-enigmail-es_AR~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fi", rpm:"mozilla-thunderbird-enigmail-fi~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fr", rpm:"mozilla-thunderbird-enigmail-fr~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-hu", rpm:"mozilla-thunderbird-enigmail-hu~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-it", rpm:"mozilla-thunderbird-enigmail-it~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ja", rpm:"mozilla-thunderbird-enigmail-ja~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ko", rpm:"mozilla-thunderbird-enigmail-ko~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nb", rpm:"mozilla-thunderbird-enigmail-nb~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nl", rpm:"mozilla-thunderbird-enigmail-nl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pl", rpm:"mozilla-thunderbird-enigmail-pl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt", rpm:"mozilla-thunderbird-enigmail-pt~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt_BR", rpm:"mozilla-thunderbird-enigmail-pt_BR~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ro", rpm:"mozilla-thunderbird-enigmail-ro~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ru", rpm:"mozilla-thunderbird-enigmail-ru~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sk", rpm:"mozilla-thunderbird-enigmail-sk~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sl", rpm:"mozilla-thunderbird-enigmail-sl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sv", rpm:"mozilla-thunderbird-enigmail-sv~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-tr", rpm:"mozilla-thunderbird-enigmail-tr~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_CN", rpm:"mozilla-thunderbird-enigmail-zh_CN~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_TW", rpm:"mozilla-thunderbird-enigmail-zh_TW~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_AR", rpm:"mozilla-thunderbird-es_AR~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_ES", rpm:"mozilla-thunderbird-es_ES~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-et_EE", rpm:"mozilla-thunderbird-et_EE~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-eu", rpm:"mozilla-thunderbird-eu~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fi", rpm:"mozilla-thunderbird-fi~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fr", rpm:"mozilla-thunderbird-fr~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ga", rpm:"mozilla-thunderbird-ga~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-gu_IN", rpm:"mozilla-thunderbird-gu_IN~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-he", rpm:"mozilla-thunderbird-he~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-hu", rpm:"mozilla-thunderbird-hu~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-it", rpm:"mozilla-thunderbird-it~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ja", rpm:"mozilla-thunderbird-ja~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ko", rpm:"mozilla-thunderbird-ko~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-lt", rpm:"mozilla-thunderbird-lt~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-mk", rpm:"mozilla-thunderbird-mk~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-moztraybiff", rpm:"mozilla-thunderbird-moztraybiff~1.2.4~1.3mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nb_NO", rpm:"mozilla-thunderbird-nb_NO~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nl", rpm:"mozilla-thunderbird-nl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nn_NO", rpm:"mozilla-thunderbird-nn_NO~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pa_IN", rpm:"mozilla-thunderbird-pa_IN~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pl", rpm:"mozilla-thunderbird-pl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_BR", rpm:"mozilla-thunderbird-pt_BR~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_PT", rpm:"mozilla-thunderbird-pt_PT~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ru", rpm:"mozilla-thunderbird-ru~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sk", rpm:"mozilla-thunderbird-sk~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sl", rpm:"mozilla-thunderbird-sl~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sv_SE", rpm:"mozilla-thunderbird-sv_SE~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-tr", rpm:"mozilla-thunderbird-tr~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-uk", rpm:"mozilla-thunderbird-uk~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_CN", rpm:"mozilla-thunderbird-zh_CN~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_TW", rpm:"mozilla-thunderbird-zh_TW~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"nsinstall", rpm:"nsinstall~2.0.0.21~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird", rpm:"mozilla-thunderbird~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-af", rpm:"mozilla-thunderbird-af~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-be", rpm:"mozilla-thunderbird-be~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-bg", rpm:"mozilla-thunderbird-bg~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ca", rpm:"mozilla-thunderbird-ca~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-cs", rpm:"mozilla-thunderbird-cs~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-da", rpm:"mozilla-thunderbird-da~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-de", rpm:"mozilla-thunderbird-de~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-devel", rpm:"mozilla-thunderbird-devel~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-el", rpm:"mozilla-thunderbird-el~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-en_GB", rpm:"mozilla-thunderbird-en_GB~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail", rpm:"mozilla-thunderbird-enigmail~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ar", rpm:"mozilla-thunderbird-enigmail-ar~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ca", rpm:"mozilla-thunderbird-enigmail-ca~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-cs", rpm:"mozilla-thunderbird-enigmail-cs~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-de", rpm:"mozilla-thunderbird-enigmail-de~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-el", rpm:"mozilla-thunderbird-enigmail-el~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es", rpm:"mozilla-thunderbird-enigmail-es~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-es_AR", rpm:"mozilla-thunderbird-enigmail-es_AR~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fi", rpm:"mozilla-thunderbird-enigmail-fi~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-fr", rpm:"mozilla-thunderbird-enigmail-fr~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-hu", rpm:"mozilla-thunderbird-enigmail-hu~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-it", rpm:"mozilla-thunderbird-enigmail-it~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ja", rpm:"mozilla-thunderbird-enigmail-ja~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ko", rpm:"mozilla-thunderbird-enigmail-ko~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nb", rpm:"mozilla-thunderbird-enigmail-nb~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-nl", rpm:"mozilla-thunderbird-enigmail-nl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pl", rpm:"mozilla-thunderbird-enigmail-pl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt", rpm:"mozilla-thunderbird-enigmail-pt~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-pt_BR", rpm:"mozilla-thunderbird-enigmail-pt_BR~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ro", rpm:"mozilla-thunderbird-enigmail-ro~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-ru", rpm:"mozilla-thunderbird-enigmail-ru~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sk", rpm:"mozilla-thunderbird-enigmail-sk~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sl", rpm:"mozilla-thunderbird-enigmail-sl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-sv", rpm:"mozilla-thunderbird-enigmail-sv~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_CN", rpm:"mozilla-thunderbird-enigmail-zh_CN~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-enigmail-zh_TW", rpm:"mozilla-thunderbird-enigmail-zh_TW~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_AR", rpm:"mozilla-thunderbird-es_AR~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-es_ES", rpm:"mozilla-thunderbird-es_ES~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-et_EE", rpm:"mozilla-thunderbird-et_EE~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-eu", rpm:"mozilla-thunderbird-eu~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fi", rpm:"mozilla-thunderbird-fi~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-fr", rpm:"mozilla-thunderbird-fr~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-gu_IN", rpm:"mozilla-thunderbird-gu_IN~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-he", rpm:"mozilla-thunderbird-he~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-hu", rpm:"mozilla-thunderbird-hu~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-it", rpm:"mozilla-thunderbird-it~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ja", rpm:"mozilla-thunderbird-ja~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ko", rpm:"mozilla-thunderbird-ko~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-lt", rpm:"mozilla-thunderbird-lt~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-mk", rpm:"mozilla-thunderbird-mk~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nb_NO", rpm:"mozilla-thunderbird-nb_NO~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nl", rpm:"mozilla-thunderbird-nl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-nn_NO", rpm:"mozilla-thunderbird-nn_NO~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pa_IN", rpm:"mozilla-thunderbird-pa_IN~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pl", rpm:"mozilla-thunderbird-pl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_BR", rpm:"mozilla-thunderbird-pt_BR~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-pt_PT", rpm:"mozilla-thunderbird-pt_PT~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-ru", rpm:"mozilla-thunderbird-ru~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sk", rpm:"mozilla-thunderbird-sk~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sl", rpm:"mozilla-thunderbird-sl~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-sv_SE", rpm:"mozilla-thunderbird-sv_SE~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-tr", rpm:"mozilla-thunderbird-tr~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-uk", rpm:"mozilla-thunderbird-uk~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_CN", rpm:"mozilla-thunderbird-zh_CN~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-zh_TW", rpm:"mozilla-thunderbird-zh_TW~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"nsinstall", rpm:"nsinstall~2.0.0.21~0.1.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_084.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_084.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_084.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,677 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:084 (firefox) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63716); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:084 (firefox)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to firefox +announced via advisory MDVSA-2009:084. + +Security vulnerabilities have been discovered in previous versions, +and corrected in the latest Mozilla Firefox 3.x, version 3.0.8 +(CVE-2009-1044, CVE-2009-1169). + +This update provides the latest Mozilla Firefox 3.x to correct +these issues. + +Additionally, some packages requiring it have also been rebuilt and +are being provided as updates. + +Affected: 2008.1, 2009.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:084 +http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.8 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:084 (firefox)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"devhelp", rpm:"devhelp~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"devhelp-plugins", rpm:"devhelp-plugins~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"epiphany", rpm:"epiphany~2.22.3~0.5mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"epiphany-devel", rpm:"epiphany-devel~2.22.3~0.5mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox", rpm:"firefox~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-af", rpm:"firefox-af~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ar", rpm:"firefox-ar~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-be", rpm:"firefox-be~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-bg", rpm:"firefox-bg~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-bn", rpm:"firefox-bn~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ca", rpm:"firefox-ca~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-cs", rpm:"firefox-cs~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-cy", rpm:"firefox-cy~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-da", rpm:"firefox-da~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-de", rpm:"firefox-de~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-el", rpm:"firefox-el~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-en_GB", rpm:"firefox-en_GB~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-eo", rpm:"firefox-eo~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-es_AR", rpm:"firefox-es_AR~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-es_ES", rpm:"firefox-es_ES~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-et", rpm:"firefox-et~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-eu", rpm:"firefox-eu~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fi", rpm:"firefox-fi~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fr", rpm:"firefox-fr~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fy", rpm:"firefox-fy~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ga_IE", rpm:"firefox-ga_IE~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-gl", rpm:"firefox-gl~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-gu_IN", rpm:"firefox-gu_IN~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-he", rpm:"firefox-he~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-hi", rpm:"firefox-hi~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-hu", rpm:"firefox-hu~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-id", rpm:"firefox-id~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-is", rpm:"firefox-is~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-it", rpm:"firefox-it~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ja", rpm:"firefox-ja~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ka", rpm:"firefox-ka~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-kn", rpm:"firefox-kn~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ko", rpm:"firefox-ko~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ku", rpm:"firefox-ku~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-lt", rpm:"firefox-lt~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-lv", rpm:"firefox-lv~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mk", rpm:"firefox-mk~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mn", rpm:"firefox-mn~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mr", rpm:"firefox-mr~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nb_NO", rpm:"firefox-nb_NO~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nl", rpm:"firefox-nl~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nn_NO", rpm:"firefox-nn_NO~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-oc", rpm:"firefox-oc~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pa_IN", rpm:"firefox-pa_IN~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pl", rpm:"firefox-pl~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pt_BR", rpm:"firefox-pt_BR~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pt_PT", rpm:"firefox-pt_PT~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ro", rpm:"firefox-ro~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ru", rpm:"firefox-ru~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-si", rpm:"firefox-si~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sk", rpm:"firefox-sk~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sl", rpm:"firefox-sl~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sq", rpm:"firefox-sq~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sr", rpm:"firefox-sr~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sv_SE", rpm:"firefox-sv_SE~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-te", rpm:"firefox-te~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-th", rpm:"firefox-th~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-tr", rpm:"firefox-tr~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-uk", rpm:"firefox-uk~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-zh_CN", rpm:"firefox-zh_CN~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-zh_TW", rpm:"firefox-zh_TW~3.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"galeon", rpm:"galeon~2.0.7~0.4mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-extras", rpm:"gnome-python-extras~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gda", rpm:"gnome-python-gda~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gda-devel", rpm:"gnome-python-gda-devel~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gdl", rpm:"gnome-python-gdl~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gksu", rpm:"gnome-python-gksu~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkhtml2", rpm:"gnome-python-gtkhtml2~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkmozembed", rpm:"gnome-python-gtkmozembed~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkspell", rpm:"gnome-python-gtkspell~2.19.1~10.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libdevhelp-1_0", rpm:"libdevhelp-1_0~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libdevhelp-1-devel", rpm:"libdevhelp-1-devel~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgluezilla0", rpm:"libgluezilla0~1.2.6.1~2.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner1.9", rpm:"libxulrunner1.9~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner-devel", rpm:"libxulrunner-devel~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner-unstable-devel", rpm:"libxulrunner-unstable-devel~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-blogrovr", rpm:"mozilla-firefox-ext-blogrovr~1.1.779~2.8mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-foxmarks", rpm:"mozilla-firefox-ext-foxmarks~2.0.47.4~2.8mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-scribefire", rpm:"mozilla-firefox-ext-scribefire~2.2.7~2.8mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"totem", rpm:"totem~2.22.0~4.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"totem-common", rpm:"totem-common~2.22.0~4.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"totem-gstreamer", rpm:"totem-gstreamer~2.22.0~4.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"totem-mozilla", rpm:"totem-mozilla~2.22.0~4.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"totem-mozilla-gstreamer", rpm:"totem-mozilla-gstreamer~2.22.0~4.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner", rpm:"xulrunner~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"yelp", rpm:"yelp~2.22.1~0.4mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64devhelp-1_0", rpm:"lib64devhelp-1_0~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64devhelp-1-devel", rpm:"lib64devhelp-1-devel~0.19~3.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gluezilla0", rpm:"lib64gluezilla0~1.2.6.1~2.10mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner1.9", rpm:"lib64xulrunner1.9~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner-devel", rpm:"lib64xulrunner-devel~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner-unstable-devel", rpm:"lib64xulrunner-unstable-devel~1.9.0.8~0.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle", rpm:"beagle~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-crawl-system", rpm:"beagle-crawl-system~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-doc", rpm:"beagle-doc~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-epiphany", rpm:"beagle-epiphany~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-evolution", rpm:"beagle-evolution~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-gui", rpm:"beagle-gui~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-gui-qt", rpm:"beagle-gui-qt~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"beagle-libs", rpm:"beagle-libs~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"devhelp", rpm:"devhelp~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"devhelp-plugins", rpm:"devhelp-plugins~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"epiphany", rpm:"epiphany~2.24.0.1~3.7mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"epiphany-devel", rpm:"epiphany-devel~2.24.0.1~3.7mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox", rpm:"firefox~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-af", rpm:"firefox-af~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ar", rpm:"firefox-ar~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-be", rpm:"firefox-be~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-bg", rpm:"firefox-bg~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-bn", rpm:"firefox-bn~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ca", rpm:"firefox-ca~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-cs", rpm:"firefox-cs~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-cy", rpm:"firefox-cy~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-da", rpm:"firefox-da~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-de", rpm:"firefox-de~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-el", rpm:"firefox-el~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-en_GB", rpm:"firefox-en_GB~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-eo", rpm:"firefox-eo~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-es_AR", rpm:"firefox-es_AR~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-es_ES", rpm:"firefox-es_ES~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-et", rpm:"firefox-et~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-eu", rpm:"firefox-eu~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ext-beagle", rpm:"firefox-ext-beagle~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ext-mozvoikko", rpm:"firefox-ext-mozvoikko~0.9.5~4.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fi", rpm:"firefox-fi~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fr", rpm:"firefox-fr~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-fy", rpm:"firefox-fy~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ga_IE", rpm:"firefox-ga_IE~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-gl", rpm:"firefox-gl~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-gu_IN", rpm:"firefox-gu_IN~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-he", rpm:"firefox-he~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-hi", rpm:"firefox-hi~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-hu", rpm:"firefox-hu~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-id", rpm:"firefox-id~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-is", rpm:"firefox-is~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-it", rpm:"firefox-it~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ja", rpm:"firefox-ja~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ka", rpm:"firefox-ka~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-kn", rpm:"firefox-kn~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ko", rpm:"firefox-ko~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ku", rpm:"firefox-ku~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-lt", rpm:"firefox-lt~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-lv", rpm:"firefox-lv~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mk", rpm:"firefox-mk~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mn", rpm:"firefox-mn~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-mr", rpm:"firefox-mr~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nb_NO", rpm:"firefox-nb_NO~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nl", rpm:"firefox-nl~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-nn_NO", rpm:"firefox-nn_NO~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-oc", rpm:"firefox-oc~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pa_IN", rpm:"firefox-pa_IN~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pl", rpm:"firefox-pl~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pt_BR", rpm:"firefox-pt_BR~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-pt_PT", rpm:"firefox-pt_PT~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ro", rpm:"firefox-ro~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-ru", rpm:"firefox-ru~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-si", rpm:"firefox-si~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sk", rpm:"firefox-sk~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sl", rpm:"firefox-sl~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sq", rpm:"firefox-sq~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sr", rpm:"firefox-sr~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-sv_SE", rpm:"firefox-sv_SE~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-te", rpm:"firefox-te~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-th", rpm:"firefox-th~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-theme-kde4ff", rpm:"firefox-theme-kde4ff~0.14~4.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-tr", rpm:"firefox-tr~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-uk", rpm:"firefox-uk~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-zh_CN", rpm:"firefox-zh_CN~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"firefox-zh_TW", rpm:"firefox-zh_TW~3.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-extras", rpm:"gnome-python-extras~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gda", rpm:"gnome-python-gda~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gda-devel", rpm:"gnome-python-gda-devel~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gdl", rpm:"gnome-python-gdl~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkhtml2", rpm:"gnome-python-gtkhtml2~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkmozembed", rpm:"gnome-python-gtkmozembed~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gnome-python-gtkspell", rpm:"gnome-python-gtkspell~2.19.1~20.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libdevhelp-1_0", rpm:"libdevhelp-1_0~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libdevhelp-1-devel", rpm:"libdevhelp-1-devel~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner1.9", rpm:"libxulrunner1.9~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner-devel", rpm:"libxulrunner-devel~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libxulrunner-unstable-devel", rpm:"libxulrunner-unstable-devel~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-blogrovr", rpm:"mozilla-firefox-ext-blogrovr~1.1.779~5.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-foxmarks", rpm:"mozilla-firefox-ext-foxmarks~2.1.0.12~2.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-firefox-ext-scribefire", rpm:"mozilla-firefox-ext-scribefire~2.3.1~2.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"mozilla-thunderbird-beagle", rpm:"mozilla-thunderbird-beagle~0.3.8~13.9mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"xulrunner", rpm:"xulrunner~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"yelp", rpm:"yelp~2.24.0~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64devhelp-1_0", rpm:"lib64devhelp-1_0~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64devhelp-1-devel", rpm:"lib64devhelp-1-devel~0.21~3.5mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner1.9", rpm:"lib64xulrunner1.9~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner-devel", rpm:"lib64xulrunner-devel~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64xulrunner-unstable-devel", rpm:"lib64xulrunner-unstable-devel~1.9.0.8~0.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_085.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_085.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_085.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,154 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:085 (gstreamer0.10-plugins-base) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63718); + script_cve_id("CVE-2008-4316", "CVE-2009-0586"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:085 (gstreamer0.10-plugins-base)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to gstreamer0.10-plugins-base +announced via advisory MDVSA-2009:085. + +Integer overflows in gstreamer0.10-plugins-base Base64 encoding and +decoding functions (related with glib2.0 issue CVE-2008-4316) may +lead attackers to cause denial of service. Altough vector attacks +are not known yet (CVE-2009-0586). + +This update provide the fix for that security issue. + +Affected: 2008.0, 2008.1, 2009.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:085 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:085 (gstreamer0.10-plugins-base)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"gstreamer0.10-cdparanoia", rpm:"gstreamer0.10-cdparanoia~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-gnomevfs", rpm:"gstreamer0.10-gnomevfs~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-libvisual", rpm:"gstreamer0.10-libvisual~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-plugins-base", rpm:"gstreamer0.10-plugins-base~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10", rpm:"libgstreamer-plugins-base0.10~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10-devel", rpm:"libgstreamer-plugins-base0.10-devel~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10", rpm:"lib64gstreamer-plugins-base0.10~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10-devel", rpm:"lib64gstreamer-plugins-base0.10-devel~0.10.14~1.1mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-cdparanoia", rpm:"gstreamer0.10-cdparanoia~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-gnomevfs", rpm:"gstreamer0.10-gnomevfs~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-libvisual", rpm:"gstreamer0.10-libvisual~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-plugins-base", rpm:"gstreamer0.10-plugins-base~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10", rpm:"libgstreamer-plugins-base0.10~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10-devel", rpm:"libgstreamer-plugins-base0.10-devel~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10", rpm:"lib64gstreamer-plugins-base0.10~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10-devel", rpm:"lib64gstreamer-plugins-base0.10-devel~0.10.17~3.1mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-cdparanoia", rpm:"gstreamer0.10-cdparanoia~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-gnomevfs", rpm:"gstreamer0.10-gnomevfs~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-libvisual", rpm:"gstreamer0.10-libvisual~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer0.10-plugins-base", rpm:"gstreamer0.10-plugins-base~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10", rpm:"libgstreamer-plugins-base0.10~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstreamer-plugins-base0.10-devel", rpm:"libgstreamer-plugins-base0.10-devel~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10", rpm:"lib64gstreamer-plugins-base0.10~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstreamer-plugins-base0.10-devel", rpm:"lib64gstreamer-plugins-base0.10-devel~0.10.20~2.1mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_086.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_086.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_086.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,250 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:086 (gstreamer-plugins) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63719); + script_cve_id("CVE-2009-0398"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:086 (gstreamer-plugins)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to gstreamer-plugins +announced via advisory MDVSA-2009:086. + +An array indexing error in the GStreamer's QuickTime media file +format decoding plug-in enables attackers to crash the application +and potentially execute arbitrary code by using a crafted media file +(CVE-2009-0398). + +This update provides fix for that security issue. + +Affected: Corporate 3.0 + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:086 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:086 (gstreamer-plugins)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"gstreamer-a52dec", rpm:"gstreamer-a52dec~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-aalib", rpm:"gstreamer-aalib~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-arts", rpm:"gstreamer-arts~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-artsd", rpm:"gstreamer-artsd~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-audio-effects", rpm:"gstreamer-audio-effects~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-audiofile", rpm:"gstreamer-audiofile~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-audio-formats", rpm:"gstreamer-audio-formats~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-avi", rpm:"gstreamer-avi~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-cdparanoia", rpm:"gstreamer-cdparanoia~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-cdplayer", rpm:"gstreamer-cdplayer~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-colorspace", rpm:"gstreamer-colorspace~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-dv", rpm:"gstreamer-dv~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-dxr3", rpm:"gstreamer-dxr3~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-esound", rpm:"gstreamer-esound~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-festival", rpm:"gstreamer-festival~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-ffmpeg", rpm:"gstreamer-ffmpeg~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-flac", rpm:"gstreamer-flac~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-flx", rpm:"gstreamer-flx~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-GConf", rpm:"gstreamer-GConf~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-gnomevfs", rpm:"gstreamer-gnomevfs~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-gsm", rpm:"gstreamer-gsm~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-httpsrc", rpm:"gstreamer-httpsrc~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-jack", rpm:"gstreamer-jack~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-jpeg", rpm:"gstreamer-jpeg~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-jpegmmx", rpm:"gstreamer-jpegmmx~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-ladspa", rpm:"gstreamer-ladspa~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-libdvdnav", rpm:"gstreamer-libdvdnav~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-libdvdread", rpm:"gstreamer-libdvdread~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-libpng", rpm:"gstreamer-libpng~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-mad", rpm:"gstreamer-mad~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-mikmod", rpm:"gstreamer-mikmod~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-mpeg", rpm:"gstreamer-mpeg~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-oss", rpm:"gstreamer-oss~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-plugins", rpm:"gstreamer-plugins~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-plugins-devel", rpm:"gstreamer-plugins-devel~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-qcam", rpm:"gstreamer-qcam~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-quicktime", rpm:"gstreamer-quicktime~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-raw1394", rpm:"gstreamer-raw1394~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-SDL", rpm:"gstreamer-SDL~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-sid", rpm:"gstreamer-sid~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-snapshot", rpm:"gstreamer-snapshot~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-swfdec", rpm:"gstreamer-swfdec~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-udp", rpm:"gstreamer-udp~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-v4l", rpm:"gstreamer-v4l~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-vcd", rpm:"gstreamer-vcd~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-video-effects", rpm:"gstreamer-video-effects~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-videosink", rpm:"gstreamer-videosink~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-videotest", rpm:"gstreamer-videotest~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-visualisation", rpm:"gstreamer-visualisation~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-vorbis", rpm:"gstreamer-vorbis~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-xvideosink", rpm:"gstreamer-xvideosink~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"gstreamer-yuv4mjpeg", rpm:"gstreamer-yuv4mjpeg~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstgconf0.6", rpm:"libgstgconf0.6~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libgstplay0.6", rpm:"libgstplay0.6~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstgconf0.6", rpm:"lib64gstgconf0.6~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64gstplay0.6", rpm:"lib64gstplay0.6~0.6.4~4.2mdk", rls:"MNDK_3.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/mdksa_2009_087.nasl =================================================================== --- trunk/openvas-plugins/scripts/mdksa_2009_087.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/mdksa_2009_087.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,200 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory MDVSA-2009:087 (openssl) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63720); + script_cve_id("CVE-2009-0590"); + script_version ("$"); + name["english"] = "Mandrake Security Advisory MDVSA-2009:087 (openssl)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to openssl +announced via advisory MDVSA-2009:087. + +A security vulnerability has been identified and fixed in OpenSSL, +which could crash applications using OpenSSL library when parsing +malformed certificates (CVE-2009-0590). + +The updated packages have been patched to prevent this. + +Affected: 2008.0, 2008.1, 2009.0, Corporate 3.0, Corporate 4.0, + Multi Network Firewall 2.0 + + +Solution: +To upgrade automatically use MandrakeUpdate or urpmi. The verification +of md5 checksums and GPG signatures is performed automatically for you. + +https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:087 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Mandrake Security Advisory MDVSA-2009:087 (openssl)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Mandrake Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"libopenssl0.9.8", rpm:"libopenssl0.9.8~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-devel", rpm:"libopenssl0.9.8-devel~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-static-devel", rpm:"libopenssl0.9.8-static-devel~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8", rpm:"lib64openssl0.9.8~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-devel", rpm:"lib64openssl0.9.8-devel~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-static-devel", rpm:"lib64openssl0.9.8-static-devel~0.9.8e~8.3mdv2008.0", rls:"MNDK_2008.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8", rpm:"libopenssl0.9.8~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-devel", rpm:"libopenssl0.9.8-devel~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-static-devel", rpm:"libopenssl0.9.8-static-devel~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8", rpm:"lib64openssl0.9.8~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-devel", rpm:"lib64openssl0.9.8-devel~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-static-devel", rpm:"lib64openssl0.9.8-static-devel~0.9.8g~4.3mdv2008.1", rls:"MNDK_2008.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8", rpm:"libopenssl0.9.8~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-devel", rpm:"libopenssl0.9.8-devel~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.8-static-devel", rpm:"libopenssl0.9.8-static-devel~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8", rpm:"lib64openssl0.9.8~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-devel", rpm:"lib64openssl0.9.8-devel~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.8-static-devel", rpm:"lib64openssl0.9.8-static-devel~0.9.8h~3.2mdv2009.0", rls:"MNDK_2009.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7", rpm:"libopenssl0.9.7~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-devel", rpm:"libopenssl0.9.7-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-static-devel", rpm:"libopenssl0.9.7-static-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7", rpm:"lib64openssl0.9.7~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7-devel", rpm:"lib64openssl0.9.7-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7-static-devel", rpm:"lib64openssl0.9.7-static-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_3.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7", rpm:"libopenssl0.9.7~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-devel", rpm:"libopenssl0.9.7-devel~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-static-devel", rpm:"libopenssl0.9.7-static-devel~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7", rpm:"lib64openssl0.9.7~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7-devel", rpm:"lib64openssl0.9.7-devel~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"lib64openssl0.9.7-static-devel", rpm:"lib64openssl0.9.7-static-devel~0.9.7g~2.8.20060mlcs4", rls:"MNDK_4.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7", rpm:"libopenssl0.9.7~0.9.7c~3.10.C30mdk", rls:"MNDK_2.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-devel", rpm:"libopenssl0.9.7-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_2.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libopenssl0.9.7-static-devel", rpm:"libopenssl0.9.7-static-devel~0.9.7c~3.10.C30mdk", rls:"MNDK_2.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.7c~3.10.C30mdk", rls:"MNDK_2.0")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ovcesa2009_0326.nasl =================================================================== --- trunk/openvas-plugins/scripts/ovcesa2009_0326.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ovcesa2009_0326.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,120 @@ +#CESA-2009:0326 63752 2 +# $Id$ +# Description: Auto-generated from advisory CESA-2009:0326 (kernel) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63752); + script_cve_id("CVE-2008-3528", "CVE-2008-5700", "CVE-2009-0028", "CVE-2009-0269", "CVE-2009-0322", "CVE-2009-0675", "CVE-2009-0676", "CVE-2009-0778"); + script_version ("$"); + name["english"] = "CentOS Security Advisory CESA-2009:0326 (kernel)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates to kernel announced in +advisory CESA-2009:0326. + +For details on the issues addressed in this update, +please visit the referenced security advisories. + +Solution: +Update the appropriate packages on your system. + +http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0326 +http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0326 +https://rhn.redhat.com/errata/RHSA-2009-0326.html + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "CentOS Security Advisory CESA-2009:0326 (kernel)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "CentOS Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"kernel", rpm:"kernel~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug-debuginfo", rpm:"kernel-debug-debuginfo~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debuginfo", rpm:"kernel-debuginfo~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-debuginfo-common", rpm:"kernel-debuginfo-common~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-headers", rpm:"kernel-headers~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE", rpm:"kernel-PAE~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE-debuginfo", rpm:"kernel-PAE-debuginfo~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-PAE-devel", rpm:"kernel-PAE-devel~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen", rpm:"kernel-xen~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen-debuginfo", rpm:"kernel-xen-debuginfo~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} +if(isrpmvuln(pkg:"kernel-xen-devel", rpm:"kernel-xen-devel~2.6.18~128.1.6.el5", rls:"CentOS5")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ovcesa2009_0398.nasl =================================================================== --- trunk/openvas-plugins/scripts/ovcesa2009_0398.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ovcesa2009_0398.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,105 @@ +#CESA-2009:0398 63754 4 +# $Id$ +# Description: Auto-generated from advisory CESA-2009:0398 (seamonkey) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63754); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "CentOS Security Advisory CESA-2009:0398 (seamonkey)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates to seamonkey announced in +advisory CESA-2009:0398. + +For details on the issues addressed in this update, +please visit the referenced security advisories. + +Solution: +Update the appropriate packages on your system. + +http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0398 +http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0398 +https://rhn.redhat.com/errata/RHSA-2009-0398.html + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "CentOS Security Advisory CESA-2009:0398 (seamonkey)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "CentOS Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.36.el3.centos3", rls:"CentOS3")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ovcesa2009_0398_01.nasl =================================================================== --- trunk/openvas-plugins/scripts/ovcesa2009_0398_01.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ovcesa2009_0398_01.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,105 @@ +#CESA-2009:0398-01 63753 1 +# $Id$ +# Description: Auto-generated from advisory CESA-2009:0398-01 (seamonkey) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63753); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "CentOS Security Advisory CESA-2009:0398-01 (seamonkey)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates to seamonkey announced in +advisory CESA-2009:0398-01. + +For details on the issues addressed in this update, +please visit the referenced security advisories. + +Solution: +Update the appropriate packages on your system. + +http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0398-01 +http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0398 +https://rhn.redhat.com/errata/rh21as-errata.html + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "CentOS Security Advisory CESA-2009:0398-01 (seamonkey)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "CentOS Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} +if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.32.el2.c2.1", rls:"CentOS2")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/suse_sa_2009_016.nasl =================================================================== --- trunk/openvas-plugins/scripts/suse_sa_2009_016.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/suse_sa_2009_016.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,205 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory SUSE-SA:2009:016 (Sun Java 5 and 6) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63735); + script_cve_id("CVE-2009-1093", "CVE-2009-1094", "CVE-2009-1095", "CVE-2009-1096", "CVE-2009-1097", "CVE-2009-1098", "CVE-2009-1099", "CVE-2009-1100", "CVE-2009-1101", "CVE-2009-1102", "CVE-2009-1103", "CVE-2009-1104", "CVE-2009-1105", "CVE-2009-1106", "CVE-2009-1107"); + script_version ("$"); + name["english"] = "SuSE Security Advisory SUSE-SA:2009:016 (Sun Java 5 and 6)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory SUSE-SA:2009:016. + +The Sun JDK 5 was updated to Update18 and the Sun JDK 6 was updated +to Update 13 to fix various bugs and security issues. + +For details addressed in these updates, please visit the referenced +security advisories. + +No Sun Java 1.4.2 updates are available at this time since it has +entered EOL phase. + +Solution: +Update your system with the packages as indicated in +the referenced security advisory. + +https://secure1.securityspace.com/smysecure/catid.html?in=SUSE-SA:2009:016 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "SuSE Security Advisory SUSE-SA:2009:016 (Sun Java 5 and 6)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "SuSE Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-demo", rpm:"java-1_5_0-sun-demo~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-demo", rpm:"java-1_6_0-sun-demo~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-demo", rpm:"java-1_5_0-sun-demo~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-debuginfo", rpm:"java-1_6_0-sun-debuginfo~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-demo", rpm:"java-1_6_0-sun-demo~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/suse_sr_2009_008.nasl =================================================================== --- trunk/openvas-plugins/scripts/suse_sr_2009_008.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/suse_sr_2009_008.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,726 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory SUSE-SR:2009:008 +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63736); + script_cve_id("CVE-2008-0928", "CVE-2008-1945", "CVE-2008-2025", "CVE-2008-2382", "CVE-2008-4311", "CVE-2008-4539", "CVE-2008-5498", "CVE-2008-5557", "CVE-2008-5714", "CVE-2009-0021", "CVE-2009-0115", "CVE-2009-0186", "CVE-2009-0754", "CVE-2009-1148", "CVE-2009-1149", "CVE-2009-1150", "CVE-2009-1151"); + script_version ("$"); + name["english"] = "SuSE Security Summary SUSE-SR:2009:008"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing updates announced in +advisory SUSE-SR:2009:008. SuSE Security Summaries are short +on detail when it comes to the names of packages affected by +a particular bug. Because of this, while this test will detect +out of date packages, it cannot tell you what bugs impact +which packages, or vice versa. + +Solution: + +Update all out of date packages. + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "SuSE Security Advisory SUSE-SR:2009:008"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "SuSE Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/rpms"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-rpm.inc"); +vuln = 0; +if(isrpmvuln(pkg:"apache2-mod_php5", rpm:"apache2-mod_php5~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u13~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile", rpm:"libsndfile~1.0.17~171.8.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-devel", rpm:"libsndfile-devel~1.0.17~171.8.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-octave", rpm:"libsndfile-octave~1.0.17~171.8.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-progs", rpm:"libsndfile-progs~1.0.17~171.8.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5", rpm:"php5~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bcmath", rpm:"php5-bcmath~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bz2", rpm:"php5-bz2~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-calendar", rpm:"php5-calendar~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ctype", rpm:"php5-ctype~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-curl", rpm:"php5-curl~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dba", rpm:"php5-dba~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dbase", rpm:"php5-dbase~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-devel", rpm:"php5-devel~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dom", rpm:"php5-dom~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-exif", rpm:"php5-exif~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-fastcgi", rpm:"php5-fastcgi~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ftp", rpm:"php5-ftp~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gd", rpm:"php5-gd~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gettext", rpm:"php5-gettext~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gmp", rpm:"php5-gmp~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-hash", rpm:"php5-hash~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-iconv", rpm:"php5-iconv~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-imap", rpm:"php5-imap~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-json", rpm:"php5-json~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ldap", rpm:"php5-ldap~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mbstring", rpm:"php5-mbstring~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mcrypt", rpm:"php5-mcrypt~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mysql", rpm:"php5-mysql~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ncurses", rpm:"php5-ncurses~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-odbc", rpm:"php5-odbc~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-openssl", rpm:"php5-openssl~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pcntl", rpm:"php5-pcntl~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pdo", rpm:"php5-pdo~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pear", rpm:"php5-pear~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pgsql", rpm:"php5-pgsql~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-posix", rpm:"php5-posix~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pspell", rpm:"php5-pspell~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-readline", rpm:"php5-readline~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-shmop", rpm:"php5-shmop~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-snmp", rpm:"php5-snmp~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-soap", rpm:"php5-soap~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sockets", rpm:"php5-sockets~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sqlite", rpm:"php5-sqlite~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-suhosin", rpm:"php5-suhosin~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvmsg", rpm:"php5-sysvmsg~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvsem", rpm:"php5-sysvsem~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvshm", rpm:"php5-sysvshm~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tidy", rpm:"php5-tidy~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tokenizer", rpm:"php5-tokenizer~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-wddx", rpm:"php5-wddx~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlreader", rpm:"php5-xmlreader~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlrpc", rpm:"php5-xmlrpc~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlwriter", rpm:"php5-xmlwriter~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xsl", rpm:"php5-xsl~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zip", rpm:"php5-zip~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zlib", rpm:"php5-zlib~5.2.9~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"qemu", rpm:"qemu~0.10.1~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"timezone", rpm:"timezone~2009d~0.1.1", rls:"openSUSE11.1")) { + vuln = 1; +} +if(isrpmvuln(pkg:"apache2-mod_php5", rpm:"apache2-mod_php5~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-demo", rpm:"java-1_5_0-sun-demo~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-demo", rpm:"java-1_6_0-sun-demo~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u13~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile", rpm:"libsndfile~1.0.17~141.2", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-devel", rpm:"libsndfile-devel~1.0.17~141.2", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-octave", rpm:"libsndfile-octave~1.0.17~141.2", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-progs", rpm:"libsndfile-progs~1.0.17~141.2", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5", rpm:"php5~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bcmath", rpm:"php5-bcmath~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bz2", rpm:"php5-bz2~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-calendar", rpm:"php5-calendar~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ctype", rpm:"php5-ctype~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-curl", rpm:"php5-curl~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dba", rpm:"php5-dba~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dbase", rpm:"php5-dbase~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-devel", rpm:"php5-devel~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dom", rpm:"php5-dom~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-exif", rpm:"php5-exif~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-fastcgi", rpm:"php5-fastcgi~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ftp", rpm:"php5-ftp~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gd", rpm:"php5-gd~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gettext", rpm:"php5-gettext~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gmp", rpm:"php5-gmp~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-hash", rpm:"php5-hash~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-iconv", rpm:"php5-iconv~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-imap", rpm:"php5-imap~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-json", rpm:"php5-json~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ldap", rpm:"php5-ldap~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mbstring", rpm:"php5-mbstring~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mcrypt", rpm:"php5-mcrypt~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mysql", rpm:"php5-mysql~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ncurses", rpm:"php5-ncurses~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-odbc", rpm:"php5-odbc~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-openssl", rpm:"php5-openssl~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pcntl", rpm:"php5-pcntl~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pdo", rpm:"php5-pdo~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pear", rpm:"php5-pear~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pgsql", rpm:"php5-pgsql~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-posix", rpm:"php5-posix~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pspell", rpm:"php5-pspell~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-readline", rpm:"php5-readline~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-shmop", rpm:"php5-shmop~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-snmp", rpm:"php5-snmp~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-soap", rpm:"php5-soap~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sockets", rpm:"php5-sockets~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sqlite", rpm:"php5-sqlite~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-suhosin", rpm:"php5-suhosin~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvmsg", rpm:"php5-sysvmsg~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvsem", rpm:"php5-sysvsem~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvshm", rpm:"php5-sysvshm~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tidy", rpm:"php5-tidy~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tokenizer", rpm:"php5-tokenizer~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-wddx", rpm:"php5-wddx~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlreader", rpm:"php5-xmlreader~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlrpc", rpm:"php5-xmlrpc~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlwriter", rpm:"php5-xmlwriter~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xsl", rpm:"php5-xsl~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zip", rpm:"php5-zip~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zlib", rpm:"php5-zlib~5.2.9~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"qemu", rpm:"qemu~0.10.1~0.1", rls:"openSUSE11.0")) { + vuln = 1; +} +if(isrpmvuln(pkg:"apache2-mod_php5", rpm:"apache2-mod_php5~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun", rpm:"java-1_5_0-sun~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-alsa", rpm:"java-1_5_0-sun-alsa~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-demo", rpm:"java-1_5_0-sun-demo~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-devel", rpm:"java-1_5_0-sun-devel~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-jdbc", rpm:"java-1_5_0-sun-jdbc~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-plugin", rpm:"java-1_5_0-sun-plugin~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_5_0-sun-src", rpm:"java-1_5_0-sun-src~1.5.0_update18~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-debuginfo", rpm:"java-1_6_0-sun-debuginfo~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-demo", rpm:"java-1_6_0-sun-demo~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u12~1.4", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile", rpm:"libsndfile~1.0.17~81.2", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-devel", rpm:"libsndfile-devel~1.0.17~81.2", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-octave", rpm:"libsndfile-octave~1.0.17~81.2", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"libsndfile-progs", rpm:"libsndfile-progs~1.0.17~81.2", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5", rpm:"php5~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bcmath", rpm:"php5-bcmath~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-bz2", rpm:"php5-bz2~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-calendar", rpm:"php5-calendar~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ctype", rpm:"php5-ctype~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-curl", rpm:"php5-curl~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dba", rpm:"php5-dba~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dbase", rpm:"php5-dbase~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-devel", rpm:"php5-devel~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-dom", rpm:"php5-dom~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-exif", rpm:"php5-exif~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-fastcgi", rpm:"php5-fastcgi~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ftp", rpm:"php5-ftp~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gd", rpm:"php5-gd~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gettext", rpm:"php5-gettext~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-gmp", rpm:"php5-gmp~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-hash", rpm:"php5-hash~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-iconv", rpm:"php5-iconv~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-imap", rpm:"php5-imap~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-json", rpm:"php5-json~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ldap", rpm:"php5-ldap~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mbstring", rpm:"php5-mbstring~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mcrypt", rpm:"php5-mcrypt~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mhash", rpm:"php5-mhash~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-mysql", rpm:"php5-mysql~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-ncurses", rpm:"php5-ncurses~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-odbc", rpm:"php5-odbc~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-openssl", rpm:"php5-openssl~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pcntl", rpm:"php5-pcntl~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pdo", rpm:"php5-pdo~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pear", rpm:"php5-pear~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pgsql", rpm:"php5-pgsql~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-posix", rpm:"php5-posix~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-pspell", rpm:"php5-pspell~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-readline", rpm:"php5-readline~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-shmop", rpm:"php5-shmop~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-snmp", rpm:"php5-snmp~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-soap", rpm:"php5-soap~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sockets", rpm:"php5-sockets~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sqlite", rpm:"php5-sqlite~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-suhosin", rpm:"php5-suhosin~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvmsg", rpm:"php5-sysvmsg~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvsem", rpm:"php5-sysvsem~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-sysvshm", rpm:"php5-sysvshm~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tidy", rpm:"php5-tidy~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-tokenizer", rpm:"php5-tokenizer~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-wddx", rpm:"php5-wddx~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlreader", rpm:"php5-xmlreader~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlrpc", rpm:"php5-xmlrpc~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xmlwriter", rpm:"php5-xmlwriter~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-xsl", rpm:"php5-xsl~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zip", rpm:"php5-zip~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"php5-zlib", rpm:"php5-zlib~5.2.9~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} +if(isrpmvuln(pkg:"qemu", rpm:"qemu~0.10.1~0.1", rls:"openSUSE10.3")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_745_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_745_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_745_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,312 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-745-1 (xulrunner-1.9) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63749); + script_cve_id("CVE-2009-1044", "CVE-2009-1169"); + script_version ("$"); + name["english"] = "Ubuntu USN-745-1 (xulrunner-1.9)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to xulrunner-1.9 +announced via advisory USN-745-1. + +Details follow: + +It was discovered that Firefox did not properly perform XUL garbage +collection. If a user were tricked into viewing a malicious website, a +remote attacker could cause a denial of service or execute arbitrary code +with the privileges of the user invoking the program. This issue only +affected Ubuntu 8.04 LTS and 8.10. (CVE-2009-1044) + +A flaw was discovered in the way Firefox performed XSLT transformations. +If a user were tricked into opening a crafted XSL stylesheet, an attacker +could cause a denial of service or execute arbitrary code with the +privileges of the user invoking the program. (CVE-2009-1169) + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 6.06 LTS: + firefox 1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1 + +Ubuntu 7.10: + firefox 2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1 + +Ubuntu 8.04 LTS: + firefox-3.0 3.0.8+nobinonly-0ubuntu0.8.04.2 + xulrunner-1.9 1.9.0.8+nobinonly-0ubuntu0.8.04.1 + +Ubuntu 8.10: + abrowser 3.0.8+nobinonly-0ubuntu0.8.10.2 + firefox-3.0 3.0.8+nobinonly-0ubuntu0.8.10.2 + xulrunner-1.9 1.9.0.8+nobinonly-0ubuntu0.8.10.1 + +After a standard system upgrade you need to restart Firefox and any +applications that use xulrunner, such as Epiphany, to effect the necessary +changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-745-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-745-1 (xulrunner-1.9)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"mozilla-firefox", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"mozilla-firefox-dev", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dbg", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dev", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libnspr-dev", ver:"1.firefox1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libnspr4", ver:"1.firefox1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libnss-dev", ver:"1.firefox1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libnss3", ver:"1.firefox1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"1.5.dfsg+1.5.0.15~prepatch080614l-0ubuntu1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dbg", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dev", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-libthai", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox", ver:"2.0.0.21~tb.21.308+nobinonly-0ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-libthai", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-venkman", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-dom-inspector", ver:"1.9.0.8+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-venkman", ver:"1.9.0.8+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.0.8+nobinonly-0ubuntu0.8.04.2", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-dev", ver:"1.9.0.8+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.8+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.8+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"abrowser", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-granparadiso", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-libthai", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-dom-inspector", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk-venkman", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-trunk", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-dom-inspector", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-venkman", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"abrowser-3.0-branding", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-branding", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.0.8+nobinonly-0ubuntu0.8.10.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-dev", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"xulrunner-dev", ver:"1.9.0.8+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_746_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_746_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_746_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,296 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-746-1 (xine-lib) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63746); + script_cve_id("CVE-2009-0698", "CVE-2008-5239", "CVE-2008-1036", "CVE-2008-4316", "CVE-2006-2426", "CVE-2009-1093", "CVE-2009-1094", "CVE-2009-1095", "CVE-2009-1096", "CVE-2009-1097", "CVE-2009-1098", "CVE-2009-1100", "CVE-2009-1101", "CVE-2009-1102"); + script_version ("$"); + name["english"] = "Ubuntu USN-746-1 (xine-lib)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to xine-lib +announced via advisory USN-746-1. + +Details follow: + +It was discovered that the 4xm demuxer in xine-lib did not correctly handle +a large current_track value in a 4xm file, resulting in an integer +overflow. If a user or automated system were tricked into opening a +specially crafted 4xm movie file, an attacker could crash xine-lib or +possibly execute arbitrary code with the privileges of the user invoking +the program. (CVE-2009-0698) + +USN-710-1 provided updated xine-lib packages to fix multiple security +vulnerabilities. The security patch to fix CVE-2008-5239 introduced a +regression causing some media files to be unplayable. This update corrects +the problem. We apologize for the inconvenience. + +Original advisory details: + It was discovered that the input handlers in xine-lib did not correctly + handle certain error codes, resulting in out-of-bounds reads and heap- + based buffer overflows. If a user or automated system were tricked into + opening a specially crafted file, stream, or URL, an attacker could + execute arbitrary code as the user invoking the program. (CVE-2008-5239) + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 6.06 LTS: + libxine-main1 1.1.1+ubuntu2-7.11 + +Ubuntu 7.10: + libxine1 1.1.7-1ubuntu1.5 + +Ubuntu 8.04 LTS: + libxine1 1.1.11.1-1ubuntu3.3 + +Ubuntu 8.10: + libxine1 1.1.15-0ubuntu3.2 + +After a standard system upgrade you need to restart applications linked +against xine-lib, such as Totem-xine and Amarok, to effect the necessary +changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-746-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-746-1 (xine-lib)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"libxine-dev", ver:"1.1.1+ubuntu2-7.11", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine-main1", ver:"1.1.1+ubuntu2-7.11", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine-dev", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-doc", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-plugins", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-dbg", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-console", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-ffmpeg", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-gnome", ver:"1.1.7-1ubuntu1.5", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-doc", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-all-plugins", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-plugins", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine-dev", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-bin", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-console", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-dbg", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-misc-plugins", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-x", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-ffmpeg", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-gnome", ver:"1.1.11.1-1ubuntu3.3", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-doc", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-all-plugins", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-plugins", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine-dev", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-bin", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-console", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-dbg", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-ffmpeg", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-gnome", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-misc-plugins", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1-x", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libxine1", ver:"1.1.15-0ubuntu3.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu34-dev", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu34", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36-dev", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu-dev", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu38", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu-dev", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38-dbg", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu-dev", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu38", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu-dev", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38-dbg", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source-files", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_747_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_747_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_747_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,179 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-747-1 (icu) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63747); + script_cve_id("CVE-2008-1036", "CVE-2008-4316", "CVE-2006-2426", "CVE-2009-1093", "CVE-2009-1094", "CVE-2009-1095", "CVE-2009-1096", "CVE-2009-1097", "CVE-2009-1098", "CVE-2009-1100", "CVE-2009-1101", "CVE-2009-1102"); + script_version ("$"); + name["english"] = "Ubuntu USN-747-1 (icu)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to icu +announced via advisory USN-747-1. + +Details follow: + +It was discovered that libicu did not correctly handle certain invalid +encoded data. If a user or automated system were tricked into processing +specially crafted data with applications linked against libicu, certain +content filters could be bypassed. + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 6.06 LTS: + libicu34 3.4.1a-1ubuntu1.6.06.2 + +Ubuntu 7.10: + libicu36 3.6-3ubuntu0.2 + +Ubuntu 8.04 LTS: + libicu38 3.8-6ubuntu0.1 + +Ubuntu 8.10: + libicu38 3.8.1-2ubuntu0.1 + +After a standard system upgrade you need to restart applications linked +against libicu, such as OpenOffice.org, to effect the necessary changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-747-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-747-1 (icu)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"icu-doc", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu34-dev", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu34", ver:"3.4.1a-1ubuntu1.6.06.2", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36-dev", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu36", ver:"3.6-3ubuntu0.2", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu-dev", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu38", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu-dev", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38-dbg", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38", ver:"3.8-6ubuntu0.