📄 deb_443_1.nasl
字号:
# OpenVAS Vulnerability Test# $Id$# Description: Auto-generated from advisory DSA 443-1## Authors:# Thomas Reinke <reinke@securityspace.com>## Copyright:# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com# Text descriptions are largerly excerpted from the referenced# advisory, and are Copyright (c) the respective author(s)## This program is free software; you can redistribute it and/or modify# it under the terms of the GNU General Public License version 2,# as published by the Free Software Foundation## This program is distributed in the hope that it will be useful,# but WITHOUT ANY WARRANTY; without even the implied warranty of# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the# GNU General Public License for more details.## You should have received a copy of the GNU General Public License# along with this program; if not, write to the Free Software# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.#if(description){ script_id(53680); script_cve_id("CVE-2003-0690", "CVE-2004-0083", "CVE-2004-0084", "CVE-2004-0106", "CVE-2004-0093", "CVE-2004-0094"); script_version ("$"); name["english"] = "Debian Security Advisory DSA 443-1 (xfree86)"; script_name(english:name["english"]); desc["english"] = "The remote host is missing an update to xfree86announced via advisory DSA 443-1.A number of vulnerabilities have been discovered in XFree86:CVE-2004-0083: Buffer overflow in ReadFontAlias from dirfile.c ofXFree86 4.1.0 through 4.3.0 allows local users and remote attackers toexecute arbitrary code via a font alias file (font.alias) with a longtoken, a different vulnerability than CVE-2004-0084.CVE-2004-0084: Buffer overflow in the ReadFontAlias function in XFree864.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allowslocal or remote authenticated users to execute arbitrary code via amalformed entry in the font alias (font.alias) file, a differentvulnerability than CVE-2004-0083.CVE-2004-0106: Miscellaneous additional flaws in XFree86's handling offont files.CVE-2003-0690: xdm does not verify whether the pam_setcred function callsucceeds, which may allow attackers to gain root privileges bytriggering error conditions within PAM modules, as demonstrated incertain configurations of the MIT pam_krb5 module.CVE-2004-0093, CVE-2004-0094: Denial-of-service attacks against the Xserver by clients using the GLX extension and Direct RenderingInfrastructure are possible due to unchecked client data (out-of-boundsarray indexes [CVE-2004-0093] and integer signedness errors[CVE-2004-0094]).Exploitation of CVE-2004-0083, CVE-2004-0084, CVE-2004-0106,CVE-2004-0093 and CVE-2004-0094 would require a connection to the Xserver. By default, display managers in Debian start the X serverwith a configuration which only accepts local connections, but if theconfiguration is changed to allow remote connections, or X servers arestarted by other means, then these bugs could be exploited remotely.Since the X server usually runs with root privileges, these bugs couldpotentially be exploited to gain root privileges.No attack vector for CVE-2003-0690 is known at this time.For the stable distribution (woody) these problems have been fixed inversion 4.1.0-16woody3.For the unstable distribution (sid) these problems have been fixed inversion 4.3.0-2.We recommend that you update your xfree86 package.Solution:https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20443-1Risk factor : High"; script_description(english:desc["english"]); summary["english"] = "Debian Security Advisory DSA 443-1 (xfree86)"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com"); family["english"] = "Debian Local Security Checks"; script_family(english:family["english"]); script_dependencies("gather-package-list.nasl"); script_require_keys("ssh/login/packages"); exit(0);}## The script code starts here#include("revisions-lib.inc");include("pkg-lib-deb.inc");vuln = 0;if(isdpkgvuln(pkg:"x-window-system", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-100dpi-transcoded", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-100dpi", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-75dpi-transcoded", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-75dpi", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-base-transcoded", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-base", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-cyrillic", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-pex", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfonts-scalable", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfree86-common", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlib6g-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlib6g", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xspecs", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"lbxproxy", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libdps-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libdps1", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libdps1-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw6", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw6-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw6-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw7", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw7-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"libxaw7-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"proxymngr", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"twm", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"x-window-system-core", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xbase-clients", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xdm", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfs", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xfwp", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibmesa-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibmesa3", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibmesa3-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibosmesa-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibosmesa3", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibosmesa3-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibs", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibs-dbg", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibs-dev", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xlibs-pic", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xmh", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xnest", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xprt", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xserver-common", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xserver-xfree86", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xterm", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xutils", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(isdpkgvuln(pkg:"xvfb", ver:"4.1.0-16woody3", rls:"DEB3.0")) { vuln = 1;}if(vuln) { security_hole(0);}⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -