H €uY|1؎м @|ff19EE)EfDf\DpPf1DfD BpVff1f4T f1ftT D ;D}h*D 9EE)EfT L ъl ZRt Pp1۴r:ÎEXE`11a}B4Z"!? !7!1Loading stage1.5. GeomRead ErrorF<u p"0.97/boot/grub/stage2 /boot/grub/menu.lst1؎Ўgf-$ffg$fa DD)0D$%fD$f%áDDL$ Qfgf-%gf@% f"f#f؎Ћ$$ĉš$1@%$$ĉf ؎u# f"f#f1؎fUVSEff1fU f]؎1f2[^]USWVEŊEfuU f] eEfC1۾s1Nt0f^_[]USU AUrUu"uu0f[]USWUu?u`fyl$@}1$?}̈@} 1_[]US\$ ftff+f[]ËT$`_0f aÉ'%U4jY$dDH$DhD"DXEYPRSuEu @D $@D ÐUWVS}M ȉ1 ~W0 Ӊ1Fu΍^ AKQA9wZ[^_]UM wu1]UME tA@:tt 1]UUv*E w dD hD 9s  D1= D]U1҉VMSu] 2B9|[^]UWVu S]SuzY_t 9us ً}Etٍ|1= D!EEe[^_]UVuS]VS&ZYtM JH@1= D؍e!É[^]US] u j ]]4US] PCu]UVSu DA%Et P(QAEuu]PjuSSMue[^]U DB"wPPRhSC~UM=uD]DADáDUMU x;D~ DDxD+D9~ D+DD;D~  D(Du  DkU M]C]1kDU勈Ct]]UWVS}Dȃ}  D`MxE9Dt2SShDPlu͋UDDDȉM} x E ;Dr D1>DM5D~Ev E~}E M] }))ӉMM;D:U*Ut0;uEU EEQQhpPRhDuj7 tX=Du  DA;u!PPhpVu hDuj t  DUD=Du} ur=Ut=Ut=Ut =UuNuN~DSPPh+QQhpjjhDuj] t  DuM);u~u(DtZD)9RSWu )Ѓ~7E @RjPXщ؃+=DD (D9wSWjPуQVuu#)u}~E1uE = D{1= D RVWu 봍e[^_]UWVS F @=uFF Fvhj0v tyNfUua‰E@u^1ۉʊ<t<tPS>Punfxux @$<tm !ej !] 4"P!)9vu$DSR (DV*(DE ]D)tE ;}rl= D= DuE+E1e[^_]UW1V1S,DžDžDž]~ D@1ۣDCUt PtD=v DLPCPuPD  "tPP5DS;Dt= D D/]Ut PNt`upDBDfxuz t D  YCEU:/t@u D Ɉt Pu /ű 9QuzAIDž֍<@^ FtPPSuAt:ߋ+h D(VFM1e[^_]UWVS =DPhjhjtePPPShC{~(PPShCg~PPShCS#HDž(==DPhjjPPPShC~pPPShC~\WWShC~HVV0PhC,1fDžHDž(fDždDžDždffHf"!, `Hf$Sjjh( Hf= 9v(f&,0!9£M c];muDž `F.QQPhCC9 $;E @I!ˉ؍; ;   D=vDž n 1ɉ( DA; s~ދ 7G7GSGN 4X6-GJas}`Hkb-GqOG4=ӀԀՀt,=+{=ӀԀՀ{=|>ӀԀՀm(K7ӀԀՀ 8z=ӀԀՀ?7u-+"'O 97,0-\o4(?Z$U#   Yr,H   w~=   }|<   %l$,   $u!F   ;3   tu0<Ӏ Ԁ Հ v=   ;`.O .ReIsEr2Fs  H[AADXD|{|~     ( ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ' ( ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^$H9Sy   P   ,   |   ,P    X  ,  m*v|/V.j: g3ϫ i)vZ~qP=SnFa#rɿ{BDOd}<%U1ȠYLъyqݭWq' |Ib=)osIXw^WWؾ|a|_[WөW,Ef^WzT0iJGٸfHYq+вoB7N>?2.31Z+բ Uٔkl%N-ʄq]XB~ `y]wIS!)J_^" 5dC]og̎t@Gj."); script_name(english: "[DSA052] DSA-052-1 sendfile"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-052-1 sendfile"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendfile', release: '2.2', reference: '2.1-20.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendfile is vulnerable in Debian 2.2.\nUpgrade to sendfile_2.1-20.3\n'); } if (w) { security_hole(port: 0, data: desc); } SJFJFXbbH 23JFJFXbbH # This script was automatically generated from the dsa-050 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Colin Phipps and Daniel Kobras discovered and fixed several serious bugs in the saft daemon `sendfiled\' which caused it to drop privileges incorrectly. Exploiting this a local user can easily make it execute arbitrary code under root privileges. We recommend you upgrade your sendfile packages immediately. Solution : http://www.debian.org/security/2001/dsa-050 Risk factor : High'; if (description) { script_id(14887); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "050"); script_cve_id("CVE-2001-0623"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA050] DSA-050-1 sendfile"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-050-1 sendfile"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendfile', release: '2.2', reference: '2.1-20.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendfile is vulnerable in Debian 2.2.\nUpgrade to sendfile_2.1-20.2\n'); } if (w) { security_hole(port: 0, data: desc); } DYZe`,Oi1   0   ,    t  ,H   # This script was automatically generated from the dsa-055 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A new Zope hotfix has been released which fixes a problem in ZClasses. The README for the 2JFJFXbbH # This script was automatically generated from the dsa-054 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A recent (fall 2000) security fix to cron introduced an error in giving up privileges before invoking the editor. This was discovered by Sebastian Krahmer from SuSE. A malicious user could easily gain root access. This has been fixed in version 3.0pl1-57.3 (or 3.0pl1-67 for unstable). No exploits are known to exist, but we recommend that you upgrade your cron packages immediately. Solution : http://www.debian.org/security/2001/dsa-054 Risk factor : High'; if (description) { script_id(14891); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "054"); script_cve_id("CVE-2001-0559"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA054] DSA-054-1 cron"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-054-1 cron"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cron', release: '2.2', reference: '3.0pl1-57.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cron is vulnerable in Debian 2.2.\nUpgrade to cron_3.0pl1-57.3\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-053 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The nedit (Nirvana editor) package as shipped in the non-free section accompanying Debian GNU/Linux 2.2/potato had a bug in its printing code: when printing text it would create a temporary file with the to be printed text and pass that on to the print system. The temporary file was not created safely, which could be exploited by an attacked to make nedit overwrite arbitrary files. This has been fixed in version 5.02-7.1. Solution : http://www.debian.org/security/2001/dsa-053 Risk factor : High'; if (description) { script_id(14890); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "053"); script_cve_id("CVE-2001-0556"); script_bugtraq_id(2667); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA053] DSA-053-1 nedit"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-053-1 nedit"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'nedit', release: '2.2', reference: '5.02-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nedit is vulnerable in Debian 2.2.\nUpgrade to nedit_5.02-7.1\n'); } if (w) { security_hole(port: 0, data: desc); }  K      ,    0   ,X  T Μ  ά ΠI/* $    $ $ @ @ P JFJFXbbH # This script was automatically generated from the dsa-056 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ethan Benson found a bug in man-db packages as distributed in Debian GNU/Linux 2.2. man-db includes a mandb tool which is used to build an index of the manual pages installed on a system. When the -u or -c option were given on the command-line to tell it to write its database to a different location it failed to properly drop privileges before creating a temporary file. This makes it possible for an attacker to do a standard symlink attack to trick mandb into overwriting any file that is writable by uid man, which includes the man and mandb binaries. This has been fixed in version 2.3.16-3, and we recommend that you upgrade your man-db package immediately. If you use suidmanager you can also use that to make sure man and mandb are not installed suid which protects you from this problem. This can be done with the following commands: suidregister /usr/lib/man-db/man root root 0755 suidregister /usr/lib/man-db/mandb root root 0755 Of course even when using suidmanager an upgrade is still strongly recommended. Solution : http://www.debian.org/security/2001/dsa-056 Risk factor : High'; if (description) { script_id(14893); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "056"); script_cve_id("CVE-2001-1331"); script_bugtraq_id(2720); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA056] DSA-056-1 man-db"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-056-1 man-db"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'man-db', release: '2.2', reference: '2.3.16-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package man-db is vulnerable in Debian 2.2.\nUpgrade to man-db_2.3.16-3\n'); } if (w) { security_hole(port: 0, data: desc); } / JFJFXbbH 001-05-01 hotfix describes the problem as `any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance.\' This hotfix has been added in version 2.1.6-10, and we highly recommend that you upgrade your zope package immediately. Solution : http://www.debian.org/security/2001/dsa-055 Risk factor : High'; if (description) { script_id(14892); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "055"); script_cve_id("CVE-2001-0567"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA055] DSA-055-1 zope"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-055-1 zope"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'zope', release: '2.2', reference: '2.1.6-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package zope is vulnerable in Debian 2.2.\nUpgrade to zope_2.1.6-10\n'); } if (w) { security_hole(port: 0, data: desc); } rh   @   ,    d  ,8   # This script was automatically generated from the dsa-059 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-200JFJFXbbH # This script was automatically generated from the dsa-058 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Megyer Laszlo found a printf format bug in the exim mail transfer agent. The code that checks the header syntax of an email logs an error without protecting itself against printf format attacks. It\'s only exploitable locally with the -bS switch (in batched SMTP mode). This problem has been fixed in version 3.12-10.1. Since that code is not turned on by default a standard installation is not vulnerable, but we still recommend to upgrade your exim package. Solution : http://www.debian.org/security/2001/dsa-058 Risk factor : High'; if (description) { script_id(14895); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "058"); script_cve_id("CVE-2001-0690"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA058] DSA-058-1 exim"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-058-1 exim"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'exim', release: '2.2', reference: '3.12-10.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package exim is vulnerable in Debian 2.2.\nUpgrade to exim_3.12-10.1\n'); } if (deb_check(prefix: 'eximon', release: '2.2', reference: '3.12-10.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eximon is vulnerable in Debian 2.2.\nUpgrade to eximon_3.12-10.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-057 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The gftp package as distributed with Debian GNU/Linux 2.2 has a problem in its logging code: it logged data received from the network but it did not protect itself from printf format attacks. An attacker can use this by making an FTP server return special responses that exploit this. This has been fixed in version 2.0.6a-3.1, and we recommend that you upgrade your gftp package. Note: this advisory was posted as DSA-055-1 by mistake. Solution : http://www.debian.org/security/2001/dsa-057 Risk factor : High'; if (description) { script_id(14894); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "057"); script_cve_id("CVE-2001-0489"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA057] DSA-057-1 gftp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-057-1 gftp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gftp', release: '2.2', reference: '2.0.6a-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gftp is vulnerable in Debian 2.2.\nUpgrade to gftp_2.0.6a-3.1\n'); } if (w) { security_hole(port: 0, data: desc); }    `  ,t   @4  ,  is script was automatically generated from the dsa-060 # Debian Security Advisory # It is released under the Nessus SJFJFXbbH # This script was automatically generated from the dsa-060 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Wolfram Kleff found a problem in fetchmail: it would crash when processing emails with extremely long headers. The problem was a buffer overflow in the header parser which could be exploited. This has been fixed in version 5.3.3-1.2, and we recommend that you upgrade your fetchmail package immediately. Solution : http://www.debian.org/security/2001/dsa-060 Risk factor : High'; if (description) { script_id(14897); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "060"); script_cve_id("CVE-2001-0819"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA060] DSA-060-1 fetchmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-060-1 fetchmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fetchmail', release: '2.2', reference: '5.3.3-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail is vulnerable in Debian 2.2.\nUpgrade to fetchmail_5.3.3-1.2\n'); } if (deb_check(prefix: 'fetchmailconf', release: '2.2', reference: '5.3.3-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmailconf is vulnerable in Debian 2.2.\nUpgrade to fetchmailconf_5.3.3-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } =JFJFXbbH 4 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Luki R. reported a bug in man-db: it did not handle nested calls of drop_effective_privs() and regain_effective_privs() correctly which would cause it to regain privileges too early. This could be abused to make man create files as user man. This has been fixed in version 2.3.16-4, and we recommend that you upgrade your man-db package immediately. If you use suidmanager you can also use that to make sure man and mandb are not installed suid which protects you from this problem. This can be done with the following commands: suidregister /usr/lib/man-db/man root root 0755 suidregister /usr/lib/man-db/mandb root root 0755 Of course even when using suidmanager an upgrade is still strongly recommended. Solution : http://www.debian.org/security/2001/dsa-059 Risk factor : High'; if (description) { script_id(14896); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "059"); script_cve_id("CVE-2001-1331"); script_bugtraq_id(2720, 2815); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA059] DSA-059-1 man-db"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-059-1 man-db"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'man-db', release: '2.2', reference: '2.3.16-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package man-db is vulnerable in Debian 2.2.\nUpgrade to man-db_2.3.16-4\n'); } if (w) { security_hole(port: 0, data: desc); }    X  ,|   d# This script was automatically generated from the dsa-062 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Samuel Dralet reported on bugtraq that version 2.6.2 of rxvt (a VT102 terminal emulator for X) have a buffer overflow in the tt_printf() function. A local user could abuse this making rxvt print a special string using that function, for example by using the -T or -name command-line options. That string would cause a stack overflow and contain code which rxvt will execute. Since rxvt is installed sgid utmp an attacker could use this to gain utmp which would allow them to modify the utmp file. This has been fixed in version 2.6.2-2.1, and we recommend that you upgrade your rxvt package. Solution : http://www.debian.org/security/2001/dsa-062 Risk factor : High'; if (description) { script_id(14899); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "062"); script_cve_id("CVE-2001-1077"); script_bugtraq_id(2878); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA062] DSA-062-1 rxvt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-062-1 rxvt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'rxvt', release: '2.2', reference: '2.6.2-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rxvt is vulnerable in DebMJFJFXbbH # This script was automatically generated from the dsa-061 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The version of GnuPG (GNU Privacy Guard, an OpenPGP implementation) as distributed in Debian GNU/Linux 2.2 suffers from two problems: fish stiqz reported on bugtraq that there was a printf format problem in the do_get() function: it printed a prompt which included the filename that was being decrypted without checking for possible printf format attacks. This could be exploited by tricking someone into decrypting a file with a specially crafted filename. The second bug is related to importing secret keys: when gnupg imported a secret key it would immediately make the associated public key fully trusted which changes your web of trust without asking for a confirmation. To fix this you now need a special option to import a secret key. Both problems have been fixed in version 1.0.6-0potato1. Solution : http://www.debian.org/security/2001/dsa-061 Risk factor : High'; if (description) { script_id(14898); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "061"); script_cve_id("CVE-2001-0522"); script_bugtraq_id(2797); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA061] DSA-061-1 gnupg"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-061-1 gnupg"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gnupg', release: '2.2', reference: '1.0.6-0potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnupg is vulnerable in Debian 2.2.\nUpgrade to gnupg_1.0.6-0potato1\n'); } if (w) { security_hole(port: 0, data: desc); }  {/   8  ,     ,`     ,``褁 JFJFXbbH # This script was automatically generated from the dsa-064 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' SecureNet Service reported that w3m (a console web browser) has a buffer overflow in its MIME header parsing code. This could be exploited by an attacker if by making a web-server a user visits return carefully crafted MIME headers. This has been fixed in version 0.1.10+0.1.11pre+kokb23-4, and we recommend that you upgrade your w3m package. Solution : http://www.debian.org/security/2001/dsa-064 Risk factor : High'; if (description) { script_id(14901); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "064"); script_cve_id("CVE-2001-0700"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA064] DSA-064-1 w3m"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-064-1 w3m"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'w3m', release: '2.2', reference: '0.1.10+0.1.11pre+kokb23-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m is vulnerable in Debian 2.2.\nUpgrade to w3m_0.1.10+0.1.11pre+kokb23-4\n'); } if (w) { security_hole(port: 0, data: desc); } yJFJFXbbH # This script was automatically generated from the dsa-063 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' zen-parse reported on bugtraq that there is a possible buffer overflow in the logging code from xinetd. This could be triggered by using a fake identd that returns special replies when xinetd does an ident request. Another problem is that xinetd sets it umask to 0. As a result any programs that xinetd start that are not careful with file permissions will create world-writable files. Both problems have been fixed in version 2.1.8.8.p3-1.1. Solution : http://www.debian.org/security/2001/dsa-063 Risk factor : High'; if (description) { script_id(14900); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "063"); script_cve_id("CVE-2001-0763", "CVE-2001-1322"); script_bugtraq_id(2826, 2840); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA063] DSA-063-1 xinetd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-063-1 xinetd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xinetd', release: '2.2', reference: '2.1.8.8.p3-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xinetd is vulnerable in Debian 2.2.\nUpgrade to xinetd_2.1.8.8.p3-1.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH ian 2.2.\nUpgrade to rxvt_2.6.2-2.1\n'); } if (deb_check(prefix: 'rxvt-ml', release: '2.2', reference: '2.6.2-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rxvt-ml is vulnerable in Debian 2.2.\nUpgrade to rxvt-ml_2.6.2-2.1\n'); } if (w) { security_hole(port: 0, data: desc); }      ,  gtkrc, píopa nó comhphróiseas oscail j]h 0 do *Xfce-duskear: píopa `%s' oscailte do l@ (j]h p880HHPPd `%Xfce-duskadh sloinn loighciúil é an c ?P0YJFJFXbbH # This script was automatically generated from the dsa-065 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Michal Zalewski discovered that Samba does not properly validate NetBIOS names from remote machines. By itself that is not a problem, except if Samba is configured to write log-files to a file that includes the NetBIOS name of the remote side by using the `%m\' macro in the `log file\' command. In that case an attacker could use a NetBIOS name like \'../tmp/evil\'. If the log-file was set to "/var/log/samba/%s" Samba would then write to /var/tmp/evil. Since the NetBIOS name is limited to 15 characters and the `log file\' command could have an extension to the filename the results of this are limited. However if the attacker is also able to create symbolic links on the Samba server they could trick Samba into appending any data they want to all files on the filesystem which Samba can write to. The Debian GNU/Linux packaged version of Samba has a safe configuration and is not vulnerable. As temporary workaround for systems that are vulnerable change all occurrences of the `%m\' macro in smb.conf to `%l\' and restart Samba. This has been fixed in version 2.0.7-3.4, and we recommend that you upgrade your Samba package immediately. Solution : http://www.debian.org/security/2001/dsa-065 Risk factor : High'; if (description) { script_id(14902); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "065"); script_cve_id("CVE-2001-1162"); script_bugtraq_id(2927); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA065] DSA-065-1 samba"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-065-1 samba"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'samba', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba is vulnerable in Debian 2.2.\nUpgrade to samba_2.0.7-3.4\n'); } if (deb_check(prefix: 'samba-common', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-common is vulnerable in Debian 2.2.\nUpgrade to samba-common_2.0.7-3.4\n'); } if (deb_check(prefix: 'samba-doc', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-doc is vulnerable in Debian 2.2.\nUpgrade to samba-doc_2.0.7-3.4\n'); } if (deb_check(prefix: 'smbclient', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbclient is vulnerable in Debian 2.2.\nUpgrade to smbclient_2.0.7-3.4\n'); } if (deb_check(prefix: 'smbfs', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbfs is vulnerable in Debian 2.2.\nUpgrade to smbfs_2.0.7-3.4\n'); } if (deb_check(prefix: 'swat', release: '2.2', reference: '2.0.7-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package swat is vulnerable in Debian 2.2.\nUpgrade to swat_2.0.7-3.4\n'); } if (w) { security_hole(port: 0, data: desc); } ,p   `  ,t  pgtkrc uair ar shadow_funcs()!sin: fuac jdK ```e0````naí*Xfce-cadmiumnuaníl an comhadainm spei@d (jdK pa8a8ag0HaHaPaPaitheXfce-cadmiumgar é an dara hargóintsq` `?aaaPb0aaaail*ICON.pnghuimhriúilaschur caighdeánaca a?bHbHbb0XbXb`b`biteICON.pngn formáide folamhis teaghrá b `c cbb`c0bbbbúil*README.htmlhuimhriúil an innéacs %gsb ac cXcXcd0hchcpcpcbhaiREADME.htmliomarca argóintí don teaghdR `PWdcc`0ccccag *gtk-2.0annachán go `LINT'cineál gan Pe aPWdhdhd@a0xdxdddch dgtk-2.0%.*s'slonn ionadaíochta gan cr0c c Z(eddc0eeeehna*gtkrc le `\' ag an gcomhadchríochtea` @d Zexexepd0eeeeROCIgtkrcser'níl úsáid `\ #...' mar leai j} 8fffj0ffffamac*Xfce-curve xor(%lf, %lf): teascófar li (j} fffhl0ffffannaXfce-curve an chéad argóinta e?Hgggg0 g g(g(g*ICON.pngXJFJFXbbH # This script was automatically generated from the dsa-066 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Steven van Acker reported on bugtraq that the version of cfingerd (a configurable finger daemon) as distributed in Debian GNU/Linux 2.2 suffers from two problems: The code that reads configuration files (files in which $ commands are expanded) copied its input to a buffer without checking for a buffer overflow. When the ALLOW_LINE_PARSING feature is enabled that code is used for reading users\' files as well, so local users could exploit this. There also was a printf call in the same routine that did not protect against printf format attacks. Since ALLOW_LINE_PARSING is enabled in the default /etc/cfingerd.conf local users could use this to gain root access. This has been fixed in version 1.4.1-1.2, and we recommend that you upgrade your cfingerd package immediately. Solution : http://www.debian.org/security/2001/dsa-066 Risk factor : High'; if (description) { script_id(14903); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "066"); script_cve_id("CVE-2001-0735"); script_bugtraq_id(2914, 2915); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA066] DSA-066-1 cfingerd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-066-1 cfingerd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cfingerd', release: '2.2', reference: '1.4.1-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cfingerd is vulnerable in Debian 2.2.\nUpgrade to cfingerd_1.4.1-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } 4   X  ,|  xgtkrc=L[b_ jW____0____*Xfce-4.2@_ (jWp_8_8__0H_H_P_P_Xfce-4.2 JFJFXbbH # This script was automatically generated from the dsa-067 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' We have received reports that the `apache\' package, as included in the Debian `stable\' distribution, is vulnerable to the `artificially long slash path directory listing vulnerability\' as described on SecurityFocus. This vulnerability was announced to bugtraq by Dan Harkless. Quoting the SecurityFocus entry for this vulnerability: A problem in the package could allow directory indexing, and path discovery. In a default configuration, Apache enables mod_dir, mod_autoindex, and mod_negotiation. However, by placing a custom crafted request to the Apache server consisting of a long path name created artificially by using numerous slashes, this can cause these modules to misbehave, making it possible to escape the error page, and gain a listing of the directory contents. This vulnerability makes it possible for a malicious remote user to launch an information gathering attack, which could potentially result in compromise of the system. Additionally, this vulnerability affects all releases of Apache previous to 1.3.19. This problem has been fixed in apache-ssl 1.3.9-13.3 and apache 1.3.9-14. We recommend that you upgrade your packages immediately. Warning: The MD5Sum of the .dsc and .diff.gz file don\'t match since they were copied from the stable release afterwards, the content of the .diff.gz file is the same, though, checked. Solution : http://www.debian.org/security/2001/dsa-067 Risk factor : High'; if (description) { script_id(14904); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "067"); script_cve_id("CVE-2001-0925"); script_bugtraq_id(3009); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA067] DSA-067-1 apache"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-067-1 apache"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache', release: '2.2', reference: '1.3.9-14')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache is vulnerable in Debian 2.2.\nUpgrade to apache_1.3.9-14\n'); } if (deb_check(prefix: 'apache-common', release: '2.2', reference: '1.3.9-14')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-common is vulnerable in Debian 2.2.\nUpgrade to apache-common_1.3.9-14\n'); } if (deb_check(prefix: 'apache-dev', release: '2.2', reference: '1.3.9-14')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-dev is vulnerable in Debian 2.2.\nUpgrade to apache-dev_1.3.9-14\n'); } if (deb_check(prefix: 'apache-doc', release: '2.2', reference: '1.3.9-14')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-doc is vulnerable in Debian 2.2.\nUpgrade to apache-doc_1.3.9-14\n'); } if (deb_check(prefix: 'apache-ssl', release: '2.2', reference: '1.3.9.13-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-ssl is vulnerable in Debian 2.2.\nUpgrade to apache-ssl_1.3.9.13-3\n'); } if (w) { security_hole(port: 0, data: desc); } /      ,   `d# This script was automatically generated from the dsa-069 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The version of xloadimage (a graphics files viewer for X) that was shipped in Debian GNU/Linux 2.2 has a buffer overflow in the code that handles FACES format images. This could be exploited by an attacker by tricking someone into viewing a specially crafted JFJFXbbH # This script was automatically generated from the dsa-068 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The CERT advisory lists a number of vulnerabilities in various LDAP implementations, based on the results of the PROTOS LDAPv3 test suite. These tests found one problem in OpenLDAP, a free LDAP implementation which is shipped as part of Debian GNU/Linux 2.2. The problem is that slapd did not handle packets which had BER fields of invalid length and would crash if it received them. An attacker could use this to mount a remote denial of service attack. This problem has been fixed in version 1.2.12-1, and we recommend that you upgrade your slapd package immediately. Solution : http://www.debian.org/security/2001/dsa-068 Risk factor : High'; if (description) { script_id(14905); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "068"); script_cve_id("CVE-2001-0977"); script_bugtraq_id(3049); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA068] DSA-068-1 openldap"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-068-1 openldap"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ldap-rfc', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ldap-rfc is vulnerable in Debian 2.2.\nUpgrade to ldap-rfc_1.2.12-1\n'); } if (deb_check(prefix: 'libopenldap-dev', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libopenldap-dev is vulnerable in Debian 2.2.\nUpgrade to libopenldap-dev_1.2.12-1\n'); } if (deb_check(prefix: 'libopenldap-runtime', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libopenldap-runtime is vulnerable in Debian 2.2.\nUpgrade to libopenldap-runtime_1.2.12-1\n'); } if (deb_check(prefix: 'libopenldap1', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libopenldap1 is vulnerable in Debian 2.2.\nUpgrade to libopenldap1_1.2.12-1\n'); } if (deb_check(prefix: 'openldap-gateways', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openldap-gateways is vulnerable in Debian 2.2.\nUpgrade to openldap-gateways_1.2.12-1\n'); } if (deb_check(prefix: 'openldap-utils', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openldap-utils is vulnerable in Debian 2.2.\nUpgrade to openldap-utils_1.2.12-1\n'); } if (deb_check(prefix: 'openldapd', release: '2.2', reference: '1.2.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openldapd is vulnerable in Debian 2.2.\nUpgrade to openldapd_1.2.12-1\n'); } if (w) { security_hole(port: 0, data: desc); } P  a h   ,l    x   ,  w~Fw~FXabH 4瀚` $$|dLL`` ||  1eleEJFJFXbbH # This script was automatically generated from the dsa-070 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The netkit-telnet daemon contained in the telnetd package version 0.16-4potato1, which is shipped with the "stable" (2.2, potato) distribution of Debian GNU/Linux, is vulnerable to an exploitable overflow in its output handling. The original bug was found by , and announced to bugtraq on Jul 18 2001. At that time, netkit-telnet versions after 0.14 were not believed to be vulnerable. On Aug 10 2001, zen-parse posted an advisory based on the same problem, for all netkit-telnet versions below 0.17. More details can be found on http://online.securityfocus.com/archive/1/203000. As Debian uses the `telnetd\' user to run in.telnetd, this is not a remote root compromise on Debian systems; however, the user `telnetd\' can be compromised. We strongly advise you update your telnetd package to the versions listed below. Solution : http://www.debian.org/security/2001/dsa-070 Risk factor : High'; if (description) { script_id(14907); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "070"); script_cve_id("CVE-2001-0554"); script_bugtraq_id(3064); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA070] DSA-070-1 netkit-telnet"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-070-1 netkit-telnet"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'telnet', release: '2.2', reference: '0.16-4potato.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package telnet is vulnerable in Debian 2.2.\nUpgrade to telnet_0.16-4potato.2\n'); } if (deb_check(prefix: 'telnetd', release: '2.2', reference: '0.16-4potato.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package telnetd is vulnerable in Debian 2.2.\nUpgrade to telnetd_0.16-4potato.2\n'); } if (w) { security_hole(port: 0, data: desc); } x JFJFXbbH image using xloadimage which would allow them to execute arbitrary code. This problem was fixed in version 4.1-5potato1. Solution : http://www.debian.org/security/2001/dsa-069 Risk factor : High'; if (description) { script_id(14906); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "069"); script_cve_id("CVE-2001-0775"); script_bugtraq_id(3006); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA069] DSA-069-1 xloadimage"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-069-1 xloadimage"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xloadimage', release: '2.2', reference: '4.1-5potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xloadimage is vulnerable in Debian 2.2.\nUpgrade to xloadimage_4.1-5potato1\n'); } if (w) { security_hole(port: 0, data: desc); }    H  ,   h$  ,   j糘! pppu0ppppvolu*Xfce-saltlak JFJFXbbH # This script was automatically generated from the dsa-072 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Zenith Parse found a security problem in groff (the GNU version of troff). The pic command was vulnerable to a printf format attack which made it possible to circumvent the `-S\' option and execute arbitrary code. This has been fixed in version 1.15.2-2, and we recommend that you upgrade your groff packages immediately. Solution : http://www.debian.org/security/2001/dsa-072 Risk factor : High'; if (description) { script_id(14909); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "072"); script_cve_id("CVE-2001-1022"); script_bugtraq_id(3103); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA072] DSA-072-1 groff"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-072-1 groff"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'groff', release: '2.2', reference: '1.15.2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package groff is vulnerable in Debian 2.2.\nUpgrade to groff_1.15.2-2\n'); } if (w) { security_hole(port: 0, data: desc); } fJFJFXbbH # This script was automatically generated from the dsa-071 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Salvatore Sanfilippo found two remotely exploitable problems in fetchmail while doing a security audit. In both the IMAP code and the POP3 code, the input isn\'t verified even though it\'s used to store a number in an array. Since no bounds checking is done this can be used by an attacker to write arbitrary data in memory. An attacker can use this if they can get a user to transfer mail from a custom IMAP or POP3 server they control. This has been fixed in version 5.3.3-3, we recommend that you update your fetchmail packages immediately. Solution : http://www.debian.org/security/2001/dsa-071 Risk factor : High'; if (description) { script_id(14908); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "071"); script_cve_id("CVE-2001-1009"); script_bugtraq_id(3164, 3166); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA071] DSA-071-1 fetchmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-071-1 fetchmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fetchmail', release: '2.2', reference: '5.3.3-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail is vulnerable in Debian 2.2.\nUpgrade to fetchmail_5.3.3-3\n'); } if (deb_check(prefix: 'fetchmailconf', release: '2.2', reference: '5.3.3-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmailconf is vulnerable in Debian 2.2.\nUpgrade to fetchmailconf_5.3.3-3\n'); } if (w) { security_hole(port: 0, data: desc); } W    ! , ! gtkrc1 $  " Nxr j~ N߰N߰N߀N0NNȠNȠNL*Xfce-light@N (j~ pN8N8Nߘ#0HNHNPNPNJXfce-light25R7N N?NNNPN0СNСNءNءNH*ICON.png N N?NHNHNآN0XNXN`N`N߱ICON.png7PJ)K N Nߌc NТNТN`N0NNNN*README.html 6N Nߌc NXNXNN0hNhNpNpN?"README.html#$$j%ȤN NߑPWN JFJFXbbH # This script was automatically generated from the dsa-073 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The Horde team released version 2.2.6 of IMP (a web based IMAP mail program) which fixes three security problems. Their release announcement describes them as follows: A PHPLIB vulnerability allowed an attacker to provide a value for the array element $_PHPLIB[libdir], and thus to get scripts from another server to load and execute. This vulnerability is remotely exploitable. (Horde 1.2.x ships with its own customized version of PHPLIB, which has now been patched to prevent this problem.) By using tricky encodings of "javascript:" an attacker can cause malicious JavaScript code to execute in the browser of a user reading email sent by attacker. (IMP 2.2.x already filters many such patterns; several new ones that were slipping past the filters are now blocked.) A hostile user that can create a publicly-readable file named "prefs.lang" somewhere on the Apache/PHP server can cause that file to be executed as PHP code. The IMP configuration files could thus be read, the Horde database password used to read and alter the database used to store contacts and preferences, etc. We do not believe this is remotely exploitable directly through Apache/PHP/IMP; however, shell access to the server or other means (e.g., FTP) could be used to create this file. This has been fixed in version 2:2.2.6-0.potato.1. Please note that you will also need to upgrade the horde package to the same version. Solution : http://www.debian.org/security/2001/dsa-073 Risk factor : High'; if (description) { script_id(14910); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "073"); script_cve_id("CVE-2001-1257", "CVE-2001-1258", "CVE-2001-1370"); script_bugtraq_id(3082, 3083); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA073] DSA-073-1 imp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-073-1 imp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'horde', release: '2.2', reference: '1.2.6-0.potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package horde is vulnerable in Debian 2.2.\nUpgrade to horde_1.2.6-0.potato.1\n'); } if (deb_check(prefix: 'imp', release: '2.2', reference: '2.2.6-0.potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian 2.2.\nUpgrade to imp_2.2.6-0.potato.1\n'); } if (w) { security_hole(port: 0, data: desc); } ~ !    " , "  Xd # This script was automatically generated from the dsa-075 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The telnet daemon contained in the netkit-telnet-ssl_0.16.3-1 package in the \'stable\' (potato) distribution of Debian GNU/Linux is vulnerable to an exploitable overflow in its output handling. The original bug was found by , and announced to bugtraq on Jul 18 2001. At that time, netkit-telnet versions after 0.14 were not believed to be vulnerable. On Aug 10 2001, zen-parse posted an advisory based on the same problem, for all netkit-telnet versions below 0.17. More details can JFJFXbbH # This script was automatically generated from the dsa-074 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Alban Hertroys found a buffer overflow in Window Maker (a popular window manager for X). The code that handles titles in the window list menu did not check the length of the title when copying it to a buffer. Since applications will set the title using data that can\'t be trusted (for example, most web browsers will include the title of the web page being shown in the title of their window), this could be exploited remotely. This has been fixed in version 0.61.1-4.1 of the Debian package, and upstream version 0.65.1. We recommend that you update your Window Maker package immediately. Solution : http://www.debian.org/security/2001/dsa-074 Risk factor : High'; if (description) { script_id(14911); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "074"); script_cve_id("CVE-2001-1027"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA074] DSA-074-1 wmaker"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-074-1 wmaker"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libdockapp-dev', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libdockapp-dev is vulnerable in Debian 2.2.\nUpgrade to libdockapp-dev_0.61.1-4.1\n'); } if (deb_check(prefix: 'libwings-dev', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwings-dev is vulnerable in Debian 2.2.\nUpgrade to libwings-dev_0.61.1-4.1\n'); } if (deb_check(prefix: 'libwmaker0-dev', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwmaker0-dev is vulnerable in Debian 2.2.\nUpgrade to libwmaker0-dev_0.61.1-4.1\n'); } if (deb_check(prefix: 'libwraster1', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwraster1 is vulnerable in Debian 2.2.\nUpgrade to libwraster1_0.61.1-4.1\n'); } if (deb_check(prefix: 'libwraster1-dev', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwraster1-dev is vulnerable in Debian 2.2.\nUpgrade to libwraster1-dev_0.61.1-4.1\n'); } if (deb_check(prefix: 'wmaker', release: '2.2', reference: '0.61.1-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wmaker is vulnerable in Debian 2.2.\nUpgrade to wmaker_0.61.1-4.1\n'); } if (w) { security_hole(port: 0, data: desc); } J de balance " Y H  # ,  #  P $ , $  # This script was automatically generated from the dsa-077 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyJFJFXbbH # This script was automatically generated from the dsa-076 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Pavel Machek has found a buffer overflow in the `most\' pager program. The problem is part of most\'s tab expansion where the program would write beyond the bounds two array variables when viewing a malicious file. This could lead into other data structures being overwritten which in turn could enable most to execute arbitrary code being able to compromise the users environment. This has been fixed in the upstream version 4.9.2 and an updated version of 4.9.0 for Debian GNU/Linux 2.2. We recommend that you upgrade your most package immediately. Solution : http://www.debian.org/security/2001/dsa-076 Risk factor : High'; if (description) { script_id(14913); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "076"); script_cve_id("CVE-2001-0961"); script_bugtraq_id(3347); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA076] DSA-076-1 most"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-076-1 most"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'most', release: '2.2', reference: '4.9.0-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package most is vulnerable in Debian 2.2.\nUpgrade to most_4.9.0-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } JJFJFXbbH  be found on SecurityFocus. As Debian uses the \'telnetd\' user to run in.telnetd, this is not a remote root compromise on Debian systems; the \'telnetd\' user can be compromised. We strongly advise you update your netkit-telnet-ssl packages to the versions listed below. Solution : http://www.debian.org/security/2001/dsa-075 Risk factor : High'; if (description) { script_id(14912); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "075"); script_cve_id("CVE-2001-0554"); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA075] DSA-075-1 netkit-telnet-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-075-1 netkit-telnet-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ssltelnet', release: '2.2', reference: '0.16.3-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssltelnet is vulnerable in Debian 2.2.\nUpgrade to ssltelnet_0.16.3-1.1\n'); } if (deb_check(prefix: 'telnet-ssl', release: '2.2', reference: '0.16.3-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package telnet-ssl is vulnerable in Debian 2.2.\nUpgrade to telnet-ssl_0.16.3-1.1\n'); } if (deb_check(prefix: 'telnetd-ssl', release: '2.2', reference: '0.16.3-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package telnetd-ssl is vulnerable in Debian 2.2.\nUpgrade to telnetd-ssl_0.16.3-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } B h $  P % ,$ %  | %  x# Th# This script was automatically generated from the dsa-078 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Byrial Jensen found a nasty problem in slrn (a threaded news reader). The notice on slrn-announce describes it as follows: When trying to decode binaries, the built-in code executes any shell scripts the article might contain, apparently assuming they would be some kind of self-extracting archive. This problem has been fixed in version 0.9.6.2-9potato2 by removing this feature. Solution : http://www.debian.org/security/2001/dsa-078 Risk factor : High'; if (description) { script_id(14915); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "078"); script_cve_id("CVE-2001-1035"); script_bugtraq_id(3364); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA078] DSA-078-1 slrn"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-078-1 slrn"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'slrn', release: '2.2', reference: '0.9.6.2-9potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slrn is vulnerable in Debian 2.2.\nUpgrade to slrn_0.9.6.2-9potato2\n'); } if (deb_check(prefix: 'slrnpull', release: '2.2', reference: '0.9.6.2-9potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slrnpull is vulnerable in Debian 2.2.\nUpgrade to slrnpull_0.9.6.2-9potato2\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH right 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Vladimir Ivaschenko found a problem in squid (a popular proxy cache). He discovered that there was a flaw in the code to handle FTP PUT commands: when a mkdir-only request was done squid would detect an internal error and exit. Since squid is configured to restart itself on problems this is not a big problem. This has been fixed in version 2.2.5-3.2. This problem is logged as bug 233 in the squid bugtracker and will also be fixed in future squid releases. Solution : http://www.debian.org/security/2001/dsa-077 Risk factor : High'; if (description) { script_id(14914); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "077"); script_cve_id("CVE-2001-0843"); script_bugtraq_id(3354); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA077] DSA-077-1 squid"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-077-1 squid"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'squid', release: '2.2', reference: '2.2.5-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squid is vulnerable in Debian 2.2.\nUpgrade to squid_2.2.5-3.2\n'); } if (deb_check(prefix: 'squid-cgi', release: '2.2', reference: '2.2.5-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squid-cgi is vulnerable in Debian 2.2.\nUpgrade to squid-cgi_2.2.5-3.2\n'); } if (deb_check(prefix: 'squidclient', release: '2.2', reference: '2.2.5-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squidclient is vulnerable in Debian 2.2.\nUpgrade to squidclient_2.2.5-3.2\n'); } if (w) { security_hole(port: 0, data: desc); } 0A4p & , &  , ' , '  x# This script was automatically generated from the dsa-080 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Nergal reported a vulnerability in the htsearch program which is distributed as part of the ht://Dig package, an indexing and searching system for small domains or intranets. Using former versions it was able to pass the parameter -c to the cgi program in order to use a different configuration file. A malicious user could point htsearch to a file like /dev/zero and let the server run in an endless loop, trying to read config parameters. If the user has write permission on the server they can point the program to it and retrieve any file readable by the webserver user id. This problem has been fixed in version 3.1.5-2.0potato.1 for Debian GNU/Linux 2.2. We recommend that you upgrade your htdig package immediately. Solution : http://www.debian.org/security/2001/dsa-080 Risk factor : High'; if (description) { script_id(14917); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "080"); script_cve_id("CVE-2001-08X JFJFXbbH # This script was automatically generated from the dsa-079 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Zenith Parsec discovered a security hole in Taylor UUCP 1.06.1. It permits a local user to copy any file to anywhere which is writable by the uucp uid, which effectively means that a local user can completely subvert the UUCP subsystem, including stealing mail, etc. If a remote user with UUCP access is able to create files on the local system, and can successfully make certain guesses about the local directory structure layout, then the remote user can also subvert the UUCP system. A default installation of UUCP will permit a remote user to create files on the local system if the UUCP public directory has been created with world write permissions. Obviously this security hole is serious for anybody who uses UUCP on a multi-user system with untrusted users, or anybody who uses UUCP and permits connections from untrusted remote systems. It was thought that this problem has been fixed with DSA 079-1, but that didn\'t fix all variations of the problem. The problem is fixed in version 1.06.1-11potato2 of uucp which uses a patch from the upstream author Ian Lance Taylor. We recommend that you upgrade your uucp package immediately. Solution : http://www.debian.org/security/2001/dsa-079 Risk factor : High'; if (description) { script_id(14916); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "079"); script_cve_id("CVE-2001-0873"); script_bugtraq_id(3312); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA079] DSA-079-2 uucp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-079-2 uucp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'uucp', release: '2.2', reference: '1.06.1-11potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package uucp is vulnerable in Debian 2.2.