[Openvas-commits] r3024 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Sat Apr 4 21:58:11 CEST 2009
Author: edjenguele
Date: 2009-04-04 21:58:10 +0200 (Sat, 04 Apr 2009)
New Revision: 3024
Modified:
trunk/openvas-plugins/ChangeLog
trunk/openvas-plugins/scripts/remote-MS06-033.nasl
trunk/openvas-plugins/scripts/remote-MS06-056.nasl
trunk/openvas-plugins/scripts/remote-MS07-040.nasl
trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl
Log:
used revcomp from revisions-lib.inc in remote-MS* plugins for version string comparison,
set script_require_keys for remote-detect-sybase-easerver-mgmt.nasl plugin,
forgot to do this in my last commit
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2009-04-04 17:11:14 UTC (rev 3023)
+++ trunk/openvas-plugins/ChangeLog 2009-04-04 19:58:10 UTC (rev 3024)
@@ -1,3 +1,14 @@
+2009-04-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org>
+ * scripts/remote-detect-sybase-easerver-mgmt.nasl
+ * scripts/remote-MS07-040.nasl
+ * scripts/remote-MS06-056.nasl
+ * scripts/remote-MS06-033.nasl:
+ Added script_require_keys for plugin
+ remote-detect-sybase-easerver-mgmt.nasl,
+ updated remote-MS0* plugins used revcomp from revisions-lib.inc for
+ versions string comparison
+
+
2009-04-04 Christian Eric Edjenguele <christian.edjenguele at owasp.org>
* scripts/remote-detect-sybase-easerver.nasl
* scripts/remote-detect-sybase-easerver-mgmt.nasl:
Modified: trunk/openvas-plugins/scripts/remote-MS06-033.nasl
===================================================================
--- trunk/openvas-plugins/scripts/remote-MS06-033.nasl 2009-04-04 17:11:14 UTC (rev 3023)
+++ trunk/openvas-plugins/scripts/remote-MS06-033.nasl 2009-04-04 19:58:10 UTC (rev 3024)
@@ -103,6 +103,8 @@
# The script code starts here
#
+include("revisions-lib.inc");
+
dotnet = get_kb_item("dotNET/version");
port = get_kb_item("dotNet/port");
@@ -111,28 +113,12 @@
else
{
- dotnetlist = split(dotnet, sep:'.');
- # check if this return the list length
- l = max_index(dotnetlist) - 1;
-
- # creates a hash to save
- dotnetversion = make_array('None', FALSE);
-
# Microsoft .NET Framework version 2.0
- dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 );
- dotnetversion['2.0.two'] = ( l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 101);
-
+ if(revcomp(a:dotnet, b:"2.0.50727.101") == -1){
-
- foreach version (dotnetversion)
- {
-
- if (version == TRUE)
- # Report 'Microsoft ASP.NET Application Folder Information Disclosure Vulnerability (MS06-033)'
- report = 'Detected Microsoft .Net Framework version: ' + dotnet;
- security_hole(port:port, data:report);
+ # Report 'Microsoft ASP.NET Application Folder Information Disclosure Vulnerability (MS06-033)'
+ report = 'Missing MS06-033 patch, detected Microsoft .Net Framework version: ' + dotnet;
+ security_hole(port:port, data:report);
}
}
-
-
Modified: trunk/openvas-plugins/scripts/remote-MS06-056.nasl
===================================================================
--- trunk/openvas-plugins/scripts/remote-MS06-056.nasl 2009-04-04 17:11:14 UTC (rev 3023)
+++ trunk/openvas-plugins/scripts/remote-MS06-056.nasl 2009-04-04 19:58:10 UTC (rev 3024)
@@ -106,6 +106,7 @@
# The script code starts here
#
+include("revisions-lib.inc");
dotnet = get_kb_item("dotNET/version");
port = get_kb_item("dotNet/port");
@@ -115,24 +116,11 @@
else
{
- dotnetlist = split(dotnet, sep:'.');
- l = max_index(dotnetlist) - 1;
-
# Microsoft .NET Framework version 2.0
- dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 );
- dotnetversion['2.0.two'] = (l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 210 );
-
+ if(revcomp(a:dotnet, b:"2.0.50727.210") == -1){
-
- foreach version (dotnetversion)
- {
-
- if (version == TRUE)
- # Report 'Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability (MS06-056)'
- report = 'Detected Microsoft .Net Framework version: ' + dotnet;
- security_hole(port:port, data:report);
+ # Report 'Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability (MS06-056)'
+ report = 'Missing MS06-056 patch, detected Microsoft .Net Framework version: ' + dotnet;
+ security_hole(port:port, data:report);
}
}
-
-
-
Modified: trunk/openvas-plugins/scripts/remote-MS07-040.nasl
===================================================================
--- trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 17:11:14 UTC (rev 3023)
+++ trunk/openvas-plugins/scripts/remote-MS07-040.nasl 2009-04-04 19:58:10 UTC (rev 3024)
@@ -77,6 +77,7 @@
# The script code starts here
#
+include("revisions-lib.inc");
dotnet = get_kb_item("dotNET/version");
port = get_kb_item("dotNET/port");
@@ -86,30 +87,18 @@
else
{
- dotnetlist = split(dotnet, sep:'.');
- l = max_index(dotnetlist) - 1;
-
- # Microsoft .NET Framework version < 1.0 Service Pack 3
- dotnetversion['1.0.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 3705 );
- dotnetversion['1.0.two'] = (l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 3705 && int(dotnetlist[3]) < 6060 );
-
- # Microsoft .NET Framework version < 1.1 Service Pack 1
- dotnetversion['1.1.one'] = ( dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) < 4322 );
- dotnetversion['1.1.two'] = (l > 3 && dotnetlist[0] == '1' && dotnetlist[1] == '1' && int(dotnetlist[2]) == 4322 && int(dotnetlist[3]) < 2407 );
-
- # Microsoft .NET Framework version < 2.0 Service Pack 2
- dotnetversion['2.0.one'] = ( dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) < 50727 );
- dotnetversion['2.0.two'] = (l > 3 && dotnetlist[0] == '2' && dotnetlist[1] == '0' && int(dotnetlist[2]) == 50727 && int(dotnetlist[3]) < 832 );
-
+ # Microsoft .NET Framework version < [1.0 SP3, 1.1 SP1, 2.0 SP2]
+ dotnetversion['1.0'] = revcomp(revcomp(a:dotnet, b:"1.0.3705.6060");
+ dotnetversion['1.1'] = revcom(revcomp(a:dotnet, b:"1.1.4332.2407");
+ dotnetversion['2.0'] = revcomp(a:dotnet, b:"2.0.50727.832");
+
foreach version (dotnetversion)
{
- if (version == TRUE)
+ if (version == -1)
- report = 'Detected Microsoft .Net Framework version: ' + dotnet;
-
- # report MS04-040 vulnerability
+ # report MS07-04 vulnerability
+ report = 'Missing MS07-040 patch, detected Microsoft .Net Framework version: ' + dotnet;
security_hole(port:port, data:report);
}
}
-
Modified: trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl
===================================================================
--- trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-04 17:11:14 UTC (rev 3023)
+++ trunk/openvas-plugins/scripts/remote-detect-sybase-easerver-mgmt.nasl 2009-04-04 19:58:10 UTC (rev 3024)
@@ -54,7 +54,7 @@
script_family(english:family["english"]);
script_dependencies("find_service.nes", "remote-detect-sybase-easerver.nasl");
script_require_ports("Services/www");
-
+script_require_keys("SybaseEAServer/installed");
exit(0);
}
More information about the Openvas-commits
mailing list