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icu-doc", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu-dev", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"lib32icu38", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu-dev", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38-dbg", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libicu38", ver:"3.8.1-2ubuntu0.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source-files", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_748_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_748_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_748_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,145 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-748-1 (openjdk-6) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63748); + script_cve_id("CVE-2006-2426", "CVE-2009-1093", "CVE-2009-1094", "CVE-2009-1095", "CVE-2009-1096", "CVE-2009-1097", "CVE-2009-1098", "CVE-2009-1100", "CVE-2009-1101", "CVE-2009-1102"); + script_version ("$"); + name["english"] = "Ubuntu USN-748-1 (openjdk-6)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to openjdk-6 +announced via advisory USN-748-1. + +Details follow: + +It was discovered that font creation could leak temporary files. +If a user were tricked into loading a malicious program or applet, +a remote attacker could consume disk space, leading to a denial of +service. (CVE-2006-2426, CVE-2009-1100) + +It was discovered that the lightweight HttpServer did not correctly close +files on dataless connections. A remote attacker could send specially +crafted requests, leading to a denial of service. (CVE-2009-1101) + +Certain 64bit Java actions would crash an application. A local attacker +might be able to cause a denial of service. (CVE-2009-1102) + +It was discovered that LDAP connections did not close correctly. +A remote attacker could send specially crafted requests, leading to a +denial of service. (CVE-2009-1093) + +Java LDAP routines did not unserialize certain data correctly. A remote +attacker could send specially crafted requests that could lead to +arbitrary code execution. (CVE-2009-1094) + +Java did not correctly check certain JAR headers. If a user or +automated system were tricked into processing a malicious JAR file, +a remote attacker could crash the application, leading to a denial of +service. (CVE-2009-1095, CVE-2009-1096) + +It was discovered that PNG and GIF decoding in Java could lead to memory +corruption. If a user or automated system were tricked into processing +a specially crafted image, a remote attacker could crash the application, +leading to a denial of service. (CVE-2009-1097, CVE-2009-1098) + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 8.10: + icedtea6-plugin 6b12-0ubuntu6.4 + openjdk-6-jdk 6b12-0ubuntu6.4 + openjdk-6-jre 6b12-0ubuntu6.4 + openjdk-6-jre-headless 6b12-0ubuntu6.4 + openjdk-6-jre-lib 6b12-0ubuntu6.4 + +After a standard system upgrade you need to restart any Java applications +to effect the necessary changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-748-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-748-1 (openjdk-6)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-source-files", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b12-0ubuntu6.4", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_749_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_749_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_749_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,188 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-749-1 (libsndfile) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63750); + script_cve_id("CVE-2009-0186", "CVE-2009-1073", "CVE-2009-1044", "CVE-2009-0590"); + script_version ("$"); + name["english"] = "Ubuntu USN-749-1 (libsndfile)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to libsndfile +announced via advisory USN-749-1. + +Details follow: + +It was discovered that libsndfile did not correctly handle description +chunks in CAF audio files. If a user or automated system were tricked into +opening a specially crafted CAF audio file, an attacker could execute +arbitrary code with the privileges of the user invoking the program. + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 6.06 LTS: + libsndfile1 1.0.12-3ubuntu1.1 + +Ubuntu 7.10: + libsndfile1 1.0.17-4ubuntu0.7.10.1 + +Ubuntu 8.04 LTS: + libsndfile1 1.0.17-4ubuntu0.8.04.1 + +Ubuntu 8.10: + libsndfile1 1.0.17-4ubuntu0.8.10.1 + +After a standard system upgrade you need to restart your session to effect +the necessary changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-749-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-749-1 (libsndfile)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"libsndfile1-dev", ver:"1.0.12-3ubuntu1.1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1", ver:"1.0.12-3ubuntu1.1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"sndfile-programs", ver:"1.0.12-3ubuntu1.1", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1-dev", ver:"1.0.17-4ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1", ver:"1.0.17-4ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"sndfile-programs", ver:"1.0.17-4ubuntu0.7.10.1", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1-dev", ver:"1.0.17-4ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1", ver:"1.0.17-4ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"sndfile-programs", ver:"1.0.17-4ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1-dev", ver:"1.0.17-4ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libsndfile1", ver:"1.0.17-4ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"sndfile-programs", ver:"1.0.17-4ubuntu0.8.10.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libnss-ldapd", ver:"0.6.7.1", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} Added: trunk/openvas-plugins/scripts/ubuntu_750_1.nasl =================================================================== --- trunk/openvas-plugins/scripts/ubuntu_750_1.nasl 2009-04-06 18:27:09 UTC (rev 3033) +++ trunk/openvas-plugins/scripts/ubuntu_750_1.nasl 2009-04-06 18:58:11 UTC (rev 3034) @@ -0,0 +1,150 @@ +# OpenVAS Vulnerability Test +# $Id$ +# Description: Auto-generated from advisory USN-750-1 (openssl) +# +# Authors: +# Thomas Reinke +# +# Copyright: +# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com +# Text descriptions are largely excerpted from the referenced +# advisory, and are Copyright (c) the respective author(s) +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2, +# or at your option, GNU General Public License version 3, +# as published by the Free Software Foundation +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +# + +if(description) +{ + script_id(63751); + script_cve_id("CVE-2009-0590"); + script_version ("$"); + name["english"] = "Ubuntu USN-750-1 (openssl)"; + script_name(english:name["english"]); + + desc["english"] = " +The remote host is missing an update to openssl +announced via advisory USN-750-1. + +Details follow: + +It was discovered that OpenSSL did not properly validate the length of an +encoded BMPString or UniversalString when printing ASN.1 strings. If a user +or automated system were tricked into processing a crafted certificate, an +attacker could cause a denial of service via application crash in +applications linked against OpenSSL. + +Solution: +The problem can be corrected by upgrading your system to the +following package versions: + +Ubuntu 6.06 LTS: + libssl0.9.8 0.9.8a-7ubuntu0.7 + +Ubuntu 7.10: + libssl0.9.8 0.9.8e-5ubuntu3.4 + +Ubuntu 8.04 LTS: + libssl0.9.8 0.9.8g-4ubuntu3.5 + +Ubuntu 8.10: + libssl0.9.8 0.9.8g-10.1ubuntu2.2 + +After a standard system upgrade you need to reboot your computer to +effect the necessary changes. + +https://secure1.securityspace.com/smysecure/catid.html?in=USN-750-1 + +Risk factor : High"; + + script_description(english:desc["english"]); + + summary["english"] = "Ubuntu USN-750-1 (openssl)"; + script_summary(english:summary["english"]); + + script_category(ACT_GATHER_INFO); + + script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com"); + family["english"] = "Ubuntu Local Security Checks"; + script_family(english:family["english"]); + script_dependencies("gather-package-list.nasl"); + script_require_keys("ssh/login/packages"); + exit(0); +} + +# +# The script code starts here +# + +include("revisions-lib.inc"); +include("pkg-lib-deb.inc"); +vuln = 0; +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8a-7ubuntu0.7", rls:"UBUNTU6.06 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8e-5ubuntu3.4", rls:"UBUNTU7.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8g-4ubuntu3.5", rls:"UBUNTU8.04 LTS")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} +if(isdpkgvuln(pkg:"openssl", ver:"0.9.8g-10.1ubuntu2.2", rls:"UBUNTU8.10")) { + vuln = 1; +} + +if(vuln) { + security_hole(0); +} From scm-commit at wald.intevation.org Tue Apr 7 09:08:31 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 09:08:31 +0200 (CEST) Subject: [Openvas-commits] r3036 - in trunk/openvas-libnasl: . nasl Message-ID: <20090407070831.3E8AB407A1@pyrosoma.intevation.org> Author: felix Date: 2009-04-07 09:08:30 +0200 (Tue, 07 Apr 2009) New Revision: 3036 Modified: trunk/openvas-libnasl/ChangeLog trunk/openvas-libnasl/nasl/preparse.c trunk/openvas-libnasl/nasl/preparse.h Log: Minor cleanups in preparse module. * nasl/preparse.c: Updated doc, minor reformatting. * nasl/preparse.h (nasl_load_parsed_tree_buf): Removed proto for function that was removed with rev. 2003. Modified: trunk/openvas-libnasl/ChangeLog =================================================================== --- trunk/openvas-libnasl/ChangeLog 2009-04-07 05:29:53 UTC (rev 3035) +++ trunk/openvas-libnasl/ChangeLog 2009-04-07 07:08:30 UTC (rev 3036) @@ -1,3 +1,12 @@ +2009-04-07 Felix Wolfsteller + + Minor cleanups in preparse module. + + * nasl/preparse.c: Updated doc, minor reformatting. + + * nasl/preparse.h (nasl_load_parsed_tree_buf): Removed proto for + function that was removed with rev. 2003. + 2009-04-06 Michael Wiegand * packaging/debian/rules: Set the value for sysconfdir to /etc to be Modified: trunk/openvas-libnasl/nasl/preparse.c =================================================================== --- trunk/openvas-libnasl/nasl/preparse.c 2009-04-07 05:29:53 UTC (rev 3035) +++ trunk/openvas-libnasl/nasl/preparse.c 2009-04-07 07:08:30 UTC (rev 3036) @@ -1,4 +1,4 @@ -/* Nessus Attack Scripting Language +/* Nessus Attack Scripting Language * * Copyright (C) 2002 - 2004 Tenable Network Security * @@ -27,14 +27,18 @@ #include "nasl_regex.h" #include "nasl_debug.h" -extern int naslparse( naslctxt * ); +extern int naslparse (naslctxt *); /** - * Reload a preparse (if suitable) or parse a .nasl file anew. - * @return 0 on success, -1 on error + * @brief Parse a .nasl file anew. + * + * Older comments suggest that this function was thought to load preparses if + * the existed. + * + * @return 0 on success, -1 on error. */ int -nasl_reload_or_parse(naslctxt* ctx, const char* name) +nasl_reload_or_parse (naslctxt* ctx, const char* name) { if (init_nasl_ctx(ctx, name) < 0) return -1; @@ -45,6 +49,6 @@ nasl_clean_ctx(ctx); return -1; } - + return 0; } Modified: trunk/openvas-libnasl/nasl/preparse.h =================================================================== --- trunk/openvas-libnasl/nasl/preparse.h 2009-04-07 05:29:53 UTC (rev 3035) +++ trunk/openvas-libnasl/nasl/preparse.h 2009-04-07 07:08:30 UTC (rev 3036) @@ -20,8 +20,6 @@ #ifndef NASL_PREPARSE_H__ #define NASL_PREPARSE_H__ -int nasl_reload_or_parse(naslctxt* ctx, const char* name); +int nasl_reload_or_parse (naslctxt* ctx, const char* name); -int nasl_load_parsed_tree_buf(naslctxt * naslctx, char* buf, unsigned int len, const char * fname); - #endif From scm-commit at wald.intevation.org Tue Apr 7 09:29:06 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 09:29:06 +0200 (CEST) Subject: [Openvas-commits] r3037 - trunk/openvas-client Message-ID: <20090407072906.D7E7F40788@pyrosoma.intevation.org> Author: felix Date: 2009-04-07 09:29:06 +0200 (Tue, 07 Apr 2009) New Revision: 3037 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/TODO Log: * TODO: Updated (with quite old idea). Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-07 07:08:30 UTC (rev 3036) +++ trunk/openvas-client/ChangeLog 2009-04-07 07:29:06 UTC (rev 3037) @@ -1,3 +1,7 @@ +2009-04-07 Felix Wolfsteller + + * TODO: Updated (with quite old idea). + 2009-04-03 Jan-Oliver Wagner * MANIFEST: Updated. Modified: trunk/openvas-client/TODO =================================================================== --- trunk/openvas-client/TODO 2009-04-07 07:08:30 UTC (rev 3036) +++ trunk/openvas-client/TODO 2009-04-07 07:29:06 UTC (rev 3037) @@ -1,10 +1,16 @@ List of things that should/could be done to improve OpenVAS-Client: +2009-01-09 Felix Wolfsteller + + * Indicate that a scan was not finished if it was cancelled or an error + occured. So far, the report look as if everything went fine (and if you + push STOP SCAN early enough there are no holes, warnings, whatsoever). + 2009-01-02 Felix Wolfsteller - * Rename nessus/prefs_dialog and modules inside it. File and - function names in there became unbearable and misleading. + * Rename nessus/prefs_dialog and modules inside it. File and + function names in there became unbearable and misleading. 2008-10-21 Felix Wolfsteller From scm-commit at wald.intevation.org Tue Apr 7 09:44:27 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 09:44:27 +0200 (CEST) Subject: [Openvas-commits] r3038 - in trunk/openvas-plugins: . scripts Message-ID: <20090407074427.31BF340788@pyrosoma.intevation.org> Author: chandra Date: 2009-04-07 09:44:25 +0200 (Tue, 07 Apr 2009) New Revision: 3038 Added: trunk/openvas-plugins/scripts/secpod_cubecart_detect.nasl trunk/openvas-plugins/scripts/secpod_php_fusion_detect.nasl trunk/openvas-plugins/scripts/secpod_squid_detect.nasl Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/cubecart_lang_xss.nasl trunk/openvas-plugins/scripts/cubecart_xss.nasl trunk/openvas-plugins/scripts/mambo_flaws.nasl trunk/openvas-plugins/scripts/mambo_xss.nasl trunk/openvas-plugins/scripts/mambo_xss3.nasl trunk/openvas-plugins/scripts/php_fusion_6_00_110.nasl trunk/openvas-plugins/scripts/php_fusion_6_00_206_sql_injection.nasl trunk/openvas-plugins/scripts/php_fusion_sql_inject.nasl trunk/openvas-plugins/scripts/php_fusion_xss.nasl trunk/openvas-plugins/scripts/squid_2612.nasl trunk/openvas-plugins/scripts/squid_dos.nasl trunk/openvas-plugins/scripts/squid_rdos.nasl trunk/openvas-plugins/scripts/ypupdated_remote_exec.nasl Log: Added new plugins and addressed dependency issues Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,4 +1,25 @@ 2009-04-07 Chandrashekhar B + * scripts/squid_rdos.nasl, + scripts/php_fusion_xss.nasl, + scripts/cubecart_lang_xss.nasl, + scripts/ypupdated_remote_exec.nasl, + scripts/mambo_xss.nasl, + scripts/squid_dos.nasl, + scripts/cubecart_xss.nasl, + scripts/php_fusion_sql_inject.nasl, + scripts/mambo_flaws.nasl, + scripts/mambo_xss3.nasl, + scripts/php_fusion_6_00_206_sql_injection.nasl, + scripts/squid_2612.nasl, + scripts/php_fusion_6_00_110.nasl: + Added new dependency and fixed issues + + * scripts/secpod_cubecart_detect.nasl, + scripts/secpod_squid_detect.nasl, + scripts/secpod_php_fusion_detect.nasl: + Added new plugins + +2009-04-07 Chandrashekhar B * scripts/gb_gdiplus_int_overflow_vuln.nasl, scripts/gb_ms_powerpoint_code_exec_vuln.nasl, scripts/gb_apple_safari_xml_dos_vuln_win_apr09.nasl, Modified: trunk/openvas-plugins/scripts/cubecart_lang_xss.nasl =================================================================== --- trunk/openvas-plugins/scripts/cubecart_lang_xss.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/cubecart_lang_xss.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,3 +1,4 @@ +################################################################################## # # This script was written by David Maciejak # Ref: John Cobb @@ -3,4 +4,8 @@ # This script is released under the GNU GPL v2 # +# Updated: 04/07/2009 +# Antu Sanadi +# +################################################################################ if(description) @@ -9,54 +14,58 @@ script_id(17227); script_bugtraq_id(12549); script_cve_id("CVE-2005-0442", "CVE-2005-0443"); - if ( defined_func("script_xref") ) script_xref(name:"OSVDB", value:"14062"); - script_version("$Revision$"); script_name(english:"Brooky CubeCart index.php language XSS"); + diesc["english"] = " + The remote host runs CubeCart, is an eCommerce script written with PHP & MySQL. + This version is vulnerable to cross-site scripting and remote script + injection due to a lack of sanitization of user-supplied data. + Successful exploitation of this issue may allow an attacker to execute + malicious script code on a vulnerable server. - desc["english"] = " -The remote host runs CubeCart, is an eCommerce script written with PHP & MySQL. + Solution: Upgrade to version 2.0.5 or higher + Risk factor : Medium"; -This version is vulnerable to cross-site scripting and remote script -injection due to a lack of sanitization of user-supplied data. -Successful exploitation of this issue may allow an attacker to execute -malicious script code on a vulnerable server. - -Solution: Upgrade to version 2.0.5 or higher -Risk factor : Medium"; - script_description(english:desc["english"]); script_summary(english:"Checks Brooky CubeCart language XSS"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2005 David Maciejak"); script_family(english:"CGI abuses"); script_require_ports("Services/www", 80); - script_dependencie("cross_site_scripting.nasl", "cubecart_detect.nasl"); + script_dependencie("secpod_cubecart_detect.nasl"); exit(0); } -#the code include("http_func.inc"); include("http_keepalive.inc"); +include("url_func.inc"); +include("version_func.inc"); port = get_http_port(default:80); -if ( ! get_port_state(port))exit(0); -if ( ! can_host_php(port:port) ) exit(0); -if ( get_kb_item("www/" + port + "/generic_xss") ) exit(0); +if(!get_port_state(port)){ + exit(0); +} +version = get_kb_item(string("www/", port, "/cubecart")); +if(!version){ + exit(0); +} -# Test an install. -install = get_kb_item(string("www/", port, "/cubecart")); -if (isnull(install)) exit(0); -matches = eregmatch(string:install, pattern:"^(.+) under (/.*)$"); -if (!isnull(matches)) { - loc = matches[2]; +if(!safe_checks()) +{ + foreach dir (make_list("/cubecart/upload","/upload", cgi_dirs())) + { + buf= http_get(item:string(dir,"/index.php?&language="), port:port); + r = http_send_recv(port:port, data:buf); + if(egrep(pattern:"", string:r)){ + security_warning(port); + exit(0); + } + } +} - buf = http_get(item:string(loc,"/index.php?&language="), port:port); - r = http_keepalive_send_recv(port:port, data:buf, bodyonly:1); - - if(egrep(pattern:"", string:r)) - security_warning(port); +if(version_is_less_equal(version:version, test_version:"2.0.4")){ + security_warning(port); } Modified: trunk/openvas-plugins/scripts/cubecart_xss.nasl =================================================================== --- trunk/openvas-plugins/scripts/cubecart_xss.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/cubecart_xss.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,98 +1,81 @@ +##################################################################### # +# # Josh Zlatin-Amishav # # This script is released under the GNU GPLv2 # +# Updated: 04/07/2009 +# Antu Sanadi +# +################################################################### - if(description) { - script_id(19945); - script_cve_id("CVE-2005-3152"); - script_bugtraq_id(14962); - script_version ("$Revision$"); + script_id(19945); + script_cve_id("CVE-2005-3152"); + script_bugtraq_id(14962); + script_version ("$Revision$"); + script_name(english:"Multiple CubeCart XSS vulnerabilities"); + desc["english"] = " + Description : + The remote version of CubeCart contains several cross-site scripting + vulnerabilities to due to its failure to properly sanitize user-supplied + input of certain variables to the 'index.php' and 'cart.php' scripts. - name["english"] = "Multiple CubeCart XSS vulnerabilities"; - script_name(english:name["english"]); + See also: + http://lostmon.blogspot.com/2005/09/cubecart-303-multiple-variable-cross.html + Solution: + Upgrade to CubeCart version 3.0.4 or later. + Risk factor: - desc["english"] = " -Synopsis : + Low / CVSS Base Score : 3 + (AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:C)"; -The remote web server contains several PHP scripts that are prone to -cross-site scripting attacks. - -Description : - -The remote version of CubeCart contains several cross-site scripting -vulnerabilities to due to its failure to properly sanitize user-supplied -input of certain variables to the 'index.php' and 'cart.php' scripts. - -See also : - -http://lostmon.blogspot.com/2005/09/cubecart-303-multiple-variable-cross.html - -Solution : - -Upgrade to CubeCart version 3.0.4 or later. - -Risk factor : - -Low / CVSS Base Score : 3 -(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:C)"; - - - script_description(english:desc["english"]); - - summary["english"] = "Checks for XSS in index.php"; - - script_summary(english:summary["english"]); - - script_category(ACT_ATTACK); - - script_family(english:"CGI abuses : XSS"); - script_copyright(english:"Copyright (C) 2005 Josh Zlatin-Amishav"); - - script_dependencies("http_version.nasl", "cross_site_scripting.nasl","cubecart_detect.nasl"); - script_require_ports("Services/www", 80); - exit(0); + script_description(english:desc["english"]); + script_summary(english:"Checks for XSS in index.php"); + script_category(ACT_ATTACK); + script_family(english:"CGI abuses : XSS"); + script_copyright(english:"Copyright (C) 2005 Josh Zlatin-Amishav"); + script_dependencies("secpod_cubecart_detect.nasl"); + script_require_ports("Services/www", 80); + exit(0); } + include("http_func.inc"); include("http_keepalive.inc"); include("url_func.inc"); +include("version_func.inc"); - port = get_http_port(default:80); -if(!get_port_state(port))exit(0); -if(!can_host_php(port:port)) exit(0); -if ( get_kb_item("www/"+port+"/generic_xss") ) exit(0); -# Make sure this is really cubecart -install = get_kb_item(string("www/", port, "/cubecart")); -if (isnull(install)) exit(0); -matches = eregmatch(string:install, pattern:"^(.+) under (/.*)$"); -if (!isnull(matches)) { - ver = matches[1]; - dir = matches[2]; +if(!get_port_state(port)){ + exit(0); +} - # A simple alert. - xss = ""; - # nb: the url-encoded version is what we need to pass in. - exss = urlencode(str:xss); +version = get_kb_item(string("www/", port, "/cubecart")); +if(!version){ + exit(0); +} - req = http_get( - item:string( - dir, "/index.php?", - 'searchStr=">', exss, - "&act=viewCat&Submit=Go" - ), - port:port - ); - res = http_keepalive_send_recv(port:port, data:req, bodyonly:TRUE); +if(!safe_checks()) +{ + foreach dir (make_list("/cubecart/upload","/upload", cgi_dirs())) + { + xss = ""; + exss = urlencode(str:xss); + req = http_get(item:string(dir, "/index.php?",'searchStr=">', exss, + "&act=viewCat&Submit=Go"),port:port); + res = http_send_recv(port:port, data:req); + if(xss >< res) + { + security_note(port); + exit(0); + } + } +} - if ( xss >< res ) - { - security_note(port); - exit(0); - } +if(version_is_less_equal(version:version, test_version:"3.0.3")){ + security_warning(port); } Modified: trunk/openvas-plugins/scripts/mambo_flaws.nasl =================================================================== --- trunk/openvas-plugins/scripts/mambo_flaws.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/mambo_flaws.