\nUpgrade to uucp_1.06.1-11potato2\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH p Qi '  0  ( ,  (   ) , ) o蜀oo謀oI/*Ȁo$o oooo$o$o@o@oPoPo oo al múltip 3iple más ceZ* Si o贁o輁o輁oKx Gx Gx G Aoo,o,o#@*Ho褁o hohoIo萂oo褂oooЂoЂo JFJFXbbH # This script was automatically generated from the dsa-081 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' In SNS Advisory No. 32 a buffer overflow vulnerability has been reported in the routine which parses MIME headers that are returned from web servers. A malicious web server administrator could exploit this and let the client web browser execute arbitrary code. w3m handles MIME headers included in the request/response message of HTTP communication like any other web browser. A buffer overflow will occur when w3m receives a MIME encoded header with base64 format. This problem has been fixed by the maintainer in version 0.1.10+0.1.11pre+kokb23-4 of w3m and w3m-ssl (for the SSL-enabled version), both for Debian GNU/Linux 2.2. We recommend that you upgrade your w3m packages immediately. Solution : http://www.debian.org/security/2001/dsa-081 Risk factor : High'; if (description) { script_id(14918); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "081"); script_cve_id("CVE-2001-0700"); script_bugtraq_id(2895); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA081] DSA-081-1 w3m"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-081-1 w3m"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'w3m', release: '2.2', reference: '0.1.10+0.1.11pre+kokb23-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m is vulnerable in Debian 2.2.\nUpgrade to w3m_0.1.10+0.1.11pre+kokb23-4\n'); } if (deb_check(prefix: 'w3m-ssl', release: '2.2', reference: '0.1.10+0.1.11pre+kokb23-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m-ssl is vulnerable in Debian 2.2.\nUpgrade to w3m-ssl_0.1.10+0.1.11pre+kokb23-4\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH 34"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA080] DSA-080-1 htdig"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-080-1 htdig"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'htdig', release: '2.2', reference: '3.1.5-2.0potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package htdig is vulnerable in Debian 2.2.\nUpgrade to htdig_3.1.5-2.0potato.1\n'); } if (deb_check(prefix: 'htdig-doc', release: '2.2', reference: '3.1.5-2.0potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package htdig-doc is vulnerable in Debian 2.2.\nUpgrade to htdig-doc_3.1.5-2.0potato.1\n'); } if (w) { security_hole(port: 0, data: desc); } h`uXRjc훦 )    * , *    + , +  YnU?vKLoNx-.m)VkhUtBik;{Dl'Ki B+m8~n:V>&}:[ XNp\} 5 |P'vp`ɓkI#XYzZ Kmˌ~ ⪿_O?7kPgSepCP[:7-ό*ķV.]l3-ucg5JFJFXbbH # This script was automatically generated from the dsa-083 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Using older versions of procmail it was possible to make procmail crash by sending it signals. On systems where procmail is installed setuid this could be exploited to obtain unauthorized privileges. This problem has been fixed in version 3.20 by the upstream maintainer, included in Debian unstable, and was ported back to version 3.15.2 which is available for the stable Debian GNU/Linux 2.2. We recommend that you upgrade your procmail package immediately. Solution : http://www.debian.org/security/2001/dsa-083 Risk factor : High'; if (description) { script_id(14920); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "083"); script_cve_id("CVE-2001-0905"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA083] DSA-083-1 procmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-083-1 procmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'procmail', release: '2.2', reference: '3.15.2-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package procmail is vulnerable in Debian 2.2.\nUpgrade to procmail_3.15.2-1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-082 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Christophe Bailleux reported on bugtraq that Xvt is vulnerable to a buffer overflow in its argument handling. Since Xvt is installed setuid root, it was possible for a normal user to pass carefully-crafted arguments to xvt so that xvt executed a root shell. This problem has been fixed by the maintainer in version 2.1-13 of xvt for Debian unstable and 2.1-13.0potato.1 for the stable Debian GNU/Linux 2.2. We recommend that you upgrade your xvt package immediately. Solution : http://www.debian.org/security/2001/dsa-082 Risk factor : High'; if (description) { script_id(14919); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "082"); script_bugtraq_id(2964); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA082] DSA-082-1 xvt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-082-1 xvt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xvt', release: '2.2', reference: '2.1-13.0potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xvt is vulnerable in Debian 2.2.\nUpgrade to xvt_2.1-13.0potato.1\n'); } if (w) { security_hole(port: 0, data: desc); } ggDJMW +  (  , , ,  dMN# This script was automatically generated from the dsa-085 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Takeshi Uno found a very stupid format string vulnerability in all versions of nvi (in both, the plain and the multilingualized version). When a filename is saved, it ought to get displayed on the screen. The routine handling this didn\'t escape format strings. This problem has been fixed in version 1.79-16a.1 for nvi and 1.79+19991117-2.3 for nvi-m17n for the stable Debian GNU/Linux 2.2. Even if we don\'t believe that this could lead into somebody gaining access of another users account if they haven\'t lost their brain, we recommend that you upgrade your nvi packages. Solution : http://www.debian.org/security/2001/dsa-085 Risk factor : High'; if (description) { script_id(14922); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "085"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA085] DSA-085-1 nvi"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-085-1 nvi"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'nvi', release: '2.2', reference: '1.79-16a.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nvi is vulnerable in Debian 2.2.\nUpgrade to nvi_1.79-16a.1\n'); } if (deb_check(prefix: 'nvi-m17n', release: '2.2', reference: '1.79+19991117-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nvi-m17n is vulnerable in Debian 2.2.\nUpgrade to nvi-m17n_1.79+19991117-2.3\n'); } if (deb_check(prefix: 'nvi-m17n-canna', release: '2.2', reference: '1.79+19991117-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nvi-m17n-canna is vu JFJFXbbH # This script was automatically generated from the dsa-084 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Stephane Gaudreault told us that version 2.0.6a of gftp displays the password in plain text on the screen within the log window when it is logging into an ftp server. A malicious colleague who is watching the screen could gain access to the users shell on the remote machine. This problem has been fixed by the Security Team in version 2.0.6a-3.2 for the stable Debian GNU/Linux 2.2. We recommend that you upgrade your gftp package. Solution : http://www.debian.org/security/2001/dsa-084 Risk factor : High'; if (description) { script_id(14921); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "084"); script_cve_id("CVE-1999-1562"); script_bugtraq_id(3446); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA084] DSA-084-1 gftp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-084-1 gftp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gftp', release: '2.2', reference: '2.0.6a-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gftp is vulnerable in Debian 2.2.\nUpgrade to gftp_2.0.6a-3.2\n'); } if (w) { security_hole(port: 0, data: desc); } 0ʼnf.&)' ,   - ,T -   . , .  Л((Йy;cldI_ 3t*h3z 4s8Ǽk1ǽ|tڥ  B?~m/̀A7PĨg64dLYZxc:; \\P,("Ct%U{P6R3֎;!)VΘV\7X)>41-Hfr+i )N=EۤMU/Ce'QO!mW z]c % fx4|/+(}}괄huy 'H/RŠb5JD4}Օk/=7 y?@&H{jFp6~&# ఎMG bzA dz  szGbiZrD_ D=L' 1 `2b 񗪸R H7O$4޴ 8v*&e 'j,⣆ì.xL藕N,?EjgFhGeWJFJFXbbH # This script was automatically generated from the dsa-086 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' We have received reports that the "SSH CRC-32 compensation attack detector vulnerability" is being actively exploited. This is the same integer type error previously corrected for OpenSSH in DSA-027-1. OpenSSH (the Debian ssh package) was fixed at that time, but ssh-nonfree and ssh-socks were not. Though packages in the non-free section of the archive are not officially supported by the Debian project, we are taking the unusual step of releasing updated ssh-nonfree/ssh-socks packages for those users who have not yet migrated to OpenSSH. However, we do recommend that our users migrate to the regularly supported, DFSG-free "ssh" package as soon as possible. ssh 1.2.3-9.3 is the OpenSSH package available in Debian 2.2r4. The fixed ssh-nonfree/ssh-socks packages are available in version 1.2.27-6.2 for use with Debian 2.2 (potato) and version 1.2.27-8 for use with the Debian unstable/testing distribution. Note that the new ssh-nonfree/ssh-socks packages remove the setuid bit from the ssh binary, disabling rhosts-rsa authentication. If you need this functionality, run chmod u+s /usr/bin/ssh1 after installing the new package. Solution : http://www.debian.org/security/2001/dsa-086 Risk factor : High'; if (description) { script_id(14923); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "086"); script_cve_id("CVE-2001-0361"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA086] DSA-086-1 ssh-nonfree"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-086-1 ssh-nonfree"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ssh-askpass-nonfree', release: '2.2', reference: '1.2.27-6.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh-askpass-nonfree is vulnerable in Debian 2.2.\nUpgrade to ssh-askpass-nonfree_1.2.27-6.2\n'); } if (deb_check(prefix: 'ssh-nonfree', release: '2.2', reference: '1.2.27-6.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh-nonfree is vulnerable in Debian 2.2.\nUpgrade to ssh-nonfree_1.2.27-6.2\n'); } if (deb_check(prefix: 'ssh-socks', release: '2.2', reference: '1.2.27-6.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh-socks is vulnerable in Debian 2.2.\nUpgrade to ssh-socks_1.2.27-6.2\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH lnerable in Debian 2.2.\nUpgrade to nvi-m17n-canna_1.79+19991117-2.3\n'); } if (deb_check(prefix: 'nvi-m17n-common', release: '2.2', reference: '1.79+19991117-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nvi-m17n-common is vulnerable in Debian 2.2.\nUpgrade to nvi-m17n-common_1.79+19991117-2.3\n'); } if (w) { security_hole(port: 0, data: desc); } #O`h"5Y .  x / ,L /   0 ,x 0 tEPn XCYbԲTQۄ3=+,j#⧄2)Mq4`7j"5bm.pOjgIϬ73O,UX ȧs!El g98cü j:l"{- Q߭T'$oiβ82]!ba>ףwZ2\UV$b*=|$C6 9`")ANx*R5-JFJFXbbH # This script was automatically generated from the dsa-088 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The fml (a mailing list package) as distributed in Debian GNU/Linux 2.2 suffers from a cross-site scripting problem. When generating index pages for list archives the `<\' and `>\' characters were not properly escaped for subjects. This has been fixed in version 3.0+beta.20000106-5, and we recommend that you upgrade your fml package to that version. Upgrading will automatically regenerate the index pages. Solution : http://www.debian.org/security/2001/dsa-088 Risk factor : High'; if (description) { script_id(14925); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "088"); script_bugtraq_id(3623); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA088] DSA-088-1 fml"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-088-1 fml"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fml', release: '2.2', reference: '3.0+beta.20000106-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fml is vulnerable in Debian 2.2.\nUpgrade to fml_3.0+beta.20000106-5\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-087 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' CORE ST reports that an exploit has been found for a bug in the wu-ftpd glob code (this is the code that handles filename wildcard expansion). Any logged in user (including anonymous FTP users) can exploit the bug to gain root privileges on the server. This has been corrected in version 2.6.0-6 of the wu-ftpd package. Solution : http://www.debian.org/security/2001/dsa-087 Risk factor : High'; if (description) { script_id(14924); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "087"); script_cve_id("CVE-2001-0550"); script_bugtraq_id(3581); script_xref(name: "CERT", value: "886083"); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA087] DSA-087-1 wu-ftpd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-087-1 wu-ftpd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'wu-ftpd', release: '2.2', reference: '2.6.0-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wu-ftpd is vulnerable in Debian 2.2.\nUpgrade to wu-ftpd_2.6.0-6\n'); } if (deb_check(prefix: 'wu-ftpd-academ', release: '2.2', reference: '2.6.0-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wu-ftpd-academ is vulnerable in Debian 2.2.\nUpgrade to wu-ftpd-academ_2.6.0-6\n'); } if (w) { security_hole(port: 0, data: desc); } 5uᎨcSq1k 0  0 1 , 1   2 , 2  # This script was automatically generated from the dsa-091 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' If the UseLogin feature is enabled in ssh local users could pass environment variables (including variables like LD_PRELOAD) to the login process. This has been fiiJFJFXbbH # This script was automatically generated from the dsa-090 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The xtel (an X emulator for minitel) package as distributed with Debian GNU/Linux 2.2 has two possible symlink attacks: Both problems have been fixed in version 3.2.1-4.potato.1 . Solution : http://www.debian.org/security/2001/dsa-090 Risk factor : High'; if (description) { script_id(14927); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "090"); script_cve_id("CVE-2002-0334"); script_bugtraq_id(3626); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA090] DSA-090-1 xtel"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-090-1 xtel"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xtel', release: '2.2', reference: '3.2.1-4.potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xtel is vulnerable in Debian 2.2.\nUpgrade to xtel_3.2.1-4.potato.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-089 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The icecast-server (a streaming music server) package as distributed in Debian GNU/Linux 2.2 has several security problems: These have been fixed in version 1.3.10-1, and we strongly recommend that you upgrade your icecast-server package immediately. The i386 package mentioned in the DSA-089-1 advisory was incorrectly compiled and will not run on Debian GNU/Linux potato machines. This has been corrected in version 1.3.10-1.1. Solution : http://www.debian.org/security/2001/dsa-089 Risk factor : High'; if (description) { script_id(14926); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "089"); script_cve_id("CVE-2001-1230", "CVE-2001-0784", "CVE-2001-1083"); script_bugtraq_id(2264, 2932, 2933); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA089] DSA-089-2 icecast-server"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-089-2 icecast-server"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'icecast-server', release: '2.2', reference: '1.3.10-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package icecast-server is vulnerable in Debian 2.2.\nUpgrade to icecast-server_1.3.10-1\n'); } if (w) { security_hole(port: 0, data: desc); } 8aPqԬ;r/7 2  p  3 ,d  3   4 , 4 H"ZVtYOȪPae%,/IՃҴٮP"\f+C"X֜{Ra<_SLQrd=SBR Sr"); script_name(english: "[DSA092] DSA-092-1 wmtv"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-092-1 wmtv"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'wmtv', release: '2.2', reference: '0.6.5-2potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wmtv is vulnerable in Debian 2.2.\nUpgrade to wmtv_0.6.5-2potato1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH xed by not copying the environment if UseLogin is enabled. Please note that the default configuration for Debian does not have UseLogin enabled. This has been fixed in version 1:1.2.3-9.4. Solution : http://www.debian.org/security/2001/dsa-091 Risk factor : High'; if (description) { script_id(14928); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "091"); script_cve_id("CVE-2001-0872"); script_bugtraq_id(3614); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA091] DSA-091-1 ssh"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-091-1 ssh"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ssh', release: '2.2', reference: '1.2.3-9.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh is vulnerable in Debian 2.2.\nUpgrade to ssh_1.2.3-9.4\n'); } if (deb_check(prefix: 'ssh-askpass-gnome', release: '2.2', reference: '1.2.3-9.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh-askpass-gnome is vulnerable in Debian 2.2.\nUpgrade to ssh-askpass-gnome_1.2.3-9.4\n'); } if (deb_check(prefix: 'ssh-askpass-ptk', release: '2.2', reference: '1.2.3-9.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ssh-askpass-ptk is vulnerable in Debian 2.2.\nUpgrade to ssh-askpass-ptk_1.2.3-9.4\n'); } if (w) { security_hole(port: 0, data: desc); } Aӭb_/yW 4    5 ,  5   6 , 6  # This script was automatically generated from the dsa-095 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The package \'gpm\' contains the gpm-root program, which can be used to create mouse-activated menus on the console. Among other problems, the gpm-root program contains a format string vulnerability, which allows an attacker to gain root privileges. This has been fixed in version 1.17.8-18.1, and we recommend that you upgrade your 1.17.8-18 package immediately. Solution : http://www.debian.org/security/2001/dsa-095 Risk factor : High';  JFJFXbbH # This script was automatically generated from the dsa-094 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Barry A. Warsaw reported several cross-site scripting security holes in Mailman, due to non-existent escaping of CGI variables. These have been fixed upstream in version 2.0.8, and the relevant patches have been backported to version 1.1-10 in Debian. Solution : http://www.debian.org/security/2001/dsa-094 Risk factor : High'; if (description) { script_id(14931); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "094"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA094] DSA-094-1 mailman"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-094-1 mailman"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mailman', release: '2.2', reference: '1.1-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mailman is vulnerable in Debian 2.2.\nUpgrade to mailman_1.1-10\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-093 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Wietse Venema reported he found a denial of service vulnerability in postfix. The SMTP session log that postfix keeps for debugging purposes could grow to an unreasonable size. This has been fixed in version 0.0.19991231pl11-2. Solution : http://www.debian.org/security/2001/dsa-093 Risk factor : High'; if (description) { script_id(14930); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "093"); script_cve_id("CVE-2001-0894"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA093] DSA-093-1 postfix"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-093-1 postfix"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'postfix', release: '2.2', reference: '0.0.19991231pl11-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package postfix is vulnerable in Debian 2.2.\nUpgrade to postfix_0.0.19991231pl11-2\n'); } if (w) { security_hole(port: 0, data: desc); }  n n V V G G G G G 6    7 , 7  0 8 ,x 8  # This script was automatically generated from the dsa-097 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Patrice Fournier discovered a bug in all versions of Exim older than Exim 3.34 and Exim 3.952. The Exim maintainer, Philip Hazel, writes ab JFJFXbbH # This script was automatically generated from the dsa-096 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Joost Pol found a buffer overflow in the address handling code of mutt (a popular mail user agent). Even though this is a one byte overflow this is exploitable. This has been fixed upstream in version 1.2.5.1 and 1.3.25. The relevant patch has been added to version 1.2.5-5 of the Debian package. Solution : http://www.debian.org/security/2002/dsa-096 Risk factor : High'; if (description) { script_id(14933); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "096"); script_cve_id("CVE-2002-0001"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA096] DSA-096-2 mutt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-096-2 mutt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mutt', release: '2.2', reference: '1.2.5-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 2.2.\nUpgrade to mutt_1.2.5-5\n'); } if (w) { security_hole(port: 0, data: desc); } ,JFJFXbbH  if (description) { script_id(14932); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "095"); script_cve_id("CVE-2001-1203"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA095] DSA-095-1 gpm"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-095-1 gpm"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gpm', release: '2.2', reference: '1.17.8-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gpm is vulnerable in Debian 2.2.\nUpgrade to gpm_1.17.8-18.1\n'); } if (deb_check(prefix: 'libgpm1', release: '2.2', reference: '1.17.8-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgpm1 is vulnerable in Debian 2.2.\nUpgrade to libgpm1_1.17.8-18.1\n'); } if (deb_check(prefix: 'libgpm1-altdev', release: '2.2', reference: '1.17.8-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgpm1-altdev is vulnerable in Debian 2.2.\nUpgrade to libgpm1-altdev_1.17.8-18.1\n'); } if (deb_check(prefix: 'libgpmg1', release: '2.2', reference: '1.17.8-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgpmg1 is vulnerable in Debian 2.2.\nUpgrade to libgpmg1_1.17.8-18.1\n'); } if (deb_check(prefix: 'libgpmg1-dev', release: '2.2', reference: '1.17.8-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgpmg1-dev is vulnerable in Debian 2.2.\nUpgrade to libgpmg1-dev_1.17.8-18.1\n'); } if (w) { security_hole(port: 0, data: desc); }  IHDR 8  8 9 , 9  8dDATx# This script was automatically generated from the dsa-098 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Two different problems where found in libgtop-daemon: Since libgtop_daemon runs as user nobody both bugs could be used to gain access as the nobody user to a system running libgtop_daemon. Both problems have been fixed in version 1.0.6-1.1 and we recommend you upgrade your libgtop-daemon package immediately. Solution : http://www.debian.org/security/2002/dsa-098 Risk factor : High'; if (description) { script_id(14935); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "098"); script_cve_id("CVE-2001-0927", "CVE-2001-0928"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA098] DSA-098-1 libgtop"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-098-1 libgtop"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libgtop-daemon', release: '2.2', reference: '1.0.6-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop-daemon is vulnerable in Debian 2.2.\nUpgrade to libgtop-daemon_1.0.6-1.1\n'); } if (deb_check(prefix: 'libgtop-dev', release: '2.2', reference: '1.0.6-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop-dev is vulnerable in Debian 2.2.\nUpgrade to libgtop-dev_1.0.6-1.1\n'); } if (deb_check(prefix: 'libgtop1', release: '2.2', reference: '1.0.6-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop1 is vulnerable in Debian 2.2.\nUpgrade to libgtop1_1.0.6-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } 5JFJFXbbH out this issue: "The problem exists only in the case of a run time configuration which directs or routes an address to a pipe transport without checking the local part of the address in any way. This does not apply, for example, to pipes run from alias or forward files, because the local part is checked to ensure that it is the name of an alias or of a local user. The bug\'s effect is that, instead of obeying the correct pipe command, a broken Exim runs the command encoded in the local part of the address." This problem has been fixed in Exim version 3.12-10.2 for the stable distribution Debian GNU/Linux 2.2 and 3.33-1.1 for the testing and unstable distribution. We recommend that you upgrade your exim package. Solution : http://www.debian.org/security/2002/dsa-097 Risk factor : High'; if (description) { script_id(14934); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "097"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA097] DSA-097-1 exim"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-097-1 exim"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'exim', release: '2.2', reference: '3.12-10.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package exim is vulnerable in Debian 2.2.\nUpgrade to exim_3.12-10.2\n'); } if (deb_check(prefix: 'eximon', release: '2.2', reference: '3.12-10.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eximon is vulnerable in Debian 2.2.\nUpgrade to eximon_3.12-10.2\n'); } if (w) { security_hole(port: 0, data: desc); }   IHDR : , :  (  ; , ; |h3{^dIHj(d[Vס\(m!}%-& j)N!5 B!y~i})$) 58XRīĶ"GޕdI;s0$-HU /=q\}KD,[ɓ~NlP(^o:;;sF8ٙjau"177PUUzhoSh'ofalrTz'5&2[ڕ>`&avOᑣFEr3Ɖ[7GGGԾc^xZ/~#eoA,0x=6}kwX'^7Dsñ2!)+O1Ơw[ܟ^9ageDiD^+?,(j]$0bm<;[X7{El Te\<"ʸ8""?>D4}i1iDO~HJʸRo`H0e?\w̲D`lrG6*>Z%Қ<s|~ؿ&44F#1FF#hS7GkK[dr*}  BqRqBA[0iA/TeP "#~vhka,:[cLF?ZWrJ_9(SDAD/ՠ"c|/ 15GݶXEgllܲ٬̙3WbbqNU&PTBVA썇~̕.`E LnE+_Kt4-*Ξ={/~N*"Vzv! l5/@A]. Yf3!+Jmۯ{zzryH Dh]\7&zPhbI&oH*O~t=黓پ"); script_name(english: "[DSA099] DSA-099-1 xchat"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-099-1 xchat"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xchat', release: '2.2', reference: '1.4.3-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xchat is vulnerable in Debian 2.2.\nUpgrade to xchat_1.4.3-1\n'); } if (deb_check(prefix: 'xchat-common', release: '2.2', reference: '1.4.3-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xchat-common is vulnerable in Debian 2.2.\nUpgrade to xchat-common_1.4.3-1\n'); } if (deb_check(prefix: 'xchat-gnome', release: '2.2', reference: '1.4.3-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xchat-gnome is vulnerable in Debian 2.2.\nUpgrade to xchat-gnome_1.4.3-1\n'); } if (deb_check(prefix: 'xchat-text', release: '2.2', reference: '1.4.3-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xchat-text is vulnerable in Debian 2.2.\nUpgrade to xchat-text_1.4.3-1\n'); } if (w) { security_hole(port: 0, data: desc); } # JFJFXbbH  IHDR ;  x < ,\ <  8$ = , = #-bF RE(nh R+08'q&ۑ9bIQEJ$EJ\Gxwnwvܑ"4EX}||on 8xec?|_{,.i004^; $Ry/S't{oU`>T.cǽUv{|kW\3ڵcW5; ##^a Z\6wu.$>?8833a=@W;zfց6o޲z ȷI`pRW4P`[$agaҭ33s,,T9qǏ{7JFJFXbbH # This script was automatically generated from the dsa-101 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Sebastian Krahmer from SuSE found a vulnerability in sudo which could easily lead into a local root exploit. This problem has been fixed in upstream version 1.6.4 as well as in version 1.6.2p2-2.1 for the stable release of Debian GNU/Linux. We recommend that you upgrade your sudo packages immediately. Solution : http://www.debian.org/security/2002/dsa-101 Risk factor : High'; if (description) { script_id(14938); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "101"); script_cve_id("CVE-2002-0043"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA101] DSA-101-1 sudo"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-101-1 sudo"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sudo', release: '2.2', reference: '1.6.2p2-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sudo is vulnerable in Debian 2.2.\nUpgrade to sudo_1.6.2p2-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } 8JFJFXbbH # This script was automatically generated from the dsa-100 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' GOBBLES found a buffer overflow in gzip that occurs when compressing files with really long filenames. Even though GOBBLES claims to have developed an exploit to take advantage of this bug, it has been said by others that this problem is not likely to be exploitable as other security incidents. Additionally, the Debian version of gzip from the stable release does not segfault, and hence does not directly inherit this problem. However, better be safe than sorry, so we have prepared an update for you. Please make sure you are running an up-to-date version from stable/unstable/testing with at least version 1.2.4-33. Solution : http://www.debian.org/security/2002/dsa-100 Risk factor : High'; if (description) { script_id(14937); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "100"); script_cve_id("CVE-2001-1228"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA100] DSA-100-1 gzip"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-100-1 gzip"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gzip', release: '2.2', reference: '1.2.4-33.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gzip is vulnerable in Debian 2.2.\nUpgrade to gzip_1.2.4-33.1\n'); } if (w) { security_hole(port: 0, data: desc); }  IHDR                    i                            a     !  " Y $  &  '  )  +  ,  .  0  2  4  6  8  :  ;  =  @  B  D  E  G  H ! K 1 M  O  P Y S  U  V y X  Z  \  ^ i a  c  d  e  g  h  j  k  m  n Y p  q  t  u i x  y i {  }             I    i                                a                                          )                                a                                                q rpstuv< w<xyz{|}X ~ XThL x   h Ph hT      | Ä„ĄńƄDŽȄɄʄ˄̄̈́΄8 τЄф҄\ӄԄ, Մ ք ׄ؄ل ڄۄ܄D ݄ ބ߄       < d l L  | 4      l     < D   H    l    XH  8   ,8!q៱怄 w$ =    > , >  ? , ?   @ , @ Tu:bmiJFJFXbbH # This script was automatically generated from the dsa-104 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Larry McVoy found a bug in the packet handling code for the CIPE VPN package: it did not check if a received packet was too short and could crash. This has been fixed in version 1.3.0-3, and we recommend that you upgrade your CIPE packages immediately. Please note that the package only contains the required kernel patch, you will have to manually build the kernel modules for your kernel with the updated source from the cipe-source package. Solution : http://www.debian.org/security/2002/dsa-104 Risk factor : High'; if (description) { script_id(14941); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "104"); script_cve_id("CVE-2002-0047"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA104] DSA-104-1 cipe"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-104-1 cipe"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cipe-common', release: '2.2', reference: '1.3.0-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cipe-common is vulnerable in Debian 2.2.\nUpgrade to cipe-common_1.3.0-3\n'); } if (deb_check(prefix: 'cipe-source', release: '2.2', reference: '1.3.0-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cipe-source is vulnerable in Debian 2.2.\nUpgrade to cipe-source_1.3.0-3\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ghsJFJFXbbH # This script was automatically generated from the dsa-102 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' zen-parse found a bug in the current implementation of at which leads into a heap corruption vulnerability which in turn could potentially lead into an exploit of the daemon user. We recommend that you upgrade your at packages. Unfortunately, the bugfix from DSA 102-1 wasn\'t propagated properly due to a packaging bug. While the file parsetime.y was fixed, and yy.tab.c should be generated from it, yy.tab.c from the original source was still used. This has been fixed in DSA-102-2. Solution : http://www.debian.org/security/2002/dsa-102 Risk factor : High'; if (description) { script_id(14939); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "102"); script_cve_id("CVE-2002-0004"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA102] DSA-102-2 at"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-102-2 at"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'at', release: '2.2', reference: '3.1.8-10.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package at is vulnerable in Debian 2.2.\nUpgrade to at_3.1.8-10.2\n'); } if (w) { security_hole(port: 0, data: desc); } vwL+yاf-εc @  0  A ,  A  t B ,H B  # This script was automatically generated from the dsa-107 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Basically, this is the same Security Advisory as DS\JFJFXbbH # This script was automatically generated from the dsa-106 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Sebastian Krahmer found several places in rsync (a popular tool to synchronise files between machines) where signed and unsigned numbers were mixed which resulted in insecure code (see securityfocus.com). This could be abused by remote users to write 0-bytes in rsync\'s memory and trick rsync into executing arbitrary code. This has been fixed in version 2.3.2-1.3 and we recommend you upgrade your rsync package immediately. Unfortunately the patch used to fix that problem broke rsync. This has been fixed in version 2.3.2-1.5 and we recommend you upgrade to that version immediately. Solution : http://www.debian.org/security/2002/dsa-106 Risk factor : High'; if (description) { script_id(14943); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "106"); script_cve_id("CVE-2002-0048"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA106] DSA-106-2 rsync"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-106-2 rsync"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'rsync', release: '2.2', reference: '2.3.2-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rsync is vulnerable in Debian 2.2.\nUpgrade to rsync_2.3.2-1.5\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH # This script was automatically generated from the dsa-105 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The version of enscript (a tool to convert ASCII text to different formats) in potato has been found to create temporary files insecurely. This has been fixed in version 1.6.2-4.1. Solution : http://www.debian.org/security/2002/dsa-105 Risk factor : High'; if (description) { script_id(14942); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "105"); script_cve_id("CVE-2002-0044"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA105] DSA-105-1 enscript"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-105-1 enscript"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'enscript', release: '2.2', reference: '1.6.2-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package enscript is vulnerable in Debian 2.2.\nUpgrade to enscript_1.6.2-4.1\n'); } if (w) { security_hole(port: 0, data: desc); } X3BIH!_4 B  X  C ,,  C  0 D , D Y谙޸S;BA/K?\;yk`ޏ48(}QjPNO4m/u-,/,фl?<ؙ/oϹE",=C#?b'Cӌ脑[;T#ky/t0>/y_+gB&jʰ4:He{ɓ4x2l_kYw"); script_name(english: "[DSA108] DSA-108-1 wmtv"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-108-1 wmtv"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'wmtv', release: '2.2', reference: '0.6.5-2potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wmtv is vulnerable in Debian 2.2.\nUpgrade to wmtv_0.6.5-2potato2\n'); } if (w) { security_hole(port: 0, data: desc); } )JFJFXbbH A 072-1, but for jgroff instead of groff. The package jgroff contains a version derived from groff that has Japanese character sets enabled. This package is available only in the stable release of Debian, patches for Japanese support have been merged into the main groff package. The old advisory said: Zenith Parse found a security problem in groff (the GNU version of troff). The pic command was vulnerable to a printf format attack which made it possible to circumvent the `-S\' option and execute arbitrary code. Solution : http://www.debian.org/security/2002/dsa-107 Risk factor : High'; if (description) { script_id(14944); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "107"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA107] DSA-107-1 jgroff"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-107-1 jgroff"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'jgroff', release: '2.2', reference: '1.15+ja-3.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package jgroff is vulnerable in Debian 2.2.\nUpgrade to jgroff_1.15+ja-3.4\n'); } if (w) { security_hole(port: 0, data: desc); } 3BIH!_4 D   E , E  d}QG# This script was automatically generated from the dsa-110 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The authors of CUPS, the Common UNIX Printing System, have found a potential buffer overflow bug in the code of the CUPS daemon where it reads the names of attributes. This affects all versions of CUPS. This problem has been fixed in version 1.0.4-10 for the stable Debian distribution and version 1.1.13-2 for the current testing/unstable distribution. We recommend that you upgrade your CUPS packages immediately if you have them installed. Solution : http://www.debian.org/security/2002/dsa-110 Risk factor : High'; if (description) { script_id(14947); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "110"); script_cve_id("CVE-2002-0063"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA110] DSA-110-1 cups"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-110-1 cups"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cupsys', release: '2.2', reference: '1.0.4-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cupsys is vulnerable in Debian 2.2.\nUpgrade to cupsys_1.0.4-10\n'); } if (deb_check(prefix: 'cupsys-bsd', release: '2.2', reference: '1.0.4-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cupsys-bsd is vulnerable in Debian 2.2.\nUpgrade to cupsys-bsd_1.0.4-10\n'); } if (deb_w JFJFXbbH # This script was automatically generated from the dsa-109 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Due to unescaped HTML code Faq-O-Matic returned unverified scripting code to the browser. With some tweaking this enables an attacker to steal cookies from one of the Faq-O-Matic moderators or the admin. Cross-Site Scripting is a type of problem that allows a malicious person to make another person run some JavaScript in their browser. The JavaScript is executed on the victims machine and is in the context of the website running the Faq-O-Matic Frequently Asked Question manager. This problem has been fixed in version 2.603-1.2 for the stable Debian distribution and version 2.712-2 for the current testing/unstable distribution. We recommend that you upgrade your faqomatic package if you have it installed. Solution : http://www.debian.org/security/2002/dsa-109 Risk factor : High'; if (description) { script_id(14946); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "109"); script_cve_id("CVE-2002-0230"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA109] DSA-109-1 faqomatic"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-109-1 faqomatic"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'faqomatic', release: '2.2', reference: '2.603-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package faqomatic is vulnerable in Debian 2.2.\nUpgrade to faqomatic_2.603-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } 8V2bQ T k29 E   F ,  F   G , G ݼٞ^A)Cf0eAHoԤ$ VT `PR4ddHԍol'"v21$y z~v1zT(8T1xxh,CRde YAfTJ3,%$P1YDb5 "8:Uml|*2X%!z*TTe9VÂ=6:8{9Cddžv=3[ xu"2ǍJjh6HMBQY!nhw'ϒ$Rd@1I"GT m"l,3 I܎qAajl Ss5qu#!3nbw "V/ .8K%wkE: t-;ql-Hy8s@vTP)@lkX<) ؎xSYwэ! #]lee{t= [$؛b^VFbMG}G AhBClӀ0Ӫ^;_+Rz HQHwΉ^R.9$wSBR)A`HgyHd i^d isZr @v҂z# }jNrk@Ӹ+qVf4.V4.652M9 DKp69.ԠrDxaCzp@ QnY^e i^e i#Js҂>Q#ɱym`sq,`|St{XܦlܢOJFJFXbbH # This script was automatically generated from the dsa-111 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The Secure Programming Group of the Oulu University did a study on SNMP implementations and uncovered multiple problems which can cause problems ranging from Denial of Service attacks to remote exploits. New UCD-SNMP packages have been prepared to fix these problems as well as a few others. The complete list of fixed problems is: (thanks to Caldera for most of the work on those patches) The new version is 4.1.1-2.1 and we recommend you upgrade your snmp packages immediately. Solution : http://www.debian.org/security/2002/dsa-111 Risk factor : High'; if (description) { script_id(14948); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "111"); script_cve_id("CVE-2002-012", "CVE-2002-013"); script_xref(name: "CERT", value: "107186"); script_xref(name: "CERT", value: "854306"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA111] DSA-111-1 ucd-snmp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-111-1 ucd-snmp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libsnmp4.1', release: '2.2', reference: '4.1.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsnmp4.1 is vulnerable in Debian 2.2.\nUpgrade to libsnmp4.1_4.1.1-2.2\n'); } if (deb_check(prefix: 'libsnmp4.1-dev', release: '2.2', reference: '4.1.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsnmp4.1-dev is vulnerable in Debian 2.2.\nUpgrade to libsnmp4.1-dev_4.1.1-2.2\n'); } if (deb_check(prefix: 'snmp', release: '2.2', reference: '4.1.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmp is vulnerable in Debian 2.2.\nUpgrade to snmp_4.1.1-2.2\n'); } if (deb_check(prefix: 'snmpd', release: '2.2', reference: '4.1.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmpd is vulnerable in Debian 2.2.\nUpgrade to snmpd_4.1.1-2.2\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH check(prefix: 'libcupsys1', release: '2.2', reference: '1.0.4-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libcupsys1 is vulnerable in Debian 2.2.\nUpgrade to libcupsys1_1.0.4-10\n'); } if (deb_check(prefix: 'libcupsys1-dev', release: '2.2', reference: '1.0.4-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libcupsys1-dev is vulnerable in Debian 2.2.\nUpgrade to libcupsys1-dev_1.0.4-10\n'); } if (w) { security_hole(port: 0, data: desc); } 3==ǜ}dWj G  P H , H  d/U&# This script was automatically generated from the dsa-113 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Several buffer overflows were fixed in the "ncurses" library in November 2000. Unfortunately, one was missed. This can lead to crashes when using ncurses applications in large windows. The Common Vulnerabilities and Exposures project has assigned the name CVE-2002-0062 to this issue. This problem has been fixed for the stable release of Debian in version 5.0-6.0potato2. The testing and unstable releases contain ncurses 5.2, which is not affected by this problem. There are no known exploits for this problem, but we recommend that all users upgrade ncurses immediately. Solution : http://www.debian.org/security/2002/dsa-113 Risk factor : High'; if (description) { script_id(14950); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "113"); script_cve_id("CVE-2002-0062"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA113] DSA-113-1 ncurses"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-113-1 ncurses"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libncurses5', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libncurses5 is vulnerable in Debian 2.2.\nUpgrade to libncu> JFJFXbbH # This script was automatically generated from the dsa-112 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A set of buffer overflow problems have been found in hanterm, a Hangul terminal for X11 derived from xterm, that will read and display Korean characters in its terminal window. The font handling code in hanterm uses hard limited string variables but didn\'t check for boundaries. This problem can be exploited by a malicious user to gain access to the utmp group which is able to write the wtmp and utmp files. These files record login and logout activities. This problem has been fixed in version 3.3.1p17-5.2 for the stable Debian distribution. A fixed package for the current testing/unstable distribution is not yet available but will have a version number higher than 3.3.1p18-6.1. We recommend that you upgrade your hanterm packages immediately if you have them installed. Known exploits are already available. Solution : http://www.debian.org/security/2002/dsa-112 Risk factor : High'; if (description) { script_id(14949); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "112"); script_cve_id("CVE-2002-0239"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA112] DSA-112-1 hanterm"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-112-1 hanterm"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'hanterm', release: '2.2', reference: '3.3.1p17-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hanterm is vulnerable in Debian 2.2.\nUpgrade to hanterm_3.3.1p17-5.2\n'); } if (w) { security_hole(port: 0, data: desc); } _gkXGtG&˼\ H !   I ,  I  `T J ,( J   K , K  0# This script was automatically generated from the dsa-116 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! dLJFJFXbbH tuv/JFJFXbbH # This script was automatically generated from the dsa-114 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Thomas Springer found a vulnerability in GNUJSP, a Java servlet that allows you to insert Java source code into HTML files. The problem can be used to bypass access restrictions in the web server. An attacker can view the contents of directories and download files directly rather then receiving their HTML output. This means that the source code of scripts could also be revealed. The problem was fixed by Stefan Gybas, who maintains the Debian package of GNUJSP. It is fixed in version 1.0.0-5 for the stable release of Debian GNU/Linux. The versions in testing and unstable are the same as the one in stable so they are vulnerable, too. You can install the fixed version this advisory refers to on these systems to solve the problem as this package is architecture independent. We recommend that you upgrade your gnujsp package immediately. Solution : http://www.debian.org/security/2002/dsa-114 Risk factor : High'; if (description) { script_id(14951); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "114"); script_cve_id("CVE-2002-0300"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA114] DSA-114-1 gnujsp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-114-1 gnujsp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gnujsp', release: '2.2', reference: '1.0.0-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnujsp is vulnerable in Debian 2.2.\nUpgrade to gnujsp_1.0.0-5\n'); } if (w) { security_hole(port: 0, data: desc); } \JFJFXbbH rses5_5.0-6.0potato2\n'); } if (deb_check(prefix: 'libncurses5-dbg', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libncurses5-dbg is vulnerable in Debian 2.2.\nUpgrade to libncurses5-dbg_5.0-6.0potato2\n'); } if (deb_check(prefix: 'libncurses5-dev', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libncurses5-dev is vulnerable in Debian 2.2.\nUpgrade to libncurses5-dev_5.0-6.0potato2\n'); } if (deb_check(prefix: 'ncurses-base', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ncurses-base is vulnerable in Debian 2.2.\nUpgrade to ncurses-base_5.0-6.0potato2\n'); } if (deb_check(prefix: 'ncurses-bin', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ncurses-bin is vulnerable in Debian 2.2.\nUpgrade to ncurses-bin_5.0-6.0potato2\n'); } if (deb_check(prefix: 'ncurses-term', release: '2.2', reference: '5.0-6.0potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ncurses-term is vulnerable in Debian 2.2.\nUpgrade to ncurses-term_5.0-6.0potato2\n'); } if (w) { security_hole(port: 0, data: desc); } Ó"gzsLͦ K 1   L ,  L  x< M , M  !*Nŵ}}$[iPt!^^r '7fi:fPvxT/#f>=G`.;/iG=Cqӓj!