[Openvas-plugins] putty_version_check.nasl and sympa_detect.nasl
Goran Ličina
goran.licina at lss.hr
Tue Jul 28 12:34:37 CEST 2009
> -----Original Message-----
> From: openvas-plugins-bounces at wald.intevation.org [mailto:openvas-
> plugins-bounces at wald.intevation.org] On Behalf Of Michael Meyer
> Sent: Monday, July 27, 2009 6:40 PM
> To: openvas-plugins at wald.intevation.org
> Subject: Re: [Openvas-plugins] putty_version_check.nasl and
> sympa_detect.nasl
>
> Hello Goran,
>
> *** Goran Li?ina <goran.licina at lss.hr> wrote:
> > openca_html_injection.nasl is finished (in attachment).
> >
> > Waiting for your comments.
>
> Ok... :-)
>
> | function is_vulnerable(version) {
>
> Have a look at 'version_func.inc'. You can do:
>
> | include("version_func.inc");
> |
> | [...]
> |
> | if(version_is_less_equal(version: version, test_version: "0.9.2")) {
>
> No need to reinvent the wheel. :-)
>
> | match = eregmatch(pattern:'OpenCA Server Version
> (([[:digit:]]\\.?)+)',
> | string:res);
>
> I know that there exist 'OpenCA Server Version' with a '-rc[0-9]'
> suffix. Eg: 'OpenCA Server Version 0.9.3-rc1'. Is it ok, that you
> ignore
> the 'rc'-part in your script? IMHO you should at least set the "full"
> version (including the rc-part) in KB.
>
Hi Micha,
thanks a lot for you comments! We updated the plugin according to you advices.
We also removed language declaration ("english") from description functions.
I hope everything is ok now.
Best regards,
Goran Licina
--
Laboratory for Systems and Signals
Department of Electronic Systems and Information Processing
Faculty of Electrical Engineering and Computing
University of Zagreb
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openca_html_injection.nasl
Type: application/octet-stream
Size: 3312 bytes
Desc: openca_html_injection.nasl
Url : http://lists.wald.intevation.org/pipermail/openvas-plugins/attachments/20090728/52257786/openca_html_injection.obj
More information about the Openvas-plugins
mailing list