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,3 +1,4 @@ +################################################################################## # # This script was written by David Maciejak # Released under the GNU GPL v2 @@ -3,47 +4,33 @@ # Ref: Mindwarper # - +# Updated: 04/07/2009 +# Antu Sanadi +# +# +################################################################################# if (description) { - script_id(16315); - script_cve_id("CVE-2003-1204"); - script_bugtraq_id(6571, 6572); - if (defined_func("script_xref")) { - script_xref(name:"OSVDB", value:"7495"); - script_xref(name:"OSVDB", value:"7496"); - script_xref(name:"OSVDB", value:"7497"); - script_xref(name:"OSVDB", value:"7498"); - script_xref(name:"OSVDB", value:"7499"); - script_xref(name:"OSVDB", value:"7500"); - script_xref(name:"OSVDB", value:"7501"); - script_xref(name:"OSVDB", value:"7502"); - script_xref(name:"OSVDB", value:"7503"); - script_xref(name:"OSVDB", value:"7504"); - script_xref(name:"OSVDB", value:"7505"); - script_xref(name:"OSVDB", value:"7506"); - script_xref(name:"OSVDB", value:"7507"); - script_xref(name:"OSVDB", value:"7508"); - } - script_version ("$Revision$"); + script_id(16315); + script_cve_id("CVE-2003-1204"); + script_bugtraq_id(6571, 6572); + script_version ("$Revision$"); + script_name(english:"Mambo Site Server XSS and remote arbitrary code execution"); + desc["english"] = " + An attacker may use the installed version of Mambo Site Server to + perform a cross site scripting attack on this host or execute arbitrary + code through the gallery image uploader under the administrator + directory. + See also : http://www.securityfocus.com/archive/1/306206 + Solution: Upgrade to the latest version of this software. + Risk factor : Medium"; - script_name(english:"Mambo Site Server XSS and remote arbitrary code execution"); - desc["english"] = " -An attacker may use the installed version of Mambo Site Server to -perform a cross site scripting attack on this host or execute arbitrary -code through the gallery image uploader under the administrator -directory. - -See also : http://www.securityfocus.com/archive/1/306206 -Solution: Upgrade to the latest version of this software. -Risk factor : Medium"; - - script_description(english:desc["english"]); - script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack and remote flaw"); - script_category(ACT_GATHER_INFO); - script_family(english:"CGI abuses : XSS"); - script_copyright(english:"This script is Copyright (C) 2005 David Maciejak"); - script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); - script_require_ports("Services/www", 80); - exit(0); + script_description(english:desc["english"]); + script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack and remote flaw"); + script_category(ACT_GATHER_INFO); + script_family(english:"CGI abuses : XSS"); + script_copyright(english:"This script is Copyright (C) 2005 David Maciejak"); + script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); + script_require_ports("Services/www", 80); + exit(0); } @@ -52,23 +39,28 @@ include("http_keepalive.inc"); port = get_http_port(default:80); -if(!get_port_state(port))exit(0); -if(get_kb_item(string("www/", port, "/generic_xss"))) exit(0); -if(!can_host_php(port:port)) exit(0); +if(!get_port_state(port)){ + exit(0); +} +version=get_kb_item(string("www/", port, "/mambo_mos")); +if(!version){ + exit(0); +} -# Test an install. -install = get_kb_item(string("www/", port, "/mambo_mos")); -if (isnull(install)) exit(0); -matches = eregmatch(string:install, pattern:"^(.+) under (/.*)$"); -if (!isnull(matches)) { - dir = matches[2]; +matches = eregmatch(string:version, pattern:"^(.+) under (/.*)$"); +if(!matches){ + exit(0); +} + dir = matches[2]; url = string(dir, "/themes/mambosimple.php?detection=detected&sitename="); req = http_get(item:url, port:port); - buf = http_keepalive_send_recv(port:port, data:req, bodyonly:1); - if( buf == NULL ) exit(0); - - if ( '' >< resp ) security_warning(port); -} + Modified: trunk/openvas-plugins/scripts/mambo_xss.nasl =================================================================== --- trunk/openvas-plugins/scripts/mambo_xss.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/mambo_xss.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,64 +1,69 @@ -# +################################################################################## # Written by K-Otik.com # # Mambo Site Server 4.0.10 XSS attack # +# Updated: 04/07/2009 +# Antu Sanadi # # Message-ID: <1642444765.20030319015935 at olympos.org> -# From: Ertan Kurt +# From: Ertan Kurt # To: # Subject: Some XSS vulns -# - -if (description) +################################################################################## +if(description) { - script_id(11441); - script_cve_id("CVE-2003-1203"); - script_bugtraq_id(7135); - if (defined_func("script_xref")) { - script_xref(name:"OSVDB", value:"7493"); - } - script_version ("$Revision$"); + script_id(11441); + script_cve_id("CVE-2003-1203"); + script_bugtraq_id(7135); + script_version ("$Revision$"); + script_name(english:"Mambo Site Server 4.0.10 XSS"); + desc["english"] = " + An attacker may use the installed version of Mambo Site Server to + perform a cross site scripting attack on this host. + Solution: Upgrade to a newer version. - script_name(english:"Mambo Site Server 4.0.10 XSS"); - desc["english"] = " -An attacker may use the installed version of Mambo Site Server to -perform a cross site scripting attack on this host. + Risk factor : Medium"; -Solution: Upgrade to a newer version. -Risk factor : Medium"; - - script_description(english:desc["english"]); - script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack"); - script_category(ACT_GATHER_INFO); - script_family(english:"CGI abuses : XSS", francais:"Abus de CGI"); - script_copyright(english:"This script is Copyright (C) 2003 k-otik.com"); - script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); - script_require_ports("Services/www", 80); - exit(0); + script_description(english:desc["english"]); + script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack"); + script_category(ACT_GATHER_INFO); + script_family(english:"CGI abuses : XSS"); + script_copyright(english:"This script is Copyright (C) 2003 k-otik.com"); + script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); + script_require_ports("Services/www", 80); + exit(0); } + + include("http_func.inc"); include("http_keepalive.inc"); port = get_http_port(default:80); -if(!get_port_state(port))exit(0); -if(get_kb_item(string("www/", port, "/generic_xss"))) exit(0); -if(!can_host_php(port:port)) exit(0); +if(!get_port_state(port)){ + exit(0); +} -# Test an install. -install = get_kb_item(string("www/", port, "/mambo_mos")); -if (isnull(install)) exit(0); -matches = eregmatch(string:install, pattern:"^(.+) under (/.*)$"); -if (!isnull(matches)) { - dir = matches[2]; +version=get_kb_item(string("www/", port, "/mambo_mos")); +if(!version){ + exit(0); +} - url = string(dir, "/index.php?option=search&searchword="); - req = http_get(item:url, port:port); - buf = http_keepalive_send_recv(port:port, data:req, bodyonly:1); - if( buf == NULL ) exit(0); - - if ( "" >< buf) - security_warning(port); +matches = eregmatch(string:version, pattern:"^(.+) under (/.*)$"); +if(!imatches){ + exit(0); } + +dir = matches[2]; +url = string(dir, "/index.php?option=search&searchword="); +req = http_get(item:url, port:port); +resp = http_keepalive_send_recv(port:port, data:req, bodyonly:1); +if(!resp){ + exit(0); +} + +if( "" >< resp) + security_warning(port); + Modified: trunk/openvas-plugins/scripts/mambo_xss3.nasl =================================================================== --- trunk/openvas-plugins/scripts/mambo_xss3.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/mambo_xss3.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,3 +1,4 @@ +################################################################################## # # This script was written by David Maciejak # Released under the GNU GPL v2 @@ -3,56 +4,61 @@ # Ref: JeiAr - GulfTech Security Research Team # +# Updated: 04/07/2009 +# Antu Sanadi +# +# +################################################################################# -if (description) +if(description) { - script_id(16316); - script_cve_id("CVE-2004-1825"); - script_bugtraq_id(9890); - if ( defined_func("script_xref") ) { - script_xref(name:"OSVDB", value:"4308"); - script_xref(name:"OSVDB", value:"4665"); - } - script_version ("$Revision$"); + script_id(16316); + script_cve_id("CVE-2004-1825"); + script_bugtraq_id(9890); + script_version ("$Revision$"); + script_name(english:"Mambo Site Server index.php mos_change_template XSS"); + desc["english"] = " + An attacker may use the installed version of Mambo Site Server to + perform a cross site scripting attack on this host. + Solution: Upgrade at least to version 4.5 1.0.4 + Risk factor : Medium"; - script_name(english:"Mambo Site Server index.php mos_change_template XSS"); - desc["english"] = " -An attacker may use the installed version of Mambo Site Server to -perform a cross site scripting attack on this host. + script_description(english:desc["english"]); + script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack"); + script_category(ACT_GATHER_INFO); + script_family(english:"CGI abuses : XSS"); + script_copyright(english:"This script is Copyright (C) 2005 David Maciejak"); + script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); + script_require_ports("Services/www", 80); + exit(0); +} -Solution: Upgrade at least to version 4.5 1.0.4 -Risk factor : Medium"; - script_description(english:desc["english"]); - script_summary(english:"Determine if Mambo Site Server is vulnerable to xss attack"); - script_category(ACT_GATHER_INFO); - script_family(english:"CGI abuses : XSS"); - script_copyright(english:"This script is Copyright (C) 2005 David Maciejak"); - script_dependencie("mambo_detect.nasl", "cross_site_scripting.nasl"); - script_require_ports("Services/www", 80); - exit(0); -} - include("http_func.inc"); include("http_keepalive.inc"); port = get_http_port(default:80); -if(!get_port_state(port))exit(0); -if(get_kb_item(string("www/", port, "/generic_xss"))) exit(0); -if(!can_host_php(port:port)) exit(0); +if(!get_port_state(port)){ + exit(0); +} -# Test an install. -install = get_kb_item(string("www/", port, "/mambo_mos")); -if (isnull(install)) exit(0); -matches = eregmatch(string:install, pattern:"^(.+) under (/.*)$"); -if (!isnull(matches)) { - dir = matches[2]; +mambVer= get_kb_item(string("www/", port, "/mambo_mos")); +if(!mambVer){ + exit(0); +} - url = string(dir, "/index.php?mos_change_template="); - req = http_get(item:url, port:port); - buf = http_keepalive_send_recv(port:port, data:req, bodyonly:1); - if( buf == NULL ) exit(0); - - if ( '

      foo"); +req = http_get(item:url, port:port); +resp = http_keepalive_send_recv(port:port, data:req, bodyonly:1); +if(!resp){ + exit(0); +} + +if('< res) { - # Try to exploit the flaw to register a user. - user = rand_str(charset:"abcdefghijklmnopqrstuvwxyz0123456789_"); - pass = rand_str(); - email = string(user, "@", get_host_name()); - sploit = string( - "UNION SELECT ", - '"",', - '"",', - '0,', - "'a:4:{", +if(!safe_checks()) +{ + foreach dir (make_list("/php-fusion", cgi_dirs())) + { + user = rand_str(charset:"abcdefghijklmnopqrstuvwxyz0123456789_"); + pass = rand_str(); + email = string(user, "@", get_host_name()); + sploit = string("UNION SELECT ",'"",', '"",', '0,',"'a:4:{", 's:9:"user_name";s:', strlen(user), ':"', user, '";', 's:13:"user_password";s:', strlen(pass), ':"', pass, '";', 's:10:"user_email";s:', strlen(email), ':"', email, '";', 's:15:"user_hide_email";s:1:"1";', - "}" - ); - # - # nb: the code sanitizes GETs so we can't use that. - postdata = string("activate=", rand_str(), "'+", urlencode(str:sploit)); - req = string( + "}" + ); + + postdata = string("activate=", rand_str(), "'+", urlencode(str:sploit)); + req = string( "POST ", dir, "/register.php?plugin=", SCRIPT_NAME, " HTTP/1.1\r\n", "Host: ", get_host_name(), "\r\n", "Content-Type: application/x-www-form-urlencoded\r\n", "Content-Length: ", strlen(postdata), "\r\n", "\r\n", postdata - ); - res = http_keepalive_send_recv(port:port, data:req, bodyonly:TRUE); - if (res == NULL) exit(0); + ); - if ( "Your account has been verified." >< res) - { - if (report_verbosity > 0) { - report = string( - desc["english"], - "\n", - "\n", - "Plugin output :\n", - "\n", - "OpenVAS has successfully exploited one of the flaws by adding\n", - "the user '", user, "' to PHP-Fusion on the remote host.\n" - ); - } - else report = desc["english"]; + res = http_keepalive_send_recv(port:port, data:req, bodyonly:TRUE); + if(res == NULL){ + exit(0); + } - security_note(port:port, data:report); - exit(0); - } + if("Your account has been verified." >< res){ + security_warning(port); + exit(0); } } +} - # Check the version number in case registrations are disabled or safe checks are enabled. - if (ver =~ "^([0-5][.,]|6[.,]00[.,](0|10[0-9]))") { - report = str_replace( - string:desc["english"], - find:"See also :", - replace:string( - "***** OpenVAS has determined the vulnerability exists on the remote\n", - "***** host simply by looking at the version number of PHP-Fusion\n", - "***** installed there.\n", - "\n", - "See also :" - ) - ); - security_note(port:port, data:report); - } +if(version_is_less_equal(version:phpVer, test_version:"6.00.100")){ + security_warning(port); } Modified: trunk/openvas-plugins/scripts/php_fusion_6_00_206_sql_injection.nasl =================================================================== --- trunk/openvas-plugins/scripts/php_fusion_6_00_206_sql_injection.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/php_fusion_6_00_206_sql_injection.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,117 +1,67 @@ +######################################################################### # -# Script Written By Ferdy Riphagen +# +# Script Written By Ferdy Riphagen # # +# Updated: 04/07/2009 +# Antu Sanadi + # Script distributed under the GNU GPLv2 License. # +########################################################################## +if(description) +{ + script_id(200010); + script_version("$Revision: 1.0 $"); + script_cve_id("CVE-2005-3740"); + script_bugtraq_id(15502); + script_name(english:"PHP-Fusion <= 6.00.206 Forum SQL Injection Vulnerability"); + desc["english"] = " + Description : + A vulnerability is reported in the forum module of PHP-Fusion + 6.00.206 and some early released versions. + When the forum module is activated, a registered user + can execute arbitrary SQL injection commands. -desc["english"] = " -Synopsis : + The failure exists because the application does not properly + sanitize user-supplied input in 'options.php' and 'viewforum.php' + before using it in the SQL query, and magic_quotes_gpc is set to off. -The remote web server contains a PHP script that is prone to SQL -injection attacks. + See also: + http://www.securityfocus.com/bid/15502 + http://secunia.com/advisories/17664/ -Description : + Solution: + Apply the patch from the php-fusion main site: + http://www.php-fusion.co.uk/downloads.php?cat_id=3 -PHP-Fusion is installed on the remote system. -It is a light-weight open-source content management system (CMS). - -A vulnerability is reported in the forum module of PHP-Fusion -6.00.206 and some early released versions. -When the forum module is activated, a registered user -can execute arbitrary SQL injection commands. - -The failure exists because the application does not properly -sanitize user-supplied input in 'options.php' and 'viewforum.php' -before using it in the SQL query, and magic_quotes_gpc is set to off. - -See also : - -http://www.securityfocus.com/bid/15502 -http://secunia.com/advisories/17664/ - -Solution : - -Apply the patch from the php-fusion main site: -http://www.php-fusion.co.uk/downloads.php?cat_id=3 - -Risk factor : - -Medium"; - - -if (description) { -script_id(200010); -script_version("$Revision: 1.0 $"); - -script_cve_id("CVE-2005-3740"); -script_bugtraq_id(15502); - -name["english"] = "PHP-Fusion <= 6.00.206 Forum SQL Injection Vulnerability"; -script_name(english:name["english"]); - -script_description(english:desc["english"]); - -summary["english"] = "Check if PHP-Fusion is vulnerable to SQL Injection attacks"; -script_summary(english:summary["english"]); - -script_category(ACT_ATTACK); -script_family(english:"CGI abuses"); - -script_copyright(english:"This script is Copyright (C) 2005 Ferdy Riphagen"); - -script_dependencie("http_version.nasl"); -script_require_ports("Services/www", 80); -script_exclude_keys("Settings/disable_cgi_scanning"); - -exit(0); + Risk factor:Medium"; + script_description(english:desc["english"]); + script_summary(english:"Check if PHP-Fusion is vulnerable to SQL Injection attacks"); + script_category(ACT_ATTACK); + script_family(english:"CGI abuses"); + script_copyright(english:"This script is Copyright (C) 2005 Ferdy Riphagen"); + script_dependencie("secpod_php_fusion_detect.nasl"); + script_require_ports("Services/www", 80); + exit(0); } + include("http_func.inc"); -include("http_keepalive.inc"); -include("global_settings.inc"); +include("version_func.inc"); port = get_http_port(default:80); -if (!get_port_state(port)) exit(0); -if (!can_host_php(port:port)) exit(0); +if(!get_port_state(port)){ + exit(0); +} -if (thorough_tests) dirs = make_list("/php-files", "/forum", "/", "/fusion", cgi_dirs()); -else dirs = make_list(cgi_dirs()); - -foreach dir (dirs) -{ - # Check if PHP-Fusion exists. - res = http_get_cache(item:string(dir, "/news.php"), port:port); - if (res == NULL) exit(0); - - # Check for the vulnerable versions. - if (egrep(pattern: ">Powered by.*PHP-Fusion.*v([45]\.0[01])|6\.(00\.(1[01][56790]|20[46]))", string: res)) - { - line = egrep(pattern: ">Powered by.*PHP-Fusion", string: res); - - note = string( - "***** Nessus has determined that the vulnerable PHP-Fusion version\n", - "***** is installed on the remote host by checking its version number.\n", - "***** This might be an false positive.\n"); - - # Check and build the version. - version = ereg_replace(pattern:".*>Powered by.* v([0-9.]+).*", string:line, replace:"\1"); - if (version != line) - { - # Build the report. - report = string( - desc["english"], "\n\n", - "Plugin output :\n\n", - "PHP-Fusion is installed on the remote system.\n", - "The version of the application is:\n", - "PHP-Fusion v", version, "\n\n", - "Note :\n\n", note); - } - else report =string( - desc["english"], "\n\n", - "Note :\n\n", note); - - security_warning(port:port, data:report); +version = get_kb_item("www/" + port + "/php-fusion"); +if(!version){ exit(0); - } } + +if(version_is_less_equal(version:version, test_version:"6.00.206")){ + security_warning(port); +} + Modified: trunk/openvas-plugins/scripts/php_fusion_sql_inject.nasl =================================================================== --- trunk/openvas-plugins/scripts/php_fusion_sql_inject.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/php_fusion_sql_inject.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,3 +1,4 @@ +################################################################################## # # This script was written by David Maciejak # based on work from @@ -5,84 +6,58 @@ # # Ref: r0ut3r # +# Updated: 04/07/2009 +# Antu Sanadi # This script is released under the GNU GPL v2 # # Fixes by Tenable: # - added CVE and additional OSVDB xrefs. # - +################################################################################ if(description) { - script_id(15433); - script_cve_id("CVE-2004-2437", "CVE-2004-2438"); - script_bugtraq_id(11296, 12425); - if (defined_func("script_xref")) { - script_xref(name:"OSVDB", value:"10437"); - script_xref(name:"OSVDB", value:"10438"); - script_xref(name:"OSVDB", value:"10439"); - } - script_version("$Revision$"); - - name["english"] = "PHP-Fusion members.php SQL injection"; + script_id(15433); + script_cve_id("CVE-2004-2437", "CVE-2004-2438"); + script_bugtraq_id(11296, 12425); + script_version("$Revision$"); + script_name(english:"PHP-Fusion members.php SQL injection"); + desc["english"] = " + Description : + A vulnerability exists in the remote version of PHP-Fusion that may + allow an attacker to inject arbitrary SQL code and possibly execute + arbitrary code, due to improper validation of user supplied input in the + 'rowstart' parameter of script 'members.php'. - script_name(english:name["english"]); - - desc["english"] = " -Synopsis : + Solution: + Upgrade to new verson. -The remote web server contains several PHP scripts that suffer from -multiple flaws. + Risk factor:Medium"; -Description : - -A vulnerability exists in the remote version of PHP-Fusion that may -allow an attacker to inject arbitrary SQL code and possibly execute -arbitrary code, due to improper validation of user supplied input in the -'rowstart' parameter of script 'members.php'. - -In addition to this, the remote version of this software also contains -an information disclosure vulnerability which may give an attacker more -information about the setup of the remote host. - -Solution : - -Unknown at this time. - -Risk factor : - -Medium / CVSS Base Score : 5 -(AV:R/AC:L/Au:NR/C:P/A:N/I:P/B:N)"; - - script_description(english:desc["english"]); - - summary["english"] = "Checks the version of the remote PHP-Fusion"; - - script_summary(english:summary["english"]); - - script_category(ACT_GATHER_INFO); - - script_copyright(english:"This script is Copyright (C) 2004 David Maciejak"); - family["english"] = "CGI abuses"; - script_family(english:family["english"]); - script_dependencie("php_fusion_detect.nasl"); - script_require_ports("Services/www", 80); - exit(0); + script_description(english:desc["english"]); + script_summary(english: "Checks the version of the remote PHP-Fusion"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"This script is Copyright (C) 2004 David Maciejak"); + script_family(english: "CGI abuses"); + script_dependencie("secpod_php_fusion_detect.nasl"); + script_require_ports("Services/www", 80); + exit(0); } -# -# The script code starts here -# include("http_func.inc"); -include("http_keepalive.inc"); +include("version_func.inc"); port = get_http_port(default:80); -if(!get_port_state(port))exit(0); +if(!get_port_state(port)){ + exit(0); +} -kb = get_kb_item("www/" + port + "/php-fusion"); -items = eregmatch(pattern:"(.*) under (.*)", string:kb); -version = items[1]; +version = get_kb_item("www/" + port + "/php-fusion"); +if(!version){ + exit(0); +} -if ( ereg(pattern:"^([0-3][.,]|4[.,]0[01])", string:version) ) - security_warning(port); +if(version_is_less_equal(version:version,test_version:"4.0.1")){ + security_warning(port); +} Modified: trunk/openvas-plugins/scripts/php_fusion_xss.nasl =================================================================== --- trunk/openvas-plugins/scripts/php_fusion_xss.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/php_fusion_xss.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,76 +1,55 @@ -# +################################################################################### # This script was written by David Maciejak # based on work from # (C) Tenable Network Security # # Ref: Espen Andersson +# Updated: 04/07/2009 +# Antu Sanadi # # This script is released under the GNU GPL v2 # - +################################################################################# if(description) { - script_id(15392); - if ( defined_func("script_xref") ) script_xref(name:"OSVDB", value:"10348"); - script_version("$Revision$"); - - name["english"] = "PHP-Fusion homepage address XSS"; + script_id(15392); + script_version("$Revision$"); + script_name(english:"PHP-Fusion homepage address XSS"); + desc["english"] = " + Description : + A vulnerability exists in the remote version of PHP-Fusion that may + allow an attacker to execute arbitrary HTML and script code in the + context of the user's browser. - script_name(english:name["english"]); - - desc["english"] = " -Synopsis : + Solution: + Apply the patch for 4.01. -The remote web server contains a PHP script that is prone to -cross-site scripting attacks. + Risk factor:informational"; -Description : - -A vulnerability exists in the remote version of PHP-Fusion that may -allow an attacker to execute arbitrary HTML and script code in the -context of the user's browser. - -Solution : - -Apply the patch for 4.01. - -Risk factor : - -Low / CVSS Base Score : 2 -(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N)"; - - script_description(english:desc["english"]); - - summary["english"] = "Checks the version of the remote PHP-Fusion"; - - script_summary(english:summary["english"]); - - script_category(ACT_GATHER_INFO); - - script_copyright(english:"This script is Copyright (C) 2004 David Maciejak"); - family["english"] = "CGI abuses : XSS"; - script_family(english:family["english"]); - script_dependencie("php_fusion_detect.nasl"); - script_require_ports("Services/www", 80); - exit(0); + script_description(english:desc["english"]); + script_summary(english:"Checks the version of the remote PHP-Fusion"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"This script is Copyright (C) 2004 David Maciejak"); + script_family(english:"CGI abuses : XSS"); + script_dependencie("secpod_php_fusion_detect.nasl"); + script_require_ports("Services/www", 80); + exit(0); } -# -# The script code starts here -# - include("http_func.inc"); include("http_keepalive.inc"); - +include("version_func.inc"); port = get_http_port(default:80); -if(!get_port_state(port))exit(0); +if(!get_port_state(port)){ + exit(0); +} -kb = get_kb_item("www/" + port + "/php-fusion"); -if ( ! kb ) exit(0); +version = get_kb_item("www/" + port + "/php-fusion"); +if(!version){ + exit(0); +} -items = eregmatch(pattern:"(.*) under (.*)", string:kb); -version = items[1]; - -if ( ereg(pattern:"([0-3][.,]|4[.,]0[01])", string:version) ) - security_warning(port); +if(version_is_less_equal(version:version, test_version:"4.00")){ + security_warning(port); +} Added: trunk/openvas-plugins/scripts/secpod_cubecart_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/secpod_cubecart_detect.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/secpod_cubecart_detect.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -0,0 +1,72 @@ +############################################################################## +# OpenVAS Vulnerability Test +# $Id:secpod_cubecart_detect.nasl 1093 2009-03-24 20:05:29Z Mar $ +# +# Detection of cubecart Version +# +# Authors: +# Antu Sanadi +# +# Copyright: +# Copyright (c) 2009 SecPod, http://www.secpod.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +################################################################################ + +if(description) +{ + script_id(900614); + script_version("$Revision: 1.0 $"); + script_name(english:"Detecting the cubecart version"); + desc["english"] = " + Overview:This script finds the version of the CubeCart installed + on remote system and sets the equivelent value in the KB. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Detects the version of cubecart and sets the kb value"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 SecPod"); + script_family(english:"Service detection"); + script_require_ports("Services/www", 80); + script_dependencies("find_service.nes"); + exit(0); +} + + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); +if(!port){ + exit(0); +} + +foreach dir (make_list("/cubecart/upload","/upload", cgi_dirs())) +{ + sndReq = http_get(item:string(dir, "/index.php"), port:port); + rcvRes =http_send_recv(port:port, data:sndReq); + if(rcvRes == NULL){ + exit(0); + } + if(egrep(pattern:"^HTTP/.* 200 OK", string:rcvRes) && ("CubeCart" >< rcvRes)) + { + cubecartVer = egrep(pattern:"CubeCart [0-9.]+", string:rcvRes); + version = eregmatch(pattern:"> ([0-9.]+)", string:cubecartVer); + if(version[1]!= NULL){ + set_kb_item(name:"www/"+ port + "/cubecart",value:version[1]); + } + } +} Added: trunk/openvas-plugins/scripts/secpod_php_fusion_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/secpod_php_fusion_detect.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/secpod_php_fusion_detect.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -0,0 +1,97 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id:secpod_php_fusion_detect.nasl 1091 2009-03-19 17:05:29Z Feb $ +# +# Detection of php_fusion Version +# +# Authors: +# Antu Sanadi +# +# Copyright: +# Copyright (c) 2009 SecPod, http://www.secpod.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +################################################################################ +if(description) +{ + script_id(900612); + script_version("$Revision: 1.0 $"); + script_name(english:"Detectintg the Version of php-fusion"); + desc["english"] = " + Overview:This script finds the versiom of the php-fusion installed + on remote sytem and sets the equivelent value in the KB. + + Risk factor : Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Detects the version of php-fusion and sets the kb value"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 SecPod"); + script_family(english:"Service detection"); + script_dependencies("find_service.nes"); + script_require_ports("Services/ftp", 21); + exit(0); +} + + +include("http_func.inc"); +include("http_keepalive.inc"); + +port = get_http_port(default:80); +if(!port){ + exit(0); +} + +foreach dir (make_list("/php-files", "/php-fusion/php-files" ,cgi_dirs())) +{ + + sndReq = http_get(item:string(dir, "/news.php"), port:port); + rcvRes = http_keepalive_send_recv(port:port, data:sndReq); + + if(rcvRes == NULL){ + exit(0); + } + + if(egrep(pattern:"^HTTP/.* 200 OK", string:rcvRes) && + ("PHP-Fusion Powered" >< rcvRes)) + { + + matchline = egrep(pattern:"v[0-9.]+", string:rcvRes); + matchVersion = eregmatch(pattern:"> v([0-9.]+)", string:matchline); + + if(matchVersion[1]!= NULL) + { + set_kb_item(name:"www/"+ port + "/php-fusion",value:matchVersion[1]); + exit(0); + } + } + + sndReq = http_get(item:string(dir, "/readme-en.html"), port:port); + rcvRes = http_keepalive_send_recv(port:port, data:sndReq); + + if(rcvRes == NULL){ + exit(0); + } + + if(egrep(pattern:"^HTTP/.* 200 OK", string:rcvRes) && + ("PHP-Fusion Readme" >< rcvRes)) + { + matchline = egrep(pattern:"Version: [0-9.]+", string:rcvRes); + matchVersion = eregmatch(pattern:"> ([0-9.]+)", string:matchline); + if(matchVersion[1]!= NULL){ + set_kb_item(name:"www/"+ port + "/php-fusion",value:matchVersion[1]); + } + exit(0); + } +} Added: trunk/openvas-plugins/scripts/secpod_squid_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/secpod_squid_detect.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/secpod_squid_detect.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -0,0 +1,79 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id: secpod_squid_detect.nasl 1089 2009-03-17 20:05:29Z Feb $ +# +# Squid Version Detection +# +# Authors: +# Antu Sanadi +# +# Copyright: +# Copyright (c) 2009 SecPod, http://www.secpod.com +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +################################################################################ + +if(description) +{ + script_id(900611); + script_version ("$Revision: 1.2 $"); + script_name(english:"Squid Version Detection"); + desc["english"] = " + Overview: This scripts determines the version of squid server and + sets the value in KB. + + Risk factor:Informational"; + + script_description(english:desc["english"]); + script_summary(english:"Sets KB of Squid Version"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"Copyright (C) 2009 SecPod."); + script_family(english:"Service detection"); + script_dependencie("find_service.nes"); + script_require_ports("Services/www", 3128, 8080); + exit(0); +} + + +include("http_func.inc"); + +port = get_kb_item("Services/http_proxy"); +if(!port){ + port = 3128; +} + +if(!get_port_state(port)){ + port = 8080; +} + +if(!get_port_state(port)){ + exit(0); +} + +soc = http_open_socket(port); +if(!soc){ + exit(0); +} + +req = http_get(item:"http://www.$$$$$", port:port); +send(socket:soc, data:req); + +res = http_recv(socket:soc); +http_close_socket(soc); + +data = egrep(pattern:"^Server: ", string:res); +version = data - "Server: squid/" - '\r\n'; +if(version){ + set_kb_item(name:"www/" + port + "/Squid", value:version); +} Modified: trunk/openvas-plugins/scripts/squid_2612.nasl =================================================================== --- trunk/openvas-plugins/scripts/squid_2612.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/squid_2612.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,73 +1,61 @@ +################################################################################### # +# # This script was written by David Maciejak # +# Updated: 04/07/2009 +# Antu Sanadi # This script is released under the GNU GPLv2 # # kst-depend-misc +################################################################################# -if (description) +if(description) { -script_id(80017); -script_version("$Revision: 1.4 $"); + script_id(80017); + script_version("$Revision: 1.4 $"); + script_bugtraq_id(80017); + script_cve_id("CVE-2007-1560"); + desc["english"] = " + Synopsis : + A vulnerability in TRACE request processing has been reported in Squid, + which can be exploited by malicious people to cause a denial of service. -script_bugtraq_id(80017); -script_xref(name:"OSVDB", value:"34367"); -script_cve_id("CVE-2007-1560"); + See also: + http://www.squid-cache.org/Advisories/SQUID-2007_1.txt + Solution: + Upgrade to squid 2.6 or newer. -desc["english"] = " -Synopsis : + Risk factor:Medium"; + script_description(english:desc["english"]); + script_name(english:"Squid < 2.6.STABLE12"); + script_summary(english:"Determines squid version"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"This script is Copyright (C) 2007 David Maciejak"); + script_family(english:"Denial of Service"); + script_dependencies("secpod_squid_detect.nasl"); + exit(0); +} -The remote proxy server is vulnerable to a denial of service -vulnerability. -Description : +include("version_func.inc"); +port = get_kb_item("Services/http_proxy"); +if(!port){ + port = 3128; +} -A vulnerability in TRACE request processing has been reported in Squid, -which can be exploited by malicious people to cause a denial of service. - -See also : - -http://www.squid-cache.org/Advisories/SQUID-2007_1.txt - -Solution : - -Upgrade to squid 2.6.STABLE12 or newer. - -Risk factor : - -Medium / CVSS Base Score : 5.0 -(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)"; -script_description(english:desc["english"]); - -script_name(english:"Squid < 2.6.STABLE12"); -summary["english"] = "Determines squid version"; -script_summary(english:summary["english"]); - -script_category(ACT_GATHER_INFO); -script_copyright(english:"This script is Copyright (C) 2007 David Maciejak"); -family["english"] = "Denial of Service"; -script_family(english:family["english"]); - -script_dependencies("proxy_use.nasl"); -script_require_ports("Services/http_proxy",3128, 8080); -exit(0); +if(!get_port_state(port)){ + port = 8080; } -include("global_settings.inc"); -include("http_func.inc"); -include("http_keepalive.inc"); -# nb: only run the plugin if we're being paranoid to avoid false-positives, -# which might arise because the software is open-source. -if (report_paranoia < 2) exit(0); - -port = get_kb_item("Services/http_proxy"); -if(!port)port = 3128; -if(!get_port_state(port))port = 8080; - -if(get_port_state(port)) +squidVer =get_kb_item(string("www/", port, "/Squid")); +if(!squidVer){ + exit(0); +} +# checking for the Version < =2.6 +if(egrep(pattern:"2\.([0-5]\.|6\.STABLE([0-9][^0-9]|1[01][^0-9]))", string:squidVer)) { - res = http_get_cache(item:"/", port:port); - if(res && egrep(pattern:"[Ss]quid/2\.([0-5]\.|6\.STABLE([0-9][^0-9]|1[01][^0-9]))", string:res)) - security_warning(port); + security_warning(port); + exit(0); } Modified: trunk/openvas-plugins/scripts/squid_dos.nasl =================================================================== --- trunk/openvas-plugins/scripts/squid_dos.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/squid_dos.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,88 +1,70 @@ +################################################################################### # # This script was written by Adam Baldwin # +# Updated: 04/07/2009 +# Antu Sanadi # See the Nessus Scripts License for details # - +################################################################################# if(description) { - script_id(10768); - script_bugtraq_id(3354); - script_cve_id("CVE-2001-0843"); - script_version ("$Revision$"); - name["english"] = "DoSable squid proxy server"; - script_name(english:name["english"]); - desc["english"] = " -A problem exists in the way the remote Squid proxy server handles a -special 'mkdir-only' PUT request, and causes denial of service to the proxy -server. + script_id(10768); + script_bugtraq_id(3354); + script_cve_id("CVE-2001-0843"); + script_version ("$Revision$"); + script_name(english:"DoSable squid proxy server"); + desc["english"] = " + A problem exists in the way the remote Squid proxy server handles a + special 'mkdir-only' PUT request, and causes denial of service to the proxy + server. + An attacker may use this flaw to prevent your LAN users from accessing + the web. -An attacker may use this flaw to prevent your LAN users from accessing -the web. + Solution:Apply the vendor released patch, for squid it is located here: + www.squid-cache.org. You can also protect yourself by enabling access lists + on your proxy. -Solution: Apply the vendor released patch, for squid it is located here: -www.squid-cache.org. You can also protect yourself by enabling access lists -on your proxy. - -*** Note that OpenVAS solely relied on the version number of the remote -*** proxy to issue this warning - -Risk factor : Medium / High"; - script_description(english:desc["english"]); - summary["english"] = "Determines via ver. if a proxy server is DoSable"; - script_summary(english:summary["english"]); - script_category(ACT_GATHER_INFO); - family["english"] = "Denial of Service"; - script_family(english:family["english"]); - script_copyright(english:"This script is Copyright (C) 2001 Adam Baldwin"); - script_dependencies("find_service.nes", "proxy_use.nasl"); - script_require_ports("Services/http_proxy", 8080, 3128); - exit(0); + Risk factor : Medium / High"; + script_description(english:desc["english"]); + script_summary(english:"Determines via ver. if a proxy server is DoSable"); + script_category(ACT_GATHER_INFO); + script_family(english:"Denial of Service"); + script_copyright(english:"This script is Copyright (C) 2001 Adam Baldwin"); + script_dependencies("secpod_squid_detect.nasl"); + exit(0); } -# -# Code Starts Here -# -include("http_func.inc"); +include("version_func.inc"); port = get_kb_item("Services/http_proxy"); -if(!port)port = 3128; -if(!get_port_state(port))port = 8080; +if(!port){ + port = 3128; +} +if(!get_port_state(port)){ + port = 8080; +} -if(get_port_state(port)) +data =get_kb_item(string("www/", port, "/Squid")); +if(!data){ + exit(0); +} + +# checking for the Version < =2.4 +if(("2.3" >< data) && (("STABLE1" >< data)||("STABLE3" >< data)|| + ("STABLE4" >< data)||("STABLE5" >< data))) { - soc = http_open_socket(port); - if(soc) - { - sData = http_get(item:"http://www.$$$$$", port:port); - send(socket:soc, data:sData); - data = http_recv(socket:soc); - http_close_socket(soc); - data = egrep(pattern: "^Server: ", string: data); + security_warning(port); + exit(0); +} - if("Squid" >< data) - { - data = data - string("Server: Squid/"); - #See if it's a vulnerable version - #CHECK VERSION 2.3 - if(("2.3" >< data) && ("STABLE2" >< data) || - ("STABLE3" >< data) || - ("STABLE4" >< data) || - ("STABLE5" >< data)) - { - security_warning(port); - } - #CHECK VERSION 2.4 - if(("2.4" >< data) && ("STABLE1" >< data) || - ("PRE-STABLE2" >< data) || - ("PRE-STABLE" >< data) || - ("DEVEL4" >< data) || - ("DEVEL2" >< data)) - { - security_warning(port); - } - } - } +#CHECK VERSION 2.4 +if(("2.4" >< data) && (("STABLE1" >< data) ||("PRE-STABLE2" >< data) || + ("PRE-STABLE" >< data) ||("DEVEL4" >< data)||("DEVEL2" >< data))) +{ + security_warning(port); + exit(0); } + Modified: trunk/openvas-plugins/scripts/squid_rdos.nasl =================================================================== --- trunk/openvas-plugins/scripts/squid_rdos.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/squid_rdos.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -1,3 +1,4 @@ +################################################################################ # # This script was written by David Maciejak # based on work from @@ -3,75 +4,59 @@ # (C) Tenable Network Security # +# Updated: 04/07/2009 +# Antu Sanadi +# # Ref: iDEFENSE 10.11.04 # # This script is released under the GNU GPL v2 # - +################################################################################ if(description) { - script_id(15463); - script_bugtraq_id(11385); - script_cve_id("CVE-2004-0918"); - script_version ("$Revision$"); - name["english"] = "Squid remote denial of service"; - - script_name(english:name["english"]); + script_id(15463); + script_bugtraq_id(11385); + script_cve_id("CVE-2004-0918"); + script_version ("$Revision$"); + script_name(english:"Squid remote denial of service"); + desc["english"] = " + The remote squid caching proxy, according to its version number, may be + vulnerable to a remote denial of service. + This flaw is caused due to an input validation error in the SNMP module. + An attacker can exploit this flaw to crash the server with a specially + crafted UDP packet. + Solution : Upgrade to squid 2.5.STABLE7 or newer + Risk factor : High"; - desc["english"] = " -The remote squid caching proxy, according to its version number, may be -vulnerable to a remote denial of service. - -This flaw is caused due to an input validation error in the SNMP module. - -An attacker can exploit this flaw to crash the server with a specially -crafted UDP packet. - -*** OpenVAS reports this vulnerability using only -*** information that was gathered, so this might -*** be a false positive. - -Solution : Upgrade to squid 2.5.STABLE7 or newer -Risk factor : High"; - + script_description(english:desc["english"]); - script_description(english:desc["english"]); - - summary["english"] = "Determines squid version"; - script_summary(english:summary["english"]); - - script_category(ACT_GATHER_INFO); - - script_copyright(english:"This script is Copyright (C) 2004 David Maciejak", - francais:"Ce script est Copyright (C) 2004 David Maciejak"); - - family["english"] = "Denial of Service"; - - script_family(english:family["english"]); - script_dependencie("find_service.nes"); - if ( defined_func("bn_random") ) - script_dependencie("redhat-RHSA-2004-591.nasl"); - script_require_ports("Services/http_proxy",3128, 8080); - exit(0); + script_summary(english: "Determines squid version"); + script_category(ACT_GATHER_INFO); + script_copyright(english:"This script is Copyright (C) 2004 David Maciejak"); + script_family(english:"Denial of Service"); + script_dependencie("find_service.nes"); + script_dependencie("secpod_squid_detect.nasl"); + script_require_ports("Services/http_proxy",3128, 8080); + exit(0); } + include("http_func.inc"); -include("http_keepalive.inc"); -if ( get_kb_item("CVE-2004-0918") ) exit(0); - port = get_kb_item("Services/http_proxy"); -if(!port) -{ - if(get_port_state(3128)) - { +if(!port){ port = 3128; - } - else port = 8080; } -if(get_port_state(port)) -{ - res = http_get_cache(item:"/", port:port); - if(egrep(pattern:"Squid/2\.([0-4]|5\.STABLE[0-6])", string:res)) - security_hole(port); +if(!get_port_state(port)){ + port = 8080; } + +data =get_kb_item(string("www/", port, "/Squid")); +if(!data){ + exit(0); +} + +if(egrep(pattern:"2\.([0-4]|5\.STABLE[0-6])", string:data)) +{ security_hole(port); + exit(0); +} Modified: trunk/openvas-plugins/scripts/ypupdated_remote_exec.nasl =================================================================== --- trunk/openvas-plugins/scripts/ypupdated_remote_exec.nasl 2009-04-07 07:29:06 UTC (rev 3037) +++ trunk/openvas-plugins/scripts/ypupdated_remote_exec.nasl 2009-04-07 07:44:25 UTC (rev 3038) @@ -46,7 +46,7 @@ script_copyright(english:"This script is Copyright (C) 2008 Tenable Network Security, Inc. and Michel Arboi"); script_family(english: "RPC"); - script_dependencie("rpc_portmap.nasl", "rpcinfo.nasl"); + script_dependencie("secpod_rpc_portmap.nasl", "rpcinfo.nasl"); exit(0); } From scm-commit at wald.intevation.org Tue Apr 7 09:57:51 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 09:57:51 +0200 (CEST) Subject: [Openvas-commits] r3039 - in trunk/openvas-plugins: . scripts Message-ID: <20090407075751.B540340785@pyrosoma.intevation.org> Author: mime Date: 2009-04-07 09:57:50 +0200 (Tue, 07 Apr 2009) New Revision: 3039 Added: trunk/openvas-plugins/scripts/idb_34397.nasl trunk/openvas-plugins/scripts/idb_detect.nasl Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/remote-MS03-018.nasl trunk/openvas-plugins/scripts/webserver_robot.nasl Log: Bugfix. Added new plugins Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-07 07:44:25 UTC (rev 3038) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 07:57:50 UTC (rev 3039) @@ -1,3 +1,12 @@ +2009-04-07 Michael Meyer + * scripts/remote-MS03-018.nasl, + scripts/webserver_robot.nasl: + Bugfix. + + * scripts/idb_34397.nasl, + scripts/idb_detect.nasl: + Added new plugins. + 2009-04-07 Chandrashekhar B * scripts/squid_rdos.nasl, scripts/php_fusion_xss.nasl, Added: trunk/openvas-plugins/scripts/idb_34397.nasl =================================================================== --- trunk/openvas-plugins/scripts/idb_34397.nasl 2009-04-07 07:44:25 UTC (rev 3038) +++ trunk/openvas-plugins/scripts/idb_34397.nasl 2009-04-07 07:57:50 UTC (rev 3039) @@ -0,0 +1,84 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# iDB 'skin' Parameter Local File Include Vulnerability +# +# Authors +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +if (description) +{ + script_id(100110); + script_bugtraq_id(34397); + script_version ("1.0"); + + script_name(english:"iDB 'skin' Parameter Local File Include Vulnerability"); + desc["english"] = " + + Overview: + iDB (Internet Discussion Boards) is prone to a local file-include + vulnerability because it fails to properly sanitize user-supplied + input. + + An attacker can exploit this vulnerability to view and execute + arbitrary local files in the context of the webserver process. This + may aid in further attacks. + + iDB 0.2.5 Pre-Alpha SVN 243 is vulnerable; other versions may also + be affected. + + See also: + http://www.securityfocus.com/bid/34397 + + Risk factor : Medium"; + + script_description(english:desc["english"]); + script_summary(english:"Determine if iDB vulnerable to Local File Include"); + script_category(ACT_GATHER_INFO); + script_family(english:"Web application abuses"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("idb_detect.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +if(!version = get_kb_item(string("www/", port, "/iDB")))exit(0); +if(!matches = eregmatch(string:version, pattern:"^(.+) under (/.*)$"))exit(0); + +vers = matches[1]; + +if(!isnull(vers) && vers >!< "unknown") { + + if(ereg(pattern: "^0.2.5 SVN 243$", string: vers)) { + security_warning(port:port); + exit(0); + } +} + +exit(0); Property changes on: trunk/openvas-plugins/scripts/idb_34397.nasl ___________________________________________________________________ Name: svn:keywords + ID Added: trunk/openvas-plugins/scripts/idb_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/idb_detect.nasl 2009-04-07 07:44:25 UTC (rev 3038) +++ trunk/openvas-plugins/scripts/idb_detect.nasl 2009-04-07 07:57:50 UTC (rev 3039) @@ -0,0 +1,117 @@ +############################################################################### +# OpenVAS Vulnerability Test +# $Id$ +# +# iDB Detection +# +# Authors: +# Michael Meyer +# +# Copyright: +# Copyright (c) 2009 Michael Meyer +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 +# (or any later version), as published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. +############################################################################### + +# need desc here to modify it later in script. +desc["english"] = " + + Overview: + This host is running iDB, a free forum software written + in PHP and MySQL. + + See also: + http://idb.berlios.de/index.php?act=view&page=old + + Risk factor : None"; + +if (description) +{ + script_id(100109); + script_version ("1.0"); + + script_name(english:"iDB Detection"); + + script_description(english:desc["english"]); + script_summary(english:"Checks for the presence of iDB"); + script_category(ACT_GATHER_INFO); + script_family(english:"General"); + script_copyright(english:"This script is Copyright (C) 2009 Michael Meyer"); + script_dependencie("find_service.nes", "http_version.nasl"); + script_require_ports("Services/www", 80); + script_exclude_keys("Settings/disable_cgi_scanning"); + exit(0); +} + +include("http_func.inc"); +include("http_keepalive.inc"); +include("global_settings.inc"); + +port = get_http_port(default:80); + +if(!get_port_state(port))exit(0); +if(!can_host_php(port:port))exit(0); + +dirs = make_list("/idb","/forum","/board",cgi_dirs()); + +foreach dir (dirs) { + + url = string(dir, "/index.php"); + req = http_get(item:url, port:port); + buf = http_keepalive_send_recv(port:port, data:req, bodyonly:FALSE); + if( buf == NULL )continue; + + if(egrep(pattern: "Powered by ]+>iDB", string: buf, icase: TRUE)) + { + if(strlen(dir)>0) { + install=dir; + } else { + install=string("/"); + } + + vers = string("unknown"); + + ### try to get version + version = eregmatch(string: buf, pattern: ' 0) { + security_note(port:port,data:desc); + } + exit(0); + + } +} +exit(0); Property changes on: trunk/openvas-plugins/scripts/idb_detect.nasl ___________________________________________________________________ Name: svn:keywords + ID Modified: trunk/openvas-plugins/scripts/remote-MS03-018.nasl =================================================================== --- trunk/openvas-plugins/scripts/remote-MS03-018.nasl 2009-04-07 07:44:25 UTC (rev 3038) +++ trunk/openvas-plugins/scripts/remote-MS03-018.nasl 2009-04-07 07:57:50 UTC (rev 3039) @@ -171,7 +171,6 @@ iis_servers = get_kb_item("Services/www"); - h_ip = get_host_ip(); qrystr = '/iissamples/sdk/asp/components/redirect.asp?url='; @@ -204,7 +203,7 @@ if(reply) { - page_hash = md5(reply); + page_hash = MD5(reply); for(i = 0; i < max_index(md5_hashes); i++) { if(page_hash == md5_hashes[i]) security_hole(port); Modified: trunk/openvas-plugins/scripts/webserver_robot.nasl =================================================================== --- trunk/openvas-plugins/scripts/webserver_robot.nasl 2009-04-07 07:44:25 UTC (rev 3038) +++ trunk/openvas-plugins/scripts/webserver_robot.nasl 2009-04-07 07:57:50 UTC (rev 3039) @@ -69,7 +69,7 @@ { sendata = http_get(item:"/robot.txt", port:port); send(socket:sockwww, data:sendata); - headers = http_recv_headers(sockwww); + headers = http_recv_headers2(socket:sockwww); body = http_recv_body(socket:sockwww, headers:headers, length:0); if("llow" >< body || "agent:" >< body) { @@ -93,7 +93,7 @@ { sendata = http_get(item:"/robots.txt", port:port); send(socket:sockwww, data:sendata); - headers = http_recv_headers(sockwww); + headers = http_recv_headers2(socket:sockwww); body = http_recv_body(socket:sockwww, headers:headers, length:0); if("llow" >!< body && "agent:" >!