|+}JFJFXbbH # This script was automatically generated from the dsa-117 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Kim Nielsen recently found an internal problem with the CVS server and reported it to the vuln-dev mailing list. The problem is triggered by an improperly initialized global variable. A user exploiting this can crash the CVS server, which may be accessed through the pserver service and running under a remote user id. It is not yet clear if the remote account can be exposed, though. This problem has been fixed in version 1.10.7-9 for the stable Debian distribution with help of Niels Heinen and in versions newer than 1.11.1p1debian-3 for the testing and unstable distribution of Debian (not yet uploaded, though). We recommend that you upgrade your CVS package. Solution : http://www.debian.org/security/2002/dsa-117 Risk factor : High'; if (description) { script_id(14954); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "117"); script_cve_id("CVE-2002-0092"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA117] DSA-117-1 cvs"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-117-1 cvs"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cvs', release: '2.2', reference: '1.10.7-9')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs is vulnerable in Debian 2.2.\nUpgrade to cvs_1.10.7-9\n'); } if (deb_check(prefix: 'cvs-doc', release: '2.2', reference: '1.10.7-9')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs-doc is vulnerable in Debian 2.2.\nUpgrade to cvs-doc_1.10.7-9\n'); } if (w) { security_hole(port: 0, data: desc); } tJFJFXbbH efined_func('bn_random')) exit(0); desc = ' Zorgon found several buffer overflows in cfsd, a daemon that pushes encryption services into the Unix(tm) file system. We are not yet sure if these overflows can successfully be exploited to gain root access to the machine running the CFS daemon. However, since cfsd can easily be forced to die, a malicious user can easily perform a denial of service attack to it. This problem has been fixed in version 1.3.3-8.1 for the stable Debian distribution and in version 1.4.1-5 for the testing and unstable distribution of Debian. We recommend that you upgrade your cfs package immediately. Solution : http://www.debian.org/security/2002/dsa-116 Risk factor : High'; if (description) { script_id(14953); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "116"); script_cve_id("CVE-2002-0351"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA116] DSA-116-1 cfs"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-116-1 cfs"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cfs', release: '2.2', reference: '1.3.3-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cfs is vulnerable in Debian 2.2.\nUpgrade to cfs_1.3.3-8.1\n'); } if (w) { security_hole(port: 0, data: desc); } FKOC450UX.ppdݦ M  `  N ,4  N  $ O , O [_ݍtlȗEv~>)V-q8ٟ!W} >$U(t?~<yAeܦ`|p7-Xe\>]W&2#3.Sˋ,ŋe^4<'0oap_|_7,A,`f/<߂M Vl+ JFJFXbbH # This script was automatically generated from the dsa-119 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Joost Pol reports that OpenSSH versions 2.0 through 3.0.2 have an off-by-one bug in the channel allocation code. This vulnerability can be exploited by authenticated users to gain root privilege or by a malicious server exploiting a client with this bug. Since Debian 2.2 (potato) shipped with OpenSSH (the "ssh" package) version 1.2.3, it is not vulnerable to this exploit. No fix is required for Debian 2.2 (potato). The Debian unstable and testing archives do include a more recent OpenSSH (ssh) package. If you are running these pre-release distributions you should ensure that you are running version 3.0.2p1-8, a patched version which was added to the unstable archive today, or a later version. Solution : http://www.debian.org/security/2002/dsa-119 Risk factor : High'; if (description) { script_id(14956); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "119"); script_cve_id("CVE-2002-0083"); script_bugtraq_id(4241); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA119] DSA-119-1 ssh"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-119-1 ssh"); exit(0); } include("debian_package.inc"); w = 0; if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH # This script was automatically generated from the dsa-118 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Tim Waugh found several insecure uses of temporary files in the xsane program, which is used for scanning. This was fixed for Debian/stable by moving those files into a securely created directory within the /tmp directory. This problem has been fixed in version 0.50-5.1 for the stable Debian distribution and in version 0.84-0.1 for the testing and unstable distribution of Debian. We recommend that you upgrade your xsane package. Solution : http://www.debian.org/security/2002/dsa-118 Risk factor : High'; if (description) { script_id(14955); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "118"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA118] DSA-118-1 xsane"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-118-1 xsane"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xsane', release: '2.2', reference: '0.50-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xsane is vulnerable in Debian 2.2.\nUpgrade to xsane_0.50-5.1\n'); } if (w) { security_hole(port: 0, data: desc); } iGp O    P , P  Xdi~# This script was automatically generated from the dsa-121 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Several security related problems have been found in the xtell package, a simple messaging client and server. In detail, these problems contain several buffer overflows, a problem in connection with symbolic links, unauthorized directory traversal when the path contains "..". These problems could lead into an attacker being able to execute arbitrary code on the server machine. The server runs with nobody privileges by default, so this would be the account to be exploited. They have been corrected by backporting changes from a newer upstream version by the Debian maintainer for xtell. These problems are fixed in version 1.91.1 in the stable distribution of Debian and in version 2.7 for the testing and unstable distribution of Debian. We recommend thaPJFJFXbbH # This script was automatically generated from the dsa-120 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ed Moyle recently found a buffer overflow in Apache-SSL and mod_ssl. With session caching enabled, mod_ssl will serialize SSL session variables to store them for later use. These variables were stored in a buffer of a fixed size without proper boundary checks. To exploit the overflow, the server must be configured to require client certificates, and an attacker must obtain a carefully crafted client certificate that has been signed by a Certificate Authority which is trusted by the server. If these conditions are met, it would be possible for an attacker to execute arbitrary code on the server. This problem has been fixed in version 1.3.9.13-4 of Apache-SSL and version 2.4.10-1.3.9-1potato1 of libapache-mod-ssl for the stable Debian distribution as well as in version 1.3.23.1+1.47-1 of Apache-SSL and version 2.8.7-1 of libapache-mod-ssl for the testing and unstable distribution of Debian. We recommend that you upgrade your Apache-SSL and mod_ssl packages. Solution : http://www.debian.org/security/2002/dsa-120 Risk factor : High'; if (description) { script_id(14957); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "120"); script_cve_id("CVE-2002-0082"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA120] DSA-120-1 mod_ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-120-1 mod_ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache-ssl', release: '2.2', reference: '1.3.9.13-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-ssl is vulnerable in Debian 2.2.\nUpgrade to apache-ssl_1.3.9.13-4\n'); } if (deb_check(prefix: 'libapache-mod-ssl', release: '2.2', reference: '2.4.10-1.3.9-1potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl is vulnerable in Debian 2.2.\nUpgrade to libapache-mod-ssl_2.4.10-1.3.9-1potato1\n'); } if (deb_check(prefix: 'libapache-mod-ssl-doc', release: '2.2', reference: '2.4.10-1.3.9-1potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl-doc is vulnerable in Debian 2.2.\nUpgrade to libapache-mod-ssl-doc_2.4.10-1.3.9-1potato1\n'); } if (w) { security_hole(port: 0, data: desc); } [NloɆU뜄֦ P Y   Q ,  Q   R ,  R   S , S  uR# This script was automatically generated from the dsa-124 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The authors of mtr released a new upstream version, noting a non-exploitable buffer overflow in their ChangeLog. Przemyslaw Frasunek, however, found an easy way to exploit this bug, which allows an attacker to gain access to the raw socket, which makes IP spoofing and other malicious network activity possible. The problem has been fixed by the Debian maintainer in version 0.41-6 for the stable distribution of Debian by backporting the upstream fix and in version 0.48-1 for the testing/unstable distribution. We recommend that you upgrade your mtr package immediately. Solution : http://www.debian.org/security/2RJFJFXbbH # This script was automatically generated from the dsa-123 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Janusz Niewiadomski and Wojciech Purczynski reported a buffer overflow in the address_match of listar (a listserv style mailing-list manager). This has been fixed in version 0.129a-2.potato1. Solution : http://www.debian.org/security/2002/dsa-123 Risk factor : High'; if (description) { script_id(14960); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "123"); script_cve_id("CVE-2002-0467"); script_bugtraq_id(4176); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA123] DSA-123-1 listar"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-123-1 listar"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'listar', release: '2.2', reference: '0.129a-2.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package listar is vulnerable in Debian 2.2.\nUpgrade to listar_0.129a-2.potato1\n'); } if (deb_check(prefix: 'listar-cgi', release: '2.2', reference: '0.129a-2.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package listar-cgi is vulnerable in Debian 2.2.\nUpgrade to listar-cgi_0.129a-2.potato1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH }~JFJFXbbH t you upgrade your xtell packages immediately. Solution : http://www.debian.org/security/2002/dsa-121 Risk factor : High'; if (description) { script_id(14958); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "121"); script_cve_id("CVE-2002-0332", "CVE-2002-0333", "CVE-2002-0334"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA121] DSA-121-1 xtell"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-121-1 xtell"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xtell', release: '2.2', reference: '1.91.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xtell is vulnerable in Debian 2.2.\nUpgrade to xtell_1.91.1\n'); } if (w) { security_hole(port: 0, data: desc); }  4$Qb  2xH &m ޡl ޡl 2x ,x 7 By gmXy r 0y  y  r z  {z h%z  Pj;z  88az   =wz -z -pz  SWS_DoS.nasldebian_DSA-342.nasldebian_DSA-598.naslDDI_WhatsUp_Default.nasldebian_DSA-028.nasldebian_DSA-283.nasldebian_DSA-529.nasldbman_cgi.naslcp-firewall-auth.nasldebian_DSA-214.nasldebian_DSA-155.nasldebian_DSA-400.nasldebian_DSA-096.nasldebian_DSA-341.naslcr n P r  0 r  %r   0s   pNs  as   `ys   3s ) s M X s *@ "s 4 ( t d Et   Et   Ft o  0t  t  h t P ku  8 )u   eu * u 5  Ȫu   yu e u   hu p  5v  p Hv X *^v  @ vv ( v   ev  v J Dv  w o 8w ++w +p'Aw 6 Xyw ' @|w f(w q w  5w x  Rx n _x pux  x  xx ,`2x ,x 7 By gmXy r 0y  y  r z  {z h%z  Pj;z  88az   =wz -z -pz  SWS_DoS.nasldebian_DSA-342.nasldebian_DSA-598.naslDDI_WhatsUp_Default.nasldebian_DSA-028.nasldebian_DSA-283.nasldebian_DSA-529.nasldbman_cgi.naslcp-firewall-auth.nasldebian_DSA-214.nasldebian_DSA-155.nasldebian_DSA-400.nasldebian_DSA-096.nasldebian_DSA-341.nasldebian_DSA-597.nasldebian_DSA-027.nasldebian_DSA-282.nasldebian_DSA-528.naslbugbear_b.nasldebian_DSA-213.nasldebian_DSA-469.naslcounter.nasldebian_DSA-154.nasldebian_DSA-655.naslapache_conn_block.nasldebian_DSA-095.nasldebian_DSA-340.nasldebian_DSA-596.naslbugbear_b_1080.naslcheopsNG_clear_text_password.naslawstats_configdir.nasldebian_DSA-026.nasldebian_DSA-281.nasldebian_DSA-527.nasldebian_DSA-212.nasldebian_DSA-468.naslcitrix_find.nasldebian_DSA-153.naslKBWebServer_percent00.nasldebian_DSA-654.naslaccount_db2inst1_ibmdb2.nasldebian_DSA-094.nasldebian_DSA-595.nasldebian_DSA-025.nasldebian_DSA-280.nasldebian_DSA-526.nasldebian_DSA-211.nasldebian_DSA-467.nasldebian_DSA-152.naslMacromedia_ColdFusion_MX_Path_Disclosure_Vulnerability.naslcfengine_format_string_vuln.nasldebian_DSA-653.nasldebian_DSA-093.nasldebian_DSA-339.naslb2evolution_net_sql_injection.nasldebian_DSA-594.nasldebian_DSA-024.naslcvstrac_filediff.nasldebian_DSA-525.naslcheckpoint_secureplatform.nasldebian_DSA-210.nasldebian_DSA-466.naslcutenews_show_news_xss.nasldebian_DSA-151.nasldebian_DSA-652.nasldebian_DSA-092.nasldebian_DSA-338.nasldebian_DSA-593.nasldebian_DSA-023.nasldebian_DSA-279.nasldebian_DSA-524.nasldebian_DSA-465.nasldebian_DSA-150.naslW32.Sasser.Worm.nasldebian_DSA-651.nasl2x ,0x 7 ~-y gBy gmXy r 0y  y  r z  {z x%z  `j;z  H8az  0=wz -z -pz  SWS_DoS.nasldebian_DSA-342.nasldebian_DSA-598.naslDDI_WhatsUp_Default.nasldebian_DSA-028.nasldebian_DSA-283.nasldebian_DSA-529.nasldbman_cgi.naslcp-firewall-auth.nasldebian_DSA-214.nasldebian_DSA-155.nasldebian_DSA-400.nasldebian_DSA-656.nasldebian_DSA-096.nasldebian_DSA-341.naslX`LVk(QN= S  p  T ,D  T  H U , U lu8z,D/ 0-0Dٺe]L<|j0]eh)V.)̋j ;,kÉh+%rϋHY`FЍNY^F6! 9WU::E٢㞿._ <371bYQ; \lj0ͪ>-{}%7I܌3ы"Km eP4M0Y۴eE$ӝs=|5/t^C~뮍Т𘻧r}t~&AJFJFXbbH # This script was automatically generated from the dsa-125 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Yuji Takahashi discovered a bug in analog which allows a cross-site scripting type attack. It is easy for an attacker to insert arbitrary strings into any web server logfile. If these strings are then analysed by analog, they can appear in the report. By this means an attacker can introduce arbitrary Javascript code, for example, into an analog report produced by someone else and read by a third person. Analog already attempted to encode unsafe characters to avoid this type of attack, but the conversion was incomplete. This problem has been fixed in the upstream version 5.22 of analog. Unfortunately patching the old version of analog in the stable distribution of Debian instead is a very large job that defeats us. We recommend that you upgrade your analog package immediately. Solution : http://www.debian.org/security/2002/dsa-125 Risk factor : High'; if (description) { script_id(14962); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "125"); script_cve_id("CVE-2002-0166"); script_bugtraq_id(4389); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA125] DSA-125-1 analog"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-125-1 analog"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'analog', release: '2.2', reference: '5.22-0potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package analog is vulnerable in Debian 2.2.\nUpgrade to analog_5.22-0potato1\n'); } if (w) { security_hole(port: 0, data: desc); } GJFJFXbbH 002/dsa-124 Risk factor : High'; if (description) { script_id(14961); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "124"); script_cve_id("CVE-2002-0497"); script_bugtraq_id(4217); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA124] DSA-124-1 mtr"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-124-1 mtr"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mtr', release: '2.2', reference: '0.41-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mtr is vulnerable in Debian 2.2.\nUpgrade to mtr_0.41-6\n'); } if (w) { security_hole(port: 0, data: desc); } ~mA><~ U   V , V  xd^# This script was automatically generated from the dsa-127 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' An internal audit by the xpilot (a multi-player tactical manoeuvring game for X) maintainers revealed a buffer overflow in xpilot server. This overflow can be abused by remote attackers to gain access to the server under which the xpilot server is running. This has been fixed in upstream version 4.5.1 and version 4.1.0-4.U.4alpha2.4.potato1 of the Debian package. Solution : http://www.debian.org/security/2002/dsa-127 Risk factor : High'; if (description) { script_id(14964); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "127"); script_cve_id("CVE-2002-0179"); script_bugtraq_id(4534); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA127] DSA-127-1 xpilot-server"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-127-1 xpilot-server"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xpilot', release: '2.2', reference: '4.1.0-4.U.4alpha2.4.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpilot is vulnerable in Debian 2.2.\nUpgrade to xpilot_4.1.0-4.U.4alpha2.4.potato1\n'); } if (deb_check(prefix: 'xpilot-client-nas', release: '2.2', reference: '4.1.0-4.U.4alpha2.4.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpilot-client-nas is vulnerable in Debian 2.2.\nUC JFJFXbbH # This script was automatically generated from the dsa-126 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A cross-site scripting (CSS) problem was discovered in Horde and IMP (a web based IMAP mail package). This was fixed upstream in Horde version 1.2.8 and IMP version 2.2.8. The relevant patches have been back-ported to version 1.2.6-0.potato.5 of the horde package and version 2.2.6-0.potato.5 of the imp package. This release also fixes a bug introduced by the PHP security fix from DSA-115-1: Postgres support for PHP was changed in a subtle way which broke the Postgres support from IMP. Solution : http://www.debian.org/security/2002/dsa-126 Risk factor : High'; if (description) { script_id(14963); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "126"); script_cve_id("CVE-2002-0181"); script_bugtraq_id(4444); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA126] DSA-126-1 imp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-126-1 imp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'horde', release: '2.2', reference: '1.2.6-0.potato.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package horde is vulnerable in Debian 2.2.\nUpgrade to horde_1.2.6-0.potato.5\n'); } if (deb_check(prefix: 'imp', release: '2.2', reference: '2.2.6-0.potato.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian 2.2.\nUpgrade to imp_2.2.6-0.potato.5\n'); } if (w) { security_hole(port: 0, data: desc); } ^Z}b?Wۦ V y 0  W ,  W  d X ,8 X  # This script was automatically generated from the dsa-129 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' We have received reports that in.uucpd, an authentication agent in the uucp package, does not properly terminate certain long input strings. This has been corrected in uucp package version 1.06.1-11potato3 for Debian 2.2 (potato) and in version 1.06.1-18 for the upcoming (woody) release. We recommend you upgrade your uucp package immediately. Solution : http://www.debian.org/security/2002/dsa-129 Risk factor : High'; if (description) { script_id(14966); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "129"); script_cve_id("CVE-2002-0912"); script_bugtraq_id(4910); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA129] DSA-129-1 uucp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian LJFJFXbbH # This script was automatically generated from the dsa-128 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' fc found a buffer overflow in the variable expansion code used by sudo for its prompt. Since sudo is necessarily installed suid root a local user can use this to gain root access. This has been fixed in version 1.6.2-2.2 for the stable distribution of Debian and version 1.6.6-1 for the testing/unstable distribution. We recommend that you upgrade your sudo package immediately. Solution : http://www.debian.org/security/2002/dsa-128 Risk factor : High'; if (description) { script_id(14965); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "128"); script_cve_id("CVE-2002-0184"); script_bugtraq_id(4593); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA128] DSA-128-1 sudo"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-128-1 sudo"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sudo', release: '2.2', reference: '1.6.2p2-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sudo is vulnerable in Debian 2.2.\nUpgrade to sudo_1.6.2p2-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH pgrade to xpilot-client-nas_4.1.0-4.U.4alpha2.4.potato1\n'); } if (deb_check(prefix: 'xpilot-client-nosound', release: '2.2', reference: '4.1.0-4.U.4alpha2.4.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpilot-client-nosound is vulnerable in Debian 2.2.\nUpgrade to xpilot-client-nosound_4.1.0-4.U.4alpha2.4.potato1\n'); } if (deb_check(prefix: 'xpilot-client-rplay', release: '2.2', reference: '4.1.0-4.U.4alpha2.4.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpilot-client-rplay is vulnerable in Debian 2.2.\nUpgrade to xpilot-client-rplay_4.1.0-4.U.4alpha2.4.potato1\n'); } if (deb_check(prefix: 'xpilot-server', release: '2.2', reference: '4.1.0-4.U.4alpha2.4.potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpilot-server is vulnerable in Debian 2.2.\nUpgrade to xpilot-server_4.1.0-4.U.4alpha2.4.potato1\n'); } if (w) { security_hole(port: 0, data: desc); } "); script_name(english: "[DSA130] DSA-130-1 ethereal"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-130-1 ethereal"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ethereal', release: '2.2', reference: '0.8.0-3potato')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 2.2.\nUpgrade to ethereal_0.8.0-3potato\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ocal Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-129-1 uucp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'uucp', release: '2.2', reference: '1.06.1-11potato3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package uucp is vulnerable in Debian 2.2.\nUpgrade to uucp_1.06.1-11potato3\n'); } if (w) { security_hole(port: 0, data: desc); }  kacG|0I Z  P  [ ,  [   \ , \ g5a~}d79P]@ y*8az~A30{AmYh=\ jlt,.Ej7lTƟɚ]%S~o;l>@Cg@`b0 5j!qEqA4?G)hY36\½) 9ZbH,iV%pb%Xm /0 [ h'*/;vI$D @!ժSn9Xtr),bω*X"67JFJFXbbH # This script was automatically generated from the dsa-132 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Mark Litchfield found a denial of service attack in the Apache web-server. While investigating the problem the Apache Software Foundation discovered that the code for handling invalid requests which use chunked encoding also might allow arbitrary code execution on 64 bit architectures. This has been fixed in version 1.3.9.13-4.1 of the Debian apache-ssl package and we recommend that you upgrade your apache-ssl package immediately. An update for the soon to be released Debian GNU/Linux 3.0/woody distribution is not available at the moment. More Information: CVE-2002-0392, VU#944335. Solution : http://www.debian.org/security/2002/dsa-132 Risk factor : High'; if (description) { script_id(14969); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "132"); script_cve_id("CVE-2002-0392"); script_bugtraq_id(5033); script_xref(name: "CERT", value: "944335"); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA132] DSA-132-1 apache-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-132-1 apache-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache-ssl', release: '2.2', reference: '1.3.9.13-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-ssl is vulnerable in Debian 2.2.\nUpgrade to apache-ssl_1.3.9.13-4.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH pt_id(14968); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "131"); script_cve_id("CVE-2002-0392"); script_bugtraq_id(5033); script_xref(name: "CERT", value: "944335"); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA131] DSA-131-1 apache"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-131-1 apache"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache', release: '2.2', reference: '1.3.9-14.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache is vulnerable in Debian 2.2.\nUpgrade to apache_1.3.9-14.1\n'); } if (deb_check(prefix: 'apache-common', release: '2.2', reference: '1.3.9-14.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-common is vulnerable in Debian 2.2.\nUpgrade to apache-common_1.3.9-14.1\n'); } if (deb_check(prefix: 'apache-dev', release: '2.2', reference: '1.3.9-14.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-dev is vulnerable in Debian 2.2.\nUpgrade to apache-dev_1.3.9-14.1\n'); } if (deb_check(prefix: 'apache-doc', release: '2.2', reference: '1.3.9-14.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-doc is vulnerable in Debian 2.2.\nUpgrade to apache-doc_1.3.9-14.1\n'); } if (w) { security_hole(port: 0, data: desc); } ;4>x-,BItX \  X ] ,, ] $ ^ , ^  h# This script was automatically generated from the dsa-135 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The libapache-mod-ssl package provides SSL capability to the apache webserver. Recently, a problem has been found in the handling of .htaccess files, allowing arbitrary code execution as the web server user (regardless of ExecCGI / suexec settings), DoS attacks (killing off apache children), and allowing someone to take control of apache child processes - all through specially crafted .htaccess files. This has been fixed in the libapache-mod-ssl_2.4.10-1.3.9-1potato2 package (for potato), and the libapache-mod-ssl_2.8.9-2 package (for woody). We recommend you upgrade as soon as possible. Solution : http://www.debian.org/security/2002/dsa-135 Risk factor : High'; if (description) { script_id(14972); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "135"); script_cve_id("CVE-2002-0653"); script_bugtraq_id(5084); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA135] DSA-135-1 libapache-mod-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-135-1 libapache-mod-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libapache-mod-ssl', release: '2.2', reference: '2.4.10-1.3.9-1potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl is vulnerable in Debian 2.2.\nUpgrad JFJFXbbH {JFJFXbbH # This script was automatically generated from the dsa-133 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Mark Litchfield found a denial of service attack in the Apache web-server. While investigating the problem the Apache Software Foundation discovered that the code for handling invalid requests which use chunked encoding also might allow arbitrary code execution. This has been fixed in version 1.3.9-14.1-1.21.20000309-1 of the Debian apache-perl package and we recommend that you upgrade your apache-perl package immediately. An update for the soon to be released Debian GNU/Linux 3.0/woody distribution will be available soon. Solution : http://www.debian.org/security/2002/dsa-133 Risk factor : High'; if (description) { script_id(14970); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "133"); script_cve_id("CVE-2002-0392"); script_bugtraq_id(5033); script_xref(name: "CERT", value: "944335"); script_description(english: desc); script_copyright(english: "This script is (C) 2006 Michel Arboi "); script_name(english: "[DSA133] DSA-133-1 apache-perl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-133-1 apache-perl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache-perl', release: '2.2', reference: '1.3.9-14.1-1.21.20000309-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-perl is vulnerable in Debian 2.2.\nUpgrade to apache-perl_1.3.9-14.1-1.21.20000309-1\n'); } if (w) { security_hole(port: 0, data: desc); } ~y֦ ^ i x  _ ,\  _ T  ` ,(  `   a ,t a pߋzEj^LmGUd挐ΔHQmγ^'\v "); script_name(english: "[DSA137] DSA-137-1 mm"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-137-1 mm"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libmm10', release: '2.2', reference: '1.0.11-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmm10 is vulnerable in Debian 2.2.\nUpgrade to libmm10_1.0.11-1.2\n'); } if (deb_check(prefix: 'libmm10-dev', release: '2.2', reference: '1.0.11-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmm10-dev is vulnerable in Debian 2.2.\nUpgrade to libmm10-dev_1.0.11-1.2\n'); } if (deb_check(prefix: 'libmm11', release: '3.0', reference: '1.1.3-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmm11 is vulnerable in Debian 3.0.\nUpgrade to libmm11_1.1.3-6.1\n'); } if (deb_check(prefix: 'libmm11-dev', release: '3.0', reference: '1.1.3-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmm11-dev is vulnerable in Debian 3.0.\nUpgrade to libmm11-dev_1.1.3-6.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH JFJFXbbH e to libapache-mod-ssl_2.4.10-1.3.9-1potato2\n'); } if (deb_check(prefix: 'libapache-mod-ssl-doc', release: '2.2', reference: '2.4.10-1.3.9-1potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl-doc is vulnerable in Debian 2.2.\nUpgrade to libapache-mod-ssl-doc_2.4.10-1.3.9-1potato2\n'); } if (deb_check(prefix: 'libapache-mod-ssl', release: '3.0', reference: '2.8.9-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-ssl_2.8.9-2\n'); } if (deb_check(prefix: 'libapache-mod-ssl-doc', release: '3.0', reference: '2.8.9-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl-doc is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-ssl-doc_2.8.9-2\n'); } if (w) { security_hole(port: 0, data: desc); } .h`l=ږ8E! a  `  b ,t  b  P$ c , c $k4&ίA~c*5YvlY˺=p+ut_q"1%ju8z6j1| JFJFXbbH # This script was automatically generated from the dsa-139 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' GOBBLES found an insecure use of format strings in the super package. The included program super is intended to provide access to certain system users for particular users and programs, similar to the program sudo. Exploiting this format string vulnerability a local user can gain unauthorized root access. This problem has been fixed in version 3.12.2-2.1 for the old stable distribution (potato), in version 3.16.1-1.1 for the current stable distribution (woody) and in version 3.18.0-3 for the unstable distribution (sid). We recommend that you upgrade your super package immediately. Solution : http://www.debian.org/security/2002/dsa-139 Risk factor : High'; if (description) { script_id(14976); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "139"); script_cve_id("CVE-2002-0817"); script_bugtraq_id(5367); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA139] DSA-139-1 super"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-139-1 super"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'super', release: '2.2', reference: '3.12.2-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package super is vulnerable in Debian 2.2.\nUpgrade to super_3.12.2-2.1\n'); } if (deb_check(prefix: 'super', release: '3.0', reference: '3.16.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package super is vulnerable in Debian 3.0.\nUpgrade to super_3.16.1-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } JJFJFXbbH # This script was automatically generated from the dsa-138 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem was found in gallery (a web-based photo album toolkit): it was possible to pass in the GALLERY_BASEDIR variable remotely. This made it possible to execute commands under the uid of web-server. This has been fixed in version 1.2.5-7 of the Debian package and upstream version 1.3.1. Solution : http://www.debian.org/security/2002/dsa-138 Risk factor : High'; if (description) { script_id(14975); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "138"); script_cve_id("CVE-2002-1412"); script_bugtraq_id(5375); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA138] DSA-138-1 gallery"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-138-1 gallery"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gallery', release: '3.0', reference: '1.2.5-7.woody.0')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gallery is vulnerable in Debian 3.0.\nUpgrade to gallery_1.2.5-7.woody.0\n'); } if (w) { security_hole(port: 0, data: desc); } FKOC252UX.ppdݦ c   d , d $[ߜ>y>σwUI򿧻*۴%Cr6'^n֫rf-Wٻ$_mF2պFC;C&jsTE{l"?ҝޞ}x3{ ϖCrgY8\ͯ]al}tXSg>ssQ9K>:v\ "cg\l惜./3<^(.ZhMwo6b ڶP/o.kZaci6DTx_Y4EF> JFJFXbbH # This script was automatically generated from the dsa-140 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Developers of the PNG library have fixed a buffer overflow in the progressive reader when the PNG datastream contains more IDAT data than indicated by the IHDR chunk. Such deliberately malformed datastreams would crash applications which could potentially allow an attacker to execute malicious code. Programs such as Galeon, Konqueror and various others make use of these libraries. In addition to that, the packages below fix another potential buffer overflow. The PNG libraries implement a safety margin which is also included in a newer upstream release. Thanks to Glenn Randers-Pehrson for informing us. To find out which packages depend on this library, you may want to execute the following commands: apt-cache showpkg libpng2 apt-cache showpkg libpng3 This problem has been fixed in version 1.0.12-3.woody.2 of libpng and version 1.2.1-1.1.woody.2 of libpng3 for the current stable distribution (woody) and in version 1.0.12-4 of libpng and version 1.2.1-2 of libpng3 for the unstable distribution (sid). The potato release of Debian does not seem to be vulnerable. We recommend that you upgrade your libpng packages immediately and restart programs and daemons that link to these libraries and read external data, such as web browsers. Solution : http://www.debian.org/security/2002/dsa-140 Risk factor : High'; if (description) { script_id(14977); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "140"); script_cve_id("CVE-2002-0660", "CVE-2002-0728"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA140] DSA-140-2 libpng"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-140-2 libpng"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libpng-dev', release: '3.0', reference: '1.2.1-1.1.woody.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng-dev is vulnerable in Debian 3.0.\nUpgrade to libpng-dev_1.2.1-1.1.woody.2\n'); } if (deb_check(prefix: 'libpng2', release: '3.0', reference: '1.0.12-3.woody.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2 is vulnerable in Debian 3.0.\nUpgrade to libpng2_1.0.12-3.woody.2\n'); } if (deb_check(prefix: 'libpng2-dev', release: '3.0', reference: '1.0.12-3.woody.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2-dev is vulnerable in Debian 3.0.\nUpgrade to libpng2-dev_1.0.12-3.woody.2\n'); } if (deb_check(prefix: 'libpng3', release: '3.0', reference: '1.2.1-1.1.woody.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng3 is vulnerable in Debian 3.0.\nUpgrade to libpng3_1.2.1-1.1.woody.2\n'); } if (w) { security_hole(port: 0, data: desc); }  ,6J#s$[Z d  p e ,D e @g3"-NWzL}[.w>{q0Q0zg ng&A+&Lu16v<&IA(vGJLvR4<\u(CS1tlUlU0t:-KwZHtXrVѧt'e=JvN:tL:uJV@t t|@xt:Xy< g` 3V9AVCݿy.8۾ {O늣ٱ'l}@=0>ؓ!9zOc}h}ʘ q~S&f=c01$=Ga<0cY0c&C oxc0c 0IzxcYsOԸמ&[ŧ*I{{8G ufT=aU|JaӾ*^m|6Tc k/~f QJcO+cÙyN۰s963C9ǎm GAMyGC3b(_߆{[h^ξCJ?(m3Qi^3KsdP=+)G{n`Ϝ!Ru0'Lsqm4 @3ǭ3iأ {lYcjن j>B:d##Hpb2n}1(EIB]ؿFʯ%U4_{C=a 9aOy~,; ;.QFC}wy㠼MHa|}dGFL1}dGF\"tIJLr+yh",jr r8j.αd0G1g;5 k$AȓPi]Z5)Ȑ!C~=z9УgC9ʞhrzf3Hry{*-i$y$u0yİVZ9JxW&CklJk{^{Fh k_%pSVFY>L֬od`%P=AX75񈐏4rIS&X2ǂ PVLʱXkOTr Fqŭ5!PICi"); script_name(english: "[DSA141] DSA-141-1 mpack"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-141-1 mpack"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mpack', release: '2.2', reference: '1.5-5potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mpack is vulnerable in Debian 2.2.\nUpgrade to mpack_1.5-5potato2\n'); } if (deb_check(prefix: 'mpack', release: '3.0', reference: '1.5-7woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mpack is vulnerable in Debian 3.0.\nUpgrade to mpack_1.5-7woody2\n'); } if (w) { security_hole(port: 0, data: desc); } 8.h`l=ږ8E! e   f , f  g , g $k4&ίA~c*5YvlY˺=p+ut_q"1%ju8z6j1|ŏ@88WQ"*oӈ 8 ki̦i +J}uM"ǴXD(0ڑ^FC$ڲ] vožxg*XI:WǮh 7Wpsl} 'lk54 ~й5s75uʠz7{a E^{;b JFJFXbbH JFJFXbbH # This script was automatically generated from the dsa-142 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' An integer overflow bug has been discovered in the RPC library used by the OpenAFS database server, which is derived from the SunRPC library. This bug could be exploited to crash certain OpenAFS servers (volserver, vlserver, ptserver, buserver) or to obtain unauthorized root access to a host running one of these processes. No exploits are known to exist yet. This problem has been fixed in version 1.2.3final2-6 for the current stable distribution (woody) and in version 1.2.6-1 for the unstable distribution (sid). Debian 2.2 (potato) is not affected since it doesn\'t contain OpenAFS packages. OpenAFS is only available for the architectures alpha, i386, powerpc, s390, sparc. Hence, we only provide fixed packages for these architectures. We recommend that you upgrade your openafs packages. Solution : http://www.debian.org/security/2002/dsa-142 Risk factor : High'; if (description) { script_id(14979); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2002-t-0015"); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "142"); script_cve_id("CVE-2002-0391"); script_bugtraq_id(5356); script_xref(name: "CERT", value: "192995"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA142] DSA-142-1 openafs"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-142-1 openafs"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libopenafs-dev', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libopenafs-dev is vulnerable in Debian 3.0.\nUpgrade to libopenafs-dev_1.2.3final2-6\n'); } if (deb_check(prefix: 'openafs-client', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openafs-client is vulnerable in Debian 3.0.\nUpgrade to openafs-client_1.2.3final2-6\n'); } if (deb_check(prefix: 'openafs-dbserver', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openafs-dbserver is vulnerable in Debian 3.0.\nUpgrade to openafs-dbserver_1.2.3final2-6\n'); } if (deb_check(prefix: 'openafs-fileserver', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openafs-fileserver is vulnerable in Debian 3.0.\nUpgrade to openafs-fileserver_1.2.3final2-6\n'); } if (deb_check(prefix: 'openafs-kpasswd', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openafs-kpasswd is vulnerable in Debian 3.0.\nUpgrade to openafs-kpasswd_1.2.3final2-6\n'); } if (deb_check(prefix: 'openafs-modules-source', release: '3.0', reference: '1.2.3final2-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openafs-modules-source is vulnerable in Debian 3.0.\nUpgrade to openafs-modules-source_1.2.3final2-6\n'); } if (w) { security_hole(port: 0, data: desc); } FKOC252UX.ppdݦ g  P h ,$ h  d$[# This script was automatically generated from the dsa-145 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The authors of tinyproxy, a lightweight HTTP proxy, discovered a bug in the handling of some invalid proxy requests. Under some circumstances, an invalid request may result in allocated memory being freed twice. This can potentially result in the execution of arbitrary code. This problem has been fixed in version 1.4.3-2woody2 for the current stable distribution (woody) and in version 1.4.3-3 for the unstable distribution (sid). The old stable distribution (potato) is not affected by this problem. We recommend that you upgrade your tinyproxy package immediately. Solution : http://www.debian.org/security/2002/dsa-145 Risk factor : High'; if (description) { script_id(14982); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "145"); script_cve_id("CVE-2002-0847"); script_bugtraq_id(4731); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA145] DSA-145-1 tinyproxy"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ss|JFJFXbbH # This script was automatically generated from the dsa-144 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem with wwwoffle has been discovered. The web proxy didn\'t handle input data with negative Content-Length settings properly which causes the processing child to crash. It is at this time not obvious how this can lead to an exploitable vulnerability; however, it\'s better to be safe than sorry, so here\'s an update. Additionally, in the woody version empty passwords will be treated as wrong when trying to authenticate. In the woody version we also replaced CanonicaliseHost() with the latest routine from 2.7d, offered by upstream. This stops bad IPv6 format IP addresses in URLs from causing problems (memory overwriting, potential exploits). This problem has been fixed in version 2.5c-10.4 for the old stable distribution (potato), in version 2.7a-1.2 for the current stable distribution (woody) and in version 2.7d-1 for the unstable distribution (sid). We recommend that you upgrade your wwwoffle packages. Solution : http://www.debian.org/security/2002/dsa-144 Risk factor : High'; if (description) { script_id(14981); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "144"); script_cve_id("CVE-2002-0818"); script_bugtraq_id(5260); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA144] DSA-144-1 wwwoffle"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-144-1 wwwoffle"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'wwwoffle', release: '2.2', reference: '2.5c-10.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wwwoffle is vulnerable in Debian 2.2.\nUpgrade to wwwoffle_2.5c-10.4\n'); } if (deb_check(prefix: 'wwwoffle', release: '3.0', reference: '2.7a-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wwwoffle is vulnerable in Debian 3.0.\nUpgrade to wwwoffle_2.7a-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } %@iddK{ZKC h  @ i , i  | j ,P j L.##ݎ$>A) @Nʙ `.Weuh71 * ҜNWeN  ]1,GIǘINJSRDDNQNc;+ϔg̼}L^a*'*`7W %4gךai]q?;-@5hC{ $=G){L-O!NoaqƱ0FPc=f# fd[ 1sxca10IwO=a# a;z㩟7{`vd_1>!9zGPqn7*޵' cOUCc?=U|WūcRj d5uoW3 !40\` cC=ul83oIT~6Y8ff(ر ;)0oh(q@{e{pa~ w7[Gm`Ɵ8;k&titg#b {3D_!ěi.huأ7{vaoM9:`2{L`Y]!ېz^'CHlx)N]LЭox1fEҸ7I"Z WH*uko=`ȟ:> 2l$',)ϼϛE{'p8}%"h"OS`.9o )49>2bȈ##x>2Ȉ#qU1i^#W^9b{e#WVc;[%\Wn[@v_CCEKr8(p;(p>(GqA(pD0rGpdj?@<@FQ|"); script_name(english: "[DSA146] DSA-146-2 dietlibc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-146-2 dietlibc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'dietlibc-dev', release: '3.0', reference: '0.12-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc-dev is vulnerable in Debian 3.0.\nUpgrade to dietlibc-dev_0.12-2.4\n'); } if (deb_check(prefix: 'dietlibc-doc', release: '3.0', reference: '0.12-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc-doc is vulnerable in Debian 3.0.\nUpgrade to dietlibc-doc_0.12-2.4\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH h_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-145-1 tinyproxy"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tinyproxy', release: '3.0', reference: '1.4.3-2woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tinyproxy is vulnerable in Debian 3.0.\nUpgrade to tinyproxy_1.4.3-2woody2\n'); } if (w) { security_hole(port: 0, data: desc); } L-B 6#ZgT}=J j  @  k , k o5c5eMvn\+7!GZH nSBHTºIxyP"6t`o8AKZ\k:Ck".!. W8-sfYs@L:?e\NCOAGNqWr:(oT1tK,r7(g@Y%xH,cYra0.B. yϓ@ؙszq(* n߆>Ⱦ&$e5 q*ڸ?.qR2u =N/O <1ƱU`ӉӊW#qHH1 (+lNĕDCZޛˠ uO*s: 8HH!8yGtcr=a趾ba5u%<ڐm0aνZ8x|e2g_%.7`F5  E JFJFXbbH # This script was automatically generated from the dsa-147 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A cross-site scripting vulnerability was discovered in mailman, a software to manage electronic mailing lists. When a properly crafted URL is accessed with Internet Explorer (other browsers don\'t seem to be affected), the resulting webpage is rendered similar to the real one, but the javascript component is executed as well, which could be used by an attacker to get access to sensitive information. The new version for Debian 2.2 also includes backports of security related patches from mailman 2.0.11. This problem has been fixed in version 2.0.11-1woody4 for the current stable distribution (woody), in version 1.1-10.1 for the old stable distribution (potato) and in version 2.0.12-1 for the unstable distribution (sid). We recommend that you upgrade your mailman package. Solution : http://www.debian.org/security/2002/dsa-147 Risk factor : High'; if (description) { script_id(14984); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "147"); script_cve_id("CVE-2002-0388", "CVE-2002-0855"); script_bugtraq_id(4825, 4826, 5298); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA147] DSA-147-1 mailman"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-147-1 mailman"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mailman', release: '2.2', reference: '1.1-10.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mailman is vulnerable in Debian 2.2.\nUpgrade to mailman_1.1-10.1\n'); } if (deb_check(prefix: 'mailman', release: '3.0', reference: '2.0.11-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mailman is vulnerable in Debian 3.0.\nUpgrade to mailman_2.0.11-1woody4\n'); } if (w) { security_hole(port: 0, data: desc); } <ZLxpj1 k   l , l   m , m &O1?LzO<9Jb,OB~/Ar4OQ2Bv&H/?fHddbG];+- o3jUy G[-qο4QJL<=aа(ӣ}BE:"ap\+7~w:p8NWCc$p Q}qZ be3x["V HO3yGvDE*s.-F2/8 7pdLj"g v'HN_v.cfH]Rdf V"Tf4PE_/kF#C/23SL4Zbot;Y9%{pӷ ^> d#o W7yTb- J۟kXM`nI#g=_"t"); script_name(english: "[DSA148] DSA-148-1 hylafax"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-148-1 hylafax"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'hylafax-client', release: '2.2', reference: '4.0.2-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-client is vulnerable in Debian 2.2.\nUpgrade to hylafax-client_4.0.2-14.3\n'); } if (deb_check(prefix: 'hylafax-doc', release: '2.2', reference: '4.0.2-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-doc is vulnerable in Debian 2.2.\nUpgrade to hylafax-doc_4.0.2-14.3\n'); } if (deb_check(prefix: 'hylafax-server', release: '2.2', reference: '4.0.2-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-server is vulnerable in Debian 2.2.\nUpgrade to hylafax-server_4.0.2-14.3\n'); } if (deb_check(prefix: 'hylafax-client', release: '3.0', reference: '4.1.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-client is vulnerable in Debian 3.0.\nUpgrade to hylafax-client_4.1.1-1.1\n'); } if (deb_check(prefix: 'hylafax-doc', release: '3.0', reference: '4.1.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-doc is vulnerable in Debian 3.0.\nUpgrade to hylafax-doc_4.1.1-1.1\n'); } if (deb_check(prefix: 'hylafax-server', release: '3.0', reference: '4.1.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hylafax-server is vulnerable in Debian 3.0.\nUpgrade to hylafax-server_4.1.1-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } FKO750UX.ppdݝ m    n , n  XdM# This script was automatically generated from the dsa-151 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Solar Designer found a vulnerability in xinetd, a replacement for the BSD derived inetd. File descriptors for the signal pipe introduced in version 2.3.4 are leaked into services started from xinetd. The descriptors could be used to talk to xinetd resulting in crashing it entirely. This is usually called a denial of service. This problem has been fixed by the package maintainer in version 2.3.4-1.2 for the current stable distribution (woody) and in version 2.3.7-1 for the unstable distribution (sid)JFJFXbbH # This script was automatically generated from the dsa-150 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in Interchange, an e-commerce and general HTTP database display system, which can lead to an attacker being able to read any file to which the user of the Interchange daemon has sufficient permissions, when Interchange runs in "INET mode" (internet domain socket). This is not the default setting in Debian packages, but configurable with Debconf and via configuration file. We also believe that this bug cannot exploited on a regular Debian system. This problem has been fixed by the package maintainer in version 4.8.3.20020306-1.woody.1 for the current stable distribution (woody) and in version 4.8.6-1 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t ship the Interchange system. We recommend that you upgrade your interchange packages. Solution : http://www.debian.org/security/2002/dsa-150 Risk factor : High'; if (description) { script_id(14987); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "150"); script_cve_id("CVE-2002-0874"); script_bugtraq_id(5453); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA150] DSA-150-1 interchange"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-150-1 interchange"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'interchange', release: '3.0', reference: '4.8.3.20020306-1.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package interchange is vulnerable in Debian 3.0.\nUpgrade to interchange_4.8.3.20020306-1.woody.1\n'); } if (deb_check(prefix: 'interchange-cat-foundation', release: '3.0', reference: '4.8.3.20020306-1.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package interchange-cat-foundation is vulnerable in Debian 3.0.\nUpgrade to interchange-cat-foundation_4.8.3.20020306-1.woody.1\n'); } if (deb_check(prefix: 'interchange-ui', release: '3.0', reference: '4.8.3.20020306-1.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package interchange-ui is vulnerable in Debian 3.0.\nUpgrade to interchange-ui_4.8.3.20020306-1.woody.1\n'); } if (deb_check(prefix: 'libapache-mod-interchange', release: '3.0', reference: '4.8.3.20020306-1.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-interchange is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-interchange_4.8.3.20020306-1.woody.1\n'); } if (w) { security_hole(port: 0, data: desc); }  u},.ngc/8LWzg`YYI1_0€\c*p|eU֐Ur&Ϙ[kVg<0 טJ.N*ص~eWd*q!> iu, U^cjgꦙ1UPP^[}xhd<FuᄋCX7腇.YaE MĚͼm5Ι9Og"O3 ٔYUM9U3YfT[Y3| 4@Y-YͺϸzX^I: I[zTh#k(JyT&l: yiА'HJ# ɔ.dr g  2,F`hd!h%h)y@RO ,YGG4|$仍&&+8|h'&<<2h IF)pMhIh FG0pMy4GS@Mr Mʷ[>C `<e1C!b!bv `H!u!}C`8R JFJFXbbH # This script was automatically generated from the dsa-152 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Current versions of l2tpd, a layer 2 tunneling client/server program, forgot to initialize the random generator which made it vulnerable since all generated random number were 100% guessable. When dealing with the size of the value in an attribute value pair, too many bytes were able to be copied, which could lead into the vendor field being overwritten. These problems have been fixed in version 0.67-1.1 for the current stable distribution (woody) and in version 0.68-1 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain the l2tpd package. We recommend that you upgrade your l2tpd packages. Solution : http://www.debian.org/security/2002/dsa-152 Risk factor : High'; if (description) { script_id(14989); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "152"); script_cve_id("CVE-2002-0872", "CVE-2002-0873"); script_bugtraq_id(5451); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA152] DSA-152-1 l2tpd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-152-1 l2tpd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'l2tpd', release: '3.0', reference: '0.67-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package l2tpd is vulnerable in Debian 3.0.\nUpgrade to l2tpd_0.67-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH . The old stable distribution (potato) is not affected, since it doesn\'t contain the signal pipe. We recommend that you upgrade your xinetd packages. Solution : http://www.debian.org/security/2002/dsa-151 Risk factor : High'; if (description) { script_id(14988); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "151"); script_cve_id("CVE-2002-0871"); script_bugtraq_id(5458); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA151] DSA-151-1 xinetd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-151-1 xinetd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xinetd', release: '3.0', reference: '2.3.4-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xinetd is vulnerable in Debian 3.0.\nUpgrade to xinetd_2.3.4-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } hS1+F{ p  X  q ,| q  d2M# This script was automatically generated from the dsa-154 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A flaw was discovered in FAM\'s group handling. In the effect users are unable to read FAM directories they have group read and execute permissions on. However, also unprivileged users C JFJFXbbH # This script was automatically generated from the dsa-153 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Joao Gouveia discovered an uninitialized variable which was insecurely used with file inclusions in the mantis package, a php based bug tracking system. The Debian Security Team found even more similar problems. When these occasions are exploited, a remote user is able to execute arbitrary code under the webserver user id on the web server hosting the mantis system. Jeroen Latour discovered that Mantis did not check all user input, especially if they do not come directly from form fields. This opens up a wide variety of SQL poisoning vulnerabilities on systems without magic_quotes_gpc enabled. Most of these vulnerabilities are only exploitable in a limited manner, since it is no longer possible to execute multiple queries using one call to mysql_query(). There is one query which can be tricked into changing an account\'s access level. Jeroen Latour also reported that it is possible to instruct Mantis to show reporters only the bugs that they reported, by setting the limit_reporters option to ON. However, when formatting the output suitable for printing, the program did not check the limit_reporters option and thus allowed reporters to see the summaries of bugs they did not report. Jeroen Latour discovered that the page responsible for displaying a list of bugs in a particular project, did not check whether the user actually has access to the project, which is transmitted by a cookie variable. It accidentally trusted the fact that only projects accessible to the user were listed in the drop-down menu. This provides a malicious user with an opportunity to display the bugs of a private project selected. These problems have been fixed in version 0.17.1-2.2 for the current stable distribution (woody) and in version 0.17.4a-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain the mantis package. Additional information: We recommend that you upgrade your mantis packages immediately. Solution : http://www.debian.org/security/2002/dsa-153 Risk factor : High'; if (description) { script_id(14990); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "153"); script_cve_id("CVE-2002-1110", "CVE-2002-1111", "CVE-2002-1112", "CVE-2002-1113", "CVE-2002-1114"); script_bugtraq_id(5504, 5509, 5510, 5514, 5515, 5563, 5565); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA153] DSA-153-1 mantis"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-153-1 mantis"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mantis', release: '3.0', reference: '0.17.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mantis is vulnerable in Debian 3.0.\nUpgrade to mantis_0.17.1-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } ( (% h_Z q  0 r , r  s ,p s   s  YD6WX# Th# This script was automatically generated from the dsa-156 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' All versions of the EPIC script Light prior to 2.7.30p5 (on the 2.7 branch) and prior to 2.8pre10 (on the 2.8 branch) running on any platform are vulnerable to a remotely-exploitable bug, which can lead to nearly arbitrary code execution. This problem has been fixed in version 2.7.30p5-1.1 for the current stable distribution (woody) and in version 2.7.30p5-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain the Light package. We recommend that you upgrade your epic4-script-light package and restart your IRC client. Solution : http://www.debian.org/security/2002/dsa-156 Risk factor : High'; if (description) { script_id(14993); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "156"); script_cve_id("CVE-2002-0984"); script_bugtraq_id(5555); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA156] DSA-156-1 epic4-script-light"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-156-1 epic4-script-light"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'epic4-script-light', release: '3.0', reference: '2.7.30p5-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4-script-light is vulnerable in Debian 3.0.\nUpgrade to epic4-script-light_2.7.30p5-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH jJFJFXbbH can potentially learn names of files that only users in root\'s group should be able to view. This problem been fixed in version 2.6.6.1-5.2 for the current stable stable distribution (woody) and in version 2.6.8-1 (or any later version) for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain fam packages. We recommend that you upgrade your fam packages. Solution : http://www.debian.org/security/2002/dsa-154 Risk factor : High'; if (description) { script_id(14991); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "154"); script_cve_id("CVE-2002-0875"); script_bugtraq_id(5487); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA154] DSA-154-1 fam"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-154-1 fam"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fam', release: '3.0', reference: '2.6.6.1-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fam is vulnerable in Debian 3.0.\nUpgrade to fam_2.6.6.1-5.2\n'); } if (deb_check(prefix: 'libfam-dev', release: '3.0', reference: '2.6.6.1-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libfam-dev is vulnerable in Debian 3.0.\nUpgrade to libfam-dev_2.6.6.1-5.2\n'); } if (deb_check(prefix: 'libfam0', release: '3.0', reference: '2.6.6.1-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libfam0 is vulnerable in Debian 3.0.\nUpgrade to libfam0_2.6.6.1-5.2\n'); } if (w) { security_hole(port: 0, data: desc); } =N@jٴ t , t    u , u  hx# This script was automatically generated from the dsa-158 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The developers of Gaim, an instant messenger client that combines several different networks, found a vulnerability in the hyperlink handling code. The \'Manual\' browser command passes an untrusted string to the shell without escaping or reliable quoting, permitting an attacker to execute arbitrary commands on the users machine. Unfortunately, Gaim doesn\'t display the hyperlink before the user clicks on it. Users who use other inbuilt browser commands aren\'t vulnerable. This problem has been fixed in version 0.58-2.2 for the current stable distribution (woody) and in version 0.59.1-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected since it doesn\'t ship the Gaim program. The fixed version of Gaim no longer passes the user\'s manual browser command to the shell. Commands which contain the %s in quotes will need to be amended, so they don\'t contain any quotes. The \'Manual\' browser command can be edited in the \'General\' pane of the \'Preferences\' dialog, which can be accessed by clicking \'Options\' from the login window, or \'Tools\' and then \'Preferences\' from the menu bar in the buddy list window. We recommend that you upgrade your gaim package immediately. Solution : http://www.debian.org/security/2002/dsa-158 Risk factor : High'; if (description) { script_id(14995); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "158"); script_cve_id("CVE-2002-0989"); script_bugtraq_id(5574); script_description(english: desc); script_copyright(engl JFJFXbbH # This script was automatically generated from the dsa-157 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The IRC client irssi is vulnerable to a denial of service condition. The problem occurs when a user attempts to join a channel that has an overly long topic description. When a certain string is appended to the topic, irssi will crash. This problem has been fixed in version 0.8.4-3.1 for the current stable distribution (woody) and in version 0.8.5-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since the corresponding portions of code are not present. The same applies to irssi-gnome and irssi-gtk, which don\'t seem to be affected as well. We recommend that you upgrade your irssi-text package. Solution : http://www.debian.org/security/2002/dsa-157 Risk factor : High'; if (description) { script_id(14994); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "157"); script_cve_id("CVE-2002-0983"); script_bugtraq_id(5055); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA157] DSA-157-1 irssi-text"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-157-1 irssi-text"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'irssi-text', release: '3.0', reference: '0.8.4-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package irssi-text is vulnerable in Debian 3.0.\nUpgrade to irssi-text_0.8.4-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH l\7&&DpƕhpM u i P  v ,  v t  w ,H  w   @ x , x 6X7 J[7J[޺MP6[ݺMY7N[޺`&u2ԓM:CPc0``m[,|ZJ@,$JFJFXbbH # This script was automatically generated from the dsa-160 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Spybreak discovered a problem in scrollkeeper, a free electronic cataloging system for documentation. The scrollkeeper-get-cl program creates temporary files in an insecure manner in /tmp using guessable filenames. Since scrollkeeper is called automatically when a user logs into a Gnome session, an attacker with local access can easily create and overwrite files as another user. This problem has been fixed in version 0.3.6-3.1 for the current stable distribution (woody) and in version 0.3.11-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain the scrollkeeper package. We recommend that you upgrade your scrollkeeper packages immediately. Solution : http://www.debian.org/security/2002/dsa-160 Risk factor : High'; if (description) { script_id(14997); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "160"); script_cve_id("CVE-2002-0662"); script_bugtraq_id(5602); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA160] DSA-160-1 scrollkeeper"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-160-1 scrollkeeper"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libscrollkeeper-dev', release: '3.0', reference: '0.3.6-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libscrollkeeper-dev is vulnerable in Debian 3.0.\nUpgrade to libscrollkeeper-dev_0.3.6-3.1\n'); } if (deb_check(prefix: 'libscrollkeeper0', release: '3.0', reference: '0.3.6-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libscrollkeeper0 is vulnerable in Debian 3.0.\nUpgrade to libscrollkeeper0_0.3.6-3.1\n'); } if (deb_check(prefix: 'scrollkeeper', release: '3.0', reference: '0.3.6-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package scrollkeeper is vulnerable in Debian 3.0.\nUpgrade to scrollkeeper_0.3.6-3.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH 3JFJFXbbH ish: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA158] DSA-158-1 gaim"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-158-1 gaim"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gaim', release: '3.0', reference: '0.58-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gaim is vulnerable in Debian 3.0.\nUpgrade to gaim_0.58-2.2\n'); } if (deb_check(prefix: 'gaim-common', release: '3.0', reference: '0.58-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gaim-common is vulnerable in Debian 3.0.\nUpgrade to gaim-common_0.58-2.2\n'); } if (deb_check(prefix: 'gaim-gnome', release: '3.0', reference: '0.58-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gaim-gnome is vulnerable in Debian 3.0.\nUpgrade to gaim-gnome_0.58-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } UmOˡv5{> x   y , y  hd# This script was automatically generated from the dsa-162 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ethereal developers discovered a buffer overflow in the ISIS protocol dissector. It may be possible to make Ethereal crash or hang by injecting a purposefully malformed packet onto the wire, or by convincing someone to read a malformed packet trace file. It may be possible to make Ethereal run arbitrary code by exploiting the buffer and pointer problems. This problem has been fixed in version 0.9.4-1woody2 for the current stable distribution (woody), in version 0.8.0-4potato.1 for the old stable distribution (potato) and in version 0.9.6-1 for the unstable distribution (sid). We recommend that you upgrade your ethereal packages. Solution : http://www.debian.org/security/2002/dsa-162 Risk factor : High'; if (description) { script_id(14999); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "162"); script_cve_id("CVE-2002-0834"); script_bugtraq_id(5573); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA162] DSA-162-1 ethereal"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-162-1 ethereal"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ethereal', release: '2.2', reference: '0.8.0-4potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 2.2.\nUpgrz JFJFXbbH # This script was automatically generated from the dsa-161 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem with user privileges has been discovered in the Mantis package, a PHP based bug tracking system. The Mantis system didn\'t check whether a user is permitted to view a bug, but displays it right away if the user entered a valid bug id. Another bug in Mantis caused the \'View Bugs\' page to list bugs from both public and private projects when no projects are accessible to the current user. These problems have been fixed in version 0.17.1-2.5 for the current stable distribution (woody) and in version 0.17.5-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since it doesn\'t contain the mantis package. Additional information: We recommend that you upgrade your mantis packages. Solution : http://www.debian.org/security/2002/dsa-161 Risk factor : High'; if (description) { script_id(14998); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "161"); script_cve_id("CVE-2002-1115", "CVE-2002-1116"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA161] DSA-161-1 mantis"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-161-1 mantis"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mantis', release: '3.0', reference: '0.17.1-2.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mantis is vulnerable in Debian 3.0.\nUpgrade to mantis_0.17.1-2.5\n'); } if (w) { security_hole(port: 0, data: desc); } ҥ5Ŧ y i   z ,  z  X dΞ# This script was automatically generated from the dsa-163 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Jason Molenda and Hiromitsu Takagi found ways to exploit cross site scripting bugs in mhonarc, a mail to HTML converter. When processing maliciously crafted mails of type text/html mhonarc does not deactivate all scripting parts properly. This is fixed in upstream version 2.5.3. If you are worried about security, it is recommended that you disable support of text/html messages in your mail archives. There is no guarantee that the mhtxthtml.pl library is robust enough to eliminate all possible exploits that can occur with HTML data. To exclude HTML data, you can use the MIMEEXCS resource. For example: text/html text/x-html The type "text/x-html" is probably not used any more, but is good to include it, just-in-case. If you are concerned that this could block out the entire contents of some messages, then you could do the following instead: text/html; m2h_text_plain::filter; mhtxtplain.pl text/x-html; m2h_text_plain::filter; mhtxtplain.pl This treats the HTML as text/plain. The above problems have been fixed in version 2.5.2-1.1 for the current stable distribution (woody), in version 2.4.4-1.1 for the old stable distribution (potato) and in version 2.5.11-1 for the unstable distribution (sid). We recommend that you upgrade your mhonarc packages. Solution : http://www.debian.org/security/2002/dsa-163 Risk factor : High'; if (description) { script_id(15000); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "163"); script_cve_id("CVE-2002-0738"); script_bugtraq_id(4546); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA163] DSA-163-1 mhonarc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-163-1 mhonarc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mhonarc', release: '2.2', reference: '2.4.4-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 2.2.\nUpgrade to mhonarc_2.4.4-1.1\n'); } if (deb_check(prefix: 'mhonarc', release: '3.0', reference: '2.5.2-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 3.0.\nUpgrade to mhonarc_2.5.2-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } W JFJFXbbH ade to ethereal_0.8.0-4potato.1\n'); } if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.0.\nUpgrade to ethereal_0.9.4-1woody2\n'); } if (deb_check(prefix: 'ethereal-common', release: '3.0', reference: '0.9.4-1woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-common is vulnerable in Debian 3.0.\nUpgrade to ethereal-common_0.9.4-1woody2\n'); } if (deb_check(prefix: 'ethereal-dev', release: '3.0', reference: '0.9.4-1woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-dev is vulnerable in Debian 3.0.\nUpgrade to ethereal-dev_0.9.4-1woody2\n'); } if (deb_check(prefix: 'tethereal', release: '3.0', reference: '0.9.4-1woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tethereal is vulnerable in Debian 3.0.\nUpgrade to tethereal_0.9.4-1woody2\n'); } if (w) { security_hole(port: 0, data: desc); } >=vj2.IG)]l { , {   | , |   } , }  # This script was automatically generated from the dsa-166 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Two buffer overflows have been discovered in purity, a game for nerds and hackers, which is installed setgid games on a Debian system. This problem could be exploited to gain unauthorized access to the group games. A malicious user could alter the highscore of several games. This problem has been fixed in version 1-14.2 for the current stable distribution (woody), in version 1-9.1 for the old stable distribution (potato) and in version 1-16 for the unstable distribution (sid). We recommend that you upgrade your purity packages. Solution : http://www.debian.org/security/2002/dsa-166 Risk factor : High'; if (description) { script_id(15003); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "166"); script_cve_id("CVE-2002-1124"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA166] DSA-166-1 purity"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-166-1 purity"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'purity', release: '2.2', reference: '1-9.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package purity is vulnerable in Debian 2.2.\nUpgrade to purity_1-9.1JFJFXbbH %JFJFXbbH # This script was automatically generated from the dsa-164 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem in cacti, a PHP based frontend to rrdtool for monitoring systems and services, has been discovered. This could lead into cacti executing arbitrary program code under the user id of the web server. This problem, however, is only persistent to users who already have administrator privileges in the cacti system. This problem has been fixed by removing any dollar signs and backticks from the title string in version 0.6.7-2.1 for the current stable distribution (woody) and in version 0.6.8a-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected since it doesn\'t contain the cacti package. We recommend that you upgrade your cacti package immediately. Solution : http://www.debian.org/security/2002/dsa-164 Risk factor : High'; if (description) { script_id(15001); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "164"); script_cve_id("CVE-2002-1477", "CVE-2002-1478"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA164] DSA-164-1 cacti"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-164-1 cacti"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cacti', release: '3.0', reference: '0.6.7-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cacti is vulnerable in Debian 3.0.\nUpgrade to cacti_0.6.7-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH {Y~|fK!P< }   ~ , ~   ,  x  ,L   X  ,  Fsk黌̇Z/0=T]DXVwcOyD1sǛ89ϡPL3HVE" '8?(ڳV0o6Nn2m9`gT0ڜ%LeeݯšAV}O<0tigCor'WTTM.:i]Ep([[Q My#=5%[g$egP3 BR:9L6 i nAMHk =;HuZvN2:x]G^QsT~;x}G:Qæ7tTشJ,7X泡cJ^WuTJӭe1=\S"fS@.HȞfuhv4I@44^E'3{!m735vW vt3 i-Og ĿJcȧfW:7epU̘pjZ3 h&jlJ}3̀>͚r<9Xp~p}92.&}9Bn焟9pCPU~e^ju]-W2:&4 SQZşM[dK6j ۱XBf d*"*b3ϙ,"=] DGQ=Om?h-ĥ$وvsSo1GbޟB6 S7{JpQ(X"KTz&W|UT8i}.6kghY( Mc$C D8mG~uvik‘&EXo [+|W{S~_s;aH&/7KXE/F4؉KөƗBހ/2-9ʫjmB4/_×9+h4{l$wnQ-܎E"); script_name(english: "[DSA169] DSA-169-1 htcheck"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-169-1 htcheck"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'htcheck', release: '3.0', reference: '1.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package htcheck is vulnerable in Debian 3.0.\nUpgrade to htcheck_1.1-1.1\n'); } if (deb_check(prefix: 'htcheck-php', release: '3.0', reference: '1.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package htcheck-php is vulnerable in Debian 3.0.\nUpgrade to htcheck-php_1.1-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } TJFJFXbbH mTJFJFXbbH0 JFJFXbbH \n'); } if (deb_check(prefix: 'purity', release: '3.0', reference: '1-14.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package purity is vulnerable in Debian 3.0.\nUpgrade to purity_1-14.2\n'); } if (w) { security_hole(port: 0, data: desc); } Fhp_color_Laser     ,   dݽ# This script was automatically generated from the dsa-171 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Stefan Esser discovered several buffer overflows and a broken boundary check within fetchmail. If fetchmail is running in multidrop mode these flaws can be used by remote attackers to crash it or to execute arbitrary code under the user id of the user running fetchmail. Depending on the configuration this even allows a remote root compromise. These problems have been fixed in version 5.9.11-6.1 for both fetchmail and fetchmail-ssl for the current stable distribution (woody), in version 5.3.3-4.2 for fetchmail for the old stable distribution (potato) and in version 6.1.0-1 for both fetchmail and fetchmail-ssl for the unstable distribution (sid). There are no fetchmail-ssl packages for the old stable distribution (potato) and thus no updates. We recommend that you upgrade your fetchmail packages immediately. Solution : http://www.debian.org/security/2002/dsa-171 Risk factor : High'; if (description) { script_id(15008); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "171"); script_cve_id("CVE-2002-1174", "CVE-2002-1175"); s/ JFJFXbbH # This script was automatically generated from the dsa-170 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A security vulnerability has been found in all Tomcat 4.x releases. This problem allows an attacker to use a specially crafted URL to return the unprocessed source code of a JSP page, or, under special circumstances, a static resource which would otherwise have been protected by security constraints, without the need for being properly authenticated. This problem has been fixed in version 4.0.3-3woody1 for the current stable distribution (woody) and in version 4.1.12-1 for the unstable release (sid). The old stable release (potato) does not contain tomcat packages. Also, packages for tomcat3 are not vulnerable to this problem. We recommend that you upgrade your tomcat package immediately. Solution : http://www.debian.org/security/2002/dsa-170 Risk factor : High'; if (description) { script_id(15007); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "170"); script_cve_id("CVE-2002-1148"); script_bugtraq_id(5786); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA170] DSA-170-1 tomcat4"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-170-1 tomcat4"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libtomcat4-java', release: '3.0', reference: '4.0.3-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libtomcat4-java is vulnerable in Debian 3.0.\nUpgrade to libtomcat4-java_4.0.3-3woody1\n'); } if (deb_check(prefix: 'tomcat4', release: '3.0', reference: '4.0.3-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat4 is vulnerable in Debian 3.0.\nUpgrade to tomcat4_4.0.3-3woody1\n'); } if (deb_check(prefix: 'tomcat4-webapps', release: '3.0', reference: '4.0.3-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat4-webapps is vulnerable in Debian 3.0.\nUpgrade to tomcat4-webapps_4.0.3-3woody1\n'); } if (w) { security_hole(port: 0, data: desc); } ".\*Pw   X  ,,   tvlpƚœZ3D# This script was automatically generated from the dsa-172 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' It has been discovered that tkmail creates temporary files insecurely. Exploiting this an attacker with local access can easily create and overwrite files as another user. This problem has been fixed in version 4.0beta9-8.1 for the current stable distribution (woody), in version 4.0beta9-4.1 for the old stable distribution (potato) and in version 4.0beta9-9 for the unstable distribution (sid). We recommend that you upgrade your tkmail packages. Solution : http://www.debian.org/security/2002/dsa-172 Risk factor : High'; if (description) { script_id(15009); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "172"); script_cve_id("CVE-2002-1193"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA172] DSA-172-1 tkmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-172-1 tkmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tkmail', release: '2.2', reference: '4.0beta9-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tkmail is vulnerable in Debian 2.2.\nUpgrade to tkmail_4.0beta9-4.1\n'); } if (deb_check(prefix: 'tkmail', release: '3.0', reference: '4.0beta9-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tkmail is vulnerable in Debian 3.0.\nUpgrade to tkmail_4.0beta9-8.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH cript_bugtraq_id(5825, 5826, 5827); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA171] DSA-171-1 fetchmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-171-1 fetchmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fetchmail', release: '2.2', reference: '5.3.3-4.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail is vulnerable in Debian 2.2.\nUpgrade to fetchmail_5.3.3-4.2\n'); } if (deb_check(prefix: 'fetchmailconf', release: '2.2', reference: '5.3.3-4.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmailconf is vulnerable in Debian 2.2.\nUpgrade to fetchmailconf_5.3.3-4.2\n'); } if (deb_check(prefix: 'fetchmail', release: '3.0', reference: '5.9.11-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail is vulnerable in Debian 3.0.\nUpgrade to fetchmail_5.9.11-6.1\n'); } if (deb_check(prefix: 'fetchmail-common', release: '3.0', reference: '5.9.11-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail-common is vulnerable in Debian 3.0.\nUpgrade to fetchmail-common_5.9.11-6.1\n'); } if (deb_check(prefix: 'fetchmail-ssl', release: '3.0', reference: '5.9.11-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmail-ssl is vulnerable in Debian 3.0.\nUpgrade to fetchmail-ssl_5.9.11-6.1\n'); } if (deb_check(prefix: 'fetchmailconf', release: '3.0', reference: '5.9.11-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fetchmailconf is vulnerable in Debian 3.0.\nUpgrade to fetchmailconf_5.9.11-6.1\n'); } if (w) { security_hole(port: 0, data: desc); } ')2z9 ciy^  ,   T  ,(   x# This script was automatically generated from the dsa-174 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Nathan Wallwork discovered a buffer overflow in heartbeat, a subsystem for High-Availability Linux. A remote attacker could send a specially crafted UDP packet that overflows a buffer, leaving heartbeat to execute arbitrary code as root. This problem has been fixed in version 0.4.9.0l-7.2 for the current stable distribution (woody) and version 0.4.9.2-1 for the unstable distribution (sid). The old stable distribution (potato) doesn\'t contain a heartbeat package. We recommend that you upgrade your heartbeat package immediately if you run internet connected servers that are heartbeat-monitored. Solution : http://www.debian.org/security/2002/dsa-174 Risk factor : High'; if (description) { script_id(15011); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "174"); script_cve_id("CVE-2002-1215"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA174] DSA-174-1 heartbeat"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); sc- JFJFXbbH # This script was automatically generated from the dsa-173 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The developers of Bugzilla, a web-based bug tracking system, discovered a problem in the handling of more than 47 groups. When a new product is added to an installation with 47 groups or more and "usebuggroups" is enabled, the new group will be assigned a groupset bit using Perl math that is not exact beyond 248. This results in the new group being defined with a "bit" that has several bits set. As users are given access to the new group, those users will also gain access to spurious lower group privileges. Also, group bits were not always reused when groups were deleted. This problem has been fixed in version 2.14.2-0woody2 for the current stable distribution (woody) and will soon be fixed in the unstable distribution (sid). The old stable distribution (potato) doesn\'t contain a bugzilla package. We recommend that you upgrade your bugzilla package. Solution : http://www.debian.org/security/2002/dsa-173 Risk factor : High'; if (description) { script_id(15010); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "173"); script_cve_id("CVE-2002-1196"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA173] DSA-173-1 bugzilla"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-173-1 bugzilla"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'bugzilla', release: '3.0', reference: '2.14.2-0woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla is vulnerable in Debian 3.0.\nUpgrade to bugzilla_2.14.2-0woody2\n'); } if (deb_check(prefix: 'bugzilla-doc', release: '3.0', reference: '2.14.2-0woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla-doc is vulnerable in Debian 3.0.\nUpgrade to bugzilla-doc_2.14.2-0woody2\n'); } if (w) { security_hole(port: 0, data: desc); } y JFJFXbbH  yh(?      ,T      ,X  T'z4A*,3 g-_H9Eb[W)tJGC4)r!=Z'ׁ:mZҍm~Jrξ$yu8c͒;<ۯÔh:uH3S;z,g'I r˛Ctie N|3 Ed8\1aoo)q z)$$ {)%JFJFXbbH # This script was automatically generated from the dsa-175 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Balazs Scheidler discovered a problem in the way syslog-ng handles macro expansion. When a macro is expanded a static length buffer is used accompanied by a counter. However, when constant characters are appended, the counter is not updated properly, leading to incorrect boundary checking. An attacker may be able to use specially crafted log messages inserted via UDP which overflows the buffer. This problem has been fixed in version 1.5.15-1.1 for the current stable distribution (woody), in version 1.4.0rc3-3.2 for the old stable distribution (potato) and version 1.5.21-1 for the unstable distribution (sid). We recommend that you upgrade your syslog-ng package immediately. Solution : http://www.debian.org/security/2002/dsa-175 Risk factor : High'; if (description) { script_id(15012); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "175"); script_cve_id("CVE-2002-1200"); script_bugtraq_id(5934); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA175] DSA-175-1 syslog-ng"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-175-1 syslog-ng"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'syslog-ng', release: '2.2', reference: '1.4.0rc3-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package syslog-ng is vulnerable in Debian 2.2.\nUpgrade to syslog-ng_1.4.0rc3-3.2\n'); } if (deb_check(prefix: 'syslog-ng', release: '3.0', reference: '1.5.15-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package syslog-ng is vulnerable in Debian 3.0.\nUpgrade to syslog-ng_1.5.15-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ript_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-174-1 heartbeat"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'heartbeat', release: '3.0', reference: '0.4.9.0l-7.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package heartbeat is vulnerable in Debian 3.0.\nUpgrade to heartbeat_0.4.9.0l-7.2\n'); } if (deb_check(prefix: 'ldirectord', release: '3.0', reference: '0.4.9.0l-7.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ldirectord is vulnerable in Debian 3.0.\nUpgrade to ldirectord_0.4.9.0l-7.2\n'); } if (deb_check(prefix: 'libstonith-dev', release: '3.0', reference: '0.4.9.0l-7.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libstonith-dev is vulnerable in Debian 3.0.\nUpgrade to libstonith-dev_0.4.9.0l-7.2\n'); } if (deb_check(prefix: 'libstonith0', release: '3.0', reference: '0.4.9.0l-7.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libstonith0 is vulnerable in Debian 3.0.\nUpgrade to libstonith0_0.4.9.0l-7.2\n'); } if (deb_check(prefix: 'stonith', release: '3.0', reference: '0.4.9.0l-7.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package stonith is vulnerable in Debian 3.0.\nUpgrade to stonith_0.4.9.0l-7.2\n'); } if (w) { security_hole(port: 0, data: desc); } ^yk9b-SCYau   (  ,   HdS*# This script was automatically generated from the dsa-177 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A serious security violation in PAM was discovered. Disabled passwords (i.e. those with \'*\' in the password file) were classified as empty password and access to such accounts is granted through the regular login procedure (getty, telnet, ssh). This works for all such accounts whose shell field in the password file does not refer to /bin/false. Only version 0.76 of PAM seems to be affected by this problem. This problem has been fixed in version 0.76-6 for the current unstable distribution (sid). The stable distribution (woody), the old stable distribution (potato) and the testing distribution (sarge) are not affected by this problem. As stated in the Debian security team FAQ, testing and unstable are rapidly moving targets and the security team does not have the resources needed to properly support those. This security advisory is an exception to that rule, due to the seriousness of the problem. We recommend that you upgrade your PAM packages immediately if you are running Debian/unstable. Solution : http://www.debian.org/security/2002/dsa-177 Risk factor : High'; if (description) { script_id(15014); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "177"); script_cve_id("CVE-2002-1227"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi"); script_name(english: "[DSA177] DSA-177-1 pam"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_ii JFJFXbbH # This script was automatically generated from the dsa-176 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Zen-parse discovered a buffer overflow in gv, a PostScript and PDF viewer for X11. This problem is triggered by scanning the PostScript file and can be exploited by an attacker sending a malformed PostScript or PDF file. The attacker is able to cause arbitrary code to be run with the privileges of the victim. This problem has been fixed in version 3.5.8-26.1 for the current stable distribution (woody), in version 3.5.8-17.1 for the old stable distribution (potato) and version 3.5.8-27 for the unstable distribution (sid). We recommend that you upgrade your gv package. Solution : http://www.debian.org/security/2002/dsa-176 Risk factor : High'; if (description) { script_id(15013); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "176"); script_cve_id("CVE-2002-0838"); script_bugtraq_id(5808); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA176] DSA-176-1 gv"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-176-1 gv"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gv', release: '2.2', reference: '3.5.8-17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gv is vulnerable in Debian 2.2.\nUpgrade to gv_3.5.8-17.1\n'); } if (deb_check(prefix: 'gv', release: '3.0', reference: '3.5.8-26.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gv is vulnerable in Debian 3.0.\nUpgrade to gv_3.5.8-26.1\n'); } if (w) { security_hole(port: 0, data: desc); }  `zw^mk6  I (   ,      ,t      ,  YJFJFXbbH # This script was automatically generated from the dsa-179 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Zen-parse discovered a buffer overflow in gv, a PostScript and PDF viewer for X11. The same code is present in gnome-gv. This problem is triggered by scanning the PostScript file and can be exploited by an attacker sending a malformed PostScript or PDF file. The attacker is able to cause arbitrary code to be run with the privileges of the victim. This problem has been fixed in version 1.1.96-3.1 for the current stable distribution (woody), in version 0.82-2.1 for the old stable distribution (potato) and version 1.99.7-9 for the unstable distribution (sid). We recommend that you upgrade your gnome-gv package. Solution : http://www.debian.org/security/2002/dsa-179 Risk factor : High'; if (description) { script_id(15016); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "179"); script_cve_id("CVE-2002-0838"); script_bugtraq_id(5808); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA179] DSA-179-1 gnome-gv"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-179-1 gnome-gv"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gnome-gv', release: '2.2', reference: '0.82-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnome-gv is vulnerable in Debian 2.2.\nUpgrade to gnome-gv_0.82-2.1\n'); } if (deb_check(prefix: 'gnome-gv', release: '3.0', reference: '1.1.96-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnome-gv is vulnerable in Debian 3.0.\nUpgrade to gnome-gv_1.1.96-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } |JFJFXbbH ǺȺɺg"JFJFXbbH nfo.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-177-1 pam"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libpam-cracklib', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-cracklib is vulnerable in Debian 3.2.\nUpgrade to libpam-cracklib_0.76-6\n'); } if (deb_check(prefix: 'libpam-doc', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-doc is vulnerable in Debian 3.2.\nUpgrade to libpam-doc_0.76-6\n'); } if (deb_check(prefix: 'libpam-modules', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-modules is vulnerable in Debian 3.2.\nUpgrade to libpam-modules_0.76-6\n'); } if (deb_check(prefix: 'libpam-runtime', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-runtime is vulnerable in Debian 3.2.\nUpgrade to libpam-runtime_0.76-6\n'); } if (deb_check(prefix: 'libpam0g', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam0g is vulnerable in Debian 3.2.\nUpgrade to libpam0g_0.76-6\n'); } if (deb_check(prefix: 'libpam0g-dev', release: '3.2', reference: '0.76-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam0g-dev is vulnerable in Debian 3.2.\nUpgrade to libpam0g-dev_0.76-6\n'); } if (w) { security_hole(port: 0, data: desc); } ܝwso#~     ,   hdn# This script was automatically generated from the dsa-181 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Joe Orton discovered a cross site scripting problem in mod_ssl, an Apache module that adds Strong cryptography (i.e. HTTPS support) to the webserver. The module will return the server name unescaped in the response to an HTTP request on an SSL port. Like the other recent Apache XSS bugs, this only affects servers using a combination of "UseCanonicalName off" (default in the Debian package of Apache) and wildcard DNS. This is very unlikely to happen, though. Apache 2.0/mod_ssl is not vulnerable since it already escapes this HTML. With this setting turned on, whenever Apache needs to construct a self-referencing URL (a URL that refers back to the server the response is coming from) it will use ServerName and Port to form a "canonical" name. With this setting off, Apache will use the hostname:port that the client supplied, when possible. This also affects SERVER_NAME and SERVER_PORT in CGI scripts. This problem has been fixed in version 2.8.9-2.1 for the current stable distribution (woody), in version 2.4.10-1.3.9-1potato4 for the old stable distribution (potato) and version 2.8.9-2.3 for the unstable distribution (sid). We recommend that you upgrade your libapache-mod-ssl package. Solution : http://www.debian.org/security/2002/dsa-181 Risk factor : High'; if (description) { script_id(15018); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "181"); script_cve_id("CVE-2002-1157"); script_bugtraq_id(6029); script_description(english: desc); script_copyright(english: "This script is (C) 2005 MiE JFJFXbbH # This script was automatically generated from the dsa-180 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Thorsten Kukuck discovered a problem in the ypserv program which is part of the Network Information Services (NIS). A memory leak in all versions of ypserv prior to 2.5 is remotely exploitable. When a malicious user could request a non-existing map the server will leak parts of an old domainname and mapname. This problem has been fixed in version 3.9-6.1 for the current stable distribution (woody), in version 3.8-2.1 for the old stable distribution (potato) and in version 3.9-6.2 for the unstable distribution (sid). We recommend that you upgrade your nis package. Solution : http://www.debian.org/security/2002/dsa-180 Risk factor : High'; if (description) { script_id(15017); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "180"); script_cve_id("CVE-2002-1232"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA180] DSA-180-1 nis"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-180-1 nis"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'nis', release: '2.2', reference: '3.8-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nis is vulnerable in Debian 2.2.\nUpgrade to nis_3.8-2.1\n'); } if (deb_check(prefix: 'nis', release: '3.0', reference: '3.9-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nis is vulnerable in Debian 3.0.\nUpgrade to nis_3.9-6.1\n'); } if (w) { security_hole(port: 0, data: desc); }  $T~?D;|8  i    ,      ,      ,      ,X    L   ,      ,\  Xa훶IJFJFXbbH # This script was automatically generated from the dsa-186 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Enrico Zini discovered a buffer overflow in log2mail, a daemon for watching logfiles and sending lines with matching patterns via mail. The log2mail daemon is started upon system boot and runs as root. A specially crafted (remote) log message could overflow a static buffer, potentially leaving log2mail to execute arbitrary code as root. This problem has been fixed in version 0.2.5.1 the current stable distribution (woody) and in version 0.2.6-1 for the unstable distribution (sid). The old stable distribution (potato) is not affected since it doesn\'t contain a log2mail package. We recommend that you upgrade your log2mail package. Solution : http://www.debian.org/security/2002/dsa-186 Risk factor : High'; if (description) { script_id(15023); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "186"); script_cve_id("CVE-2002-1251"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA186] DSA-186-1 log2mail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-186-1 log2mail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'log2mail', release: '3.0', reference: '0.2.5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package log2mail is vulnerable in Debian 3.0.\nUpgrade to log2mail_0.2.5.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ӺԺպx"JFJFXbbH ѺҺOJFJFXbbH ϺкJFJFXbbH ͺκhJFJFXbbH chel Arboi "); script_name(english: "[DSA181] DSA-181-1 libapache-mod-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-181-1 libapache-mod-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libapache-mod-ssl', release: '2.2', reference: '2.4.10-1.3.9-1potato4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl is vulnerable in Debian 2.2.\nUpgrade to libapache-mod-ssl_2.4.10-1.3.9-1potato4\n'); } if (deb_check(prefix: 'libapache-mod-ssl-doc', release: '2.2', reference: '2.4.10-1.3.9-1potato4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl-doc is vulnerable in Debian 2.2.\nUpgrade to libapache-mod-ssl-doc_2.4.10-1.3.9-1potato4\n'); } if (deb_check(prefix: 'libapache-mod-ssl', release: '3.0', reference: '2.8.9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-ssl_2.8.9-2.1\n'); } if (deb_check(prefix: 'libapache-mod-ssl-doc', release: '3.0', reference: '2.8.9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-ssl-doc is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-ssl-doc_2.8.9-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } <RWoɒm   P  ,  1]S\.dz bBYdg^UT JFJFXbbH # This script was automatically generated from the dsa-187 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several remotely exploitable vulnerabilities have been found in the Apache package, a commonly used webserver. These vulnerabilities could allow an attacker to enact a denial of service against a server or execute a cross scripting attack. The Common Vulnerabilities and Exposures (CVE) project identified the following vulnerabilities: This is the same vulnerability as CVE-2002-1233, which was fixed in potato already but got lost later and was never applied upstream. These problems have been fixed in version 1.3.26-0woody3 for the current stable distribution (woody) and in 1.3.9-14.3 for the old stable distribution (potato). Corrected packages for the unstable distribution (sid) are expected soon. We recommend that you upgrade your Apache package immediately. Solution : http://www.debian.org/security/2002/dsa-187 Risk factor : High'; if (description) { script_id(15024); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "187"); script_cve_id("CVE-2001-0131", "CVE-2002-0839", "CVE-2002-0840", "CVE-2002-0843", "CVE-2002-1233"); script_bugtraq_id(2182, 5847, 5884, 5887, 5995); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA187] DSA-187-1 apache"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-187-1 apache"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache', release: '2.2', reference: '1.3.9-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache is vulnerable in Debian 2.2.\nUpgrade to apache_1.3.9-14.3\n'); } if (deb_check(prefix: 'apache-common', release: '2.2', reference: '1.3.9-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-common is vulnerable in Debian 2.2.