< body)exit(0); From scm-commit at wald.intevation.org Tue Apr 7 10:28:31 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 10:28:31 +0200 (CEST) Subject: [Openvas-commits] r3040 - in trunk/openvas-plugins: . scripts Message-ID: <20090407082831.2D7D7407AA@pyrosoma.intevation.org> Author: chandra Date: 2009-04-07 10:28:28 +0200 (Tue, 07 Apr 2009) New Revision: 3040 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/smb_nt_ms02-018.nasl trunk/openvas-plugins/scripts/smb_nt_ms02-051.nasl trunk/openvas-plugins/scripts/smb_nt_ms04-026.nasl Log: Addressed undefined reference errors Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-07 07:57:50 UTC (rev 3039) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 08:28:28 UTC (rev 3040) @@ -1,3 +1,9 @@ +2009-04-07 Chandrashekhar + * scripts/smb_nt_ms04-026.nasl, + scripts/smb_nt_ms02-051.nasl, + scripts/smb_nt_ms02-018.nasl: + Added smb_hotfixes.inc as dependency + 2009-04-07 Michael Meyer * scripts/remote-MS03-018.nasl, scripts/webserver_robot.nasl: Modified: trunk/openvas-plugins/scripts/smb_nt_ms02-018.nasl =================================================================== --- trunk/openvas-plugins/scripts/smb_nt_ms02-018.nasl 2009-04-07 07:57:50 UTC (rev 3039) +++ trunk/openvas-plugins/scripts/smb_nt_ms02-018.nasl 2009-04-07 08:28:28 UTC (rev 3040) @@ -62,6 +62,7 @@ } include("secpod_reg.inc"); +#include("smb_hotfixes.inc"); if ( hotfix_check_iis_installed() <= 0 ) exit(0); if ( hotfix_check_sp(nt:7, win2k:3, xp:1 ) <= 0 ) exit(0); Modified: trunk/openvas-plugins/scripts/smb_nt_ms02-051.nasl =================================================================== --- trunk/openvas-plugins/scripts/smb_nt_ms02-051.nasl 2009-04-07 07:57:50 UTC (rev 3039) +++ trunk/openvas-plugins/scripts/smb_nt_ms02-051.nasl 2009-04-07 08:28:28 UTC (rev 3040) @@ -62,6 +62,7 @@ } include("secpod_reg.inc"); +include("smb_hotfixes.inc"); if ( hotfix_check_sp(xp:1, win2k:4) <= 0 ) exit(0); if ( hotfix_check_nt_server() <= 0 ) exit(0); Modified: trunk/openvas-plugins/scripts/smb_nt_ms04-026.nasl =================================================================== --- trunk/openvas-plugins/scripts/smb_nt_ms04-026.nasl 2009-04-07 07:57:50 UTC (rev 3039) +++ trunk/openvas-plugins/scripts/smb_nt_ms04-026.nasl 2009-04-07 08:28:28 UTC (rev 3040) @@ -58,6 +58,7 @@ include("http_func.inc"); include("http_keepalive.inc"); include("secpod_reg.inc"); +include("smb_hotfixes.inc"); # we will first ensure that OWA is running From scm-commit at wald.intevation.org Tue Apr 7 11:52:00 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 11:52:00 +0200 (CEST) Subject: [Openvas-commits] r3041 - in trunk/openvas-manager: . doc packaging/debian src src/tests Message-ID: <20090407095200.2437E407C8@pyrosoma.intevation.org> Author: jan Date: 2009-04-07 11:51:56 +0200 (Tue, 07 Apr 2009) New Revision: 3041 Modified: trunk/openvas-manager/CMakeLists.txt trunk/openvas-manager/ChangeLog trunk/openvas-manager/doc/CMakeLists.txt trunk/openvas-manager/doc/openvasmd.8.xml trunk/openvas-manager/packaging/debian/copyright trunk/openvas-manager/src/CMakeLists.txt trunk/openvas-manager/src/file.c trunk/openvas-manager/src/file.h trunk/openvas-manager/src/logf.h trunk/openvas-manager/src/manage.c trunk/openvas-manager/src/manage.h trunk/openvas-manager/src/omp.c trunk/openvas-manager/src/omp.h trunk/openvas-manager/src/ompd.c trunk/openvas-manager/src/ompd.h trunk/openvas-manager/src/openvasmd.c trunk/openvas-manager/src/otp.c trunk/openvas-manager/src/otp.h trunk/openvas-manager/src/otpd.c trunk/openvas-manager/src/otpd.h trunk/openvas-manager/src/ovas-mngr-comm.c trunk/openvas-manager/src/ovas-mngr-comm.h trunk/openvas-manager/src/splint.h trunk/openvas-manager/src/string.c trunk/openvas-manager/src/string.h trunk/openvas-manager/src/tests/CMakeLists.txt trunk/openvas-manager/src/tests/common.c trunk/openvas-manager/src/tests/common.h trunk/openvas-manager/src/tests/make_report_id_0.c trunk/openvas-manager/src/tests/omp_abort_task_0.c trunk/openvas-manager/src/tests/omp_delete_report_0.c trunk/openvas-manager/src/tests/omp_delete_report_1.c trunk/openvas-manager/src/tests/omp_delete_task_0.c trunk/openvas-manager/src/tests/omp_delete_task_1.c trunk/openvas-manager/src/tests/omp_get_dependencies_0.c trunk/openvas-manager/src/tests/omp_get_dependencies_1.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_0.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_1.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_0.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_1.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_0.c trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_1.c trunk/openvas-manager/src/tests/omp_get_preferences_0.c trunk/openvas-manager/src/tests/omp_get_preferences_1.c trunk/openvas-manager/src/tests/omp_get_report_0.c trunk/openvas-manager/src/tests/omp_get_rules_0.c trunk/openvas-manager/src/tests/omp_get_rules_1.c trunk/openvas-manager/src/tests/omp_modify_report_0.c trunk/openvas-manager/src/tests/omp_modify_task_0.c trunk/openvas-manager/src/tests/omp_new_task_0.c trunk/openvas-manager/src/tests/omp_start_task_0.c trunk/openvas-manager/src/tests/omp_start_task_1.c trunk/openvas-manager/src/tests/omp_status_0.c trunk/openvas-manager/src/tests/omp_status_1.c trunk/openvas-manager/src/tests/omp_status_2.c trunk/openvas-manager/src/tests/omp_status_3.c trunk/openvas-manager/src/tests/omp_status_4.c trunk/openvas-manager/src/tests/omp_version_0.c trunk/openvas-manager/src/tests/report_path_task_name_0.c trunk/openvas-manager/src/tests/report_path_task_name_1.c trunk/openvas-manager/src/tests/report_path_task_name_2.c trunk/openvas-manager/src/tests/rmdir_recursively_0.c trunk/openvas-manager/src/tests/rmdir_recursively_1.c trunk/openvas-manager/src/tests/strip_space_0.c trunk/openvas-manager/src/tests/strip_space_1.c trunk/openvas-manager/src/tests/strip_space_2.c trunk/openvas-manager/src/tests/strip_space_3.c trunk/openvas-manager/src/tracef.h Log: * CMakeLists.txt, doc/CMakeLists.txt, doc/openvasmd.8.xml, src/CMakeLists.txt, src/file.c, src/file.h, src/logf.h, src/manage.c, src/manage.h, src/omp.c, src/omp.h, src/ompd.c, src/ompd.h, src/openvasmd.c, src/otp.c, src/otp.h, src/otpd.c, src/otpd.h, src/ovas-mngr-comm.c, src/ovas-mngr-comm.h, src/splint.h, src/string.c, src/string.h, src/task.h, src/tracef.h, src/tests/CMakeLists.txt, src/tests/common.c, src/tests/common.h, src/tests/make_report_id_0.c, src/tests/omp_abort_task_0.c, src/tests/omp_delete_report_0.c, src/tests/omp_delete_report_1.c, src/tests/omp_delete_task_0.c, src/tests/omp_delete_task_1.c, src/tests/omp_get_dependencies_0.c, src/tests/omp_get_dependencies_1.c, src/tests/omp_get_nvt_feed_all_0.c, src/tests/omp_get_nvt_feed_all_1.c, src/tests/omp_get_nvt_feed_checksum_0.c, src/tests/omp_get_nvt_feed_checksum_1.c, src/tests/omp_get_nvt_feed_details_0.c, src/tests/omp_get_nvt_feed_details_1.c, src/tests/omp_get_preferences_0.c, src/tests/omp_get_preferences_1.c, src/tests/omp_get_report_0.c, src/tests/omp_get_rules_0.c, src/tests/omp_get_rules_1.c, src/tests/omp_modify_report_0.c, src/tests/omp_modify_task_0.c, src/tests/omp_new_task_0.c, src/tests/omp_start_task_0.c, src/tests/omp_start_task_1.c, src/tests/omp_status_0.c, src/tests/omp_status_1.c, src/tests/omp_status_2.c, src/tests/omp_status_3.c, src/tests/omp_status_4.c, src/tests/omp_version_0.c, src/tests/report_path_task_name_0.c, src/tests/report_path_task_name_1.c, src/tests/report_path_task_name_2.c, src/tests/rmdir_recursively_0.c, src/tests/rmdir_recursively_1.c, src/tests/strip_space_0.c, src/tests/strip_space_1.c, src/tests/strip_space_2.c, src/tests/strip_space_3.c, packaging/debian/copyright: Transferred Copyright from Intevation to Greenbone Networks. Modified: trunk/openvas-manager/CMakeLists.txt =================================================================== --- trunk/openvas-manager/CMakeLists.txt 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/CMakeLists.txt 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ # Matthew Mundell # # Copyright: -# Copyright (C) 2008 Intevation GmbH +# Copyright (C) 2009 Greenbone Networks GmbH # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/ChangeLog =================================================================== --- trunk/openvas-manager/ChangeLog 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/ChangeLog 2009-04-07 09:51:56 UTC (rev 3041) @@ -1,3 +1,34 @@ +2009-04-07 Jan-Oliver Wagner + + * CMakeLists.txt, doc/CMakeLists.txt, doc/openvasmd.8.xml, + src/CMakeLists.txt, src/file.c, src/file.h, src/logf.h, + src/manage.c, src/manage.h, src/omp.c, src/omp.h, src/ompd.c, + src/ompd.h, src/openvasmd.c, src/otp.c, src/otp.h, src/otpd.c, + src/otpd.h, src/ovas-mngr-comm.c, src/ovas-mngr-comm.h, src/splint.h, + src/string.c, src/string.h, src/task.h, src/tracef.h, + src/tests/CMakeLists.txt, src/tests/common.c, src/tests/common.h, + src/tests/make_report_id_0.c, src/tests/omp_abort_task_0.c, + src/tests/omp_delete_report_0.c, src/tests/omp_delete_report_1.c, + src/tests/omp_delete_task_0.c, src/tests/omp_delete_task_1.c, + src/tests/omp_get_dependencies_0.c, src/tests/omp_get_dependencies_1.c, + src/tests/omp_get_nvt_feed_all_0.c, src/tests/omp_get_nvt_feed_all_1.c, + src/tests/omp_get_nvt_feed_checksum_0.c, src/tests/omp_get_nvt_feed_checksum_1.c, + src/tests/omp_get_nvt_feed_details_0.c, src/tests/omp_get_nvt_feed_details_1.c, + src/tests/omp_get_preferences_0.c, src/tests/omp_get_preferences_1.c, + src/tests/omp_get_report_0.c, src/tests/omp_get_rules_0.c, + src/tests/omp_get_rules_1.c, src/tests/omp_modify_report_0.c, + src/tests/omp_modify_task_0.c, src/tests/omp_new_task_0.c, + src/tests/omp_start_task_0.c, src/tests/omp_start_task_1.c, + src/tests/omp_status_0.c, src/tests/omp_status_1.c, + src/tests/omp_status_2.c, src/tests/omp_status_3.c, + src/tests/omp_status_4.c, src/tests/omp_version_0.c, + src/tests/report_path_task_name_0.c, src/tests/report_path_task_name_1.c, + src/tests/report_path_task_name_2.c, src/tests/rmdir_recursively_0.c, + src/tests/rmdir_recursively_1.c, src/tests/strip_space_0.c, + src/tests/strip_space_1.c, src/tests/strip_space_2.c, + src/tests/strip_space_3.c, packaging/debian/copyright: + Transferred Copyright from Intevation to Greenbone Networks. + 2009-04-01 Jan-Oliver Wagner * packaging/debian/control: Lower dependecy for debhelper from 6 to 5. Modified: trunk/openvas-manager/doc/CMakeLists.txt =================================================================== --- trunk/openvas-manager/doc/CMakeLists.txt 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/doc/CMakeLists.txt 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ # Matthew Mundell # # Copyright: -# Copyright (C) 2008 Intevation GmbH +# Copyright (C) 2009 Greenbone Networks GmbH # # This library is free software; you can redistribute it and/or # modify it under the terms of the GNU Library General Public Modified: trunk/openvas-manager/doc/openvasmd.8.xml =================================================================== --- trunk/openvas-manager/doc/openvasmd.8.xml 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/doc/openvasmd.8.xml 2009-04-07 09:51:56 UTC (rev 3041) @@ -10,7 +10,7 @@ Matthew Mundell Copyright: - Copyright (C) 2008 Intevation GmbH + Copyright (C) 2009 Greenbone Networks GmbH This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/packaging/debian/copyright =================================================================== --- trunk/openvas-manager/packaging/debian/copyright 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/packaging/debian/copyright 2009-04-07 09:51:56 UTC (rev 3041) @@ -8,7 +8,7 @@ Copyright: - * Copyright (C) 2008-2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH Authors: Modified: trunk/openvas-manager/src/CMakeLists.txt =================================================================== --- trunk/openvas-manager/src/CMakeLists.txt 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/CMakeLists.txt 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ # Matthew Mundell # # Copyright: -# Copyright (C) 2008, 2009 Intevation GmbH +# Copyright (C) 2009 Greenbone Networks GmbH # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/file.c =================================================================== --- trunk/openvas-manager/src/file.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/file.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/file.h =================================================================== --- trunk/openvas-manager/src/file.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/file.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/logf.h =================================================================== --- trunk/openvas-manager/src/logf.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/logf.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/manage.c =================================================================== --- trunk/openvas-manager/src/manage.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/manage.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/manage.h =================================================================== --- trunk/openvas-manager/src/manage.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/manage.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/omp.c =================================================================== --- trunk/openvas-manager/src/omp.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/omp.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/omp.h =================================================================== --- trunk/openvas-manager/src/omp.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/omp.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/ompd.c =================================================================== --- trunk/openvas-manager/src/ompd.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/ompd.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/ompd.h =================================================================== --- trunk/openvas-manager/src/ompd.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/ompd.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/openvasmd.c =================================================================== --- trunk/openvas-manager/src/openvasmd.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/openvasmd.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, @@ -628,7 +628,7 @@ { printf ("openvasmd (%s) %s for %s\n", PROGNAME, OPENVASMD_VERSION, OPENVAS_OS_NAME); - printf ("Copyright (C) 2008 Intevation GmbH\n\n"); + printf ("Copyright (C) 2009 Greenbone Networks GmbH\n\n"); exit (EXIT_SUCCESS); } Modified: trunk/openvas-manager/src/otp.c =================================================================== --- trunk/openvas-manager/src/otp.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/otp.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/otp.h =================================================================== --- trunk/openvas-manager/src/otp.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/otp.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/otpd.c =================================================================== --- trunk/openvas-manager/src/otpd.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/otpd.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/otpd.h =================================================================== --- trunk/openvas-manager/src/otpd.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/otpd.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/ovas-mngr-comm.c =================================================================== --- trunk/openvas-manager/src/ovas-mngr-comm.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/ovas-mngr-comm.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -4,10 +4,10 @@ * * Authors: * Matthew Mundell - * Jan-Oliver Wagner + * Jan-Oliver Wagner * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/ovas-mngr-comm.h =================================================================== --- trunk/openvas-manager/src/ovas-mngr-comm.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/ovas-mngr-comm.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -3,10 +3,10 @@ * Description: See below. * * Authors: - * Jan-Oliver Wagner + * Jan-Oliver Wagner * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/splint.h =================================================================== --- trunk/openvas-manager/src/splint.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/splint.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/string.c =================================================================== --- trunk/openvas-manager/src/string.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/string.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/string.h =================================================================== --- trunk/openvas-manager/src/string.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/string.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -4,10 +4,10 @@ * * Authors: * Matthew Mundell - * Jan-Oliver Wagner + * Jan-Oliver Wagner * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/CMakeLists.txt =================================================================== --- trunk/openvas-manager/src/tests/CMakeLists.txt 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/CMakeLists.txt 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ # Matthew Mundell # # Copyright: -# Copyright (C) 2008, 2009 Intevation GmbH +# Copyright (C) 2009 Greenbone Networks GmbH # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/common.c =================================================================== --- trunk/openvas-manager/src/tests/common.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/common.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/common.h =================================================================== --- trunk/openvas-manager/src/tests/common.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/common.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/make_report_id_0.c =================================================================== --- trunk/openvas-manager/src/tests/make_report_id_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/make_report_id_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_abort_task_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_abort_task_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_abort_task_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_delete_report_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_delete_report_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_delete_report_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_delete_report_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_delete_report_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_delete_report_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_delete_task_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_delete_task_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_delete_task_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_delete_task_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_delete_task_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_delete_task_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_dependencies_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_dependencies_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_dependencies_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_dependencies_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_dependencies_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_dependencies_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_all_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_checksum_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_nvt_feed_details_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_preferences_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_preferences_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_preferences_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_preferences_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_preferences_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_preferences_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_report_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_report_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_report_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_rules_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_rules_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_rules_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_get_rules_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_get_rules_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_get_rules_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_modify_report_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_modify_report_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_modify_report_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_modify_task_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_modify_task_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_modify_task_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_new_task_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_new_task_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_new_task_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_start_task_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_start_task_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_start_task_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_start_task_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_start_task_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_start_task_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_status_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_status_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_status_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_status_1.c =================================================================== --- trunk/openvas-manager/src/tests/omp_status_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_status_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_status_2.c =================================================================== --- trunk/openvas-manager/src/tests/omp_status_2.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_status_2.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_status_3.c =================================================================== --- trunk/openvas-manager/src/tests/omp_status_3.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_status_3.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_status_4.c =================================================================== --- trunk/openvas-manager/src/tests/omp_status_4.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_status_4.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/omp_version_0.c =================================================================== --- trunk/openvas-manager/src/tests/omp_version_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/omp_version_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/report_path_task_name_0.c =================================================================== --- trunk/openvas-manager/src/tests/report_path_task_name_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/report_path_task_name_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/report_path_task_name_1.c =================================================================== --- trunk/openvas-manager/src/tests/report_path_task_name_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/report_path_task_name_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/report_path_task_name_2.c =================================================================== --- trunk/openvas-manager/src/tests/report_path_task_name_2.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/report_path_task_name_2.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/rmdir_recursively_0.c =================================================================== --- trunk/openvas-manager/src/tests/rmdir_recursively_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/rmdir_recursively_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/rmdir_recursively_1.c =================================================================== --- trunk/openvas-manager/src/tests/rmdir_recursively_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/rmdir_recursively_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/strip_space_0.c =================================================================== --- trunk/openvas-manager/src/tests/strip_space_0.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/strip_space_0.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008 Intevation GmbH + * Copyright (C) 2008 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/strip_space_1.c =================================================================== --- trunk/openvas-manager/src/tests/strip_space_1.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/strip_space_1.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/strip_space_2.c =================================================================== --- trunk/openvas-manager/src/tests/strip_space_2.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/strip_space_2.