\nUpgrade to apache-common_1.3.9-14.3\n'); } if (deb_check(prefix: 'apache-dev', release: '2.2', reference: '1.3.9-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-dev is vulnerable in Debian 2.2.\nUpgrade to apache-dev_1.3.9-14.3\n'); } if (deb_check(prefix: 'apache-doc', release: '2.2', reference: '1.3.9-14.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-doc is vulnerable in Debian 2.2.\nUpgrade to apache-doc_1.3.9-14.3\n'); } if (deb_check(prefix: 'apache', release: '3.0', reference: '1.3.26-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache is vulnerable in Debian 3.0.\nUpgrade to apache_1.3.26-0woody3\n'); } if (deb_check(prefix: 'apache-common', release: '3.0', reference: '1.3.26-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-common is vulnerable in Debian 3.0.\nUpgrade to apache-common_1.3.26-0woody3\n'); } if (deb_check(prefix: 'apache-dev', release: '3.0', reference: '1.3.26-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-dev is vulnerable in Debian 3.0.\nUpgrade to apache-dev_1.3.26-0woody3\n'); } if (deb_check(prefix: 'apache-doc', release: '3.0', reference: '1.3.26-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-doc is vulnerable in Debian 3.0.\nUpgrade to apache-doc_1.3.26-0woody3\n'); } if (w) { security_hole(port: 0, data: desc); } 0 J 4   h  ,<   d{# This script was automatically generated from the dsa-189 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' iDEFENSE reported about a vulnerability in LuxMan, a maze game for GNU/Linux, similar to the PacMan arcade game. When successfully exploited a local attacker gains read-write access to the memory, leading to a local root compromise in many ways, examples of which include scanning the file for fragments of the master password file and modifying kernel memory to re-map system calls. This problem has been fixed in version 0.41-17.1 for the current stable distribution (woody) and in version 0.41-19 for the unstable distribution (sid). The old stable distribution (potato) is not affected since it doesn\'t contain a luxman package.JFJFXbbH # This script was automatically generated from the dsa-188 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several vulnerabilities have been found in the Apache package, a commonly used webserver. Most of the code is shared between the Apache and Apache-SSL packages, so vulnerabilities are shared as well. These vulnerabilities could allow an attacker to enact a denial of service against a server or execute a cross scripting attack, or steal cookies from other web site users. Vulnerabilities in the included lecacy programs htdigest, htpasswd and ApacheBench can be exploited when called via CGI. Additionally the insecure temporary file creation in htdigest and htpasswd can also be exploited locally. The Common Vulnerabilities and Exposures (CVE) project identified the following vulnerabilities: This is the same vulnerability as CVE-2002-1233, which was fixed in potato already but got lost later and was never applied upstream. (binaries not included in apache-ssl package though) These problems have been fixed in version 1.3.26.1+1.48-0woody3 for the current stable distribution (woody) and in 1.3.9.13-4.2 for the old stable distribution (potato). Corrected packages for the unstable distribution (sid) are expected soon. We recommend that you upgrade your Apache-SSL package immediately. Solution : http://www.debian.org/security/2002/dsa-188 Risk factor : High'; if (description) { script_id(15025); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "188"); script_cve_id("CVE-2001-0131", "CVE-2002-0839", "CVE-2002-0840", "CVE-2002-0843", "CVE-2002-1233"); script_bugtraq_id(5847, 5884, 5887, 5995); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA188] DSA-188-1 apache-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-188-1 apache-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache-ssl', release: '2.2', reference: '1.3.9.13-4.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-ssl is vulnerable in Debian 2.2.\nUpgrade to apache-ssl_1.3.9.13-4.2\n'); } if (deb_check(prefix: 'apache-ssl', release: '3.0', reference: '1.3.26.1+1.48-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-ssl is vulnerable in Debian 3.0.\nUpgrade to apache-ssl_1.3.26.1+1.48-0woody3\n'); } if (w) { security_hole(port: 0, data: desc); } H;๳'oh$ѥ      ,      ,  DN$t֞Ym5/*r}- 5\HM҄wJFJFXbbH # This script was automatically generated from the dsa-190 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Al Viro found a problem in the image handling code use in Window Maker, a popular NEXTSTEP like window manager. When creating an image it would allocate a buffer by multiplying the image width and height, but did not check for an overflow. This makes it possible to overflow the buffer. This could be exploited by using specially crafted image files (for example when previewing themes). This problem has been fixed in version 0.80.0-4.1 for the current stable distribution (woody). Packages for the mipsel architecture are not yet available. Solution : http://www.debian.org/security/2002/dsa-190 Risk factor : High'; if (description) { script_id(15027); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "190"); script_cve_id("CVE-2002-1277"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA190] DSA-190-1 wmaker"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-190-1 wmaker"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libwings-dev', release: '3.0', reference: '0.80.0-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwings-dev is vulnerable in Debian 3.0.\nUpgrade to libwings-dev_0.80.0-4.1\n'); } if (deb_check(prefix: 'libwmaker0-dev', release: '3.0', reference: '0.80.0-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwmaker0-dev is vulnerable in Debian 3.0.\nUpgrade to libwmaker0-dev_0.80.0-4.1\n'); } if (deb_check(prefix: 'libwraster2', release: '3.0', reference: '0.80.0-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwraster2 is vulnerable in Debian 3.0.\nUpgrade to libwraster2_0.80.0-4.1\n'); } if (deb_check(prefix: 'libwraster2-dev', release: '3.0', reference: '0.80.0-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libwraster2-dev is vulnerable in Debian 3.0.\nUpgrade to libwraster2-dev_0.80.0-4.1\n'); } if (deb_check(prefix: 'wmaker', release: '3.0', reference: '0.80.0-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wmaker is vulnerable in Debian 3.0.\nUpgrade to wmaker_0.80.0-4.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH  We recommend that you upgrade your luxman package immediately. Solution : http://www.debian.org/security/2002/dsa-189 Risk factor : High'; if (description) { script_id(15026); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "189"); script_cve_id("CVE-2002-1245"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA189] DSA-189-1 luxman"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-189-1 luxman"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'luxman', release: '3.0', reference: '0.41-17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package luxman is vulnerable in Debian 3.0.\nUpgrade to luxman_0.41-17.1\n'); } if (w) { security_hole(port: 0, data: desc); } Έ.sAblF   p  ,D   dx# This script was automatically generated from the dsa-192 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The SuSE Security Team found a vulnerability in html2ps, an HTML to PostScript converter, that opened files based on unsanitized input insecurely. This problem can be exploited when html2ps is installed as filter within lprng and the attacker has previously gained access to the lp account. These problems have been fixed in version 1.0b3-1.1 for the current stable distribution (woody), in version 1.0b1-8.1 for the old stable distribution (potato) and in version 1.0b3-2 for the unstable distribution (sid). We recommend that you upgrade your html2ps package. Solution : http://www.debian.org/security/2002/dsa-192 Risk factor : High'; if (description) { script_id(15029); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "192"); script_cve_id("CVE-2002-1275"); script_bugtraq_id(6079); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA192] DSA-192-1 html2ps"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-192-1 html2ps"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'html2ps', release: '2.2', reference: '1.0b1-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package html2ps is vulnerable in Debian 2.2.\nUpgrade to html2ps_1.0b1-8.2\n'); } if (deb_check(prefix: 'html2ps', release: '3.0', reference: '1.0b3-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package html2ps is vulnerable in Debi<JFJFXbbH # This script was automatically generated from the dsa-191 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Several cross site scripting vulnerabilities have been found in squirrelmail, a feature-rich webmail package written in PHP4. The Common Vulnerabilities and Exposures (CVE) project identified the following vulnerabilities: These problems have been fixed in version 1.2.6-1.1 for the current stable distribution (woody) and in version 1.2.8-1.1 for the unstable distribution (sid). The old stable distribution (potato) is not affected since it doesn\'t contain a squirrelmail package. We recommend that you upgrade your squirrelmail package. Solution : http://www.debian.org/security/2002/dsa-191 Risk factor : High'; if (description) { script_id(15028); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "191"); script_cve_id("CVE-2002-1131", "CVE-2002-1132", "CVE-2002-1276"); script_bugtraq_id(5763, 5949); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA191] DSA-191-1 squirrelmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-191-1 squirrelmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'squirrelmail', release: '3.0', reference: '1.2.6-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squirrelmail is vulnerable in Debian 3.0.\nUpgrade to squirrelmail_1.2.6-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } FHP_LaserJet_4_   `  ,t  l  ,@     ,\   #9C# This script was automatically generated from the dsa-195 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several vulnerabilities have been found in the Apache server package, a commonly used webserver. Most of the code is shared between the Apache and Apache-Perl packages, so vulnerabilities are shared as well. These vulnerabilities could allow an attacker to enact a denial of service against a server or execute a cross site scripting attack, or steal cookies from other web site users. The Common Vulnerabilities and Exposures (CVE) project identified the following vulnerabilities: These problems have been fixed in version 1.3.26-1-1.26-0woody2 for the current stable distribution (woody), in 1.3.9-14.1-1.21.20000309-1.1 for the old stable distribution (potato) and in version 1.3.26-1.1-1.27-3-1 for the unstable distribution (sid). We recommend that you upgrade your Apache-Perl package immediately. Solution : http://www.debian.org/security/2002/dsa-195 Risk factor : High'; if (description) { script_id(15032); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "195"); script_cve_id("CVE-2001-0131", "CVE-2002-0839", "CVE-2002-0840", "CVE-2002-0843", "CVE-2002-1233"); script_bugtraq_id(5847, 5884, 5887, 5995); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA194] DSA-194-1 masqmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-194-1 masqmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'masqmail', release: '3.0', reference: '0.1.16-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package masqmail is vulnerable in Debian 3.0.\nUpgrade to masqmail_0.1.16-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ݺ޺JFJFXbbH an 3.0.\nUpgrade to html2ps_1.0b3-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } irFu2XhO   h   ,<   4   ,      ,      ,   Alاw5W/8< he|R%Lm7qq5p.[Ƽ/e^f.7Z`1Mѥ<HmϢ8Bد6b1JYW@՘7՝nyUQ&4P>-+M!LeN+ Tcm;'kϩfӁ/oB۩g]t@͘E&YCF`Tźc!_T3 e*:M ")pBGAi81F&, <l0*L<K&rTX,y5LDccp2h?RJNy4" EV"); script_name(english: "[DSA198] DSA-198-1 nullmailer"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-198-1 nullmailer"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'nullmailer', release: '3.0', reference: '1.00RC5-16.1woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nullmailer is vulnerable in Debian 3.0.\nUpgrade to nullmailer_1.00RC5-16.1woody2\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH JFJFXbbH 'JFJFXbbH g>"); script_name(english: "[DSA195] DSA-195-1 apache-perl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-195-1 apache-perl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apache-perl', release: '2.2', reference: '1.3.9-14.1-1.21.20000309-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-perl is vulnerable in Debian 2.2.\nUpgrade to apache-perl_1.3.9-14.1-1.21.20000309-1.1\n'); } if (deb_check(prefix: 'apache-perl', release: '3.0', reference: '1.3.26-1-1.26-0woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apache-perl is vulnerable in Debian 3.0.\nUpgrade to apache-perl_1.3.26-1-1.26-0woody2\n'); } if (w) { security_hole(port: 0, data: desc); } g_+~N٦   h  ,<  8mh\ՋJ:hC,rfQ:ՠN/.٠<` ZmMkܨvf!uQCجY@MM.ݹ QNjBM`Ak*5ZGPly:;ڣi_;4^)~UdgC7@j)bv¨\VdZfsN լthK*܅7D0V_e$Xz%'eE4ZZ;@$l egչid%h5RYmP%뙚b7Rn袬5IӊF'%rliW=셕xl*Jllcƅ`_RQ6_-,)I 2 ycmF:[By@$G3 o7U q"܃ %RGK,gFqmOy#kJV; QP@jO a '?1-=>- D&ref~~b:{b^DST%E@(XdJ@\Ddk@5R ;PI>/T+'\Ďhr?Z;#CQafL딦*7?W(h&IjX{hsɪGe>tI_{>@[=~\a+؄:d*N,'P<ۤcK2J! ꉊ\'Njt+A\%SL0rLݵHn[y6hL,7$m箩XU {2(g5gD]E&UI!jWfQȨP>V__JQicj$ 'Ѿi@~;+yƈ9O#@=8ThFWnrB4,,sYyX֜_gQ!8`8v>3ڮFdqA:ݘ>K<^ /R.zYdɻ^ 8`Į`B\2mr_ bO'吻#}xC'Ps^\^ HB n;"W).jcfF{>[֧o]/ l8ԜyIʼ4džX1C})s5 12֠xT r5F ;[W߆O4jTqnOxˎ9Sl>Hϳ@Szc Ro`\kCk&~(."); script_name(english: "[DSA199] DSA-199-1 mhonarc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-199-1 mhonarc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mhonarc', release: '2.2', reference: '2.4.4-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 2.2.\nUpgrade to mhonarc_2.4.4-1.2\n'); } if (deb_check(prefix: 'mhonarc', release: '3.0', reference: '2.5.2-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 3.0.\nUpgrade to mhonarc_2.5.2-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } (N+\2   h  ,<   d8# This script was automatically generated from the dsa-201 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See ht|JFJFXbbH # This script was automatically generated from the dsa-200 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Steve Langasek found an exploitable bug in the password handling code in samba: when converting from DOS code-page to little endian UCS2 unicode a buffer length was not checked and a buffer could be overflowed. There is no known exploit for this, but an upgrade is strongly recommended. This problem has been fixed in version 2.2.3a-12 of the Debian samba packages and upstream version 2.2.7. Solution : http://www.debian.org/security/2002/dsa-200 Risk factor : High'; if (description) { script_id(15037); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "200"); script_cve_id("CVE-2002-1318"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA200] DSA-200-1 samba"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-200-1 samba"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libpam-smbpass', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-smbpass is vulnerable in Debian 3.0.\nUpgrade to libpam-smbpass_2.2.3a-12\n'); } if (deb_check(prefix: 'libsmbclient', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsmbclient is vulnerable in Debian 3.0.\nUpgrade to libsmbclient_2.2.3a-12\n'); } if (deb_check(prefix: 'libsmbclient-dev', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsmbclient-dev is vulnerable in Debian 3.0.\nUpgrade to libsmbclient-dev_2.2.3a-12\n'); } if (deb_check(prefix: 'samba', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba is vulnerable in Debian 3.0.\nUpgrade to samba_2.2.3a-12\n'); } if (deb_check(prefix: 'samba-common', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-common is vulnerable in Debian 3.0.\nUpgrade to samba-common_2.2.3a-12\n'); } if (deb_check(prefix: 'samba-doc', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-doc is vulnerable in Debian 3.0.\nUpgrade to samba-doc_2.2.3a-12\n'); } if (deb_check(prefix: 'smbclient', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbclient is vulnerable in Debian 3.0.\nUpgrade to smbclient_2.2.3a-12\n'); } if (deb_check(prefix: 'smbfs', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbfs is vulnerable in Debian 3.0.\nUpgrade to smbfs_2.2.3a-12\n'); } if (deb_check(prefix: 'swat', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package swat is vulnerable in Debian 3.0.\nUpgrade to swat_2.2.3a-12\n'); } if (deb_check(prefix: 'winbind', release: '3.0', reference: '2.2.3a-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package winbind is vulnerable in Debian 3.0.\nUpgrade to winbind_2.2.3a-12\n'); } if (w) { security_hole(port: 0, data: desc); } FHP_Mopier_320.   X  ,,   x  ,Ǧ?\1 돤 JFJFXbbH # This script was automatically generated from the dsa-202 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Tatsuya Kinoshita discovered that IM, which contains interface commands and Perl libraries for E-mail and NetNews, creates temporary files insecurely. These problems have been fixed in version 141-18.1 for the current stable distribution (woody), in version 133-2.2 of the old stable distribution (potato) and in version 141-20 for the unstable distribution (sid). We recommend that you upgrade your IM package. Solution : http://www.debian.org/security/2002/dsa-202 Risk factor : High'; if (description) { script_id(15039); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "202"); script_cve_id("CVE-2002-1395"); script_bugtraq_id(6307); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA202] DSA-202-1 im"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-202-1 im"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'im', release: '2.2', reference: '133-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package im is vulnerable in Debian 2.2.\nUpgrade to im_133-2.3\n'); } if (deb_check(prefix: 'im', release: '3.0', reference: '141-18.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package im is vulnerable in Debian 3.0.\nUpgrade to im_141-18.2\n'); } if (w) { security_hole(port: 0, data: desc); } wJFJFXbbH tp://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Bindview discovered a problem in several IPSEC implementations that do not properly handle certain very short packets. IPSEC is a set of security extensions to IP which provide authentication and encryption. Free/SWan in Debian is affected by this and is said to cause a kernel panic. This problem has been fixed in version 1.96-1.4 for the current stable distribution (woody) and in version 1.99-1 for the unstable distribution (sid). The old stable distribution (potato) does not contain Free/SWan packages. We recommend that you upgrade your freeswan package. Solution : http://www.debian.org/security/2002/dsa-201 Risk factor : High'; if (description) { script_id(15038); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "201"); script_cve_id("CVE-2002-0666"); script_xref(name: "CERT", value: "459371"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA201] DSA-201-1 freeswan"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-201-1 freeswan"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'freeswan', release: '3.0', reference: '1.96-1.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package freeswan is vulnerable in Debian 3.0.\nUpgrade to freeswan_1.96-1.4\n'); } if (deb_check(prefix: 'kernel-patch-freeswan', release: '3.0', reference: '1.96-1.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-patch-freeswan is vulnerable in Debian 3.0.\nUpgrade to kernel-patch-freeswan_1.96-1.4\n'); } if (w) { security_hole(port: 0, data: desc); } O&FQӆ')     ,    ,   0`  ,4  0HTC+7,w jyIs/r@ Z DA-!(/"!"jHJ(AZ%Dŏ"aVz8O@@Fq&""a9 jSJFJFXbbH # This script was automatically generated from the dsa-205 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Steve Kemp and James Antill found several buffer overflows in the gtetrinet (a multiplayer tetris-like game) package as shipped in Debian GNU/Linux 3.0, which could be abused by a malicious server. This has been fixed in upstream version 0.4.4 and release 0.4.1-9woody1.1 of the Debian package. Solution : http://www.debian.org/security/2002/dsa-205 Risk factor : High'; if (description) { script_id(15042); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "205"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA205] DSA-205-1 gtetrinet"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-205-1 gtetrinet"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gtetrinet', release: '3.0', reference: '0.4.1-9woody1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gtetrinet is vulnerable in Debian 3.0.\nUpgrade to gtetrinet_0.4.1-9woody1.1\n'); } if (w) { security_hole(port: 0, data: desc); } 0JFJFXbbH JFJFXbbH # This script was automatically generated from the dsa-203 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Robert Luberda found a security problem in smb2www, a Windows Network client that is accessible through a web browser. This could lead a remote attacker to execute arbitrary programs under the user id www-data on the host where smb2www is running. This problem has been fixed in version 980804-16.1 for the current stable distribution (woody), in version 980804-8.1 of the old stable distribution (potato) and in version 980804-17 for the unstable distribution (sid). We recommend that you upgrade your smb2www package immediately. Solution : http://www.debian.org/security/2002/dsa-203 Risk factor : High'; if (description) { script_id(15040); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "203"); script_cve_id("CVE-2002-1342"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA203] DSA-203-1 smb2www"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-203-1 smb2www"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'smb2www', release: '2.2', reference: '980804-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smb2www is vulnerable in Debian 2.2.\nUpgrade to smb2www_980804-8.1\n'); } if (deb_check(prefix: 'smb2www', release: '3.0', reference: '980804-16.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smb2www is vulnerable in Debian 3.0.\nUpgrade to smb2www_980804-16.1\n'); } if (w) { security_hole(port: 0, data: desc); } ׫F@UZ|F㾖2   X   ,|     d*# This script was automatically generated from the dsa-207 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The SuSE security team discovered a vulnerability in kpathsea library (libkpathsea) which is used by xdvi and dvips. Both programs call the system() function insecurely, which allows a remote attacker to execute arbitrary commands via cleverly crafted DVI files. If dvips is used in a print filter, this allows a local or remote attacker with print permission execute arbitrary code as the printer user (usually lp). This problem has been fixed in version 1.0.7+20011202-7.1 for the current stable distribution (woody), in version 1.0.6-7.3 for the old stable distribution (potato) and in version 1.0.7+20021025-4 for the unstable distribution (sid). xdvik-ja and dvipsk-ja are vulnerable as well, but link to the kpathsea library dynamically and will automatically be fixed after a new libkpathsea is installed. We recommend that you upgrade your tetex-lib package immediately. Solution : http://www.debian.org/security/2002/dsa-207 Risk factor : High'; if (description) { script_id(15044); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "207"); script_cve_id("CVE-2002-0836"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA207] DSA-207-1 tetex-bin"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-207-1 tetex-bin"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tetex-bin', release: '2.2', reference: '1.0.6-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tetex-bin is vulnerable in Debian 2.2.\nUpgrade to tetex-bin_1.0.6-7.3\n'); } if (deb_check(prefix: 'tetex-dev', release: '2.2', reference: '1.0.6-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tetex-dev is vulnerable in Debian 2.2E JFJFXbbH # This script was automatically generated from the dsa-206 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The BGP decoding routines for tcpdump used incorrect bounds checking when copying data. This could be abused by introducing malicious traffic on a sniffed network for a denial of service attack against tcpdump, or possibly even remote code execution. This has been fixed in version 3.6.2-2.2. Solution : http://www.debian.org/security/2002/dsa-206 Risk factor : High'; if (description) { script_id(15043); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "206"); script_cve_id("CVE-2002-1350"); script_bugtraq_id(6213); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA206] DSA-206-1 tcpdump"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-206-1 tcpdump"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tcpdump', release: '3.0', reference: '3.6.2-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian 3.0.\nUpgrade to tcpdump_3.6.2-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } z-2m DR   0   ,      ,p      ,d  ` (^$IA;?Y";d u#e ]Ƌ J4yz,E/E,zB5y< cnJaQ.2 ۈ i뉲єOi^J^=븁gKj@J_7ce0*a;o_Ҷ6`y2S"[Jܠ6n3iZٷz,{ViՀ!JJ_7##3Y T%J8a ɋ3U$Zd: SȌ/R/E;%\ ƫԊ SNE0UKJ'g 71CNmi1gС9H?/;Q(4EnVj=;%< Οy<lDJFJFXbbH WJFJFXbbH .\nUpgrade to tetex-dev_1.0.6-7.3\n'); } if (deb_check(prefix: 'tetex-lib', release: '2.2', reference: '1.0.6-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tetex-lib is vulnerable in Debian 2.2.\nUpgrade to tetex-lib_1.0.6-7.3\n'); } if (deb_check(prefix: 'libkpathsea-dev', release: '3.0', reference: '1.0.7+20011202-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe pack JFJFXbbH # This script was automatically generated from the dsa-209 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Two problems have been found in the wget package as distributed in Debian GNU/Linux: Both problems have been fixed in version 1.5.3-3.1 for Debian GNU/Linux 2.2/potato and version 1.8.1-6.1 for Debian GNU/Linux 3.0/woody. Solution : http://www.debian.org/security/2002/dsa-209 Risk factor : High'; if (description) { script_id(15046); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "209"); script_cve_id("CVE-2002-1344", "CVE-2002-1565"); script_bugtraq_id(6352); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA209] DSA-209-1 wget"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-209-1 wget"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'wget', release: '2.2', reference: '1.5.3-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wget is vulnerable in Debian 2.2.\nUpgrade to wget_1.5.3-3.1\n'); } if (deb_check(prefix: 'wget', release: '3.0', reference: '1.8.1-6.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package wget is vulnerable in Debian 3.0.\nUpgrade to wget_1.8.1-6.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH WJFJFXbbH .\nUpgrade to tetex-dev_1.0.6-7.3\n'); } if (deb_check(prefix: 'tetex-lib', release: '2.2', reference: '1.0.6-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tetex-lib is vulnerable in Debian 2.2.\nUpgrade to tetex-lib_1.0.6-7.3\n'); } if (deb_check(prefix: 'libkpathsea-dev', release: '3.0', reference: '1.0.7+20011202-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libkpathsea-dev is vulnerable in Debian 3.0.\nUpgrade to libkpathsea-dev_1.0.7+20011202-7.1\n'); } if (deb_check(prefix: 'libkpathsea3', release: '3.0', reference: '1.0.7+20011202-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libkpathsea3 is vulnerable in Debian 3.0.\nUpgrade to libkpathsea3_1.0.7+20011202-7.1\n'); } if (deb_check(prefix: 'tetex-bin', release: '3.0', reference: '1.0.7+20011202-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tetex-bin is vulnerable in Debian 3.0.\nUpgrade to tetex-bin_1.0.7+20011202-7.1\n'); } if (w) { security_hole(port: 0, data: desc); } ?d^d^,q   X  ,,  (o-FȪ}])`3 RmA^b7XX2b 9(KZsNdԑUgCdP mcض(AqIZbjs yȍ=jp>ew, lR"s@?ӝj<'23@cM '$Lӈ^ap b|Ob|N 5w-f\3)G0憦/d>FS&IS%cA;sm^8)6ERDPrhvv;**4,> #m'OQ:c;w;59wOq1j'}_Q{<:aӾCwp^gt'>GF{kZҼt;3{ۄas4 GL;m`vGƈs u~}à{6Qvݶ'6;sk9 8C7MmM:>QB[qƣIϡ9I8@Exv@Bq{]ErcZ77(%@=as B \\1H^^^ % y#"_hK5z'gJ}y Zj(ux`/s|=30o+9t C>Qs ]sW)/w?^;{ ]#wq27YP( ѐ:|E 6Ѳ.Z/0uUmwWS b]Y_u G}MbO O|qآ1ÐKn;HƢISK$.liiJû6g 61܅ӸWQ ͘Òa )*jg1f3.#(tV8:o"v0N eg 0*5Z]U\֣0 YD ca5H\5f3-1cZ`1?^bp@`h؎pba?C\ob%sYq\/s8^|X*J3(f2 1%-ٔ2ka jp/k6;6]]cS_-M5kԥ3$7YZX. |I-x?dO)3WA7t) ae򿼠yM}Cgؠ 70\tFIaSdώPC{jH(yD q в],56C7 bhȅd rr[&mYex- .WS&/a=kA%KxFJ *!.偾6(X`f* &P-81̧1r'^ONײ072q%ڜ& \Mǫl/:Y+)~~ JFJFXbbH # This script was automatically generated from the dsa-210 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' lynx (a text-only web browser) did not properly check for illegal characters in all places, including processing of command line options, which could be used to insert extra HTTP headers in a request. For Debian GNU/Linux 2.2/potato this has been fixed in version 2.8.3-1.1 of the lynx package and version 2.8.3.1-1.1 of the lynx-ssl package. For Debian GNU/Linux 3.0/woody this has been fixed in version 2.8.4.1b-3.2 of the lynx package and version 1:2.8.4.1b-3.1 of the lynx-ssl package. Solution : http://www.debian.org/security/2002/dsa-210 Risk factor : High'; if (description) { script_id(15047); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "210"); script_cve_id("CVE-2002-1405"); script_bugtraq_id(5499); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA210] DSA-210-1 lynx"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-210-1 lynx"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lynx', release: '2.2', reference: '2.8.3-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lynx is vulnerable in Debian 2.2.\nUpgrade to lynx_2.8.3-1.1\n'); } if (deb_check(prefix: 'lynx-ssl', release: '2.2', reference: '2.8.3.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lynx-ssl is vulnerable in Debian 2.2.\nUpgrade to lynx-ssl_2.8.3.1-1.1\n'); } if (deb_check(prefix: 'lynx', release: '3.0', reference: '2.8.4.1b-3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lynx is vulnerable in Debian 3.0.\nUpgrade to lynx_2.8.4.1b-3.2\n'); } if (deb_check(prefix: 'lynx-ssl', release: '3.0', reference: '2.8.4.1b-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lynx-ssl is vulnerable in Debian 3.0.\nUpgrade to lynx-ssl_2.8.4.1b-3.1\n'); } if (w) { security_hole(port: 0, data: desc); }  /YU\r8@     ,T  P,E/E,zB5y< cnJaQ.2 ۈ i뉲єOi^J^=븁gKj@J_7ce0*a;o_Ҷ6`y2S"[Jܠ6n3iZٷz,{ViՀ!JJ_7##3Y T%J8a ɋ3U$Zd: SȌ/R/E;%\ ƫԊ SNE0UKJ'g 71CNmi1gС9H?/;Q(4EnVj=;%< Οy<lD++fOeNsO<$]MkK&`I *ҕ5/C=z !9miB++#*m6o,+Ijr4QE)Y v@S(wS"ohY8WК %v'JrcD2=+Q!D_|єVXYa"); script_name(english: "[DSA211] DSA-211-1 micq"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-211-1 micq"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'micq', release: '2.2', reference: '0.4.3-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package micq is vulnerable in Debian 2.2.\nUpgrade to micq_0.4.3-4.1\n'); } if (deb_check(prefix: 'micq', release: '3.0', reference: '0.4.9-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package micq is vulnerable in Debian 3.0.\nUpgrade to micq_0.4.9-0woody3\n'); } if (deb_check(prefix: 'micq', release: '3.1', reference: '0.4.9.4-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package micq is vulnerable in Debian 3.1.\nUpgrade to micq_0.4.9.4-1\n'); } if (deb_check(prefix: 'micq', release: '2.2', reference: '0.4.3-4.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package micq is vulnerable in Debian potato.\nUpgrade to micq_0.4.3-4.1\n'); } if (deb_check(prefix: 'micq', release: '3.0', reference: '0.4.9-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package micq is vulnerable in Debian woody.\nUpgrade to micq_0.4.9-0woody3\n'); } if (w) { security_hole(port: 0, data: desc); } VP!     ,   `dx# This script was automatically generated from the dsa-213 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' GleqJFJFXbbH # This script was automatically generated from the dsa-212 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' While performing an audit of MySQL e-matters found several problems: For Debian GNU/Linux 3.0/woody this has been fixed in version 3.23.49-8.2 and version 3.22.32-6.3 for Debian GNU/Linux 2.2/potato. We recommend that you upgrade your mysql packages as soon as possible. Solution : http://www.debian.org/security/2002/dsa-212 Risk factor : High'; if (description) { script_id(15049); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "212"); script_cve_id("CVE-2002-1376", "CVE-2002-1373", "CVE-2002-1374", "CVE-2002-1375"); script_bugtraq_id(6368, 6373, 6375); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA212] DSA-212-1 mysql"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-212-1 mysql"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mysql-client', release: '2.2', reference: '3.22.32-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-client is vulnerable in Debian 2.2.\nUpgrade to mysql-client_3.22.32-6.3\n'); } if (deb_check(prefix: 'mysql-doc', release: '2.2', reference: '3.22.32-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-doc is vulnerable in Debian 2.2.\nUpgrade to mysql-doc_3.22.32-6.3\n'); } if (deb_check(prefix: 'mysql-server', release: '2.2', reference: '3.22.32-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-server is vulnerable in Debian 2.2.\nUpgrade to mysql-server_3.22.32-6.3\n'); } if (deb_check(prefix: 'libmysqlclient10', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmysqlclient10 is vulnerable in Debian 3.0.\nUpgrade to libmysqlclient10_3.23.49-8.2\n'); } if (deb_check(prefix: 'libmysqlclient10-dev', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmysqlclient10-dev is vulnerable in Debian 3.0.\nUpgrade to libmysqlclient10-dev_3.23.49-8.2\n'); } if (deb_check(prefix: 'mysql-client', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-client is vulnerable in Debian 3.0.\nUpgrade to mysql-client_3.23.49-8.2\n'); } if (deb_check(prefix: 'mysql-common', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-common is vulnerable in Debian 3.0.\nUpgrade to mysql-common_3.23.49-8.2\n'); } if (deb_check(prefix: 'mysql-doc', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-doc is vulnerable in Debian 3.0.\nUpgrade to mysql-doc_3.23.49-8.2\n'); } if (deb_check(prefix: 'mysql-server', release: '3.0', reference: '3.23.49-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mysql-server is vulnerable in Debian 3.0.\nUpgrade to mysql-server_3.23.49-8.2\n'); } if (w) { security_hole(port: 0, data: desc); } LljψUWD\;5-  a   ,    ,    ,T  P  ,$   reading and writing PNG (Portable Network Graphi JFJFXbbH JFJFXbbH JFJFXbbH JFJFXbbH nn Randers-Pehrson discovered a problem in connection with 16-bit samples from libpng, an interface for reading and writing PNG (Portable Network Graphics) format files. The starting offsets for the loops are calculated incorrectly which causes a buffer overrun beyond the beginning of the row buffer. For the current stable distribution (woody) this problem has been fixed in version 1.0.12-3.woody.3 for libpng and in version 1.2.1-1.1.woody.3 for libpng3. For the old stable distribution (potato) this problem has been fixed in version 1.0.5-1.1 for libpng. There are no other libpng packages. For the unstable distribution (sid) this problem has been fixed in version 1.0.12-7 for libpng and in version 1.2.5-8 for libpng3. We recommend that you upgrade your libpng packages. Solution : http://www.debian.org/security/2002/dsa-213 Risk factor : High'; if (description) { script_id(15050); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "213"); script_cve_id("CVE-2002-1363"); script_bugtraq_id(6431); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA213] DSA-213-1 libpng"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-213-1 libpng"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libpng2', release: '2.2', reference: '1.0.5-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2 is vulnerable in Debian 2.2.\nUpgrade to libpng2_1.0.5-1.1\n'); } if (deb_check(prefix: 'libpng2-dev', release: '2.2', reference: '1.0.5-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2-dev is vulnerable in Debian 2.2.\nUpgrade to libpng2-dev_1.0.5-1.1\n'); } if (deb_check(prefix: 'libpng-dev', release: '3.0', reference: '1.2.1-1.1.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng-dev is vulnerable in Debian 3.0.\nUpgrade to libpng-dev_1.2.1-1.1.woody.3\n'); } if (deb_check(prefix: 'libpng2', release: '3.0', reference: '1.0.12-3.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2 is vulnerable in Debian 3.0.\nUpgrade to libpng2_1.0.12-3.woody.3\n'); } if (deb_check(prefix: 'libpng2-dev', release: '3.0', reference: '1.0.12-3.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng2-dev is vulnerable in Debian 3.0.\nUpgrade to libpng2-dev_1.0.12-3.woody.3\n'); } if (deb_check(prefix: 'libpng3', release: '3.0', reference: '1.2.1-1.1.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng3 is vulnerable in Debian 3.0.\nUpgrade to libpng3_1.2.1-1.1.woody.3\n'); } if (deb_check(prefix: 'libpng,', release: '3.1', reference: '1.0')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng, is vulnerable in Debian 3.1.\nUpgrade to libpng,_1.0\n'); } if (deb_check(prefix: 'libpng,', release: '2.2', reference: '1.0.5-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng, is vulnerable in Debian potato.\nUpgrade to libpng,_1.0.5-1\n'); } if (deb_check(prefix: 'libpng,', release: '3.0', reference: '1.0.12-3.woody')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpng, is vulnerable in Debian woody.\nUpgrade to libpng,_1.0.12-3.woody\n'); } if (w) { security_hole(port: 0, data: desc); } }yqF)R}   P  ,$   @G8gȼίf i#P;s43oPUx@Xp9R`{܏% Gv-ɥ8޷^ytvpɵ=>)Yq;᫦N͚(V I4\6@HAF +C~KFhٲV햅:FqKv ,oNegB)X?㡽ѴuGq=P߹ VX*_j[T!&&m%Aj` &a"ym]k ~@0¾!H`_L |sxdto[8r^@dA1{F !2~^|j MG364 s(dy)Ն^D0WZC|ζ;=Hܨ2xy-8C")|i""aQP.pVepRGO"EPMW׃Ã3Jbր޾id`30f*yCG2{lq!育C k#ڡDCqe>>1T /e =<8hr\IR!H8}O%.Dbe`K׈]H:=u:]t?yg6W|S=֜gw!i%:׏_V?^xC(s JFJFXbbH # This script was automatically generated from the dsa-217 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in the typespeed, a game that lets you measure your typematic speed. By overflowing a buffer a local attacker could execute arbitrary commands under the group id games. For the current stable distribution (woody) this problem has been fixed in version 0.4.1-2.1. For the old stable distribution (potato) this problem has been fixed in version 0.4.0-5.1. For the unstable distribution (sid) this problem has been fixed in version 0.4.2-2. We recommend that you upgrade your typespeed package. Solution : http://www.debian.org/security/2002/dsa-217 Risk factor : High'; if (description) { script_id(15054); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "217"); script_cve_id("CVE-2002-1389"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA217] DSA-217-1 typespeed"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-217-1 typespeed"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'typespeed', release: '2.2', reference: '0.4.0-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian 2.2.\nUpgrade to typespeed_0.4.0-5.1\n'); } if (deb_check(prefix: 'typespeed', release: '3.0', reference: '0.4.1-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian 3.0.\nUpgrade to typespeed_0.4.1-2.1\n'); } if (deb_check(prefix: 'typespeed', release: '3.1', reference: '0.4.2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian 3.1.\nUpgrade to typespeed_0.4.2-2\n'); } if (deb_check(prefix: 'typespeed', release: '2.2', reference: '0.4.0-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian potato.\nUpgrade to typespeed_0.4.0-5.1\n'); } if (deb_check(prefix: 'typespeed', release: '3.0', reference: '0.4.1-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian woody.\nUpgrade to typespeed_0.4.1-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } l(1٠KԦ   x   ,\   dY# This script was automatically generated from the dsa-219 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Simon Kelly discovered a vulnerability in dhcpcd, an RFC2131 and RFC1541 compliant DHCP client daemon, that runs with root privileges on client machines. A malicious administrator of the regular or an untrusted DHCP server may execute any command with root privileges on the DHCP client machine by sending the command enclosed in shell metacharacters in one of the options provided by the DHCP server. This problem has been fixed in version 1.3.17pl2-8.1 for the old stable distribution (potato) and in version 1.3.22pl2-2 for the testing (sarge) and unstable (sid) distributions. The current stable distribution (woody) does not contain a dhcpcd package. We recomm JFJFXbbH # This script was automatically generated from the dsa-218 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A cross site scripting vulnerability has been reported for Bugzilla, a web-based bug tracking system. Bugzilla does not properly sanitize any input submitted by users for use in quips. As a result, it is possible for a remote attacker to create a malicious link containing script code which will be executed in the browser of a legitimate user, in the context of the website running Bugzilla. This issue may be exploited to steal cookie-based authentication credentials from legitimate users of the website running the vulnerable software. This vulnerability only affects users who have the \'quips\' feature enabled and who upgraded from version 2.10 which did not exist inside of Debian. The Debian package history of Bugzilla starts with 1.13 and jumped to 2.13. However, users could have installed version 2.10 prior to the Debian package. For the current stable distribution (woody) this problem has been fixed in version 2.14.2-0woody3. The old stable distribution (potato) does not contain a Bugzilla package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your bugzilla packages. Solution : http://www.debian.org/security/2002/dsa-218 Risk factor : High'; if (description) { script_id(15055); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "218"); script_bugtraq_id(6257); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA218] DSA-218-1 bugzilla"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-218-1 bugzilla"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'bugzilla', release: '3.0', reference: '2.14.2-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla is vulnerable in Debian 3.0.\nUpgrade to bugzilla_2.14.2-0woody3\n'); } if (deb_check(prefix: 'bugzilla-doc', release: '3.0', reference: '2.14.2-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla-doc is vulnerable in Debian 3.0.\nUpgrade to bugzilla-doc_2.14.2-0woody3\n'); } if (deb_check(prefix: 'bugzilla', release: '3.0', reference: '2.14.2-0woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla is vulnerable in Debian woody.\nUpgrade to bugzilla_2.14.2-0woody3\n'); } if (w) { security_hole(port: 0, data: desc); } /BQ|ːj&,   H   ,    x  ,x JFJFXbbH # This script was automatically generated from the dsa-220 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A cross site scripting vulnerability has been discovered in squirrelmail, a feature-rich webmail package written in PHP4. Squirrelmail doesn\'t sanitize user provided variables in all places, leaving it vulnerable to a cross site scripting attack. For the current stable distribution (woody) this problem has been fixed in version 1.2.6-1.3. The old stable distribution (potato) is not affected since it doesn\'t contain a squirrelmail package. An updated package for the unstable distribution (sid) is expected soon. We recommend that you upgrade your squirrelmail package. Solution : http://www.debian.org/security/2003/dsa-220 Risk factor : High'; if (description) { script_id(15057); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "220"); script_cve_id("CVE-2002-1341"); script_bugtraq_id(6302); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA220] DSA-220-1 squirrelmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-220-1 squirrelmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'squirrelmail', release: '3.0', reference: '1.2.6-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squirrelmail is vulnerable in Debian 3.0.\nUpgrade to squirrelmail_1.2.6-1.3\n'); } if (deb_check(prefix: 'squirrelmail', release: '3.0', reference: '1.2.6-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package squirrelmail is vulnerable in Debian woody.\nUpgrade to squirrelmail_1.2.6-1.3\n'); } if (w) { security_hole(port: 0, data: desc); } sJFJFXbbH end that you upgrade your dhcpcd package (on the client machine). Solution : http://www.debian.org/security/2002/dsa-219 Risk factor : High'; if (description) { script_id(15056); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "219"); script_cve_id("CVE-2002-1403"); script_bugtraq_id(6200); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA219] DSA-219-1 dhcpcd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-219-1 dhcpcd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'dhcpcd', release: '2.2', reference: '1.3.17pl2-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcpcd is vulnerable in Debian 2.2.\nUpgrade to dhcpcd_1.3.17pl2-8.1\n'); } if (deb_check(prefix: 'dhcpcd', release: '3.0', reference: '1.3.22pl2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcpcd is vulnerable in Debian 3.0.\nUpgrade to dhcpcd_1.3.22pl2-2\n'); } if (deb_check(prefix: 'dhcpcd', release: '2.2', reference: '1.3.17pl2-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcpcd is vulnerable in Debian potato.\nUpgrade to dhcpcd_1.3.17pl2-8.1\n'); } if (deb_check(prefix: 'dhcpcd', release: '3.1', reference: '1.3.22pl2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcpcd is vulnerable in Debian sarge.\nUpgrade to dhcpcd_1.3.22pl2-2\n'); } if (w) { security_hole(port: 0, data: desc); } |sſ7u%     ,  _,mI;VXn(`ya %y^#'K:\%޾AL< UY_QCNJB1QVΑD3D?5Y[xAJhfg+ҦW iP=̟C7zVbIߖz$ry}.} iڳ HeD-kpܝ0Ѥ]5 ( t?`VLz\iFYbGQrBbQݔ=J-HThD{$ 5i:JH鋭!q9IFgfob]:!|thSg`cd4`B#V٨V7V k͢?0X6^̖ bR>Osl/i]$mW_D/rXB"K$ j&1yWNLb%yr@pJz]F 3i $p,c c9_a:`w&A\BNv)W#)irxusPyPᢦSLMϢ Ekai? }CGYݨ}<ўS!F/ q`Xvl!$GЋɬlDvXB| юGEH .Q*f2 6 ʁ0?,%>9I8Ÿ%hK_ⵤqRh[7Cy]wKV̎Bqٱ4-ܦ퇧0mVx;'Y{BkycfP^!ٍk-'m4leav_p#JZۄ-g{AHV;YO6ܤ^7,bR̋-ﲸC菊ԟwB` lVg wnٲ4I~,8\f 4s &ml^z74_nIܔoT[Wo𺔾ҤͽΡ(M;Z ^qh_-g'U]/`˅$Dɣ}߬ds _sACڔc 8gڞ~Əd7ڴuv'}$tdNjP^p. ̓DW>=s0_fO JFJFXbbH # This script was automatically generated from the dsa-221 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Earl Hood, author of mhonarc, a mail to HTML converter, discovered a cross site scripting vulnerability in this package. A specially crafted HTML mail message can introduce foreign scripting content in archives, by-passing MHonArc\'s HTML script filtering. For the current stable distribution (woody) this problem has been fixed in version 2.5.2-1.3. For the old stable distribution (potato) this problem has been fixed in version 2.4.4-1.3. For the unstable distribution (sid) this problem has been fixed in version 2.5.14-1. We recommend that you upgrade your mhonarc package. Solution : http://www.debian.org/security/2003/dsa-221 Risk factor : High'; if (description) { script_id(15058); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "221"); script_cve_id("CVE-2002-1388"); script_bugtraq_id(6479); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA221] DSA-221-1 mhonarc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-221-1 mhonarc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mhonarc', release: '2.2', reference: '2.4.4-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 2.2.\nUpgrade to mhonarc_2.4.4-1.3\n'); } if (deb_check(prefix: 'mhonarc', release: '3.0', reference: '2.5.2-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 3.0.\nUpgrade to mhonarc_2.5.2-1.3\n'); } if (deb_check(prefix: 'mhonarc', release: '3.1', reference: '2.5.14-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian 3.1.\nUpgrade to mhonarc_2.5.14-1\n'); } if (deb_check(prefix: 'mhonarc', release: '2.2', reference: '2.4.4-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian potato.\nUpgrade to mhonarc_2.4.4-1.3\n'); } if (deb_check(prefix: 'mhonarc', release: '3.0', reference: '2.5.2-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhonarc is vulnerable in Debian woody.\nUpgrade to mhonarc_2.5.2-1.3\n'); } if (w) { security_hole(port: 0, data: desc); } <758 )8   P   ,  vK37lBsVIշ =46lzUyhzEMsA{ ZQ w- m;ld &UaCW502kM]}m[wmiفuX+u0`8}XgљzۯjjY̸Y&h8i5u`iז= gCOvғ׃1Nf/qr/;3&X ^SǑvk&y`+<*8!Z4Q =czMZtisǰy跏bmܳ#(5NFk>`fB(H j`JGA)mOaTG:`,CW}Q'ۏÙ OS'[vW'[ӛ 9՝/;rGf@m_ŷAv۞;m@mFg̕v[O+Dڜ=9; ,/nv_a<76]_+9|n|Lg JFJFXbbH # This script was automatically generated from the dsa-222 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf package that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the \'lp\' user if the pdftops program is part of the print filter. For the current stable distribution (woody) this problem has been fixed in version 1.00-3.1. For the old stable distribution (potato) this problem has been fixed in version 0.90-8.1. For the unstable distribution (sid) this problem has been fixed in version 2.01-2. We recommend that you upgrade your xpdf package. Solution : http://www.debian.org/security/2003/dsa-222 Risk factor : High'; if (description) { script_id(15059); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "222"); script_cve_id("CVE-2002-1384"); script_bugtraq_id(6475); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA222] DSA-222-1 xpdf"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-222-1 xpdf"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xpdf', release: '2.2', reference: '0.90-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf is vulnerable in Debian 2.2.\nUpgrade to xpdf_0.90-8.1\n'); } if (deb_check(prefix: 'xpdf', release: '3.0', reference: '1.00-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf is vulnerable in Debian 3.0.\nUpgrade to xpdf_1.00-3.1\n'); } if (deb_check(prefix: 'xpdf-common', release: '3.0', reference: '1.00-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-common is vulnerable in Debian 3.0.\nUpgrade to xpdf-common_1.00-3.1\n'); } if (deb_check(prefix: 'xpdf-reader', release: '3.0', reference: '1.00-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-reader is vulnerable in Debian 3.0.\nUpgrade to xpdf-reader_1.00-3.1\n'); } if (deb_check(prefix: 'xpdf-utils', release: '3.0', reference: '1.00-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-utils is vulnerable in Debian 3.0.\nUpgrade to xpdf-utils_1.00-3.1\n'); } if (deb_check(prefix: 'xpdf', release: '3.1', reference: '2.01-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf is vulnerable in Debian 3.1.\nUpgrade to xpdf_2.01-2\n'); } if (deb_check(prefix: 'xpdf', release: '2.2', reference: '0.90-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf is vulnerable in Debian potato.\nUpgrade to xpdf_0.90-8.1\n'); } if (deb_check(prefix: 'xpdf', release: '3.0', reference: '1.00-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf is vulnerable in Debian woody.\nUpgrade to xpdf_1.00-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } PamzF6Fnߪ!     ,    ,   # This script was automatically generated from the dsa-225 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A security vulnerability has been confirmed to exist in Apache Tomcat 4.0.x releases, which allows to use a specially crafted URL to return the unprocessed source of a JSP page, or, under special circumstances, a static resource which would otherwise have been protected by a security constraint, without the need for being properly authenticated. This is based on a variant of the exploit that was identified as CVE-2002-1148. For the current stable distribution (woody) this problem has been fixed in version 4.0.3-3woody2. The old stable distribution (potato) does not contain tomcat packages. For the unstable distribution (sid) this problem does not exist in the current version 4.1.16-1. We recommend that you upgrade your tomcat packages. Solution : http://www.debian.org/security/2003/dsa-225 Risk factor : High'; if (description) { script_id(15062); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "225"); script_cve_i JFJFXbbH JFJFXbbH # This script was automatically generated from the dsa-223 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A security issue has been discovered by Daniel de Rauglaudre, upstream author of geneweb, a genealogical software with web interface. It runs as a daemon on port 2317 by default. Paths are not properly sanitized, so a carefully crafted URL lead geneweb to read and display arbitrary files of the system it runs on. For the current stable distribution (woody) this problem has been fixed in version 4.06-2. The old stable distribution (potato) is not affected. For the unstable distribution (sid) this problem has been fixed in version 4.09-1. We recommend that you upgrade your geneweb package. Solution : http://www.debian.org/security/2003/dsa-223 Risk factor : High'; if (description) { script_id(15060); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "223"); script_cve_id("CVE-2002-1390"); script_bugtraq_id(6549); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA223] DSA-223-1 geneweb"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-223-1 geneweb"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'geneweb', release: '3.0', reference: '4.06-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package geneweb is vulnerable in Debian 3.0.\nUpgrade to geneweb_4.06-2\n'); } if (deb_check(prefix: 'gwtp', release: '3.0', reference: '4.06-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gwtp is vulnerable in Debian 3.0.\nUpgrade to gwtp_4.06-2\n'); } if (deb_check(prefix: 'geneweb', release: '3.1', reference: '4.09-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package geneweb is vulnerable in Debian 3.1.\nUpgrade to geneweb_4.09-1\n'); } if (deb_check(prefix: 'geneweb', release: '3.0', reference: '4.06-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package geneweb is vulnerable in Debian woody.\nUpgrade to geneweb_4.06-2\n'); } if (w) { security_hole(port: 0, data: desc); }  PG%{~   0   ,    @   ,  R JFJFXbbH # This script was automatically generated from the dsa-226 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' iDEFENSE discovered an integer overflow in the pdftops filter from the xpdf and xpdf-i packages that can be exploited to gain the privileges of the target user. This can lead to gaining unauthorized access to the \'lp\' user if the pdftops program is part of the print filter. For the current stable distribution (woody) xpdf-i is only a dummy package and the problem was fixed in xpdf already. For the old stable distribution (potato) this problem has been fixed in version 0.90-8.1. For the unstable distribution (sid) this problem has been fixed in version 2.01-2. We recommend that you upgrade your xpdf-i package. Solution : http://www.debian.org/security/2003/dsa-226 Risk factor : High'; if (description) { script_id(15063); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "226"); script_cve_id("CVE-2002-1384"); script_bugtraq_id(6475); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA226] DSA-226-1 xpdf-i"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-226-1 xpdf-i"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xpdf-i', release: '2.2', reference: '0.90-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-i is vulnerable in Debian 2.2.\nUpgrade to xpdf-i_0.90-8.1\n'); } if (deb_check(prefix: 'xpdf-i', release: '3.0', reference: '2.01-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-i is vulnerable in Debian 3.0.\nUpgrade to xpdf-i_2.01-2\n'); } if (deb_check(prefix: 'xpdf-i', release: '2.2', reference: '0.90-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpdf-i is vulnerable in Debian potato.\nUpgrade to xpdf-i_0.90-8.1\n'); } if (w) { security_hole(port: 0, data: desc); } > JFJFXbbH d("CVE-2002-1394"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA225] DSA-225-1 tomcat4"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-225-1 tomcat4"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libtomcat4-java', release: '3.0', reference: '4.0.3-3woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libtomcat4-java is vulnerable in Debian 3.0.\nUpgrade to libtomcat4-java_4.0.3-3woody2\n'); } if (deb_check(prefix: 'tomcat4', release: '3.0', reference: '4.0.3-3woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat4 is vulnerable in Debian 3.0.\nUpgrade to tomcat4_4.0.3-3woody2\n'); } if (deb_check(prefix: 'tomcat4-webapps', release: '3.0', reference: '4.0.3-3woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat4-webapps is vulnerable in Debian 3.0.\nUpgrade to tomcat4-webapps_4.0.3-3woody2\n'); } if (deb_check(prefix: 'tomcat4', release: '3.0', reference: '4.0.3-3woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat4 is vulnerable in Debian woody.\nUpgrade to tomcat4_4.0.3-3woody2\n'); } if (w) { security_hole(port: 0, data: desc); } VP!   x  ,L  Hx,20 X$?\ڗ9-s-Cx<^~_ks݇(,(OH Oy\4v\q$vlXJ?SQGS2-!GB~]([K îBo'XV_YDKU(uD3~^? jVL5GV3)ȼ6g1CMf5k7+ڲbwG+fq[X"9N`;TZzewS]IoXR* H~hr33<ƼQ2b@5zFa˿C%%P1;{V"); script_name(english: "[DSA227] DSA-227-1 openldap2"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-227-1 openldap2"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ldap-gateways', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ldap-gateways is vulnerable in Debian 3.0.\nUpgrade to ldap-gateways_2.0.23-6.3\n'); } if (deb_check(prefix: 'ldap-utils', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ldap-utils is vulnerable in Debian 3.0.\nUpgrade to ldap-utils_2.0.23-6.3\n'); } if (deb_check(prefix: 'libldap2', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libldap2 is vulnerable in Debian 3.0.\nUpgrade to libldap2_2.0.23-6.3\n'); } if (deb_check(prefix: 'libldap2-dev', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libldap2-dev is vulnerable in Debian 3.0.\nUpgrade to libldap2-dev_2.0.23-6.3\n'); } if (deb_check(prefix: 'slapd', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slapd is vulnerable in Debian 3.0.\nUpgrade to slapd_2.0.23-6.3\n'); } if (deb_check(prefix: 'openldap2', release: '3.1', reference: '2.0.27-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openldap2 is vulnerable in Debian 3.1.\nUpgrade to openldap2_2.0.27-3\n'); } if (deb_check(prefix: 'openldap2', release: '3.0', reference: '2.0.23-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package openldap2 is vulnerable in Debian woody.\nUpgrade to openldap2_2.0.23-6.3\n'); } if (w) { security_hole(port: 0, data: desc); } V> 5rz   P  ,$   O4Jy#ˆ4qFYՋi3{):L~=ނʾj_Q@QkQ.T%vT䶷ឋ~ÓϿ/qdXTu 4,6X.]:Zu7m>m6غl6ZЈsR&Otb:ܻbxAX̬4 .<8T{Fl~ʕ]rl?nK|5ee˵Drޛc_! ר).Y%\ ^̸z4[bq5883Hmנ7}.xw4ո}9"=òGF̰=@ smP}I>Ĥ׹I!~1eze~|A?q.}i^'Y(sKz *X`V2_,ANɀ{ ٨5npP4sYcq/A煴;.'\q']JFJFXbbH # This script was automatically generated from the dsa-228 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ilia Alshanetsky discovered several buffer overflows in libmcrypt, a decryption and encryption library, that originates from improper or lacking input validation. By passing input which is longer than expected to a number of functions (multiple functions are affected) the user can successfully make libmcrypt crash and may be able to insert arbitrary, malicious code which will be executed under the user libmcrypt runs as, e.g. inside a web server. Another vulnerability exists in the way libmcrypt loads algorithms via libtool. When different algorithms are loaded dynamically, each time an algorithm is loaded a small part of memory is leaked. In a persistent environment (web server) this could lead to a memory exhaustion attack that will exhaust all available memory by launching repeated requests at an application utilizing the mcrypt library. For the current stable distribution (woody) these problems have been fixed in version 2.5.0-1woody1. The old stable distribution (potato) does not contain libmcrypt packages. For the unstable distribution (sid) these problems have been fixed in version 2.5.5-1. We recommend that you upgrade your libmcrypt packages. Solution : http://www.debian.org/security/2003/dsa-228 Risk factor : High'; if (description) { script_id(15065); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "228"); script_cve_id("CVE-2003-0031", "CVE-2003-0032"); script_bugtraq_id(6510, 6512); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA228] DSA-228-1 libmcrypt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-228-1 libmcrypt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libmcrypt-dev', release: '3.0', reference: '2.5.0-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmcrypt-dev is vulnerable in Debian 3.0.\nUpgrade to libmcrypt-dev_2.5.0-1woody1\n'); } if (deb_check(prefix: 'libmcrypt4', release: '3.0', reference: '2.5.0-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmcrypt4 is vulnerable in Debian 3.0.\nUpgrade to libmcrypt4_2.5.0-1woody1\n'); } if (deb_check(prefix: 'libmcrypt', release: '3.1', reference: '2.5.5-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmcrypt is vulnerable in Debian 3.1.\nUpgrade to libmcrypt_2.5.5-1\n'); } if (deb_check(prefix: 'libmcrypt', release: '3.0', reference: '2.5.0-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmcrypt is vulnerable in Debian woody.\nUpgrade to libmcrypt_2.5.0-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } ,FHP_LaserJet_52   `  ,t  pZVe"); script_name(english: "[DSA229] DSA-229-1 imp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-229-1 imp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'imp', release: '2.2', reference: '2.2.6-0.potato.5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian 2.2.\nUpgrade to imp_2.2.6-0.potato.5.1\n'); } if (deb_check(prefix: 'imp', release: '3.0', reference: '2.2.6-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian 3.0.\nUpgrade to imp_2.2.6-5.1\n'); } if (deb_check(prefix: 'imp', release: '3.1', reference: '2.2.6-7')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian 3.1.\nUpgrade to imp_2.2.6-7\n'); } if (deb_check(prefix: 'imp', release: '2.2', reference: '2.2.6-0.potato.5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian potato.\nUpgrade to imp_2.2.6-0.potato.5.1\n'); } if (deb_check(prefix: 'imp', release: '3.0', reference: '2.2.6-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imp is vulnerable in Debian woody.\nUpgrade to imp_2.2.6-5.1\n'); } if (w) { security_hole(port: 0, data: desc); } -+f ْ2e   `  ,4  0-9YՒ[Բԭ|uu~zGC9 tՒ \Ջi(UZϧ-_ce$紈uvղjYh{>U@v#b֮?w!KWֿѤT`c@%/o/.c'pK姛{Ec࿼3D-30XΞu@4A':$PU8+L_H9(sVSV/V\Aq)+q"uЫU.xhݮŝ&ܲ#L(;bYBUlu`i%;bD?>n]gVQKw JFJFXbbH # This script was automatically generated from the dsa-230 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Two vulnerabilities have been discovered in Bugzilla, a web-based bug tracking system, by its authors. The Common Vulnerabilities and Exposures Project identifies the following vulnerabilities: The provided data collection script intended to be run as a nightly cron job changes the permissions of the data/mining directory to be world-writable every time it runs. This would enable local users to alter or delete the collected data. The default .htaccess scripts provided by checksetup.pl do not block access to backups of the localconfig file that might be created by editors such as vi or emacs (typically these will have a .swp or ~ suffix). This allows an end user to download one of the backup copies and potentially obtain your database password. This does not affect the Debian installation because there is no .htaccess as all data file aren\'t under the CGI path as they are on the standard Bugzilla package. Additionally, the configuration is in /etc/bugzilla/localconfig and hence outside of the web directory. For the current stable distribution (woody) these problems have been fixed in version 2.14.2-0woody4. The old stable distribution (potato) does not contain a Bugzilla package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your bugzilla packages. Solution : http://www.debian.org/security/2003/dsa-230 Risk factor : High'; if (description) { script_id(15067); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "230"); script_cve_id("CVE-2003-0012", "CVE-2003-0013"); script_bugtraq_id(6501, 6502); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA230] DSA-230-1 bugzilla"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-230-1 bugzilla"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'bugzilla', release: '3.0', reference: '2.14.2-0woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla is vulnerable in Debian 3.0.\nUpgrade to bugzilla_2.14.2-0woody4\n'); } if (deb_check(prefix: 'bugzilla-doc', release: '3.0', reference: '2.14.2-0woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla-doc is vulnerable in Debian 3.0.\nUpgrade to bugzilla-doc_2.14.2-0woody4\n'); } if (deb_check(prefix: 'bugzilla', release: '3.0', reference: '2.14.2-0woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bugzilla is vulnerable in Debian woody.\nUpgrade to bugzilla_2.14.2-0woody4\n'); } if (w) { security_hole(port: 0, data: desc); } `6 n>fj/   8  ,     ,  (xW!2nV] ]Yon2*/Wbo_"); script_name(english: "[DSA231] DSA-231-1 dhcp3"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-231-1 dhcp3"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'dhcp3-client', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3-client is vulnerable in Debian 3.0.\nUpgrade to dhcp3-client_3.0+3.0.1rc9-2.1\n'); } if (deb_check(prefix: 'dhcp3-common', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3-common is vulnerable in Debian 3.0.\nUpgrade to dhcp3-common_3.0+3.0.1rc9-2.1\n'); } if (deb_check(prefix: 'dhcp3-dev', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3-dev is vulnerable in Debian 3.0.\nUpgrade to dhcp3-dev_3.0+3.0.1rc9-2.1\n'); } if (deb_check(prefix: 'dhcp3-relay', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3-relay is vulnerable in Debian 3.0.\nUpgrade to dhcp3-relay_3.0+3.0.1rc9-2.1\n'); } if (deb_check(prefix: 'dhcp3-server', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3-server is vulnerable in Debian 3.0.\nUpgrade to dhcp3-server_3.0+3.0.1rc9-2.1\n'); } if (deb_check(prefix: 'dhcp3', release: '3.1', reference: '3.0+3.0.1rc11-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3 is vulnerable in Debian 3.1.\nUpgrade to dhcp3_3.0+3.0.1rc11-1\n'); } if (deb_check(prefix: 'dhcp3', release: '3.0', reference: '3.0+3.0.1rc9-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dhcp3 is vulnerable in Debian woody.\nUpgrade to dhcp3_3.0+3.0.1rc9-2.1\n'); } if (w) { security_hole(port: 0, data: desc); }  {h/m=   @   ,    ,`  X  ,,  $  ,    ,   $v # This script was automatically generated from the dsa-238 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a v JFJFXbbH JFJFXbbH  JFJFXbbH JFJFXbbH cJFJFXbbH # This script was automatically generated from the dsa-233 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Stefan Esser discovered a problem in cvs, a concurrent versions system, which is used for many Free Software projects. The current version contains a flaw that can be used by a remote attacker to execute arbitrary code on the CVS server under the user id the CVS server runs as. Anonymous read-only access is sufficient to exploit this problem. For the stable distribution (woody) this problem has been fixed in version 1.11.1p1debian-8.1. For the old stable distribution (potato) this problem has been fixed in version 1.10.7-9.2. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your cvs package immediately. Solution : http://www.debian.org/security/2003/dsa-233 Risk factor : High'; if (description) { script_id(15070); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "233"); script_cve_id("CVE-2003-0015"); script_xref(name: "CERT", value: "650937"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA233] DSA-233-1 cvs"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-233-1 cvs"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'cvs', release: '2.2', reference: '1.10.7-9.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs is vulnerable in Debian 2.2.\nUpgrade to cvs_1.10.7-9.2\n'); } if (deb_check(prefix: 'cvs-doc', release: '2.2', reference: '1.10.7-9.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs-doc is vulnerable in Debian 2.2.\nUpgrade to cvs-doc_1.10.7-9.2\n'); } if (deb_check(prefix: 'cvs', release: '3.0', reference: '1.11.1p1debian-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs is vulnerable in Debian 3.0.\nUpgrade to cvs_1.11.1p1debian-8.1\n'); } if (deb_check(prefix: 'cvs', release: '2.2', reference: '1.10.7-9.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs is vulnerable in Debian potato.\nUpgrade to cvs_1.10.7-9.2\n'); } if (deb_check(prefix: 'cvs', release: '3.0', reference: '1.11.1p1debian-8.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package cvs is vulnerable in Debian woody.\nUpgrade to cvs_1.11.1p1debian-8.1\n'); } if (w) { security_hole(port: 0, data: desc); } o13[1dig+^'  =?R=?R  oBR g QR R|R ] ZR  dR G `avirt_gateway_telnet.naslJserv_css.nasldebian_DSA-134.nasldebian_DSA-635.naslbofra_detect.naslDDI_IPSwitch-IMail-SMTP-Buffer-Overflow.nasl]#T   >'T   4-T ^  T   dT l x BT ` T  H LU 0 }aU  lU   vU $  ~U i  ?U   ȲU T ?U ^x U _ ` /V H )8V @ ( [RV F  uqV   V >  Y a p Y H P Y 8 Y  B Z   ]Z sZ Z a?Z b @[ *[  pM[ Xļ[  @<[  ([[  [ f \ #\ 8\ ' P\  t\ Wr\  J\ bh \ Pd\  0N6]  V]  W] Gm]  ]  ]  ] x] ( `24^  @:^ c(DP^ c debian_DSA-140.nasldebian_DSA-396.naslcgicso_command_execution.nasldebian_DSA-081.nasldebian_DSA-327.nasldebian_DSA-582.nasldebian_DSA-012.nasldebian_DSA-268.nasldebian_DSA-513.naslDDI_ws_ftp-server-cpwd-bo.naslcodethatshoppingcart_sql.naslDDI_GlobalASA_Retrieval.nasldebian_DSA-454.nasldebian_DSA-395.naslabyss_msdos_dos.nasldebian_DSA-640.naslallegro_dos.nasldebian_DSA-080.nasldebian_DSA-326.nasldebian_DSA-581.naslbmforum_xss.naslcgi_rb.nasldebian_DSA-011.nasldebian_DSA-267.nasldebian_DSA-512.naslcgicso_cross_site_scripting.nasldebian_DSA-453.nasldebian_DSA-139.nasldebian_DSA-394.nasldebian_DSA-325.nasldebian_DSA-580.nasldebian_DSA-266.nasldebian_DSA-511.nasldebian_DSA-452.naslavirt_proxy_overflow.nasldebian_DSA-138.nasldebian_DSA-393.nasldebian_DSA-639.naslDDI_JavaServer_Default.nasldebian_DSA-079.nasldebian_DSA-324.naslcalendar_scheduler_xss.nasldebian_DSA-265.nasldebian_DSA-510.naslOmnihttpd_pro_source_disclosure.nasldebian_DSA-451.naslcompaq_web_mgmt_password.nasldebian_DSA-137.naslDDI_MPEiX_FTP_Accounts.nasldebian_DSA-392.naslddicgi.nasldebian_DSA-638.naslaardvark_422_remote_file_include.nasldebian_DSA-078.nasldebian_DSA-323.nasldebian_DSA-579.naslaix.incDDI_Unprotected_SiteScope.nasldebian_DSA-264.naslaspdev_imgtag.naslDDI_Enhydra_Default.naslaventail_asap.naslathena_web_remote_cmd_exec.nasldebian_DSA-450.nasldebian_DSA-136.nasldebian_DSA-391.nasldebian_DSA-637.naslclevercopy_path_disclosure_xss.naslboozt_admin_overflow.nasldebian_DSA-077.nasldb2_dos.nasldebian_DSA-322.nasldebian_DSA-578.nasldebian_DSA-263.nasldebian_DSA-509.naslbrowsegate_http_overflows.naslanaconda_doublenull.nasldebian_DSA-135.nasldcetest.naslDDI_Netware_Management_Portal.nasldebian_DSA-390.naslalcatel_backdoor_switch.nasldebian_DSA-636.nasldebian_DSA-076.naslDDI_Directory_Scanner.nasldebian_DSA-321.nasldebian_DSA-577.nasldebian_DSA-262.n=?R  oBR g QR R|R ] ZR  dR G `avirt_gateway_telnet.naslJserv_css.nasldebian_DSA-134.nasldebian_DSA-635.naslbofra_detect.naslDDI_IPSwitch-IMail-SMTP-Buffer-Overflow.nasl \L_GA7L   8   ,    ,h   \  ,0  (  ,    ,    ,    "JFJFXbbH JFJFXbbH !JFJFXbbH JFJFXbbH ictim in an e-mail, a webpage or files on a network filesystem or other untrusted source. By carefully crafting such data an attacker might be able to execute arbitrary commands on a vulnerable system using the victim\'s account and privileges. The KDE Project is not aware of any existing exploits of these vulnerabilities. The patches also provide better s JFJFXbbH !"%JFJFXbbH  "JFJFXbbH JFJFXbbH !JFJFXbbH JFJFXbbH ictim in an e-mail, a webpage or files on a network filesystem or other untrusted source. By carefully crafting such data an attacker might be able to execute arbitrary commands on a vulnerable system using the victim\'s account and privileges. The KDE Project is not aware of any existing exploits of these vulnerabilities. The patches also provide better safe guards and check data from untrusted sources more strictly in multiple places. For the current stable distribution (woody), these problems have been fixed in version 2.2.2-5.2. The old stable distribution (potato) does not contain KDE packages. For the unstable distribution (sid), these problems will most probably not be fixed but new packages for KDE 3.1 for sid are expected for this year. We recommend that you upgrade your KDE packages. Solution : http://www.debian.org/security/2003/dsa-238 Risk factor : High'; if (description) { script_id(15075); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "238"); script_cve_id("CVE-2002-1393"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA238] DSA-238-1 kdepim"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-238-1 kdepim"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'kandy', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kandy is vulnerable in Debian 3.0.\nUpgrade to kandy_2.2.2-5.2\n'); } if (deb_check(prefix: 'kdepim-dev', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdepim-dev is vulnerable in Debian 3.0.\nUpgrade to kdepim-dev_2.2.2-5.2\n'); } if (deb_check(prefix: 'kdepim-libs', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdepim-libs is vulnerable in Debian 3.0.\nUpgrade to kdepim-libs_2.2.2-5.2\n'); } if (deb_check(prefix: 'korganizer', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package korganizer is vulnerable in Debian 3.0.\nUpgrade to korganizer_2.2.2-5.2\n'); } if (deb_check(prefix: 'kpilot', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kpilot is vulnerable in Debian 3.0.\nUpgrade to kpilot_2.2.2-5.2\n'); } if (deb_check(prefix: 'kdepim', release: '3.0', reference: '2.2.2-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdepim is vulnerable in Debian woody.\nUpgrade to kdepim_2.2.2-5.2\n'); } if (w) { security_hole(port: 0, data: desc); } (l@?IVW!tS4     ,    ,   +Pֱ~Ă.>@.Ӷό?]h B#QN?tލ7W:)-_O 8s#rI%ubQ;pNM90͓vCr]o>oy>x/P(M`; oW.o\3g]; VdPLػ0 LCS;]!7/,_yhƦ^>]9Ὗ nM&$_8w3&0"&X`|m،[^㱖uIOܘ/T\1r*ijJOGC z^$*ɣCZ2.Ba]n 4@9MC61 m[?44F3yK6Fя}|PﬕкI=FHfrAn$%|oxpnQ6%2`#LnWZ Kҡج0 JFJFXbbH $%mJFJFXbbH # This script was automatically generated from the dsa-244 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Dan Jacobson noticed a problem in noffle, an offline news server, that leads to a segmentation fault. It is not yet clear whether this problem is exploitable. However, if it is, a remote attacker could trigger arbitrary code execution under the user that calls noffle, probably news. For the stable distribution (woody) this problem has been fixed in version 1.0.1-1.1. The old stable distribution (potato) does not contain a noffle package. For the unstable distribution (sid) this problem has been fixed in version 1.1.2-1. We recommend that you upgrade your noffle package. Solution : http://www.debian.org/security/2003/dsa-244 Risk factor : High'; if (description) { script_id(15081); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "244"); script_cve_id("CVE-2003-0037"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA244] DSA-244-1 noffle"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-244-1 noffle"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'noffle', release: '3.0', reference: '1.0.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package noffle is vulnerable in Debian 3.0.\nUpgrade to noffle_1.0.1-1.1\n'); } if (deb_check(prefix: 'noffle', release: '3.1', reference: '1.1.2-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package noffle is vulnerable in Debian 3.1.\nUpgrade to noffle_1.1.2-1\n'); } if (deb_check(prefix: 'noffle', release: '3.0', reference: '1.0.1-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package noffle is vulnerable in Debian woody.\nUpgrade to noffle_1.0.1-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } $[%̞6   H  ,  8+v^·-Rq6g]}M[or7U6}٦0946|_39{70/ٻ#W:[9NoX Oj3kz(LWTff $pʹUg"R3D$fqyt0aL%z6(Lԉ?2:ǦmΒ<|V'idGM>Dݹ.SQ>uP+ٻ{c*}5q{!Qq=?o;۟ ZR_tUP$KخK6`{>3 2`Zwsq"/3ͷȌjjwj%. Z;ҝT ߽mMy 3FO Gcid>)LvQ֩yɅkn KOb6NB>*l30*4FͱqwKÔq6#)JTh:2M:7Eۭ1AL4 ,圛yY"2GEdž2NŃ\gJ $! -bdsT&2 )y$^t 0Q-7WT>F2xNf-$-W%c&;Q`c&KA]{Tym1y/] oI! \yi`6rq(sLa.&Iydr1.'a 9Uo7N lmoOAGF!/wjw/Vp J(.sG R -< ,{Nʻy.>n&tErsqe4JxW!29;}S}QQb^1~R~V^n͸8ٔi~=E2C"mSt[GVdfxU =t~Z,-rxL 83%"I D(̈a0&Sy]Ыt`[T^t==@B!%KO(Ss^[fG;lPMG91ÉPD8  SX$ˆ&Z1!5$CgT,ZK2lU@YIE?h ^m JFJFXbbH # This script was automatically generated from the dsa-246 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The developers of tomcat discovered several problems in tomcat version 3.x. The Common Vulnerabilities and Exposures project identifies the following problems: For the stable distribution (woody) this problem has been fixed in version 3.3a-4woody.1. The old stable distribution (potato) does not contain tomcat packages. For the unstable distribution (sid) this problem has been fixed in version 3.3.1a-1. We recommend that you upgrade your tomcat package. Solution : http://www.debian.org/security/2003/dsa-246 Risk factor : High'; if (description) { script_id(15083); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "246"); script_cve_id("CVE-2003-0042", "CVE-2003-0043", "CVE-2003-0044"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA246] DSA-246-1 tomcat"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-246-1 tomcat"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libapache-mod-jk', release: '3.0', reference: '3.3a-4woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache-mod-jk is vulnerable in Debian 3.0.\nUpgrade to libapache-mod-jk_3.3a-4woody1\n'); } if (deb_check(prefix: 'tomcat', release: '3.0', reference: '3.3a-4woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat is vulnerable in Debian 3.0.\nUpgrade to tomcat_3.3a-4woody1\n'); } if (deb_check(prefix: 'tomcat', release: '3.1', reference: '3.3.1a-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat is vulnerable in Debian 3.1.\nUpgrade to tomcat_3.3.1a-1\n'); } if (deb_check(prefix: 'tomcat', release: '3.0', reference: '3.3a-4woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tomcat is vulnerable in Debian woody.\nUpgrade to tomcat_3.3a-4woody.1\n'); } if (w) { security_hole(port: 0, data: desc); } Fhp_LaserJet_13   p   ,d  `&Uy3{v6V솞#<,ߴ kK3B7?0N@,geG A {VP|@%\8G ˦y[[ԴHbO. +F}-hHub j&u1)y@hi 9f1P ozEj$ަAp:3φk8(FH,vK=z@6,V'dQJؚ'4z> )2 g𨰊3ӂZ%0II-$1g`U#v{+e0$2 n%% !lkkI>HG;TAiOȖ5~S-ɬ,d>ADPHam# J2r`T\o -ƹ߲mZ%0z9rZ10g75I1̶=:Q5 ;<1 eAl!o F+ `s# JFJFXbbH # This script was automatically generated from the dsa-247 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The developers of courier, an integrated user side mail server, discovered a problem in the PostgreSQL auth module. Not all potentially malicious characters were sanitized before the username was passed to the PostgreSQL engine. An attacker could inject arbitrary SQL commands and queries exploiting this vulnerability. The MySQL auth module is not affected. For the stable distribution (woody) this problem has been fixed in version 0.37.3-3.3. The old stable distribution (potato) does not contain courier packages. For the unstable distribution (sid) this problem has been fixed in version 0.40.2-3. We recommend that you upgrade your courier-authpostgresql package. Solution : http://www.debian.org/security/2003/dsa-247 Risk factor : High'; if (description) { script_id(15084); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "247"); script_cve_id("CVE-2003-0040"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA247] DSA-247-1 courier-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-247-1 courier-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'courier-authpostgresql', release: '3.0', reference: '0.37.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-authpostgresql is vulnerable in Debian 3.0.\nUpgrade to courier-authpostgresql_0.37.3-3.3\n'); } if (deb_check(prefix: 'courier-imap-ssl', release: '3.0', reference: '1.4.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-imap-ssl is vulnerable in Debian 3.0.\nUpgrade to courier-imap-ssl_1.4.3-3.3\n'); } if (deb_check(prefix: 'courier-mta-ssl', release: '3.0', reference: '0.37.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-mta-ssl is vulnerable in Debian 3.0.\nUpgrade to courier-mta-ssl_0.37.3-3.3\n'); } if (deb_check(prefix: 'courier-pop-ssl', release: '3.0', reference: '0.37.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-pop-ssl is vulnerable in Debian 3.0.\nUpgrade to courier-pop-ssl_0.37.3-3.3\n'); } if (deb_check(prefix: 'courier-ssl', release: '3.0', reference: '0.37.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier-ssl is vulnerable in Debian 3.0.\nUpgrade to courier-ssl_0.37.3-3.3\n'); } if (deb_check(prefix: 'courier', release: '3.1', reference: '0.40.2-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier is vulnerable in Debian 3.1.\nUpgrade to courier_0.40.2-3\n'); } if (deb_check(prefix: 'courier', release: '3.0', reference: '0.37.3-3.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package courier is vulnerable in Debian woody.\nUpgrade to courier_0.37.3-3.3\n'); } if (w) { security_hole(port: 0, data: desc); } p'<>鋱}G     ,  uL8X'*ZǤ:u. ;_x~#uĹA<>؇?CEQHT}@ha?ZE"); script_name(english: "[DSA248] DSA-248-1 hypermail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-248-1 hypermail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'hypermail', release: '2.2', reference: '2.0b25-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hypermail is vulnerable in Debian 2.2.\nUpgrade to hypermail_2.0b25-1.1\n'); } if (deb_check(prefix: 'hypermail', release: '3.0', reference: '2.1.3-2.0')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hypermail is vulnerable in Debian 3.0.\nUpgrade to hypermail_2.1.3-2.0\n'); } if (deb_check(prefix: 'hypermail', release: '3.1', reference: '2.1.6-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hypermail is vulnerable in Debian 3.1.\nUpgrade to hypermail_2.1.6-1\n'); } if (deb_check(prefix: 'hypermail', release: '2.2', reference: '2.0b25-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hypermail is vulnerable in Debian potato.\nUpgrade to hypermail_2.0b25-1.1\n'); } if (deb_check(prefix: 'hypermail', release: '3.0', reference: '2.1.3-2.0')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package hypermail is vulnerable in Debian woody.\nUpgrade to hypermail_2.1.3-2.0\n'); } if (w) { security_hole(port: 0, data: desc); } =%b7PT)      ,  x%7'oD  I܊<86–QQdIzlEBt+%")WuiAA7%%#D# BDJI DJ2"nyz쐜whQp+=gFҨD#9@ >X\B gqT "`_@-0G$w;ZW^0RGS$p L][lREեpG|!.'qlu>e B/ B4.zDt vT~4a 9ځqeD~5;JQu %IRb}s_]}᝖R4#=DQL\Qnrjj [M۷qv*r8NFrV&IL~N}p&K+ N_VѠ۝/hSo.dJ5iqEAPiu,fk0I~ʆG{ѠN9? =q>J^3 {=ta`k"RGV"$HRA <=֒G$e"); script_name(english: "[DSA249] DSA-249-1 w3mmee"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-249-1 w3mmee"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'w3mmee', release: '3.0', reference: '0.3.p23.3-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee is vulnerable in Debian 3.0.\nUpgrade to w3mmee_0.3.p23.3-1.5\n'); } if (deb_check(prefix: 'w3mmee-img', release: '3.0', reference: '0.3.p23.3-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee-img is vulnerable in Debian 3.0.\nUpgrade to w3mmee-img_0.3.p23.3-1.5\n'); } if (deb_check(prefix: 'w3mmee', release: '3.1', reference: '0.3.p24')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee is vulnerable in Debian 3.1.\nUpgrade to w3mmee_0.3.p24\n'); } if (deb_check(prefix: 'w3mmee', release: '3.0', reference: '0.3.p23.3-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee is vulnerable in Debian woody.\nUpgrade to w3mmee_0.3.p23.3-1.5\n'); } if (w) { security_hole(port: 0, data: desc); } RTK%@F?b   H   ,   (d # This script was automatically generated from the dsa-251 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Hironori Sakamoto, one of the w3m developers, found two security vulnerabilities in w3m and associated programs. The w3m browser does not properly escape HTML tags in frame contents and img alt attributes. A malicious HTML frame or img alt attribute may deceive a user to send their local cookies which are used for configuration. The information is not leaked automatically, though. For the stable distribution (woody) these problems have been fixed in version 0.3-2.4. The old stable distribution (potato) is not affected by these problems. For the unstable distribution (sid) these problems have been fixed in version 0.3.2.2-1 and later. We recommend that you upgrade your w3m and w3m-ssl packages. Solution : http://www.debian.org/security/2003/dsa-251 Risk factor : High'; if (description) { script_id(15088); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "251"); script_cve_id("CVE-2002-1335", "CVE-2002-1348"); script_description JFJFXbbH # This script was automatically generated from the dsa-250 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Hironori Sakamoto, one of the w3m developers, found two security vulnerabilities in w3m and associated programs. The w3m browser does not properly escape HTML tags in frame contents and img alt attributes. A malicious HTML frame or img alt attribute may deceive a user to send their local cookies which are used for configuration. The information is not leaked automatically, though. For the stable distribution (woody) these problems have been fixed in version 0.3.p23.3-1.5. Please note that the update also contains an important patch to make the program work on the powerpc platform again. The old stable distribution (potato) is not affected by these problems. For the unstable distribution (sid) these problems have been fixed in version 0.3.p24.17-3 and later. We recommend that you upgrade your w3mmee-ssl packages. Solution : http://www.debian.org/security/2003/dsa-250 Risk factor : High'; if (description) { script_id(15087); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "250"); script_cve_id("CVE-2002-1335", "CVE-2002-1348"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA250] DSA-250-1 w3mmee-ssl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-250-1 w3mmee-ssl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'w3mmee-ssl', release: '3.0', reference: '0.3.p23.3-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee-ssl is vulnerable in Debian 3.0.\nUpgrade to w3mmee-ssl_0.3.p23.3-1.5\n'); } if (deb_check(prefix: 'w3mmee-ssl', release: '3.1', reference: '0.3.p24')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee-ssl is vulnerable in Debian 3.1.\nUpgrade to w3mmee-ssl_0.3.p24\n'); } if (deb_check(prefix: 'w3mmee-ssl', release: '3.0', reference: '0.3.p23.3-1.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3mmee-ssl is vulnerable in Debian woody.\nUpgrade to w3mmee-ssl_0.3.p23.3-1.5\n'); } if (w) { security_hole(port: 0, data: desc); } 0FHP_LaserJet_P3  )    ,      ,  \UMRvEـGنGKuV{b~BR5WB-.JFJFXbbH # This script was automatically generated from the dsa-252 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in slocate, a secure locate replacement. A buffer overflow in the setgid program slocate can be used to execute arbitrary code as group slocate. This can be used to alter the slocate database. For the stable distribution (woody) this problem has been fixed in version 2.6-1.3.1. The old stable distribution (potato) is not affected by this problem. For the unstable distribution (sid) this problem has been fixed in version 2.7-1. We recommend that you upgrade your slocate package immediately. Solution : http://www.debian.org/security/2003/dsa-252 Risk factor : High'; if (description) { script_id(15089); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "252"); script_cve_id("CVE-2003-0056"); script_bugtraq_id(6676); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA252] DSA-252-1 slocate"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-252-1 slocate"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'slocate', release: '3.0', reference: '2.6-1.3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slocate is vulnerable in Debian 3.0.\nUpgrade to slocate_2.6-1.3.1\n'); } if (deb_check(prefix: 'slocate', release: '3.1', reference: '2.7-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slocate is vulnerable in Debian 3.1.\nUpgrade to slocate_2.7-1\n'); } if (deb_check(prefix: 'slocate', release: '3.0', reference: '2.6-1.3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package slocate is vulnerable in Debian woody.\nUpgrade to slocate_2.6-1.3.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH (english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA251] DSA-251-1 w3m"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-251-1 w3m"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'w3m', release: '3.0', reference: '0.3-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m is vulnerable in Debian 3.0.\nUpgrade to w3m_0.3-2.4\n'); } if (deb_check(prefix: 'w3m-img', release: '3.0', reference: '0.3-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m-img is vulnerable in Debian 3.0.\nUpgrade to w3m-img_0.3-2.4\n'); } if (deb_check(prefix: 'w3m-ssl', release: '3.0', reference: '0.3-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m-ssl is vulnerable in Debian 3.0.\nUpgrade to w3m-ssl_0.3-2.4\n'); } if (deb_check(prefix: 'w3m,', release: '3.1', reference: '0.3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m, is vulnerable in Debian 3.1.\nUpgrade to w3m,_0.3.2\n'); } if (deb_check(prefix: 'w3m,', release: '3.0', reference: '0.3-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package w3m, is vulnerable in Debian woody.\nUpgrade to w3m,_0.3-2.4\n'); } if (w) { security_hole(port: 0, data: desc); } RTK%@F?b  ,   X|  ,P  LjϨb+dǢk1:tdfjP!e9pt)\IbbrYrjY( ɽRKF\ܾFgdE鸻k!D)SY+KؐM1cOh-=`@u/'_V>&2"); script_name(english: "[DSA254] DSA-254-1 traceroute-nanog"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-254-1 traceroute-nanog"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'traceroute-nanog', release: '2.2', reference: '6.0-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package traceroute-nanog is vulnerable in Debian 2.2.\nUpgrade to traceroute-nanog_6.0-2.2\n'); } if (deb_check(prefix: 'traceroute-nanog', release: '3.0', reference: '6.1.1-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package traceroute-nanog is vulnerable in Debian 3.0.\nUpgrade to traceroute-nanog_6.1.1-1.2\n'); } if (deb_check(prefix: 'traceroute-nanog', release: '3.1', reference: '6.3.0-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package traceroute-nanog is vulnerable in Debian 3.1.\nUpgrade to traceroute-nanog_6.3.0-1\n'); } if (deb_check(prefix: 'traceroute-nanog', release: '2.2', reference: '6.0-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package traceroute-nanog is vulnerable in Debian potato.\nUpgrade to traceroute-nanog_6.0-2.2\n'); } if (deb_check(prefix: 'traceroute-nanog', release: '3.0', reference: '6.1.1-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package traceroute-nanog is vulnerable in Debian woody.\nUpgrade to traceroute-nanog_6.1.1-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } WJFJFXbbH |hLQ8xXh      ,  .}q$$SO!UD#? [̓&IMkh4:V7~q= ]Ĩ3 r3Ձxu`OU |#=NMԱ [& `)edI>:Z:v87@.͈lN9h)T]*Q'6W)np_vY_m䦈FZMw*][$38l~{RZ'U=qe?'C頋榳 ^4M;!&OPgtA|Q&xvp oi][":¿2v2Da+`+{s+Pǣ=)vrC4}[xr tv3Hn .Zn0߲>ldըA14J9p Oʇ&`cu, dae@WG4}:~k-fqPڊȼJ-JRmSM{m4 1JcJq$N;@Ս2UPPix鈾,K ]&jSzE4#iFXJ#u.*t2 npHeJCq s1ŏw亏JXlxk?bF_6ͲCy <2wNM"); script_name(english: "[DSA255] DSA-255-1 tcpdump"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-255-1 tcpdump"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tcpdump', release: '3.0', reference: '3.6.2-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian 3.0.\nUpgrade to tcpdump_3.6.2-2.3\n'); } if (deb_check(prefix: 'tcpdump', release: '3.1', reference: '3.7.1-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian 3.1.\nUpgrade to tcpdump_3.7.1-1.2\n'); } if (deb_check(prefix: 'tcpdump', release: '3.0', reference: '3.6.2-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian woody.\nUpgrade to tcpdump_3.6.2-2.3\n'); } if (w) { security_hole(port: 0, data: desc); } :VP-87x     ,  ?Kgt9/B$$B> QPL{ Tڕ؛jE0gG9몔B[6epv,_i:4hDynE<)2k9}C ѩdU8DvSaf I ćwx5:ٽOT|t0@msm-.f%oT\Arnu?Rۏy(7ww3h,|UhYYwB5-K=75**QhJvgkڪaP~bPYYTKB#bDJ3VLaż&\х/ x +O\2/Ve;.birO <1bLڀd'W`X/k2q gx:ޥ Wt$N@l{ͮK\t\W\9v\JSɅ`%uZ^w R%Ƒ W+CD9r\i~P`Lס:̝вm`R9es*u@S؜tn#TM&_jCɤ(6;J&F2D&\2)Q~&\F.x7[fa~ãf%Exb-zj ȷGo!;I z1,=~=gCĺL+ ~7d4&W-됗YLJ ox):aĔ8i9Rl)+>Ț(Vפx x9El`馭])9%z JFJFXbbH # This script was automatically generated from the dsa-256 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in adb2mhc from the mhc-utils package. The default temporary directory uses a predictable name. This adds a vulnerability that allows a local attacker to overwrite arbitrary files the users has write permissions for. For the stable distribution (woody) this problem has been fixed in version 0.25+20010625-7.1. The old stable distribution (potato) does not contain mhc packages. For the unstable distribution (sid) this problem has been fixed in version 0.25+20030224-1. We recommend that you upgrade your mhc-utils packages. Solution : http://www.debian.org/security/2003/dsa-256 Risk factor : High'; if (description) { script_id(15093); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "256"); script_cve_id("CVE-2003-0120"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA256] DSA-256-1 mhc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-256-1 mhc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mhc', release: '3.0', reference: '0.25+20010625-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhc is vulnerable in Debian 3.0.\nUpgrade to mhc_0.25+20010625-7.1\n'); } if (deb_check(prefix: 'mhc-utils', release: '3.0', reference: '0.25+20010625-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhc-utils is vulnerable in Debian 3.0.\nUpgrade to mhc-utils_0.25+20010625-7.1\n'); } if (deb_check(prefix: 'mhc', release: '3.1', reference: '0.25+20030224-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhc is vulnerable in Debian 3.1.\nUpgrade to mhc_0.25+20030224-1\n'); } if (deb_check(prefix: 'mhc', release: '3.0', reference: '0.25+20010625-7.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mhc is vulnerable in Debian woody.\nUpgrade to mhc_0.25+20010625-7.1\n'); } if (w) { security_hole(port: 0, data: desc); }  FHP_LaserJet_P2     ,T  P y~ Ɔ^N}|'BGh%!%xvdUߪ |xQmb'&O8T'[&#Z(6=V&U{$:OAmvWu%AԽ=4-Qֈ WeE# %grZ= }J&Rز^mE7[(;zN֟I-ƑUFd3vf{I+m j= &5P8^yjKaƆC/&CcEc]qpVp&{'86Ե)":#PsQaBLb܌j~2XdEh<"ǃ|?>%_&ݚ@`̯`d6bXW+2_b:hgh2D:tr;YMƀF* &Sr=Yϐ5` 旅%Y-`kq6MfK5u 3|!t`K&pc9t&7h Hi:\M.Cp:ܞvìs d<܌%`9d>CJ|^•SrLVS2XNV8v JFJFXbbH # This script was automatically generated from the dsa-257 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Mark Dowd of ISS X-Force found a bug in the header parsing routines of sendmail: it could overflow a buffer overflow when encountering addresses with very long comments. Since sendmail also parses headers when forwarding emails this vulnerability can hit mail-servers which do not deliver the email as well. This has been fixed in upstream release 8.12.8, version 8.12.3-5 of the package for Debian GNU/Linux 3.0/woody and version 8.9.3-25 of the package for Debian GNU/Linux 2.2/potato. DSA-257-2: Updated sendmail-wide packages are available in package version 8.9.3+3.2W-24 for Debian 2.2 (potato) and version 8.12.3+3.5Wbeta-5.2 for Debian 3.0 (woody). Solution : http://www.debian.org/security/2003/dsa-257 Risk factor : High'; if (description) { script_id(15094); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "257"); script_cve_id("CVE-2002-1337"); script_xref(name: "CERT", value: "398025"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA257] DSA-257-1 sendmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-257-1 sendmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendmail', release: '2.2', reference: '8.9.3-25')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 2.2.\nUpgrade to sendmail_8.9.3-25\n'); } if (deb_check(prefix: 'sendmail-wide', release: '2.2', reference: '8.9.3+3.2W-24')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian 2.2.\nUpgrade to sendmail-wide_8.9.3+3.2W-24\n'); } if (deb_check(prefix: 'libmilter-dev', release: '3.0', reference: '8.12.3-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter-dev is vulnerable in Debian 3.0.\nUpgrade to libmilter-dev_8.12.3-5\n'); } if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.0.\nUpgrade to sendmail_8.12.3-5\n'); } if (deb_check(prefix: 'sendmail-doc', release: '3.0', reference: '8.12.3-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-doc is vulnerable in Debian 3.0.\nUpgrade to sendmail-doc_8.12.3-5\n'); } if (deb_check(prefix: 'sendmail-wide', release: '3.0', reference: '8.12.3+3.5Wbeta-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian 3.0.\nUpgrade to sendmail-wide_8.12.3+3.5Wbeta-5.2\n'); } if (w) { security_hole(port: 0, data: desc); } FHP_LaserJet_P3   8  ,    dV# This script was automatically generated from the dsa-259 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Florian Heinz heinz@cronon-ag.de posted to the Bugtraq mailing list an exploit for qpopper based on a bug in the included vsnprintf implementation. The sample exploit requires a valid user account and password, and overflows a string in the pop_msg() function to give the user "mail" group privileges and a shell on the system. Since the Qvsnprintf function is used elsewhere in qpopper, additional exploits may be possible. The qpopper package in Debian 2.2 (potato) does not include the vulnerable snprintf implementation. For Debian 3.0 (woody) an updated package is available in vers JFJFXbbH # This script was automatically generated from the dsa-258 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Georgi Guninski discovered a problem in ethereal, a network traffic analyzer. The program contains a format string vulnerability that could probably lead to execution of arbitrary code. For the stable distribution (woody) this problem has been fixed in version 0.9.4-1woody3. The old stable distribution (potato) does not seem to be affected by this problem. For the unstable distribution (sid) this problem has been fixed in version 0.9.9-2. We recommend that you upgrade your ethereal packages. Solution : http://www.debian.org/security/2003/dsa-258 Risk factor : High'; if (description) { script_id(15095); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "258"); script_cve_id("CVE-2003-0081"); script_bugtraq_id(7049); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA258] DSA-258-1 ethereal"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-258-1 ethereal"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.0.