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tests/strip_space_3.c =================================================================== --- trunk/openvas-manager/src/tests/strip_space_3.c 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tests/strip_space_3.c 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, Modified: trunk/openvas-manager/src/tracef.h =================================================================== --- trunk/openvas-manager/src/tracef.h 2009-04-07 08:28:28 UTC (rev 3040) +++ trunk/openvas-manager/src/tracef.h 2009-04-07 09:51:56 UTC (rev 3041) @@ -6,7 +6,7 @@ * Matthew Mundell * * Copyright: - * Copyright (C) 2008, 2009 Intevation GmbH + * Copyright (C) 2009 Greenbone Networks GmbH * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2, From scm-commit at wald.intevation.org Tue Apr 7 11:53:11 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 11:53:11 +0200 (CEST) Subject: [Openvas-commits] r3042 - in trunk/openvas-server: . openvasd Message-ID: <20090407095311.71761407C8@pyrosoma.intevation.org> Author: felix Date: 2009-04-07 11:53:11 +0200 (Tue, 07 Apr 2009) New Revision: 3042 Modified: trunk/openvas-server/ChangeLog trunk/openvas-server/openvasd/nasl_plugins.c Log: Print message to stderr when a nasl script could not be cached. This happens in cases where exit() is called prior to the description. As a consequence of that non-happening description parse, the nvt might not be visible to the client. * openvasd/nasl_plugins.c (nasl_plugin_add): Be loud when a script could not be added to the cache. Modified: trunk/openvas-server/ChangeLog =================================================================== --- trunk/openvas-server/ChangeLog 2009-04-07 09:51:56 UTC (rev 3041) +++ trunk/openvas-server/ChangeLog 2009-04-07 09:53:11 UTC (rev 3042) @@ -1,3 +1,13 @@ +2009-04-07 Felix Wolfsteller + + Print message to stderr when a nasl script could not be cached. + This happens in cases where exit() is called prior to the description. + As a consequence of that non-happening description parse, the nvt might + not be visible to the client. + + * openvasd/nasl_plugins.c (nasl_plugin_add): Be loud when a script could + not be added to the cache. + 2009-04-06 Felix Wolfsteller * openvasd/nasl_plugins.c: Minor reformatting, doc. Modified: trunk/openvas-server/openvasd/nasl_plugins.c =================================================================== --- trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-07 09:51:56 UTC (rev 3041) +++ trunk/openvas-server/openvasd/nasl_plugins.c 2009-04-07 09:53:11 UTC (rev 3042) @@ -131,6 +131,9 @@ store_plugin (plugin_args, name); plugin_args = store_load_plugin (folder, name, preferences); } + else + // Most likely an exit was hit before the description could be parsed. + fprintf(stderr, "%s could not be added to the cache and is likely to stay invisible to the client.", name); } if (plugin_args == NULL) From scm-commit at wald.intevation.org Tue Apr 7 12:07:12 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 12:07:12 +0200 (CEST) Subject: [Openvas-commits] r3043 - in trunk/openvas-plugins: . scripts Message-ID: <20090407100712.C55D940781@pyrosoma.intevation.org> Author: chandra Date: 2009-04-07 12:06:57 +0200 (Tue, 07 Apr 2009) New Revision: 3043 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/cesarftp_mkd_command_buffer_overflow.nasl trunk/openvas-plugins/scripts/cisco_vpn_client_detect.nasl trunk/openvas-plugins/scripts/nav_installed.nasl trunk/openvas-plugins/scripts/savce_installed.nasl trunk/openvas-plugins/scripts/smb_explorer_version.nasl trunk/openvas-plugins/scripts/smb_suspicious_files.nasl trunk/openvas-plugins/scripts/sonicwall_vpn_client_detect.nasl trunk/openvas-plugins/scripts/spybot_detection.nasl trunk/openvas-plugins/scripts/spysweeper_corp_installed.nasl Log: Addressed dependency warnings Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 10:06:57 UTC (rev 3043) @@ -1,3 +1,20 @@ +2009-04-07 Chandrashekhar B + * scripts/cesarftp_mkd_command_buffer_overflow.nasl, + scripts/smb_explorer_version.nasl: + Addressed the dependency warning issues + + * scripts/spybot_detection.nasl, + scripts/cisco_vpn_client_detect.nasl, + scripts/sonicwall_vpn_client_detect.nasl, + scripts/savce_installed.nasl, + scripts/smb_suspicious_files.nasl, + scripts/spysweeper_corp_installed.nasl, + scripts/nav_installed.nasl: + Addressed warnings related to smb_registry_full_access.nasl + However the plugins aren't functional as smb_func.inc is missing. + All these plugins have to be re-written using a different method or + better invalidate the plugins. + 2009-04-07 Chandrashekhar * scripts/smb_nt_ms04-026.nasl, scripts/smb_nt_ms02-051.nasl, Modified: trunk/openvas-plugins/scripts/cesarftp_mkd_command_buffer_overflow.nasl =================================================================== --- trunk/openvas-plugins/scripts/cesarftp_mkd_command_buffer_overflow.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/cesarftp_mkd_command_buffer_overflow.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -63,7 +63,7 @@ script_family(english:"Denial of Service"); script_copyright(english:"This script is Copyright (C) 2006 Ferdy Riphagen"); - script_dependencies("find_service.nes, secpod_ftp_anonymous.nasl"); + script_dependencies("find_service.nes", "secpod_ftp_anonymous.nasl"); script_require_ports("Services/ftp", 21); exit(0); } Modified: trunk/openvas-plugins/scripts/cisco_vpn_client_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/cisco_vpn_client_detect.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/cisco_vpn_client_detect.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -40,7 +40,7 @@ script_copyright(english:"This script is Copyright (C) 2007 Ferdy Riphagen"); script_require_ports(139, 445); - script_dependencies("smb_hotfixes.nasl"); + script_dependencies("secpod_reg_enum.nasl"); script_require_keys("SMB/login", "SMB/password", "SMB/name", "SMB/transport"); exit(0); } Modified: trunk/openvas-plugins/scripts/nav_installed.nasl =================================================================== --- trunk/openvas-plugins/scripts/nav_installed.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/nav_installed.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -27,7 +27,7 @@ script_copyright(english:"This script is Copyright (C) 2004-2005 Jeff Adams / Tenable Network Security"); family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_full_access.nasl", "smb_enum_services.nasl"); + script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_access.nasl", "smb_enum_services.nasl"); script_require_keys("SMB/name", "SMB/login", "SMB/password", "SMB/registry_full_access", "SMB/transport"); script_require_ports(139, 445); exit(0); Modified: trunk/openvas-plugins/scripts/savce_installed.nasl =================================================================== --- trunk/openvas-plugins/scripts/savce_installed.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/savce_installed.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -29,7 +29,7 @@ script_copyright(english:"This script is Copyright (C) 2004-2005 Jeff Adams / Tenable Network Security"); family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_full_access.nasl", "smb_enum_services.nasl"); + script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_access.nasl", "smb_enum_services.nasl"); script_require_keys("SMB/name", "SMB/login", "SMB/password", "SMB/registry_full_access", "SMB/transport"); script_require_ports(139, 445); exit(0); Modified: trunk/openvas-plugins/scripts/smb_explorer_version.nasl =================================================================== --- trunk/openvas-plugins/scripts/smb_explorer_version.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/smb_explorer_version.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -89,7 +89,7 @@ script_copyright(english:"This script is Copyright (C) 2006 Montgomery County Maryland"); family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("smb_login.nasl", "smb_registry_full_access.nasl", "smb_hotfixes.nasl"); + script_dependencies("smb_login.nasl", "smb_registry_access.nasl", "gb_ms_ie_detect.nasl"); script_require_keys("SMB/registry_full_access"); exit(0); } @@ -104,7 +104,7 @@ if( ! access )exit(0); # Note: only IE 4.0 and later will be detected by this kb item -version = get_kb_item("SMB/IE/version"); +version = get_kb_item("MS/IE/Version"); if( ! version )exit(0); # Check for 4.x, 5.x, 6.00.2462/2479/2600 build numbers Modified: trunk/openvas-plugins/scripts/smb_suspicious_files.nasl =================================================================== --- trunk/openvas-plugins/scripts/smb_suspicious_files.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/smb_suspicious_files.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -44,7 +44,7 @@ family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("smb_hotfixes.nasl"); + script_dependencies("secpod_reg_enum.nasl"); script_require_keys("SMB/Registry/Enumerated"); script_require_ports(139, 445); exit(0); Modified: trunk/openvas-plugins/scripts/sonicwall_vpn_client_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/sonicwall_vpn_client_detect.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/sonicwall_vpn_client_detect.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -41,7 +41,7 @@ script_copyright(english:"This script is Copyright (C) 2008 Ferdy Riphagen"); script_require_ports(139, 445); - script_dependencies("smb_hotfixes.nasl"); + script_dependencies("secpod_reg_enum.nasl"); script_require_keys("SMB/login", "SMB/password", "SMB/name", "SMB/transport"); exit(0); } Modified: trunk/openvas-plugins/scripts/spybot_detection.nasl =================================================================== --- trunk/openvas-plugins/scripts/spybot_detection.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/spybot_detection.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -46,7 +46,7 @@ family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("smb_hotfixes.nasl"); + script_dependencies("secpod_reg_enum.nasl"); script_require_keys("SMB/name", "SMB/login", "SMB/password", "SMB/transport"); script_require_ports(139, 445); exit(0); Modified: trunk/openvas-plugins/scripts/spysweeper_corp_installed.nasl =================================================================== --- trunk/openvas-plugins/scripts/spysweeper_corp_installed.nasl 2009-04-07 09:53:11 UTC (rev 3042) +++ trunk/openvas-plugins/scripts/spysweeper_corp_installed.nasl 2009-04-07 10:06:57 UTC (rev 3043) @@ -29,7 +29,7 @@ script_copyright(english:"This script is Copyright (C) 2004-2005 Jeff Adams / Tenable Network Security"); family["english"] = "Windows"; script_family(english:family["english"]); - script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_full_access.nasl", "smb_enum_services.nasl"); + script_dependencies("netbios_name_get.nasl", "smb_login.nasl", "smb_registry_access.nasl", "smb_enum_services.nasl"); script_require_keys("SMB/name", "SMB/login", "SMB/password", "SMB/registry_full_access", "SMB/transport"); script_require_ports(139, 445); exit(0); From scm-commit at wald.intevation.org Tue Apr 7 12:15:42 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 12:15:42 +0200 (CEST) Subject: [Openvas-commits] r3044 - in trunk/openvas-client: . src/gui Message-ID: <20090407101542.5E7C440781@pyrosoma.intevation.org> Author: felix Date: 2009-04-07 12:15:40 +0200 (Tue, 07 Apr 2009) New Revision: 3044 Modified: trunk/openvas-client/ChangeLog trunk/openvas-client/src/gui/error_dlg.c Log: Adding timestamps to gtk message display (lower part of the gui if activated via the 'View' menu). * src/gui/error_dlg.c (show_dialog_gtk_log): Prepend timestamp to dispalyed message. Modified: trunk/openvas-client/ChangeLog =================================================================== --- trunk/openvas-client/ChangeLog 2009-04-07 10:06:57 UTC (rev 3043) +++ trunk/openvas-client/ChangeLog 2009-04-07 10:15:40 UTC (rev 3044) @@ -1,5 +1,13 @@ 2009-04-07 Felix Wolfsteller + Adding timestamps to gtk message display (lower part of the gui if + activated via the 'View' menu). + + * src/gui/error_dlg.c (show_dialog_gtk_log): Prepend timestamp to + dispalyed message. + +2009-04-07 Felix Wolfsteller + * TODO: Updated (with quite old idea). 2009-04-03 Jan-Oliver Wagner Modified: trunk/openvas-client/src/gui/error_dlg.c =================================================================== --- trunk/openvas-client/src/gui/error_dlg.c 2009-04-07 10:06:57 UTC (rev 3043) +++ trunk/openvas-client/src/gui/error_dlg.c 2009-04-07 10:15:40 UTC (rev 3044) @@ -34,6 +34,7 @@ * wish to do so, delete this exception statement from your version. */ +#include #include #include @@ -166,7 +167,14 @@ GtkTextIter iter; GtkAdjustment *vadjust; char *msgtype; + struct tm* localtime_; + time_t time_; + gchar* time_type; + gchar* time_newlineless; // Will contain e.g. 04:12:12 + time_ = time(NULL); + localtime_ = localtime(&time_); + if(!textview || !scrolledwin) return; @@ -182,18 +190,28 @@ msgtype = _("Error: "); } - /* submit the message to the log */ + time_newlineless = g_strdup (asctime(localtime_)); + // Strip the newline + time_newlineless[strlen(time_newlineless)-1] = '\0'; + time_type = g_strdup_printf("[%s] %s", time_newlineless, msgtype); + + + /* Submit the message to the log text view. */ log = gtk_text_view_get_buffer(GTK_TEXT_VIEW(textview)); gtk_text_buffer_get_end_iter(log, &iter); - gtk_text_buffer_insert(log, &iter, msgtype, -1); + gtk_text_buffer_insert(log, &iter, time_type, -1); gtk_text_buffer_get_end_iter(log, &iter); gtk_text_buffer_insert(log, &iter, error_text, -1); + gtk_text_buffer_get_end_iter(log, &iter); gtk_text_buffer_insert(log, &iter, "\n", -1); vadjust = gtk_scrolled_window_get_vadjustment( GTK_SCROLLED_WINDOW(scrolledwin)); gtk_adjustment_set_value(vadjust, vadjust->upper - 1); + + g_free (time_newlineless); + g_free (time_type); } void From scm-commit at wald.intevation.org Tue Apr 7 12:26:13 2009 From: scm-commit at wald.intevation.org (scm-commit@wald.intevation.org) Date: Tue, 7 Apr 2009 12:26:13 +0200 (CEST) Subject: [Openvas-commits] r3045 - in trunk/openvas-plugins: . scripts Message-ID: <20090407102613.A098040788@pyrosoma.intevation.org> Author: jan Date: 2009-04-07 12:26:11 +0200 (Tue, 07 Apr 2009) New Revision: 3045 Modified: trunk/openvas-plugins/ChangeLog trunk/openvas-plugins/scripts/amap.nasl trunk/openvas-plugins/scripts/doublecheck_std_services.nasl trunk/openvas-plugins/scripts/firewall_detect.nasl trunk/openvas-plugins/scripts/glsa_200503_10.nasl trunk/openvas-plugins/scripts/http_ids_evasion.nasl trunk/openvas-plugins/scripts/http_w98_devname_dos.nasl trunk/openvas-plugins/scripts/hydra_options.nasl trunk/openvas-plugins/scripts/ids_evasion.nasl trunk/openvas-plugins/scripts/nmap.nasl trunk/openvas-plugins/scripts/pnscan.nasl trunk/openvas-plugins/scripts/portbunny.nasl trunk/openvas-plugins/scripts/portscan-strobe.nasl trunk/openvas-plugins/scripts/sambar_xss.nasl trunk/openvas-plugins/scripts/scan_info.nasl trunk/openvas-plugins/scripts/smb_nt_ms02-005.nasl trunk/openvas-plugins/scripts/snmpwalk_portscan.nasl Log: * nmap.nasl, firewall_detect.nasl, http_ids_evasion.nasl, portscan-strobe.nasl, sambar_xss.nasl, hydra_options.nasl, portbunny.nasl, doublecheck_std_services.nasl, http_w98_devname_dos.nasl, snmpwalk_portscan.nasl, scan_info.nasl, ids_evasion.nasl, pnscan.nasl, smb_nt_ms02-005.nasl: Removed conditionals for NASL_LEVEL as this level is always true for OpenVAS. Modified: trunk/openvas-plugins/ChangeLog =================================================================== --- trunk/openvas-plugins/ChangeLog 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/ChangeLog 2009-04-07 10:26:11 UTC (rev 3045) @@ -1,3 +1,12 @@ +2009-04-07 Jan-Oliver Wagner + + * nmap.nasl, firewall_detect.nasl, http_ids_evasion.nasl, + portscan-strobe.nasl, sambar_xss.nasl, hydra_options.nasl, + portbunny.nasl, doublecheck_std_services.nasl, http_w98_devname_dos.nasl, + snmpwalk_portscan.nasl, scan_info.nasl, ids_evasion.nasl, pnscan.nasl, + smb_nt_ms02-005.nasl: Removed conditionals for NASL_LEVEL as this level + is always true for OpenVAS. + 2009-04-07 Chandrashekhar B * scripts/cesarftp_mkd_command_buffer_overflow.nasl, scripts/smb_explorer_version.nasl: Modified: trunk/openvas-plugins/scripts/amap.nasl =================================================================== --- trunk/openvas-plugins/scripts/amap.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/amap.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -37,8 +37,6 @@ # it, we can uncomment it # script_dependencies("ping_host.nasl"); - if (NASL_LEVEL < 2181) exit(0); # Cannot run - script_add_preference(name: "File containing machine readable results : ", value: "", type: "file"); script_add_preference(name:"Mode", type:"radio", value: "Map applications;Just grab banners;Port scan only"); @@ -80,7 +78,7 @@ return ret; } -if (NASL_LEVEL < 2181 || ! defined_func("pread") || ! defined_func("get_preference")) +if (! defined_func("pread") || ! defined_func("get_preference")) { set_kb_item(name: "/tmp/UnableToRun/14663", value: TRUE); display("Script #14663 (amap_wrapper) cannot run - upgrade libnasl\n"); Modified: trunk/openvas-plugins/scripts/doublecheck_std_services.nasl =================================================================== --- trunk/openvas-plugins/scripts/doublecheck_std_services.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/doublecheck_std_services.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -5,8 +5,6 @@ # # -if (NASL_LEVEL < 2200 ) exit(0); - if(description) { script_id(14772); Modified: trunk/openvas-plugins/scripts/firewall_detect.nasl =================================================================== --- trunk/openvas-plugins/scripts/firewall_detect.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/firewall_detect.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -5,9 +5,6 @@ # This script is released under the GPLv2 # - -if ( NASL_LEVEL < 2205 ) exit(0); - if(description) { script_id(80059);; Modified: trunk/openvas-plugins/scripts/glsa_200503_10.nasl =================================================================== --- trunk/openvas-plugins/scripts/glsa_200503_10.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/glsa_200503_10.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -27,9 +27,7 @@ if(description) { script_id(54875); - if(NASL_LEVEL>=2191) { - script_cve_id("CVE-2004-1156", "CVE-2005-0230", "CVE-2005-0231", "CVE-2005-0232", "CVE-2005-0233", "CVE-2005-0255", "CVE-2005-0527", "CVE-2005-0578", "CVE-2005-0584", "CVE-2005-0585", "CVE-2005-0586", "CVE-2005-0588", "CVE-2005-0589", "CVE-2005-0590", "CVE-2005-0591", "CVE-2005-0592", "CVE-2005-0593"); - } else { script_cve_id("CVE-2004-1156", "CVE-2005-0230", "CVE-2005-0231", "CVE-2005-0232", "CVE-2005-0233", "CVE-2005-0255", "CVE-2005-0527", "CVE-2005-0578"); + script_cve_id("CVE-2004-1156", "CVE-2005-0230", "CVE-2005-0231", "CVE-2005-0232", "CVE-2005-0233", "CVE-2005-0255", "CVE-2005-0527", "CVE-2005-0578", "CVE-2005-0584", "CVE-2005-0585", "CVE-2005-0586", "CVE-2005-0588", "CVE-2005-0589", "CVE-2005-0590", "CVE-2005-0591", "CVE-2005-0592", "CVE-2005-0593"); } ; script_version ("$"); name["english"] = "Gentoo Security Advisory GLSA 200503-10 (Firefox)"; Modified: trunk/openvas-plugins/scripts/http_ids_evasion.nasl =================================================================== --- trunk/openvas-plugins/scripts/http_ids_evasion.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/http_ids_evasion.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -9,9 +9,6 @@ # # kst-gplblah - -if ( NASL_LEVEL >= 3000 ) exit(0); - if(description) { script_id(80010); Modified: trunk/openvas-plugins/scripts/http_w98_devname_dos.nasl =================================================================== --- trunk/openvas-plugins/scripts/http_w98_devname_dos.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/http_w98_devname_dos.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -29,7 +29,7 @@ script_id(10930); script_bugtraq_id(1043, 2575, 2608, 2622, 2649, 2704, 3929, 6659, 6662); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2003-t-0003"); - if (NASL_LEVEL >= 2200 ) script_cve_id("CVE-2001-0386", "CVE-2001-0493", "CVE-2001-0391", "CVE-2001-0558", "CVE-2002-0200", "CVE-2000-0168", "CVE-2003-0016", "CVE-2001-0602"); + script_cve_id("CVE-2001-0386", "CVE-2001-0493", "CVE-2001-0391", "CVE-2001-0558", "CVE-2002-0200", "CVE-2000-0168", "CVE-2003-0016", "CVE-2001-0602"); script_version("$Revision$"); script_name(english:"HTTP Windows 98 MS/DOS device names DOS"); Modified: trunk/openvas-plugins/scripts/hydra_options.nasl =================================================================== --- trunk/openvas-plugins/scripts/hydra_options.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/hydra_options.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -51,7 +51,6 @@ function mk_login_file(logins) { local_var tmp1,tmp2, dir, list, i, u; - if ( NASL_LEVEL < 2201 ) return logins; # fwrite broken dir = get_tmp_dir(); if (! dir) return logins; # Abnormal condition for (i = 1; TRUE; i ++) Modified: trunk/openvas-plugins/scripts/ids_evasion.nasl =================================================================== --- trunk/openvas-plugins/scripts/ids_evasion.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/ids_evasion.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -13,8 +13,6 @@ # # kst-gplblah -if ( NASL_LEVEL >= 3000 ) exit(0); - if(description) { script_id(80011); Modified: trunk/openvas-plugins/scripts/nmap.nasl =================================================================== --- trunk/openvas-plugins/scripts/nmap.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/nmap.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -40,8 +40,6 @@ # it, we can uncomment it # script_dependencies("ping_host.nasl"); - if (NASL_LEVEL < 2181) exit(0); # Cannot run - v = pread(cmd: "nmap", argv: make_list("nmap", "-V")); if (v != NULL) { @@ -57,16 +55,10 @@ value:"connect();SYN scan;FIN scan;Xmas Tree scan;Null scan"); script_add_preference(name:"UDP port scan", type:"checkbox", value: "no"); - # This option eats too much memory and hits rlimits - if (NASL_LEVEL > 2200) - script_add_preference(name:"Service scan", type:"checkbox", value: "no"); + script_add_preference(name:"Service scan", type:"checkbox", value: "no"); script_add_preference(name:"RPC port scan", type:"checkbox", value: "no"); - # Too much memory - if (NASL_LEVEL > 2200) - { - script_add_preference(name:"Identify the remote OS", type:"checkbox", value: "no"); - script_add_preference(name:"Use hidden option to identify the remote OS", type:"checkbox", value: "no"); - } + script_add_preference(name:"Identify the remote OS", type:"checkbox", value: "no"); + script_add_preference(name:"Use hidden option to identify the remote OS", type:"checkbox", value: "no"); script_add_preference(name:"Fragment IP packets (bypasses firewalls)", type:"checkbox", value: "no"); if (ver !~ "3.7[05]") script_add_preference(name:"Get Identd info", type:"checkbox", value: "no"); @@ -90,7 +82,7 @@ } # -if (NASL_LEVEL < 2181 || ! defined_func("pread") || ! defined_func("get_preference")) +if (! defined_func("pread") || ! defined_func("get_preference")) { set_kb_item(name: "/tmp/UnableToRun/14259", value: TRUE); display("Script #14259 (nmap.nasl) cannot run - upgrade libnasl\n"); Modified: trunk/openvas-plugins/scripts/pnscan.nasl =================================================================== --- trunk/openvas-plugins/scripts/pnscan.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/pnscan.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -38,15 +38,13 @@ family["francais"] = "Scanners de ports"; script_family(english:family["english"], francais:family["francais"]); - if (NASL_LEVEL < 2181) exit(0); # Cannot run - script_add_preference(name:"Pnscan Timeout", type:"entry", value: ""); script_add_preference(name:"Pnscan Concurrent worker threads", type:"entry", value: ""); exit(0); } -if (NASL_LEVEL < 2181 || ! defined_func("pread") || ! defined_func("get_preference")) +if (! defined_func("pread") || ! defined_func("get_preference")) { set_kb_item(name: "/tmp/UnableToRun/80001", value: TRUE); display("Script #80001 (pnscan_wrapper) cannot run - upgrade libnasl\n"); Modified: trunk/openvas-plugins/scripts/portbunny.nasl =================================================================== --- trunk/openvas-plugins/scripts/portbunny.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/portbunny.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -40,15 +40,12 @@ family["francais"] = "Scanners de ports"; script_family(english:family["english"], francais:family["francais"]); - if (NASL_LEVEL < 2181) exit(0); # Cannot run - - script_add_preference(name:"Wait longer for triggers to return", type:"checkbox", value: "no"); exit(0); } -if (NASL_LEVEL < 2181 || ! defined_func("pread") || ! defined_func("get_preference")) +if (! defined_func("pread") || ! defined_func("get_preference")) { set_kb_item(name: "/tmp/UnableToRun/80002", value: TRUE); display("Script #80002 (portbunny_wrapper) cannot run - upgrade libnasl\n"); Modified: trunk/openvas-plugins/scripts/portscan-strobe.nasl =================================================================== --- trunk/openvas-plugins/scripts/portscan-strobe.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/portscan-strobe.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -38,8 +38,6 @@ family["francais"] = "Scanners de ports"; script_family(english:family["english"], francais:family["francais"]); - if (NASL_LEVEL < 2181) exit(0); # Cannot run - script_add_preference(name:"Strobe timeout", type:"entry", value: ""); script_add_preference(name:"Strobe number of sockets in parallel", type:"entry", value: ""); script_add_preference(name:"Strobe local port to bind outgoing requests", type:"entry", value: ""); @@ -48,7 +46,7 @@ exit(0); } -if (NASL_LEVEL < 2181 || ! defined_func("pread") || ! defined_func("get_preference")) +if (! defined_func("pread") || ! defined_func("get_preference")) { set_kb_item(name: "/tmp/UnableToRun/80009", value: TRUE); display("Script #80009 (strobe_wrapper) cannot run - upgrade libnasl\n"); Modified: trunk/openvas-plugins/scripts/sambar_xss.nasl =================================================================== --- trunk/openvas-plugins/scripts/sambar_xss.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/sambar_xss.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -17,8 +17,6 @@ script_id(80083);; script_bugtraq_id(7209); - if (NASL_LEVEL >= 2200) - { script_xref(name:"OSVDB", value:"5097"); script_xref(name:"OSVDB", value:"5100"); script_xref(name:"OSVDB", value:"5101"); @@ -47,7 +45,6 @@ script_xref(name:"OSVDB", value:"5818"); script_xref(name:"OSVDB", value:"5819"); script_xref(name:"OSVDB", value:"5820"); - } script_name(english:"Sambar XSS"); Modified: trunk/openvas-plugins/scripts/scan_info.nasl =================================================================== --- trunk/openvas-plugins/scripts/scan_info.nasl 2009-04-07 10:15:40 UTC (rev 3044) +++ trunk/openvas-plugins/scripts/scan_info.nasl 2009-04-07 10:26:11 UTC (rev 3045) @@ -54,7 +54,7 @@ if ( ! strlen(NESSUS_VERSION) ) { - if ( ! defined_func("pread") && NASL_LEVEL >= 2202 ) + if ( ! defined_func("pread") ) ver