\nUpgrade to ethereal_0.9.4-1woody3\n'); } if (deb_check(prefix: 'ethereal-common', release: '3.0', reference: '0.9.4-1woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-common is vulnerable in Debian 3.0.\nUpgrade to ethereal-common_0.9.4-1woody3\n'); } if (deb_check(prefix: 'ethereal-dev', release: '3.0', reference: '0.9.4-1woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-dev is vulnerable in Debian 3.0.\nUpgrade to ethereal-dev_0.9.4-1woody3\n'); } if (deb_check(prefix: 'tethereal', release: '3.0', reference: '0.9.4-1woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tethereal is vulnerable in Debian 3.0.\nUpgrade to tethereal_0.9.4-1woody3\n'); } if (deb_check(prefix: 'ethereal', release: '3.1', reference: '0.9.9-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.1.\nUpgrade to ethereal_0.9.9-2\n'); } if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian woody.\nUpgrade to ethereal_0.9.4-1woody3\n'); } if (w) { security_hole(port: 0, data: desc); } g[V5J !bj   `   ,t    |  ,P  L#12u Ui)bm&Y=![ o(@E"@Wx)'Q uNa B;mz߇2"R::ZV"J:hqa\'gSE ,mP IP׸uGkM(û&8_t#n1(t %Vݯ} JFJFXbbH # This script was automatically generated from the dsa-260 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' iDEFENSE discovered a buffer overflow vulnerability in the ELF format parsing of the "file" command, one which can be used to execute arbitrary code with the privileges of the user running the command. The vulnerability can be exploited by crafting a special ELF binary which is then input to file. This could be accomplished by leaving the binary on the file system and waiting for someone to use file to identify it, or by passing it to a service that uses file to classify input. (For example, some printer filters run file to determine how to process input going to a printer.) Fixed packages are available in version 3.28-1.potato.1 for Debian 2.2 (potato) and version 3.37-3.1.woody.1 for Debian 3.0 (woody). We recommend you upgrade your file package immediately. Solution : http://www.debian.org/security/2003/dsa-260 Risk factor : High'; if (description) { script_id(15097); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "260"); script_cve_id("CVE-2003-0102"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA260] DSA-260-1 file"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-260-1 file"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'file', release: '2.2', reference: '3.28-1.potato.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package file is vulnerable in Debian 2.2.\nUpgrade to file_3.28-1.potato.1\n'); } if (deb_check(prefix: 'file', release: '3.0', reference: '3.37-3.1.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package file is vulnerable in Debian 3.0.\nUpgrade to file_3.37-3.1.woody.1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFXbbH ion 4.0.4-2.woody.3. Users running an unreleased version of Debian should upgrade to 4.0.4-9 or newer. We recommend you upgrade your qpopper package immediately. Solution : http://www.debian.org/security/2003/dsa-259 Risk factor : High'; if (description) { script_id(15096); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "259"); script_cve_id("CVE-2003-0143"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA259] DSA-259-1 qpopper"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-259-1 qpopper"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'qpopper', release: '3.0', reference: '4.0.4-2.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package qpopper is vulnerable in Debian 3.0.\nUpgrade to qpopper_4.0.4-2.woody.3\n'); } if (deb_check(prefix: 'qpopper-drac', release: '3.0', reference: '4.0.4-2.woody.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package qpopper-drac is vulnerable in Debian 3.0.\nUpgrade to qpopper-drac_4.0.4-2.woody.3\n'); } if (w) { security_hole(port: 0, data: desc); } l@bR<     ,  aq$(4êA {.ٱZLh15'T4G$hY~ʤ;WҴ\$giD\gtD"Bro҆Wņ1oY6uEQ:.Z=nxD"Nً)%|Xlǃ1'Ws0p纗/+FfpZ M )Wvp}rih=^xTSD:`LJE߱#q۬ӒQג!K4"(=>ӿr)@o𿲇^9IYUo"kA#$/f` 5V-iihXCG)*)7,DK{"gl(ˍJ9UYQV5ꦉ=txGːn*$^dA`GCKB| ?;xdnÌ3[1QE_tδ80:G2N 1=O] ^r[c}߄@v_È4Bi%3gvVرRHuD5eclzZ\MZQ!kf+kOjfwx .!}!3"}ωy It9 I_r ޾x|Qw-p_]<d$iJˉtבɊ(_ mHR b]Q29bhq˺ G >ˇG} \|'sn*ύZ0cgwc6Yv4M*Z3om]Q V2:ogIֶftϸs٫b W}͵ ߔb'H&9KOyۂ( y6 EK\a: .Z}[[;@&FC/,p!ex(T!|V8M^i*fr_d0q}_xs`f| ~e@R]zQ;#80=heF08"8Qq1"?OMċd"I/h% TxPMLbLJj b/"]ܺuϝ'ږy|0"F:!"H:^ 6Ʀ{Vn?qpDEUG>?Z)Txw-{Z%Bat ZҺXrsHmQ;)  d1Sm7S1?ap* zFjƺo&cS)r#m>Em͜ ]`alޞcCt Ўnf8tRIwbóaJFJFXbbH # This script was automatically generated from the dsa-261 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in tcpdump, a powerful tool for network monitoring and data acquisition. An attacker is able to send a specially crafted RADIUS network packet which causes tcpdump to enter an infinite loop. For the stable distribution (woody) this problem has been fixed in version 3.6.2-2.4. The old stable distribution (potato) does not seem to be affected by this problem. The unstable distribution (sid) is not affected by this problem anymore. We recommend that you upgrade your tcpdump package. Solution : http://www.debian.org/security/2003/dsa-261 Risk factor : High'; if (description) { script_id(15098); script_version("$Revision: 1.5 $"); script_xref(name: "DSA", value: "261"); script_cve_id("CVE-2003-0093", "CVE-2003-0145"); script_bugtraq_id(7090); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA261] DSA-261-1 tcpdump"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-261-1 tcpdump"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tcpdump', release: '3.0', reference: '3.6.2-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian 3.0.\nUpgrade to tcpdump_3.6.2-2.4\n'); } if (deb_check(prefix: 'tcpdump', release: '3.0', reference: '3.6.2-2.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcpdump is vulnerable in Debian woody.\nUpgrade to tcpdump_3.6.2-2.4\n'); } if (w) { security_hole(port: 0, data: desc); } $'c!VK`K5    h  ,l  hOD*[Kp9|:f.Tp~,M )YeZ$옜,¯f&Tq4?&rRvx<U?_]|;џzGtC/jC} o.>01O:#[ dln(ɩQ2 hPX (( ^ dN'M'j, c&{^[<jw24"); script_name(english: "[DSA262] DSA-262-1 samba"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-262-1 samba"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libpam-smbpass', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libpam-smbpass is vulnerable in Debian 3.0.\nUpgrade to libpam-smbpass_2.2.3a-12.1\n'); } if (deb_check(prefix: 'libsmbclient', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsmbclient is vulnerable in Debian 3.0.\nUpgrade to libsmbclient_2.2.3a-12.1\n'); } if (deb_check(prefix: 'libsmbclient-dev', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libsmbclient-dev is vulnerable in Debian 3.0.\nUpgrade to libsmbclient-dev_2.2.3a-12.1\n'); } if (deb_check(prefix: 'samba', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba is vulnerable in Debian 3.0.\nUpgrade to samba_2.2.3a-12.1\n'); } if (deb_check(prefix: 'samba-common', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-common is vulnerable in Debian 3.0.\nUpgrade to samba-common_2.2.3a-12.1\n'); } if (deb_check(prefix: 'samba-doc', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package samba-doc is vulnerable in Debian 3.0.\nUpgrade to samba-doc_2.2.3a-12.1\n'); } if (deb_check(prefix: 'smbclient', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbclient is vulnerable in Debian 3.0.\nUpgrade to smbclient_2.2.3a-12.1\n'); } if (deb_check(prefix: 'smbfs', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package smbfs is vulnerable in Debian 3.0.\nUpgrade to smbfs_2.2.3a-12.1\n'); } if (deb_check(prefix: 'swat', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package swat is vulnerable in Debian 3.0.\nUpgrade to swat_2.2.3a-12.1\n'); } if (deb_check(prefix: 'winbind', release: '3.0', reference: '2.2.3a-12.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package winbind is vulnerable in Debian 3.0.\nUpgrade to winbind_2.2.3a-12.1\n'); } if (w) { security_hole(port: 0, data: desc); } v`Ľpyr2   x   ,\   dV# This script was automatically generated from the dsa-264 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Upstream developers of lxr, a general hypertext cross-referencing tool, have been alerted of a vulnerability that allows a remote attacker to read arbitrary files on the host system as user www-data. This could disclose local files that were not meant to be shared with the public. For the stable distribution (woody) this problem has been fixed in version 0.3-3. The old stable distribution (potato) is not affected since it does not contain an lxr package. For the unstable distribution (sid) this problem has been fixed in version 0.3-4. We recommend that you upgrade your lxr package. Solution : http://www.debian.org/security/2003/dsa-264 Risk factor : High'; JFJFXbbH # This script was automatically generated from the dsa-263 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Al Viro and Alan Cox discovered several maths overflow errors in NetPBM, a set of graphics conversion tools. These programs are not installed setuid root but are often installed to prepare data for processing. These vulnerabilities may allow remote attackers to cause a denial of service or execute arbitrary code. For the stable distribution (woody) this problem has been fixed in version 9.20-8.2. The old stable distribution (potato) does not seem to be affected by this problem. For the unstable distribution (sid) this problem has been fixed in version 9.20-9. We recommend that you upgrade your netpbm package. Solution : http://www.debian.org/security/2003/dsa-263 Risk factor : High'; if (description) { script_id(15100); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "263"); script_cve_id("CVE-2003-0146"); script_xref(name: "CERT", value: "378049"); script_xref(name: "CERT", value: "630433"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA263] DSA-263-1 netpbm-free"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-263-1 netpbm-free"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libnetpbm9', release: '3.0', reference: '9.20-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libnetpbm9 is vulnerable in Debian 3.0.\nUpgrade to libnetpbm9_9.20-8.2\n'); } if (deb_check(prefix: 'libnetpbm9-dev', release: '3.0', reference: '9.20-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libnetpbm9-dev is vulnerable in Debian 3.0.\nUpgrade to libnetpbm9-dev_9.20-8.2\n'); } if (deb_check(prefix: 'netpbm', release: '3.0', reference: '9.20-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package netpbm is vulnerable in Debian 3.0.\nUpgrade to netpbm_9.20-8.2\n'); } if (deb_check(prefix: 'netpbm-free', release: '3.1', reference: '9.20-9')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package netpbm-free is vulnerable in Debian 3.1.\nUpgrade to netpbm-free_9.20-9\n'); } if (deb_check(prefix: 'netpbm-free', release: '3.0', reference: '9.20-8.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package netpbm-free is vulnerable in Debian woody.\nUpgrade to netpbm-free_9.20-8.2\n'); } if (w) { security_hole(port: 0, data: desc); } ,;GÜ 8       ,    4  ,    ,  K`^ 6^ak' JFJFXbbH ;<JFJFXbbH # This script was automatically generated from the dsa-265 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Rmi Perrot fixed several security related bugs in the bonsai, the Mozilla CVS query tool by web interface. Vulnerabilities include arbitrary code execution, cross-site scripting and access to configuration parameters. The Common Vulnerabilities and Exposures project identifies the following problems: For the stable distribution (woody) these problems have been fixed in version 1.3+cvs20020224-1woody1. The old stable distribution (potato) is not affected since it doesn\'t contain bonsai. For the unstable distribution (sid) these problems have been fixed in version 1.3+cvs20030317-1. We recommend that you upgrade your bonsai package. Solution : http://www.debian.org/security/2003/dsa-265 Risk factor : High'; if (description) { script_id(15102); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "265"); script_cve_id("CVE-2003-0152", "CVE-2003-0153", "CVE-2003-0154", "CVE-2003-0155"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA265] DSA-265-1 bonsai"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-265-1 bonsai"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'bonsai', release: '3.0', reference: '1.3+cvs20020224-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bonsai is vulnerable in Debian 3.0.\nUpgrade to bonsai_1.3+cvs20020224-1woody1\n'); } if (deb_check(prefix: 'bonsai', release: '3.1', reference: '1.3+cvs20030317-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bonsai is vulnerable in Debian 3.1.\nUpgrade to bonsai_1.3+cvs20030317-1\n'); } if (deb_check(prefix: 'bonsai', release: '3.0', reference: '1.3+cvs20020224-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package bonsai is vulnerable in Debian woody.\nUpgrade to bonsai_1.3+cvs20020224-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH  if (description) { script_id(15101); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "264"); script_cve_id("CVE-2003-0156"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA264] DSA-264-1 lxr"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-264-1 lxr"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lxr', release: '3.0', reference: '0.3-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lxr is vulnerable in Debian 3.0.\nUpgrade to lxr_0.3-3\n'); } if (deb_check(prefix: 'lxr', release: '3.1', reference: '0.3-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lxr is vulnerable in Debian 3.1.\nUpgrade to lxr_0.3-4\n'); } if (deb_check(prefix: 'lxr', release: '3.0', reference: '0.3-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lxr is vulnerable in Debian woody.\nUpgrade to lxr_0.3-3\n'); } if (w) { security_hole(port: 0, data: desc); } FHP_LaserJet_M5   h  ,<  8l$+vҸy>Ch L۰VܿblxpqFW - :\! t={0[[}X6g7,a3s-|Y2k.1WV`;%3[Gs>2si ~3} ˁѠ#bԁ>>iAh0sъ)]LckԜx,G*ŞpB0|e302@̍| -EQ_l:rcs{c)OF^ܟݎg ,&6aî}?Io:e w^H;w_5@3;6conˠ7•u?gCt{~lܞ'Ѵkq87h7 g6\cO ޶D{D31z;cn.^]}}׋v_{8GamO\&_g 3&p F-OwLx|:pY-y ۮ'2x]yX s#;٠Y7f,6& ulLN  F޴]Haܧʝs%EPYzq+ha[gsBқ/0C]>LC7g0@ǔ`o=خujl<x?܎%2$>pT"Y2 SnCu H955[bCͩ497t %y JFJFXbbH # This script was automatically generated from the dsa-267 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly. For the stable distribution (woody) this problem has been fixed in version 2000.05.07-4.3. For the old stable distribution (potato) this problem has been fixed in version 0.48-1.1. For the unstable distribution (sid) this problem has been fixed in version 2000.05.07-4.20. We recommend that you upgrade your lpr package immediately. Solution : http://www.debian.org/security/2003/dsa-267 Risk factor : High'; if (description) { script_id(15104); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "267"); script_cve_id("CVE-2003-0144"); script_bugtraq_id(7025); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA267] DSA-267-1 lpr"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-267-1 lpr"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lpr', release: '2.2', reference: '0.48-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr is vulnerable in Debian 2.2.\nUpgrade to lpr_0.48-1.2\n'); } if (deb_check(prefix: 'lpr', release: '3.0', reference: '2000.05.07-4.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr is vulnerable in Debian 3.0.\nUpgrade to lpr_2000.05.07-4.3\n'); } if (deb_check(prefix: 'lpr', release: '3.1', reference: '2000.05.07-4.20')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr is vulnerable in Debian 3.1.\nUpgrade to lpr_2000.05.07-4.20\n'); } if (deb_check(prefix: 'lpr', release: '2.2', reference: '0.48-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr is vulnerable in Debian potato.\nUpgrade to lpr_0.48-1.1\n'); } if (deb_check(prefix: 'lpr', release: '3.0', reference: '2000.05.07-4.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr is vulnerable in Debian woody.\nUpgrade to lpr_2000.05.07-4.3\n'); } if (w) { security_hole(port: 0, data: desc); } C&QűIT!      ,    ,    ,\  X:G})rTT9_ɓ)0/|$((m=ӠR1tB` Eg]PY˅"z#˅^^gs"P\b^\El)gS!P ׳y(.uI,K22?4ʋz&!QBEAJS/W5ԟ췞d) kCGT[\TAd^e/-*ԫKz2H^/fD&6 ך9)C Jk!RJY!P5 1YbqКlJ@c7R̋(R-l&$JF6 !IeIF֚GZyȤ>!#j~#Chh=Hij&Ik6ZMM)iHk r{@VU AnWrf$dZ"Ӛy}ok͜ZS!O5)ZSJB,yԚ,r8ujhf6%R)ſY )f6%~3ߔ$#k~AJSlfRfs?!4Q4rf5[rY8-M)iHk r{@VU AnWrf$dZ"Ӛy}ok͜ZS!O5)ZSJB,yԚ,r8ujhV6%R)ſU )V6%~+ߒ$#k~AJSleRfk?!4Q4Zm+3ZSQ°hExrI~5N*p䓐O}Im~[*R 4Hi!]7`L4:~ܪ-ڒIT?\Td}SKS 8n/y H b5dЁ^DDG e3(ZVRL;Az7t==etXGcQSԾQV41EĩJ`ܟSrv$JlP"(]q-}A6VJ@ɝ&JQ`(9g#`"); script_name(english: "[DSA268] DSA-268-1 mutt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-268-1 mutt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mutt', release: '3.0', reference: '1.3.28-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 3.0.\nUpgrade to mutt_1.3.28-2.1\n'); } if (deb_check(prefix: 'mutt-utf8', release: '3.0', reference: '1.3.28-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt-utf8 is vulnerable in Debian 3.0.\nUpgrade to mutt-utf8_1.3.28-2.1\n'); } if (deb_check(prefix: 'mutt', release: '3.1', reference: '1.5.4-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 3.1.\nUpgrade to mutt_1.5.4-1\n'); } if (deb_check(prefix: 'mutt', release: '3.0', reference: '1.3.28-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian woody.\nUpgrade to mutt_1.3.28-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } $~hWQW   h   ,l  hf<^JYU{laڭM^xvST.{ɜ5kaHTi҃aU\M&ڀ m~K*@D]-+D O}̍7WsvX*9EWM^`+UfO~b?#piϜ['H [D7-oe'=';}#!/ $&xEn܅/$l $$E1S#.*!(JĐo4qy3JHt~b?Gkmh̬|eϞg.4.@hr~`_mx[q/?{Fӝ^@RjH_xCj#_T?{֨b#L8[>Ne[B~ǹEs^µp]&A=SKŝĔx$70e{?m__!$l$ JFJFXbbH # This script was automatically generated from the dsa-271 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A problem has been discovered in ecartis, a mailing list manager, formerly known as listar. This vulnerability enables an attacker to reset the password of any user defined on the list server, including the list admins. For the stable distribution (woody) this problem has been fixed in version 0.129a+1.0.0-snap20020514-1.1 of ecartis. For the old stable distribution (potato) this problem has been fixed in version 0.129a-2.potato3 of listar. For the unstable distribution (sid) this problem has been fixed in version 1.0.0+cvs.20030321-1 of ecartis. We recommend that you upgrade your ecartis and listar packages. Solution : http://www.debian.org/security/2003/dsa-271 Risk factor : High'; if (description) { script_id(15108); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "271"); script_cve_id("CVE-2003-0162"); script_bugtraq_id(6971); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA271] DSA-271-1 ecartis"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-271-1 ecartis"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'listar', release: '2.2', reference: '0.129a-2.potato3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package listar is vulnerable in Debian 2.2.\nUpgrade to listar_0.129a-2.potato3\n'); } if (deb_check(prefix: 'listar-cgi', release: '2.2', reference: '0.129a-2.potato3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package listar-cgi is vulnerable in Debian 2.2.\nUpgrade to listar-cgi_0.129a-2.potato3\n'); } if (deb_check(prefix: 'ecartis', release: '3.0', reference: '0.129a+1.0.0-snap20020514-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecartis is vulnerable in Debian 3.0.\nUpgrade to ecartis_0.129a+1.0.0-snap20020514-1.1\n'); } if (deb_check(prefix: 'ecartis-cgi', release: '3.0', reference: '0.129a+1.0.0-snap20020514-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecartis-cgi is vulnerable in Debian 3.0.\nUpgrade to ecartis-cgi_0.129a+1.0.0-snap20020514-1.1\n'); } if (deb_check(prefix: 'ecartis,', release: '3.1', reference: '1.0.0+cvs')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecartis, is vulnerable in Debian 3.1.\nUpgrade to ecartis,_1.0.0+cvs\n'); } if (deb_check(prefix: 'ecartis,', release: '2.2', reference: '0.129a-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecartis, is vulnerable in Debian potato.\nUpgrade to ecartis,_0.129a-2\n'); } if (deb_check(prefix: 'ecartis,', release: '3.0', reference: '0.129a+1.0.0-snap20020514-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ecartis, is vulnerable in Debian woody.\nUpgrade to ecartis,_0.129a+1.0.0-snap20020514-1\n'); } if (w) { security_hole(port: 0, data: desc); } nQg>lmX    (   ,     ,t  py" S(H`<}@~c D*C[%n[5fM߽$;r1߽é\&9kb"Ð&g%ҤLdڪ^IYT/[V ͟:4o+p9hUr+.ͯBW R٫̞*3&>~G>zҞ9.O> 5n[rOl{NnwFB^@IM\ ܢ _\I` H.KI4b=%Fr]TBQY!h'i6ʛfd4#`f׀?𽹁?ИYʞ=\h q] (w4N㨹34_};c#:Ր7;(~G-V1@Qѩ~Ww!̭Q/a{Fv qTp}4Znjs?fk+ L'zƧI;)Hn`f~t BH$-_bXT([W̮Aj2_jO1EO07kM Y,39Ԟ+#'u^k p 8X 8dCMx-!tw"Ӥ=E|W`( XaEM>;l~k] q+1KrdXq%$_KKP%/QDo4?s*>a7 r}o[G yo( $ Kw8p#'(?`7,/w { ⮄Ȁ49KM{1,F9q0:s;܋U0_ġ.T$ RW٤؞^2S+˅ѰԃTe@ąx6ؿr/!LEB %chFuP7x88 ! ÿXrb>@<>fd@a'Tvu,>`AީaNmWp6a3KˆbG>wG6 JFJFXbbH EFG JFJFXbbH # This script was automatically generated from the dsa-272 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' eEye Digital Security discovered an integer overflow in the xdrmem_getbytes() function of glibc, that is also present in dietlibc, a small libc useful especially for small and embedded systems. This function is part of the XDR encoder/decoder derived from Sun\'s RPC implementation. Depending upon the application, this vulnerability can cause buffer overflows and could possibly be exploited to execute arbitrary code. For the stable distribution (woody) this problem has been fixed in version 0.12-2.5. The old stable distribution (potato) does not contain dietlibc packages. For the unstable distribution (sid) this problem has been fixed in version 0.22-2. We recommend that you upgrade your dietlibc packages. Solution : http://www.debian.org/security/2003/dsa-272 Risk factor : High'; if (description) { script_id(15109); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2003-t-0007"); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "272"); script_cve_id("CVE-2003-0028"); script_bugtraq_id(7123); script_xref(name: "CERT", value: "516825"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA272] DSA-272-1 dietlibc"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-272-1 dietlibc"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'dietlibc-dev', release: '3.0', reference: '0.12-2.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc-dev is vulnerable in Debian 3.0.\nUpgrade to dietlibc-dev_0.12-2.5\n'); } if (deb_check(prefix: 'dietlibc-doc', release: '3.0', reference: '0.12-2.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc-doc is vulnerable in Debian 3.0.\nUpgrade to dietlibc-doc_0.12-2.5\n'); } if (deb_check(prefix: 'dietlibc', release: '3.1', reference: '0.22-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc is vulnerable in Debian 3.1.\nUpgrade to dietlibc_0.22-2\n'); } if (deb_check(prefix: 'dietlibc', release: '3.0', reference: '0.12-2.5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package dietlibc is vulnerable in Debian woody.\nUpgrade to dietlibc_0.12-2.5\n'); } if (w) { security_hole(port: 0, data: desc); } 3eRw;r      ,   `dP28# This script was automatically generated from the dsa-275 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly. For the stable distribution (woody) this problem has been fixed in version 0.72-2.1. The old stable distribution (potato) does not contain lpr-ppd packages. For the unstable distribution (sid) this problem has been fixed in version 0.72-3. We recommend that you upgrade your lpr-ppd package immediately. Solution : http://www.debian.org/security/2003/dsa-275 Risk factor : High'; if (description) { script_id(15112); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "275"); script_cve_id("CVE-2003-0144"); script_bugtraq_id(7025); scJFJFXbbH # This script was automatically generated from the dsa-274 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Byrial Jensen discovered a couple of off-by-one buffer overflow in the IMAP code of Mutt, a text-oriented mail reader supporting IMAP, MIME, GPG, PGP and threading. This problem could potentially allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder. For the stable distribution (woody) this problem has been fixed in version 1.3.28-2.2. The old stable distribution (potato) is also affected by this problem and an update will follow. For the unstable distribution (sid) this problem has been fixed in version 1.4.0 and above. We recommend that you upgrade your mutt package. Solution : http://www.debian.org/security/2003/dsa-274 Risk factor : High'; if (description) { script_id(15111); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "274"); script_cve_id("CVE-2003-0167"); script_bugtraq_id(7229); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA274] DSA-274-1 mutt"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-274-1 mutt"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mutt', release: '2.2', reference: '1.2.5-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 2.2.\nUpgrade to mutt_1.2.5-5.2\n'); } if (deb_check(prefix: 'mutt', release: '3.0', reference: '1.3.28-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 3.0.\nUpgrade to mutt_1.3.28-2.2\n'); } if (deb_check(prefix: 'mutt-utf8', release: '3.0', reference: '1.3.28-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt-utf8 is vulnerable in Debian 3.0.\nUpgrade to mutt-utf8_1.3.28-2.2\n'); } if (deb_check(prefix: 'mutt', release: '3.1', reference: '1.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian 3.1.\nUpgrade to mutt_1.4\n'); } if (deb_check(prefix: 'mutt', release: '3.0', reference: '1.3.28-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mutt is vulnerable in Debian woody.\nUpgrade to mutt_1.3.28-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } TQL5&R\WppQ  a    ,T    |   x# Th# This script was automatically generated from the dsa-276 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The kernel module loader in Linux 2.2 and Linux 2.4 kernels has a flaw in ptrace. This hole allows local users to obtain root privileges by using ptrace to attach to a child process that is spawned by the kernel. Remote exploitation of this hole is not possible. This advisory only covers kernel packages for the S/390 architecture. Other architectures will be covered by separate advisories. For the stable distribution (woody) this problem has been fixed in the following versions: The old stable distribution (potato) is not affected by this problem for this architecture since s390 was first released with Debian GNU/Linux 3.0 (woody). For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your kernel-images packages immediately. Solution : http://www.debian.org/security/2003/dsa-276 Risk factor : High'; if (description) { script_id(15113); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "276"); script_cve_id("CVE-2003-0127"); script_bugtraq_id(7112); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA276] DSA-276-1 linux-kernel-s390"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-276-1 linux-kernel-s390"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'kernel-headers-2.4.17', release: '3.0', reference: '2.4.17-2.woody.2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.4.17 is vulnerable in Debian 3.0.\nUpgrade to kernel-headers-2.4.17_2.4.17-2.woody.2.2\n'); } if (deb_check(prefix: 'kernel-image-2.4.17-s390', release: '3.0', reference: '2.4.17-2.woody.2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.4.17-s390 is vulnerable in Debian 3.0.\nUpgrade to kernel-image-2.4.17-s390_2.4.17-2.woody.2.2\n'); } if (deb_check(prefix: 'kernel-patch-2.4.17-s390', release: '3.0', reference: '0.0.20020816-0.woody.1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-patch-2.4.17-s390 is vulnerable in Debian 3.0.\nUpgrade to kernel-patch-2.4.17-s390_0.0.20020816-0.woody.1.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFXbbH ript_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA275] DSA-275-1 lpr-ppd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-275-1 lpr-ppd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lpr-ppd', release: '3.0', reference: '0.72-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr-ppd is vulnerable in Debian 3.0.\nUpgrade to lpr-ppd_0.72-2.1\n'); } if (deb_check(prefix: 'lpr-ppd', release: '3.1', reference: '0.72-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr-ppd is vulnerable in Debian 3.1.\nUpgrade to lpr-ppd_0.72-3\n'); } if (deb_check(prefix: 'lpr-ppd', release: '3.0', reference: '0.72-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lpr-ppd is vulnerable in Debian woody.\nUpgrade to lpr-ppd_0.72-2.1\n'); } if (w) { security_hole(port: 0, data: desc); }  6$jŔwY  ,   H   ,`  \{YBGDZ 뻶>(r+\S-J%"cK9LY eЋn3+Bd`2ȧhtN \hn3T|w4B*>$Z j=^a)Wv& |qNJ kBЇ3W&Hh j=, Y0GT!s6gb8'4kd/:,hY1YcC2oւp%H@‚n).I5SԔx~6|p2 /DoXpyT@ ,í"ѥLW!7B+{?WR56u5 (r^Kƞ%OV)Lwym9tm6PG%W1k -Gr!}fQlydJkZf7:],Vb ;Sl9dM]SK> 3(3pp8h'Ոkv<x26rvm}E1"f(ϠW50yeMhO)ғ"iG '"=1`S4J;)3VHe."nwi%R-=%K(]Kh t! eu8"r1sڏ"w1$d'E )ʮTA}cedmEDʎE ^~1ۉI$n =uAJ}p&d |XKfW^Ho?J;h,<:oz"6ч[!.c_hԏT O ?:E@>fa<Ynt#_7*>,Ni{㗣,P/޽13FPFm@̰MnDNՃjvC=쾆Buo\ ŝ`fХf|/'N3AvfI"Pdk! :&'ӠdT%5::gnWQ$-i@~v<\Ws2ľix)j@gŹIwO@߫g{>118qQ mwn_}'eGcE'CJNTZ)vLC"HLEӴVyb1  48Jmxi?%*e鼶y/kkRD}5Zi۩ɋEq=t.TDRV:[yj'^Ok3J+.-[;e 9MC4 Io{nɞǚd:3oF o6SEe<`Dc^p` ar8BЋBf^6GpJ8 JFJFXbbH # This script was automatically generated from the dsa-277 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The controlling and management daemon apcupsd for APC\'s Unbreakable Power Supplies is vulnerable to several buffer overflows and format string attacks. These bugs can be exploited remotely by an attacker to gain root access to the machine apcupsd is running on. For the stable distribution (woody) this problem has been fixed in version 3.8.5-1.1.1. For the old stable distribution (potato) this problem does not seem to exist. For the unstable distribution (sid) this problem has been fixed in version 3.8.5-1.2. We recommend that you upgrade your apcupsd packages immediately. Solution : http://www.debian.org/security/2003/dsa-277 Risk factor : High'; if (description) { script_id(15114); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "277"); script_cve_id("CVE-2003-0098", "CVE-2003-0099"); script_bugtraq_id(7200); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA277] DSA-277-1 apcupsd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-277-1 apcupsd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'apcupsd', release: '3.0', reference: '3.8.5-1.1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apcupsd is vulnerable in Debian 3.0.\nUpgrade to apcupsd_3.8.5-1.1.1\n'); } if (deb_check(prefix: 'apcupsd', release: '3.1', reference: '3.8.5-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apcupsd is vulnerable in Debian 3.1.\nUpgrade to apcupsd_3.8.5-1.2\n'); } if (deb_check(prefix: 'apcupsd', release: '3.0', reference: '3.8.5-1.1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package apcupsd is vulnerable in Debian woody.\nUpgrade to apcupsd_3.8.5-1.1.1\n'); } if (w) { security_hole(port: 0, data: desc); } C JFJFXbbH T   8   ,   ppxxez#w~Fw~FXabH 8ؠؠ瀚` $$|dLL`` ||猡 N 1eeԡԡn rej?& ((e+w~Fw~FXabH 8爢F JFJFXbbH # This script was automatically generated from the dsa-278 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Michal Zalewski discovered a buffer overflow, triggered by a char to int conversion, in the address parsing code in sendmail, a widely used powerful, efficient, and scalable mail transport agent. This problem is potentially remotely exploitable. For the stable distribution (woody) this problem has been fixed in version 8.12.3-6.3. For the old stable distribution (potato) this problem has been fixed in version 8.9.3-26. For the unstable distribution (sid) this problem has been fixed in version 8.12.9-1. We recommend that you upgrade your sendmail packages. Solution : http://www.debian.org/security/2003/dsa-278 Risk factor : High'; if (description) { script_id(15115); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2003-b-0003"); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "278"); script_cve_id("CVE-2003-0161"); script_bugtraq_id(7230); script_xref(name: "CERT", value: "897604"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA278] DSA-278-1 sendmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-278-1 sendmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendmail', release: '2.2', reference: '8.9.3-26')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 2.2.\nUpgrade to sendmail_8.9.3-26\n'); } if (deb_check(prefix: 'libmilter-dev', release: '3.0', reference: '8.12.3-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter-dev is vulnerable in Debian 3.0.\nUpgrade to libmilter-dev_8.12.3-6.3\n'); } if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.0.\nUpgrade to sendmail_8.12.3-6.3\n'); } if (deb_check(prefix: 'sendmail-doc', release: '3.0', reference: '8.12.3-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-doc is vulnerable in Debian 3.0.\nUpgrade to sendmail-doc_8.12.3-6.3\n'); } if (deb_check(prefix: 'sendmail', release: '3.1', reference: '8.12.9-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.1.\nUpgrade to sendmail_8.12.9-1\n'); } if (deb_check(prefix: 'sendmail', release: '2.2', reference: '8.9.3-26')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian potato.\nUpgrade to sendmail_8.9.3-26\n'); } if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-6.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian woody.\nUpgrade to sendmail_8.12.3-6.3\n'); } if (w) { security_hole(port: 0, data: desc); } P   H   ,    ,X  T0U0U0U0UI/*0U$0U 0U0U1U1U$1U$1U@1U@1UP1UP1U 1U separador v P'CgF# 1U1U1U1U#z~Fz~Fz~F 2U2U,2U,2UI/*H2U1U h2Uh2U2U2U2U2U2U2U2U2U 3Upermite a lo*PCgF# 43U43U<3U<3U+z~Fz~Fz~F 3U3U3U3UI/*3U$3U 3U3U4U4U$4U$4U@4U@4UP4UP4U 4Uo), los proxJgDCgF# 4U4U4U4UE2z~Fz~Fz~F 5U5U,5U,5UI/*H5U4U h5Uh5U5U5U5U5U5U5U5U5U 6Ulas de cursojgDE2CgF# 46U46U<6U<6U JFJFXbbH NO8JFJFXbbH # This script was automatically generated from the dsa-279 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Paul Szabo and Matt Zimmerman discovered two similar problems in metrics, a tools for software metrics. Two scripts in this package, "halstead" and "gather_stats", open temporary files without taking appropriate security precautions. "halstead" is installed as a user program, while "gather_stats" is only used in an auxiliary script included in the source code. These vulnerabilities could allow a local attacker to overwrite files owned by the user running the scripts, including root. The stable distribution (woody) is not affected since it doesn\'t contain a metrics package anymore. For the old stable distribution (potato) this problem has been fixed in version 1.0-1.1. The unstable distribution (sid) is not affected since it doesn\'t contain a metrics package anymore. We recommend that you upgrade your metrics package. Solution : http://www.debian.org/security/2003/dsa-279 Risk factor : High'; if (description) { script_id(15116); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "279"); script_cve_id("CVE-2003-0202"); script_bugtraq_id(7293); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA279] DSA-279-1 metrics"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-279-1 metrics"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'metrics', release: '2.2', reference: '1.0-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package metrics is vulnerable in Debian 2.2.\nUpgrade to metrics_1.0-1.1\n'); } if (deb_check(prefix: 'metrics', release: '2.2', reference: '1.0-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package metrics is vulnerable in Debian potato.\nUpgrade to metrics_1.0-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } |*wc   X  ,,     ,    I/* $  !!$!$!@!@!P!P! !H'7 (JwcCgF# !!!!4Bz~Fz~Fz~F """,","I/*H"! h"h""""""""" #Zs>ٗjwcCgF# 4#4#<#<#&z~Fz~Fz~F ####I/*#$# ##$$$$$$@$@$P$P$ $M)'^kCgF# $$$$Y,z~F JFJFXbbH QRS$JFJFXbbH # This script was automatically generated from the dsa-281 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Knud Erik Hjgaard discovered a vulnerability in moxftp (and xftp respectively), an Athena X interface to FTP. Insufficient bounds checking could lead to execution of arbitrary code, provided by a malicious FTP server. Erik Tews fixed this. For the stable distribution (woody) this problem has been fixed in version 2.2-18.1. For the old stable distribution (potato) this problem has been fixed in version 2.2-13.1. For the unstable distribution (sid) this problem has been fixed in version 2.2-18.20. We recommend that you upgrade your xftp package. Solution : http://www.debian.org/security/2003/dsa-281 Risk factor : High'; if (description) { script_id(15118); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "281"); script_cve_id("CVE-2003-0203"); script_bugtraq_id(6921); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA281] DSA-281-1 moxftp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-281-1 moxftp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xftp', release: '2.2', reference: '2.2-13.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xftp is vulnerable in Debian 2.2.\nUpgrade to xftp_2.2-13.1\n'); } if (deb_check(prefix: 'xftp', release: '3.0', reference: '2.2-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xftp is vulnerable in Debian 3.0.\nUpgrade to xftp_2.2-18.1\n'); } if (deb_check(prefix: 'moxftp', release: '3.1', reference: '2.2-18.20')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package moxftp is vulnerable in Debian 3.1.\nUpgrade to moxftp_2.2-18.20\n'); } if (deb_check(prefix: 'moxftp', release: '2.2', reference: '2.2-13.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package moxftp is vulnerable in Debian potato.\nUpgrade to moxftp_2.2-13.1\n'); } if (deb_check(prefix: 'moxftp', release: '3.0', reference: '2.2-18.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package moxftp is vulnerable in Debian woody.\nUpgrade to moxftp_2.2-18.1\n'); } if (w) { security_hole(port: 0, data: desc); } HC     ,    ,  ԜԬԠI/*$ $$@@PP l/C֒CgF# ԴԼԼ"z~Fz~Fz~F ,,ԠI/*HԤ hhԐԤ Խ9$3CCgF# 44<< #z~Fz~Fz~F ԜԬԠI/*$ $$@@PP |/gB CgF# Դ} JFJFXbbH UVJFJFXbbH # This script was automatically generated from the dsa-283 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ethan Benson discovered a problem in xfsdump, that contains administrative utilities for the XFS filesystem. When filesystem quotas are enabled xfsdump runs xfsdq to save the quota information into a file at the root of the filesystem being dumped. The manner in which this file is created is unsafe. While fixing this, a new option “-f path” has been added to xfsdq(8) to specify an output file instead of using the standard output stream. This file is created by xfsdq and xfsdq will fail to run if it exists already. The file is also created with a more appropriate mode than whatever the umask happened to be when xfsdump(8) was run. For the stable distribution (woody) this problem has been fixed in version 2.0.1-2. The old stable distribution (potato) is not affected since it doesn\'t contain xfsdump packages. For the unstable distribution (sid) this problem has been fixed in version 2.2.8-1. We recommend that you upgrade your xfsdump package immediately. Solution : http://www.debian.org/security/2003/dsa-283 Risk factor : High'; if (description) { script_id(15120); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "283"); script_cve_id("CVE-2003-0173"); script_bugtraq_id(7321); script_xref(name: "CERT", value: "111673"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA283] DSA-283-1 xfsdump"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-283-1 xfsdump"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xfsdump', release: '3.0', reference: '2.0.1-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xfsdump is vulnerable in Debian 3.0.\nUpgrade to xfsdump_2.0.1-2\n'); } if (deb_check(prefix: 'xfsdump', release: '3.1', reference: '2.2.8-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xfsdump is vulnerable in Debian 3.1.\nUpgrade to xfsdump_2.2.8-1\n'); } if (deb_check(prefix: 'xfsdump', release: '3.0', reference: '2.0.1-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xfsdump is vulnerable in Debian woody.\nUpgrade to xfsdump_2.0.1-2\n'); } if (w) { security_hole(port: 0, data: desc); }  l@?IVW!tS4     ,T  Po˚Ǜoe%@>K!F#e20Tzb@ +Pֱ~Ă.>@.Ӷό?]h B#QN?tލ7W:)-_O 8s#rI%ubQ;pNM90͓vCr]o>oy>x/P(M`; oW.o\3g]; VdPLػ0 LCS;]!7/,_yhƦ^>]9Ὗ nM&$_8w3&0"&X`|m،[^㱖uIOܘ"); script_name(english: "[DSA285] DSA-285-1 lprng"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-285-1 lprng"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lprng', release: '3.0', reference: '3.8.10-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lprng is vulnerable in Debian 3.0.\nUpgrade to lprng_3.8.10-1.2\n'); } if (deb_check(prefix: 'lprng-doc', release: '3.0', reference: '3.8.10-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lprng-doc is vulnerable in Debian 3.0.\nUpgrade to lprng-doc_3.8.10-1.2\n'); } if (deb_check(prefix: 'lprng', release: '3.1', reference: '3.8.20-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lprng is vulnerable in Debian 3.1.\nUpgrade to lprng_3.8.20-4\n'); } if (deb_check(prefix: 'lprng', release: '3.0', reference: '3.8.10-1.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lprng is vulnerable in Debian woody.\nUpgrade to lprng_3.8.10-1.2\n'); } if (w) { security_hole(port: 0, data: desc); } Ѵkq87h7   @  ,  mO\&_g 3&p F-OwLx|:pY-y ۮ'2x]yX s#;٠YlXdm90L,ؘn5A8:$@ysݦbkXa?فY0_-{>\TT5zg8=t1Q_aئS0 =g͸m۱4|iE;øO;7J̋*n?Wkö ^/,7_qca8}oҍPa)rz@]y.~PאַX]')_r@BI^r_D1ߝhN 5 ιalK(CZ`WdnFItWA`??WkՋZkV.0õ/X;dH(K:g<ē,(wߡ[:Q Wư(]hPܚz7T)+6`1}䘱(0N_dk3׾Eeοyo6_{vxLq4֩ ZɬG- ~ZP Gq@ ',^q*:q>G{ YVi3-}wXzkec0LЮ .۶zm۶m۶m۶m۶mwO=3ɜ';餪I'WuZIU;g z7bɰhnĴX43[Eu7x;߮t.mA|`eQ?8ӓIi}{EZG֟o5}'nYtS;K@:'=?\3?%㔐$;%Ad=-4%,:2+`~"*(_,j=Mk$s@\% =[Mؔ~4a֮Az6hdCf⚐^`J}=g-'e]ݘW9"(ƻjbt81ټj$Ukwg\%fz2_q"lő&G7c"5*rk./pP g<슁 {#\E7.7ȇHsҞ}UTNcmGD*qEj`6qP׷Dp_ڣNbIo}o[ki1{ۮ֫ |deÑPyݦ PNnNHh{+{QIlMXvj[uk* JFJFXbbH # This script was automatically generated from the dsa-286 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Paul Szabo discovered insecure creation of a temporary file in ps2epsi, a script that is distributed as part of gs-common which contains common files for different Ghostscript releases. ps2epsi uses a temporary file in the process of invoking ghostscript. This file was created in an insecure fashion, which could allow a local attacker to overwrite files owned by a user who invokes ps2epsi. For the stable distribution (woody) this problem has been fixed in version 0.3.3.0woody1. The old stable distribution (potato) is not affected by this problem. For the unstable distribution (sid) this problem has been fixed in version 0.3.3.1. We recommend that you upgrade your gs-common package. Solution : http://www.debian.org/security/2003/dsa-286 Risk factor : High'; if (description) { script_id(15123); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "286"); script_cve_id("CVE-2003-0207"); script_bugtraq_id(7337); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA286] DSA-286-1 gs-common"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-286-1 gs-common"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gs-common', release: '3.0', reference: '0.3.3.0woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gs-common is vulnerable in Debian 3.0.\nUpgrade to gs-common_0.3.3.0woody1\n'); } if (deb_check(prefix: 'gs-common', release: '3.1', reference: '0.3.3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gs-common is vulnerable in Debian 3.1.\nUpgrade to gs-common_0.3.3.1\n'); } if (deb_check(prefix: 'gs-common', release: '3.0', reference: '0.3.3.0woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gs-common is vulnerable in Debian woody.\nUpgrade to gs-common_0.3.3.0woody1\n'); } if (w) { security_hole(port: 0, data: desc); } ?ر|ƔT`(   0   ,    ,p  lhD{yaTR{o0st\am/;NnX1NK&٫ӄOaF7ͭ(,)]!2T`B })^е7cW17Dq^+{Dvط8bicf0uNSgr_1Se `'[\0+ |+%KPTLhliVwKf[crZuV!cF뉟k H>d"O 8E*Ɯ?ya"MI$o,#mg(Z[O4f*t9h1O18nO6 1$ a3N WEtl(|`}aF*BMҎB]BN xS )\mFlO⣫0 c#Y8=//ۂg3~>Ta׻cϋ/7 (S[ ¡xBι8>\:BҥBH\Z!=ZN6D3A)&sz-z-=SK`9nY{+#K|ѧ8cmPvnN&Cۑv7+dul!Lvj.E;ÝОn ݭ0Okz㈮s_oϋ_5f{{hz.vww}58pȷ JFJFXbbH Z[TJFJFXbbH # This script was automatically generated from the dsa-287 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Timo Sirainen discovered several problems in EPIC, a popular client for Internet Relay Chat (IRC). A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to executing of arbitrary code under the user id of the chatting user. For the stable distribution (woody) these problems have been fixed in version 3.004-17.1. For the old stable distribution (potato) these problems have been fixed in version 3.004-16.1. For the unstable distribution (sid) these problems have been fixed in version 3.004-19. We recommend that you upgrade your EPIC package. Solution : http://www.debian.org/security/2003/dsa-287 Risk factor : High'; if (description) { script_id(15124); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "287"); script_cve_id("CVE-2003-0324"); script_bugtraq_id(7091, 7103); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA287] DSA-287-1 epic"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-287-1 epic"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'epic', release: '2.2', reference: '3.004-16.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic is vulnerable in Debian 2.2.\nUpgrade to epic_3.004-16.1\n'); } if (deb_check(prefix: 'epic', release: '3.0', reference: '3.004-17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic is vulnerable in Debian 3.0.\nUpgrade to epic_3.004-17.1\n'); } if (deb_check(prefix: 'epic', release: '3.1', reference: '3.004-19')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic is vulnerable in Debian 3.1.\nUpgrade to epic_3.004-19\n'); } if (deb_check(prefix: 'epic', release: '2.2', reference: '3.004-16.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic is vulnerable in Debian potato.\nUpgrade to epic_3.004-16.1\n'); } if (deb_check(prefix: 'epic', release: '3.0', reference: '3.004-17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic is vulnerable in Debian woody.\nUpgrade to epic_3.004-17.1\n'); } if (w) { security_hole(port: 0, data: desc); } *WVMi`Yَķ     ,  THEbb|ݒ" )C32bc/Cfco$G5U%͚ &J#/rl[.˶nnT|5#!(Lam:uZr1G EPNXz\ >=͹ +wZ3~&Mh UDCU)|0s.W$\Sk @8iGl#@vГ׾@){nI.zAyᬢ<~j{ a;9 ;w!^pgJ1/MHr5r*ۼ\ܴs`oMwK**U*bt6rh¨Nٴ D,%- ! ,9h^OI@yp`J*X%},:. JFJFXbbH # This script was automatically generated from the dsa-289 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Sam Hocevar discovered a security problem in rinetd, an IP connection redirection server. When the connection list is full, rinetd resizes the list in order to store the new incoming connection. However, this is done improperly, resulting in a denial of service and potentially execution of arbitrary code. For the stable distribution (woody) this problem has been fixed in version 0.61-1.1. For the old stable distribution (potato) this problem has been fixed in version 0.52-2.1. For the unstable distribution (sid) this problem has been fixed in version 0.61-2 We recommend that you upgrade your rinetd package. Solution : http://www.debian.org/security/2003/dsa-289 Risk factor : High'; if (description) { script_id(15126); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "289"); script_cve_id("CVE-2003-0212"); script_bugtraq_id(7377); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA289] DSA-289-1 rinetd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-289-1 rinetd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'rinetd', release: '2.2', reference: '0.52-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rinetd is vulnerable in Debian 2.2.\nUpgrade to rinetd_0.52-2.1\n'); } if (deb_check(prefix: 'rinetd', release: '3.0', reference: '0.61-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rinetd is vulnerable in Debian 3.0.\nUpgrade to rinetd_0.61-1.1\n'); } if (deb_check(prefix: 'rinetd', release: '3.1', reference: '0')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rinetd is vulnerable in Debian 3.1.\nUpgrade to rinetd_0\n'); } if (deb_check(prefix: 'rinetd', release: '2.2', reference: '0.52-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rinetd is vulnerable in Debian potato.\nUpgrade to rinetd_0.52-2.1\n'); } if (deb_check(prefix: 'rinetd', release: '3.0', reference: '0.61-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rinetd is vulnerable in Debian woody.\nUpgrade to rinetd_0.61-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } PamzF6Fnߪ!     ,  b'l!^jsGtl Z%тJ*g5AQ4Հ*>!UM* 0hT0(G4[Nh8#-A\2w 6  / ֍E$:Hm~99}rd>tN\:O.w'NKg `mC;}oE+ҏVH93M, Owߚ W>n-;c~,Q !8gKIT8X{~`ۘ}6g[AV_/`]IL1losHvyD褉 !@m?h` bHH1x&cDH1p- %Hc$ %H#DH1u8͹!s%_لV#g܄9pHИN73'䮷aL{r+aGrMH A%f1~$iLj[*feC4_k<ᧃ;h,e0h6Jj&S]auLMjCsڪЈYh2"i쒦9뼺5`$6cI ـ)efM d/B2SVԠ0c: kֶ\s- фsnوqjՍ c&̩5b 1lDۈqlF ªVg(zsJ[׳ˮ4x=s_m~JWZu \ `W TA JFJFYbbH # This script was automatically generated from the dsa-290 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Michal Zalewski discovered a buffer overflow, triggered by a char to int conversion, in the address parsing code in sendmail, a widely used powerful, efficient, and scalable mail transport agent. This problem is potentially remotely exploitable. For the stable distribution (woody) this problem has been fixed in version 8.12.3+3.5Wbeta-5.4 For the old stable distribution (potato) this problem has been fixed in version 8.9.3+3.2W-25 For the unstable distribution (sid) this problem has been fixed in version 8.12.9+3.5Wbeta-1 We recommend that you upgrade your sendmail-wide packages. Solution : http://www.debian.org/security/2003/dsa-290 Risk factor : High'; if (description) { script_id(15127); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2003-b-0003"); script_version("$Revision: 1.8 $"); script_xref(name: "DSA", value: "290"); script_cve_id("CVE-2003-0161"); script_bugtraq_id(7230); script_xref(name: "CERT", value: "897604"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA290] DSA-290-1 sendmail-wide"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-290-1 sendmail-wide"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendmail-wide', release: '2.2', reference: '8.9.3+3.2W-25')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian 2.2.\nUpgrade to sendmail-wide_8.9.3+3.2W-25\n'); } if (deb_check(prefix: 'sendmail-wide', release: '3.0', reference: '8.12.3+3.5Wbeta-5.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian 3.0.\nUpgrade to sendmail-wide_8.12.3+3.5Wbeta-5.4\n'); } if (deb_check(prefix: 'sendmail-wide', release: '3.1', reference: '8.12.9+3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian 3.1.\nUpgrade to sendmail-wide_8.12.9+3\n'); } if (deb_check(prefix: 'sendmail-wide', release: '2.2', reference: '8.9.3+3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian potato.\nUpgrade to sendmail-wide_8.9.3+3\n'); } if (deb_check(prefix: 'sendmail-wide', release: '3.0', reference: '8.12.3+3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-wide is vulnerable in Debian woody.\nUpgrade to sendmail-wide_8.12.3+3\n'); } if (w) { security_hole(port: 0, data: desc); } DFHP_LaserJet_90   H   ,  ͜s2HFhx`;d|?$=vgONOݣC!QlΓgn"?1q#b;"/ǎO?@Cp |™ss2&ĘkF‸O ؋E<=:܌5Qܟ%ɱMCwA"`Qx ݇ǘt;vGΜω{gia(Es'74+ym`1@`Nv|B)Y8a}l>l2昙> :L+QL]hr:c iA քmmSV3ƒ$ƏTIDqNdz$O.T/.#( J<3w-byjG|HD! dy,P1</C;Ԯf239R ^Ј<-D/k dAl&"m=P{Y6jdBBZP! M9;!ӻnO^lL~Ww קcܞL&_\Cӹ:t|~9ҫ;rq~y~wה'G;?SD<=:'w@Npѧ[rzrBPpu}u~uz N.Ov7<#'29; >A1nG7=쎜]_D8?88a G'ni6.Og'<ݝ__!|ޥ?ON> *8vI OL㓃 9R @=`.6 !Xo,dg,<dž.bvgB_Cw!x9 N_m3h!å=D0lBllPAi_7p9u,q0i;6;g7Kכ]-܂n..z XΉ? Ѓ&gYd)ى.r JFJFYbbH # This script was automatically generated from the dsa-291 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Timo Sirainen discovered several problems in ircII, a popular client for Internet Relay Chat (IRC). A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to executing of arbitrary code under the user id of the chatting user. For the stable distribution (woody) these problems have been fixed in version 20020322-1.1. For the old stable distribution (potato) these problems have been fixed in version 4.4M-1.1. For the unstable distribution (sid) these problems have been fixed in version 20030315-1. We recommend that you upgrade your ircII package. Solution : http://www.debian.org/security/2003/dsa-291 Risk factor : High'; if (description) { script_id(15128); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "291"); script_cve_id("CVE-2003-0323"); script_bugtraq_id(7093, 7094, 7095, 7098); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA291] DSA-291-1 ircii"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-291-1 ircii"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ircii', release: '2.2', reference: '4.4M-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ircii is vulnerable in Debian 2.2.\nUpgrade to ircii_4.4M-1.1\n'); } if (deb_check(prefix: 'ircii', release: '3.0', reference: '20020322-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ircii is vulnerable in Debian 3.0.\nUpgrade to ircii_20020322-1.1\n'); } if (deb_check(prefix: 'ircii', release: '3.1', reference: '20030315-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ircii is vulnerable in Debian 3.1.\nUpgrade to ircii_20030315-1\n'); } if (deb_check(prefix: 'ircii', release: '2.2', reference: '4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ircii is vulnerable in Debian potato.\nUpgrade to ircii_4\n'); } if (deb_check(prefix: 'ircii', release: '3.0', reference: '20020322-1.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ircii is vulnerable in Debian woody.\nUpgrade to ircii_20020322-1.1\n'); } if (w) { security_hole(port: 0, data: desc); } FHP_LaserJet_90   x  ,L  D  ,  C!QlΣgn"?1q#bg;"ϡǎOCCp |™ss2&ĘkF‸ ؋E<=:{܌%Qw̟%ɱMCwA"`Qx t;vG>8Ϟ; Q8意n!h rbC!LyRpv})d 13}g;tV(PA3tu<#҂*A 'ڦfhi%IٍЉН";43.Is]^"]FPy fZsw3s>< d!C @ H#DY~c1!x 5_>0v]Pe/gs <O0y,Z_0ɂLEV<)zwl":҅( 6?vBAHK LNo?ܜ lL~tv-7 WdzcoN&ruC.N\<>-9?8+ʓ)\}'ggxGNn/prjrJFJFYbbH `aJFJFYbbH # This script was automatically generated from the dsa-292 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Colin Phipps discovered several problems in mime-support, that contains support programs for the MIME control files \'mime.types\' and \'mailcap\'. When a temporary file is to be used it is created insecurely, allowing an attacker to overwrite arbitrary under the user id of the person executing run-mailcap. When run-mailcap is executed on a file with a potentially problematic filename, a temporary file is created (not insecurely anymore), removed and a symbolic link to this filename is created. An attacker could recreate the file before the symbolic link is created, forcing the display program to display different content. For the stable distribution (woody) these problems have been fixed in version 3.18-1.3. For the old stable distribution (potato) these problems have been fixed in version 3.9-1.3. For the unstable distribution (sid) these problems have been fixed in version 3.23-1. We recommend that you upgrade your mime-support packages. Solution : http://www.debian.org/security/2003/dsa-292 Risk factor : High'; if (description) { script_id(15129); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "292"); script_cve_id("CVE-2003-0214"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA292] DSA-292-3 mime-support"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-292-3 mime-support"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mime-support', release: '2.2', reference: '3.9-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mime-support is vulnerable in Debian 2.2.\nUpgrade to mime-support_3.9-1.3\n'); } if (deb_check(prefix: 'mime-support', release: '3.0', reference: '3.18-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mime-support is vulnerable in Debian 3.0.\nUpgrade to mime-support_3.18-1.3\n'); } if (deb_check(prefix: 'mime-support', release: '3.1', reference: '3.23-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mime-support is vulnerable in Debian 3.1.\nUpgrade to mime-support_3.23-1\n'); } if (deb_check(prefix: 'mime-support', release: '2.2', reference: '3.9-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mime-support is vulnerable in Debian potato.\nUpgrade to mime-support_3.9-1.3\n'); } if (deb_check(prefix: 'mime-support', release: '3.0', reference: '3.18-1.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mime-support is vulnerable in Debian woody.\nUpgrade to mime-support_3.18-1.3\n'); } if (w) { security_hole(port: 0, data: desc); } bOJ!dG%Ó   H  ,   =ss緗ggȾy2 oKOaO 1~gj̨²).7ԚB/;JrCE4Knrڄ'!l4]0(}A &Kfߪ+"); script_name(english: "[DSA294] DSA-294-1 gkrellm-newsticker"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-294-1 gkrellm-newsticker"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gkrellm-newsticker', release: '3.0', reference: '0.3-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gkrellm-newsticker is vulnerable in Debian 3.0.\nUpgrade to gkrellm-newsticker_0.3-3.1\n'); } if (deb_check(prefix: 'gkrellm-newsticker', release: '3.0', reference: '0.3-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gkrellm-newsticker is vulnerable in Debian woody.\nUpgrade to gkrellm-newsticker_0.3-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } |AL2 d@H#/9   H   ,   ,X P ,$  ?1? 7C\ b6r_Ϲ'ܵ~O=Z ?#)Zd^4H{]/1U_Gmim]ǔ?u$rU?<ט]z)(Z}e Yl*aY ⸪ANFӬIZz" mM3Ɨ (|>|R  ] Io)w+8I!%TKWRkZ+~1gOϒ;J*ktL0ӷwZ"F^ԜTtj0S~ Ӟu.I`5RV{!3 A> y7oV=A7k8n[ 3;ǺqoysCEoylȯ}IN露2fS6Z\'VrQa# 'pOp9 ħdA fA P"%O%\x~`Ql~#~-[}!y//6.kX&D K?DuǨB^ظw$N7@br\Kr8"r@<'ҼOT.DjWWFObǦ&ҨҋMEFF$U= 'hJ؀FPo JFJFYbbH fgrJFJFYbbH deJFJFYbbH # This script was automatically generated from the dsa-295 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Timo Sirainen discovered a vulnerability in pptpd, a Point to Point Tunneling Server, which implements PPTP-over-IPSEC and is commonly used to create Virtual Private Networks (VPN). By specifying a small packet length an attacker is able to overflow a buffer and execute code under the user id that runs pptpd, probably root. An exploit for this problem is already circulating. For the stable distribution (woody) this problem has been fixed in version 1.1.2-1.4. For the old stable distribution (potato) this problem has been fixed in version 1.0.0-4.2. For the unstable distribution (sid) this problem has been fixed in version 1.1.4-0.b3.2. We recommend that you upgrade your pptpd package immediately. Solution : http://www.debian.org/security/2003/dsa-295 Risk factor : High'; if (description) { script_id(15132); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "295"); script_cve_id("CVE-2003-0213"); script_bugtraq_id(7316); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA295] DSA-295-1 pptpd"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-295-1 pptpd"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'pptpd', release: '2.2', reference: '1.0.0-4.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pptpd is vulnerable in Debian 2.2.\nUpgrade to pptpd_1.0.0-4.2\n'); } if (deb_check(prefix: 'pptpd', release: '3.0', reference: '1.1.2-1.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pptpd is vulnerable in Debian 3.0.\nUpgrade to pptpd_1.1.2-1.4\n'); } if (deb_check(prefix: 'pptpd', release: '3.1', reference: '1.1.4-0.b3.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pptpd is vulnerable in Debian 3.1.\nUpgrade to pptpd_1.1.4-0.b3.2\n'); } if (deb_check(prefix: 'pptpd', release: '2.2', reference: '1.0.0-4.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pptpd is vulnerable in Debian potato.\nUpgrade to pptpd_1.0.0-4.2\n'); } if (deb_check(prefix: 'pptpd', release: '3.0', reference: '1.1.2-1.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package pptpd is vulnerable in Debian woody.\nUpgrade to pptpd_1.1.2-1.4\n'); } if (w) { security_hole(port: 0, data: desc); } -2m D{J  h ,<  dD'[# This script was automatically generated from the dsa-299 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Maurice Massar discovered that, due to a packaging error, the program /usr/bin/KATAXWR was inadvertently installed setuid root. This program was not designed to run setuid, and contained multiple vulnerabilities which could be exploited to gain root privileges. For the stable distribution (woody) this problem has been fixed in version 1.2-3.1. The old stable distribution (potato) does not contain a leksbot package. For the unstable distribution (sid) this problem has been fixed in version 1.2-5. We recommend that you update your leksbot package. Solution : http://www.debian.org/security/2003/dsa-299 Risk factor : High'; if  JFJFYbbH # This script was automatically generated from the dsa-298 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Timo Sirainen discovered several problems in EPIC4, a popular client for Internet Relay Chat (IRC). A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to executing of arbitrary code under the user id of the chatting user. For the stable distribution (woody) these problems have been fixed in version 1.1.2.20020219-2.1. For the old stable distribution (potato) these problems have been fixed in version pre2.508-2.3. For the unstable distribution (sid) these problems have been fixed in version 1.1.11.20030409-1. We recommend that you upgrade your EPIC4 package. Solution : http://www.debian.org/security/2003/dsa-298 Risk factor : High'; if (description) { script_id(15135); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "298"); script_cve_id("CVE-2003-0323"); script_bugtraq_id(7093, 7094, 7095, 7098); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA298] DSA-298-1 epic4"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-298-1 epic4"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'epic4', release: '2.2', reference: 'pre2.508-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4 is vulnerable in Debian 2.2.\nUpgrade to epic4_pre2.508-2.3\n'); } if (deb_check(prefix: 'epic4', release: '3.0', reference: '1.1.2.20020219-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4 is vulnerable in Debian 3.0.\nUpgrade to epic4_1.1.2.20020219-2.1\n'); } if (deb_check(prefix: 'epic4', release: '3.1', reference: '1.1.11.20030409-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4 is vulnerable in Debian 3.1.\nUpgrade to epic4_1.1.11.20030409-1\n'); } if (deb_check(prefix: 'epic4', release: '2.2', reference: 'pre2.508-2.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4 is vulnerable in Debian potato.\nUpgrade to epic4_pre2.508-2.3\n'); } if (deb_check(prefix: 'epic4', release: '3.0', reference: '1.1.2.20020219-2.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package epic4 is vulnerable in Debian woody.\nUpgrade to epic4_1.1.2.20020219-2.1\n'); } if (w) { security_hole(port: 0, data: desc); } XeQ >;d౿J  8  ,    , ).7ԚB;JrCE4Knrڄ'W!l4]0(}A &Kfߪ=]eY,a/w0[+rKw G>2pqx=nINh1(hk] /K% JFJFYbbH # This script was automatically generated from the dsa-300 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Byrial Jensen discovered a couple of off-by-one buffer overflow in the IMAP code of Mutt, a text-oriented mail reader supporting IMAP, MIME, GPG, PGP and threading. This code is imported in the Balsa package. This problem could potentially allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder. For the stable distribution (woody) this problem has been fixed in version 1.2.4-2.2. The old stable distribution (potato) does not seem to be affected by this problem. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your balsa package. Solution : http://www.debian.org/security/2003/dsa-300 Risk factor : High'; if (description) { script_id(15137); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "300"); script_cve_id("CVE-2003-0167"); script_bugtraq_id(7229); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA300] DSA-300-1 balsa"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-300-1 balsa"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'balsa', release: '3.0', reference: '1.2.4-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package balsa is vulnerable in Debian 3.0.\nUpgrade to balsa_1.2.4-2.2\n'); } if (deb_check(prefix: 'balsa', release: '3.0', reference: '1.2.4-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package balsa is vulnerable in Debian woody.\nUpgrade to balsa_1.2.4-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFYbbH (description) { script_id(15136); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "299"); script_cve_id("CVE-2003-0262"); script_bugtraq_id(7505); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA299] DSA-299-1 leksbot"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-299-1 leksbot"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'leksbot', release: '3.0', reference: '1.2-3.1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package leksbot is vulnerable in Debian 3.0.\nUpgrade to leksbot_1.2-3.1woody1\n'); } if (deb_check(prefix: 'leksbot', release: '3.1', reference: '1.2-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package leksbot is vulnerable in Debian 3.1.\nUpgrade to leksbot_1.2-5\n'); } if (deb_check(prefix: 'leksbot', release: '3.0', reference: '1.2-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package leksbot is vulnerable in Debian woody.\nUpgrade to leksbot_1.2-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } ~*H56^V  x ,L  df,# This script was automatically generated from the dsa-302 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Joey Hess discovered that fuzz, a software stress-testing tool, creates a temporary file without taking appropriate security precautions. This bug could allow an attacker to gain the privileges of the user invoking fuzz, excluding root (fuzz does not allow itself to be invoked as root). For the stable distribution (woody) this problem has been fixed in version 0.6-6woody1. The old stable distribution (potato) does not contain a fuzz package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your fuzz package. Solution : http://www.debian.org/security/2003/dsa-302 Risk factor : High'; if (desc/JFJFYbbH # This script was automatically generated from the dsa-301 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' The gtop daemon, used for monitoring remote machines, contains a buffer overflow which could be used by an attacker to execute arbitrary code with the privileges of the daemon process. If started as root, the daemon process drops root privileges, assuming uid and gid 99 by default. This bug was previously fixed in DSA-098, but one of the patches was not carried over to later versions of libgtop. For the stable distribution (woody), this problem has been fixed in version 1.0.13-3.1. For the old stable distribution (potato), this problem was fixed in DSA-098. For the unstable distribution (sid), this problem has been fixed in version 1.0.13-4. We recommend that you update your libgtop package. Solution : http://www.debian.org/security/2003/dsa-301 Risk factor : High'; if (description) { script_id(15138); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "301"); script_cve_id("CVE-2001-0928"); script_bugtraq_id(3594); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA301] DSA-301-1 libgtop"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-301-1 libgtop"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'libgtop-daemon', release: '3.0', reference: '1.0.13-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop-daemon is vulnerable in Debian 3.0.\nUpgrade to libgtop-daemon_1.0.13-3.1\n'); } if (deb_check(prefix: 'libgtop-dev', release: '3.0', reference: '1.0.13-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop-dev is vulnerable in Debian 3.0.\nUpgrade to libgtop-dev_1.0.13-3.1\n'); } if (deb_check(prefix: 'libgtop1', release: '3.0', reference: '1.0.13-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop1 is vulnerable in Debian 3.0.\nUpgrade to libgtop1_1.0.13-3.1\n'); } if (deb_check(prefix: 'libgtop', release: '3.1', reference: '1.0.13-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop is vulnerable in Debian 3.1.\nUpgrade to libgtop_1.0.13-4\n'); } if (deb_check(prefix: 'libgtop', release: '3.0', reference: '1.0.13-3.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libgtop is vulnerable in Debian woody.\nUpgrade to libgtop_1.0.13-3.1\n'); } if (w) { security_hole(port: 0, data: desc); } ,FHP_LaserJet_90  H  ,    ,X   X  , p |™ JFJFYbbH # This script was automatically generated from the dsa-304 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Leonard Stiles discovered that lv, a multilingual file viewer, would read options from a configuration file in the current directory. Because such a file could be placed there by a malicious user, and lv configuration options can be used to execute commands, this represented a security vulnerability. An attacker could gain the privileges of the user invoking lv, including root. For the stable distribution (woody) this problem has been fixed in version 4.49.4-7woody2. For the old stable distribution (potato) this problem has been fixed in version 4.49.3-4potato2. For the unstable distribution (sid) this problem is fixed in version 4.49.5-2. We recommend that you update your lv package. Solution : http://www.debian.org/security/2003/dsa-304 Risk factor : High'; if (description) { script_id(15141); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "304"); script_cve_id("CVE-2003-0188"); script_bugtraq_id(7613); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA304] DSA-304-1 lv"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-304-1 lv"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lv', release: '2.2', reference: '4.49.3-4potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lv is vulnerable in Debian 2.2.\nUpgrade to lv_4.49.3-4potato2\n'); } if (deb_check(prefix: 'lv', release: '3.0', reference: '4.49.5-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lv is vulnerable in Debian 3.0.\nUpgrade to lv_4.49.5-2\n'); } if (deb_check(prefix: 'lv', release: '2.2', reference: '4.49.3-4potato2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lv is vulnerable in Debian potato.\nUpgrade to lv_4.49.3-4potato2\n'); } if (deb_check(prefix: 'lv', release: '3.0', reference: '4.49.4-7woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lv is vulnerable in Debian woody.\nUpgrade to lv_4.49.4-7woody2\n'); } if (w) { security_hole(port: 0, data: desc); } U JFJFYbbH mnGJFJFYbbH ription) { script_id(15139); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "302"); script_cve_id("CVE-2003-0261"); script_bugtraq_id(7521); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA302] DSA-302-1 fuzz"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-302-1 fuzz"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'fuzz', release: '3.0', reference: '0.6-6woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fuzz is vulnerable in Debian 3.0.\nUpgrade to fuzz_0.6-6woody1\n'); } if (deb_check(prefix: 'fuzz', release: '3.0', reference: '0.6-6woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package fuzz is vulnerable in Debian woody.\nUpgrade to fuzz_0.6-6woody1\n'); } if (w) { security_hole(port: 0, data: desc); } $FHP_LaserJet_90     ,    ,  C!QlΣgn"?1q#bg;"ϡǎOCCp |™ss2&ĘkF‸ ؋E<=:{܌%Qw̟%ɱMCwA"`Qx t;vG>8Ϟ; Q8意n!h rbC!LyRpv})d 13}g;tV(PA3tu<#҂*A 'ڦfhi%IٍЉН";43.Is]^"]FPy fZsw3s>< d!C @ H#DY~c1!x 5_>0v]Pe/gs <O0y,Z_0ɂLEV<)zwl":҅( 6?vBAHK LNo?ܜ lL~tv-7 WdzcoN&ruC.N\<>-9?8+ʓ)\}'ggxGNn/prjrBPpyuyvyzN.N.ow7<#'? |88? >B1nGW9-pu~|O1]#?P+ٸ>Gt{vuHxJ|sR:#7g JFJFYbbH qJFJFYbbH # This script was automatically generated from the dsa-305 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Paul Szabo discovered bugs in three scripts included in the sendmail package where temporary files were created insecurely (expn, checksendmail and doublebounce.pl). These bugs could allow an attacker to gain the privileges of a user invoking the script (including root). For the stable distribution (woody) these problems have been fixed in version 8.12.3-6.4. For the old stable distribution (potato) these problems have been fixed in version 8.9.3-26.1. For the unstable distribution (sid) these problems have been fixed in version 8.12.9-2. We recommend that you update your sendmail package. Solution : http://www.debian.org/security/2003/dsa-305 Risk factor : High'; if (description) { script_id(15142); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "305"); script_cve_id("CVE-2003-0308"); script_bugtraq_id(7614); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA305] DSA-305-1 sendmail"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-305-1 sendmail"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'sendmail', release: '2.2', reference: '8.9.3-26.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 2.2.\nUpgrade to sendmail_8.9.3-26.1\n'); } if (deb_check(prefix: 'libmilter-dev', release: '3.0', reference: '8.12.3-6.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter-dev is vulnerable in Debian 3.0.\nUpgrade to libmilter-dev_8.12.3-6.4\n'); } if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.9-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.0.\nUpgrade to sendmail_8.12.9-2\n'); } if (deb_check(prefix: 'sendmail-doc', release: '3.0', reference: '8.12.3-6.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-doc is vulnerable in Debian 3.0.\nUpgrade to sendmail-doc_8.12.3-6.4\n'); } if (deb_check(prefix: 'sendmail', release: '2.2', reference: '8.9.3-26.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian potato.\nUpgrade to sendmail_8.9.3-26.1\n'); } if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-6.4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian woody.\nUpgrade to sendmail_8.12.3-6.4\n'); } if (w) { security_hole(port: 0, data: desc); }  /(PQX   h  ,<   d5:# This script was automatically generated from the dsa-308 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Paul Szabo discovered that znew, a script included in the gzip package, creates its temporary files without taking precautions to avoid a symlink attack (CVE-2003-0367). The gzexe script has a similar vulnerability which was patched in an earlier release but inadvertently reverted. For the stable distribution (woody) both problems have been fixed in version 1.3.2-3woody1. For the old stable distribution (potato) CVE-2003-0367 has been fixed in version 1.2.4-33.2. This version is not vulnerable to CVE-1999-1332 due to an earlier patch. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your gzip package. Solution : http://www.debian.org/security/2003/dsa-308 Risk factor : High'; if (description) { script_id(15145); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "308"); script_cve_id("CVE-2003-0367", "CVE-X JFJFYbbH # This script was automatically generated from the dsa-307 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' gPS is a graphical application to watch system processes. In release 1.1.0 of the gps package, several security vulnerabilities were fixed, as detailed in the changelog: All of these problems affect Debian\'s gps package version 0.9.4-1 in Debian woody. Debian potato also contains a gps package (version 0.4.1-2), but it is not affected by these problems, as the relevant functionality is not implemented in that version. For the stable distribution (woody) these problems have been fixed in version 0.9.4-1woody1. The old stable distribution (potato) is not affected by these problems. For the unstable distribution (sid) these problems are fixed in version 1.1.0-1. We recommend that you update your gps package. Solution : http://www.debian.org/security/2003/dsa-307 Risk factor : High'; if (description) { script_id(15144); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "307"); script_cve_id("CVE-2003-0360", "CVE-2003-0361", "CVE-2003-0362"); script_bugtraq_id(7736); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA307] DSA-307-1 gps"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-307-1 gps"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gps', release: '3.0', reference: '0.9.4-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gps is vulnerable in Debian 3.0.\nUpgrade to gps_0.9.4-1woody1\n'); } if (deb_check(prefix: 'rgpsp', release: '3.0', reference: '0.9.4-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package rgpsp is vulnerable in Debian 3.0.\nUpgrade to rgpsp_0.9.4-1woody1\n'); } if (deb_check(prefix: 'gps', release: '3.1', reference: '1.1.0-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gps is vulnerable in Debian 3.1.\nUpgrade to gps_1.1.0-1\n'); } if (deb_check(prefix: 'gps', release: '3.0', reference: '0.9.4-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gps is vulnerable in Debian woody.\nUpgrade to gps_0.9.4-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } 9s˩ _"r      ,T    4  ,  *FBNT A!8+:bhC:pz5i 4#=zE-A8;Biho+zXݹŏ47t1ɧ~g#qw`v`"X`:J.K8ѩ ш:J4(M#E;}Z1NW!N}{ :m=sj/#"b.e6v7QJm]m[uD0-hMcQwkMK.{p/Q̷¿I4Hĩ4LCz*˦NI4QR.2 d87vs1 Zݦ0/obj qtH8ȷ/5ea JFJFYbbH # This script was automatically generated from the dsa-309 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' "bazarr" discovered that eterm is vulnerable to a buffer overflow of the ETERMPATH environment variable. This bug can be exploited to gain the privileges of the group "utmp" on a system where eterm is installed. For the stable distribution (woody), this problem has been fixed in version 0.9.2-0pre2002042903.1. The old stable distribution (potato) is not affected by this bug. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your eterm package. Solution : http://www.debian.org/security/2003/dsa-309 Risk factor : High'; if (description) { script_id(15146); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "309"); script_cve_id("CVE-2003-0382"); script_bugtraq_id(7708); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA309] DSA-309-1 eterm"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-309-1 eterm"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'eterm', release: '3.0', reference: '0.9.2-0pre2002042903.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eterm is vulnerable in Debian 3.0.\nUpgrade to eterm_0.9.2-0pre2002042903.1\n'); } if (deb_check(prefix: 'eterm', release: '3.0', reference: '0.9.2-0pre2002042903.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eterm is vulnerable in Debian woody.\nUpgrade to eterm_0.9.2-0pre2002042903.1\n'); } if (w) { security_hole(port: 0, data: desc); }  JFJFYbbH 1999-1332"); script_bugtraq_id(7845, 7872); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA308] DSA-308-1 gzip"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-308-1 gzip"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gzip', release: '2.2', reference: '1.2.4-33.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gzip is vulnerable in Debian 2.2.\nUpgrade to gzip_1.2.4-33.2\n'); } if (deb_check(prefix: 'gzip', release: '3.0', reference: '1.3.2-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gzip is vulnerable in Debian 3.0.\nUpgrade to gzip_1.3.2-3woody1\n'); } if (deb_check(prefix: 'gzip', release: '2.2', reference: '1.2.4-33.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gzip is vulnerable in Debian potato.\nUpgrade to gzip_1.2.4-33.2\n'); } if (deb_check(prefix: 'gzip', release: '3.0', reference: '1.3.2-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gzip is vulnerable in Debian woody.\nUpgrade to gzip_1.3.2-3woody1\n'); } if (w) { security_hole(port: 0, data: desc); } aO.ϙ学    ,   ,| t ,H D]sޕ8|Q{։-bE*Gx8SRu6 4ۈgOXdg(wYn]b@܇H1U 6ڀǒGo|䥾Fo'yOFMNnz0l-GKFtk`\'j]{pnonFmz~tit5m/6Jq zpM=hb`E~>5BV,Ha1>Jk|ġ}Ykhح闆lyO!UՀL;+ԿcC/Śmi@vi'~>K?XǃYg5d5 ۶tZHA,ټW/.pꯦ|F8^4lQOg)xn (a`QW) w]N,JFJFYbbH # This script was automatically generated from the dsa-310 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' XaoS, a program for displaying fractal images, is installed setuid root on certain architectures in order to use svgalib, which requires access to the video hardware. However, it is not designed for secure setuid execution, and can be exploited to gain root privileges. In these updated packages, the setuid bit has been removed from the xaos binary. Users who require the svgalib functionality should grant these privileges only to a trusted group. This vulnerability is exploitable in version 3.0-18 (potato) on i386 and alpha architectures, and in version 3.0-23 (woody) on the i386 architecture only. For the stable distribution (woody) this problem has been fixed in version 3.0-23woody1. For the old stable distribution (potato) this problem has been fixed in version 3.0-18potato1. For the unstable distribution (sid) this problem has been fixed in version 3.1r-4. We recommend that you update your xaos package. Solution : http://www.debian.org/security/2003/dsa-310 Risk factor : High'; if (description) { script_id(15147); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "310"); script_cve_id("CVE-2003-0385"); script_bugtraq_id(7838); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA310] DSA-310-1 xaos"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-310-1 xaos"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xaos', release: '2.2', reference: '3.0-18potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xaos is vulnerable in Debian 2.2.\nUpgrade to xaos_3.0-18potato1\n'); } if (deb_check(prefix: 'xaos', release: '3.0', reference: '3.0-23woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xaos is vulnerable in Debian 3.0.\nUpgrade to xaos_3.0-23woody1\n'); } if (deb_check(prefix: 'xaos', release: '3.1', reference: '3.1r-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xaos is vulnerable in Debian 3.1.\nUpgrade to xaos_3.1r-4\n'); } if (deb_check(prefix: 'xaos', release: '2.2', reference: '3.0-18potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xaos is vulnerable in Debian potato.\nUpgrade to xaos_3.0-18potato1\n'); } if (deb_check(prefix: 'xaos', release: '3.0', reference: '3.0-23woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xaos is vulnerable in Debian woody.\nUpgrade to xaos_3.0-23woody1\n'); } if (w) { security_hole(port: 0, data: desc); } <"msBl)<ަ  P  , luU0pm$ֳu.++O`O#?[ٜ~Fo's _@]$H cl^e+`-3dws.ׯirOkz;l;w]x33w=uakx 郭p=oh2>=@_t%Ѽ^l4KՁx$-U,'P-hߜFy)>iUȲTRKqJ?A[BW)D̦:R bu0N<oўni*Jo÷xWYw1Fi9AFj@FXp[гQXT#nY"gw+X}ΰݮ`_ځ{WӰ{79s~.>C\#pAw3:-Njnv!clIۄ:h528r%Hf2tF :wt˛V~IeFXLG++ԍ;m- ӵqWò&TbP]-'߅ukYoyXNw$n[`| E(BU"); script_name(english: "[DSA313] DSA-313-1 ethereal"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-313-1 ethereal"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.0.\nUpgrade to ethereal_0.9.4-1woody4\n'); } if (deb_check(prefix: 'ethereal-common', release: '3.0', reference: '0.9.4-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-common is vulnerable in Debian 3.0.\nUpgrade to ethereal-common_0.9.4-1woody4\n'); } if (deb_check(prefix: 'ethereal-dev', release: '3.0', reference: '0.9.4-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-dev is vulnerable in Debian 3.0.\nUpgrade to ethereal-dev_0.9.4-1woody4\n'); } if (deb_check(prefix: 'tethereal', release: '3.0', reference: '0.9.4-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tethereal is vulnerable in Debian 3.0.\nUpgrade to tethereal_0.9.4-1woody4\n'); } if (deb_check(prefix: 'ethereal', release: '3.1', reference: '0.9.12-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.1.\nUpgrade to ethereal_0.9.12-1\n'); } if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian woody.\nUpgrade to ethereal_0.9.4-1woody4\n'); } if (w) { security_hole(port: 0, data: desc); } ]ۚd;VK|2¦  P ,$  dF # This script was automatically generated from the dsa-315 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Bas Wijnen discovered that the gnocatan server is vulnerable to several buffer overflows which could be exploited to execute arbitrary code on the server system. For the stable distribution (woody), this problem has been fixed in version 0.6.1-5woody2. The old stable distribution (potato) does not contain a gnocatan package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your gnocatan package. Solution : http://www.debian.org/security/2003/dsa-315 Risk factor : High'; if (description) { script_id(15152); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "315"); script_cve_id("CVE-2003-0433"); script_bugtraq_id(7877); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA315] DSA-315-1 gnocatan"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-315-1 gnocatan"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'gnocatan-client', release: '3.0', reference: '0.6.1-5woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnocatan-client is vulnerable in Debian 3.0.\nUpgrade to gnoc JFJFYbbH # This script was automatically generated from the dsa-314 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Rick Patel discovered that atftpd is vulnerable to a buffer overflow when a long filename is sent to the server. An attacker could exploit this bug remotely to execute arbitrary code on the server. For the stable distribution (woody), this problem has been fixed in version 0.6.1.1.0woody1. The old stable distribution (potato) does not contain an atftp package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your atftp package. Solution : http://www.debian.org/security/2003/dsa-314 Risk factor : High'; if (description) { script_id(15151); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "314"); script_cve_id("CVE-2003-0380"); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA314] DSA-314-1 atftp"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-314-1 atftp"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'atftp', release: '3.0', reference: '0.6.0woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package atftp is vulnerable in Debian 3.0.\nUpgrade to atftp_0.6.0woody1\n'); } if (deb_check(prefix: 'atftpd', release: '3.0', reference: '0.6.0woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package atftpd is vulnerable in Debian 3.0.\nUpgrade to atftpd_0.6.0woody1\n'); } if (deb_check(prefix: 'atftp', release: '3.0', reference: '0.6.1.1.0woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package atftp is vulnerable in Debian woody.\nUpgrade to atftp_0.6.1.1.0woody1\n'); } if (w) { security_hole(port: 0, data: desc); }  FKyocera_FS-200    ,    ,  x  ,L   0  ,   , n5rC)p,8B@(YZ݆FsH]S.l&ܒjMIE~ڹĦk tD cGFX(A;_WJ=~B= j"+;0Pj0 JFJFYbbH )JFJFYbbH # This script was automatically generated from the dsa-318 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Calle Dybedahl discovered a bug in lyskom-server which could result in a denial of service where an unauthenticated user could cause the server to become unresponsive as it processes a large query. For the stable distribution (woody) this problem has been fixed in version 2.0.6-1woody1. The old stable distribution (potato) does not contain a lyskom-server package. For the unstable distribution (sid) this problem is fixed in version 2.0.7-2. We recommend that you update your lyskom-server package. Solution : http://www.debian.org/security/2003/dsa-318 Risk factor : High'; if (description) { script_id(15155); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "318"); script_cve_id("CVE-2003-0366"); script_bugtraq_id(7893); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA318] DSA-318-1 lyskom-server"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-318-1 lyskom-server"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'lyskom-server', release: '3.0', reference: '2.0.6-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lyskom-server is vulnerable in Debian 3.0.\nUpgrade to lyskom-server_2.0.6-1woody1\n'); } if (deb_check(prefix: 'lyskom-server', release: '3.1', reference: '2.0.7-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lyskom-server is vulnerable in Debian 3.1.\nUpgrade to lyskom-server_2.0.7-2\n'); } if (deb_check(prefix: 'lyskom-server', release: '3.0', reference: '2.0.6-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package lyskom-server is vulnerable in Debian woody.\nUpgrade to lyskom-server_2.0.6-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } * JFJFYbbH JFJFYbbH ~<JFJFYbbH atan-client_0.6.1-5woody2\n'); } if (deb_check(prefix: 'gnocatan-data', release: '3.0', reference: '0.6.1-5woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnocatan-data is vulnerable in Debian 3.0.\nUpgrade to gnocatan-data_0.6.1-5woody2\n'); } if (deb_check(prefix: 'gnocatan-help', release: '3.0', reference: '0.6.1-5woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnocatan-help is vulnerable in Debian 3.0.\nUpgrade to gnocatan-help_0.6.1-5woody2\n'); } if (deb_check(prefix: 'gnocatan-server', release: '3.0', reference: '0.6.1-5woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnocatan-server is vulnerable in Debian 3.0.\nUpgrade to gnocatan-server_0.6.1-5woody2\n'); } if (deb_check(prefix: 'gnocatan', release: '3.0', reference: '0.6.1-5woody2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnocatan is vulnerable in Debian woody.\nUpgrade to gnocatan_0.6.1-5woody2\n'); } if (w) { security_hole(port: 0, data: desc); } FKyocera_FS-170  h ,<  d>K4# This script was automatically generated from the dsa-321 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' radiusd-cistron contains a bug allowing a buffer overflow when a long NAS-Port attribute is received. This could allow a remote attacker to execute arbitrary code on the server with the privileges of the RADIUS daemon (usually root). For the stable distribution (woody) this problem has been fixed in version 1.6.6-1woody1. For the old stable distribution (potato), this problem will be fixed in a later advisory. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your radiusd-cistron package. Solution : http://www.debian.org/security/2003/dsa-321 Risk factor : High'; if (description) { script_id(15158); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "321"); script_cve_id("CVE-2003-0450"); script_bugtraq_id(7892); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA321] DSA-321-1 radiusd-cistron"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/DzJFJFYbbH # This script was automatically generated from the dsa-320 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Ingo Saitz discovered a bug in mikmod whereby a long filename inside an archive file can overflow a buffer when the archive is being read by mikmod. For the stable distribution (woody) this problem has been fixed in version 3.1.6-4woody3. For old stable distribution (potato) this problem has been fixed in version 3.1.6-2potato3. For the unstable distribution (sid) this problem is fixed in version 3.1.6-6. We recommend that you update your mikmod package. Solution : http://www.debian.org/security/2003/dsa-320 Risk factor : High'; if (description) { script_id(15157); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "320"); script_cve_id("CVE-2003-0427"); script_bugtraq_id(7914); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA320] DSA-320-1 mikmod"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-320-1 mikmod"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mikmod', release: '2.2', reference: '3.1.6-2potato3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mikmod is vulnerable in Debian 2.2.\nUpgrade to mikmod_3.1.6-2potato3\n'); } if (deb_check(prefix: 'mikmod', release: '3.0', reference: '3.1.6-4woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mikmod is vulnerable in Debian 3.0.\nUpgrade to mikmod_3.1.6-4woody3\n'); } if (deb_check(prefix: 'mikmod', release: '3.1', reference: '3.1.6-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mikmod is vulnerable in Debian 3.1.\nUpgrade to mikmod_3.1.6-6\n'); } if (deb_check(prefix: 'mikmod', release: '3.0', reference: '3.1.6-4woody3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mikmod is vulnerable in Debian woody.\nUpgrade to mikmod_3.1.6-4woody3\n'); } if (w) { security_hole(port: 0, data: desc); } $]Ghlzk|  X  ,,    , |,Ku1͝%Z<ЄHF"5sXYdǯN )M'9d,t) M+z & ֕Ns9V뤡^± !jWWQFlו'kd b WUҸ.V*MY2*K5YVK28U-g JqE5o1Pv2PojPv' F*Ķrw(0j;zڑ\u^}eB, 1V4Q`Q k?A(JqvN6۰#LI喞SHUOt}2[}2Zn']N8ʖ#XA 4 rlHRAW)YYش.G46e6N fJ͸1ш EOVhbaY W)yYɎJt $<(2[ u CXŝ;v>{6 JFJFYbbH # This script was automatically generated from the dsa-322 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' typespeed is a game which challenges the player to type words correctly and quickly. It contains a network play mode which allows players on different systems to play competitively. The network code contains a buffer overflow which could allow a remote attacker to execute arbitrary code under the privileges of the user invoking typespeed, in addition to gid games. For the stable distribution (woody) this problem has been fixed in version 0.4.1-2.2. For the old stable distribution (potato) this problem has been fixed in version 0.4.0-5.2. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your typespeed package. Solution : http://www.debian.org/security/2003/dsa-322 Risk factor : High'; if (description) { script_id(15159); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "322"); script_cve_id("CVE-2003-0435"); script_bugtraq_id(7891); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA322] DSA-322-1 typespeed"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-322-1 typespeed"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'typespeed', release: '2.2', reference: '0.4.0-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian 2.2.\nUpgrade to typespeed_0.4.0-5.2\n'); } if (deb_check(prefix: 'typespeed', release: '3.0', reference: '0.4.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian 3.0.\nUpgrade to typespeed_0.4.1-2.2\n'); } if (deb_check(prefix: 'typespeed', release: '2.2', reference: '0.4.0-5.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian potato.\nUpgrade to typespeed_0.4.0-5.2\n'); } if (deb_check(prefix: 'typespeed', release: '3.0', reference: '0.4.1-2.2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package typespeed is vulnerable in Debian woody.\nUpgrade to typespeed_0.4.1-2.2\n'); } if (w) { security_hole(port: 0, data: desc); } | JFJFYbbH ebian/dpkg-l"); script_summary(english: "DSA-321-1 radiusd-cistron"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'radiusd-cistron', release: '3.0', reference: '1.6.6-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package radiusd-cistron is vulnerable in Debian 3.0.\nUpgrade to radiusd-cistron_1.6.6-1woody1\n'); } if (deb_check(prefix: 'radiusd-cistron', release: '3.0', reference: '1.6.6-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package radiusd-cistron is vulnerable in Debian woody.\nUpgrade to radiusd-cistron_1.6.6-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } T[NloɆU뜄֦  8  , ۶:c۶mF۶tlwΗviZu6~ue$hmXcK h5aCһkcu5fWJ{uRnE^rV/hg!K/{)g}=*:01N1r&tyw;ËT ! q1ؿ)˧/5Chwqz r 2%8RniiӨaRg?4~8f :hrUo$ci{#BK[uxԂ 4ʆ%A+kvGoJ 6Q gUJ;ގ *mQjr6 j-EX^ -OrA3 pUGsJDc G[OUnN""V6!9r|FN~Qd($27I<;S2Ts bR.ZOI(q'~b'C lS6$ Tin7O%/uh/"E"$A4]2XP&<~j\d kp0-3Te2?mNot:x+ q,o^df@챴O.vUnYYH=܉Җkk(<SF|gObeDn&ٝϧw/p|=8~ne){7Jo)8]o̝AHHkW5Pu~'aǓ\) 5=k*,F\KEE {g)طbHbߩ\79ML :^毨!#A۟]9K!#sRE4жrB+]:c y0M$ྂ9\+-l.ajIΉe|"=z$P0Vo&P4LŎsZ#AuS[T~D2\ x50 Ab3!HJÁd2⭟}qe4.467WO@!h`8.ڑcsɕ z!B 7Ï徹'r;CI)  1`hL=ZًD~&/NxwWIz2#Ky2ĝ-5¿@)%Wj~bw(qկ[&&?)25pʮ-ZԐ& 93Wgi*3y_Zmv̽^7x[e5?짬i&sLRe6~JS, YJ?7؂ɽ"}].+[t@Ԕ=|tSL[Aˍ!K܊oG!|Azw;esA$ Fso[ODjk |?FV.c.|-mu(q婔vuocSw a5I@d%3) 1yПc3N%(BSdǐ5iuFAsKW/蓄kz @j JFJFYbbH # This script was automatically generated from the dsa-323 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Jakob Lell discovered a bug in the \'noroff\' script included in noweb whereby a temporary file was created insecurely. During a review, several other instances of this problem were found and fixed. Any of these bugs could be exploited by a local user to overwrite arbitrary files owned by the user invoking the script. For the stable distribution (woody) these problems have been fixed in version 2.9a-7.3. For old stable distribution (potato) this problem has been fixed in version 2.9a-5.1. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your noweb package. Solution : http://www.debian.org/security/2003/dsa-323 Risk factor : High'; if (description) { script_id(15160); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "323"); script_cve_id("CVE-2003-0381"); script_bugtraq_id(7937); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA323] DSA-323-1 noweb"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-323-1 noweb"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'nowebm', release: '2.2', reference: '2.9a-5.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nowebm is vulnerable in Debian 2.2.\nUpgrade to nowebm_2.9a-5.1\n'); } if (deb_check(prefix: 'nowebm', release: '3.0', reference: '2.9a-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package nowebm is vulnerable in Debian 3.0.\nUpgrade to nowebm_2.9a-7.3\n'); } if (deb_check(prefix: 'noweb', release: '3.0', reference: '2.9a-7.3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package noweb is vulnerable in Debian woody.\nUpgrade to noweb_2.9a-7.3\n'); } if (w) { security_hole(port: 0, data: desc); } z7٢?\4X2f  x ,L H8q[Jgr=ËySNX<=N'!CXqkO]`'iK w|/X&zʐdnihCum(xBgiU֟:_f)Xuތ=SMPSi0.O a0 B -y__\w`l>b<5٤9u.mh@v[^^l,xkBxt9mQgz6xqMDϙ6N療~' g.êC/r`e{X\$Z ݡ?K&Egqy]*gX6.I8TpЙ@h7r*5Cˠgd *jo!e] |zIBd[fd NJspv#g߱?WRmE}rs0XF1R[wENE!Nr‹\0Cޛ'eyF!VrY^ JFJFYbbH # This script was automatically generated from the dsa-324 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Several of the packet dissectors in ethereal contain string handling bugs which could be exploited using a maliciously crafted packet to cause ethereal to consume excessive amounts of memory, crash, or execute arbitrary code. These vulnerabilities were announced in the following Ethereal security advisory: "http://www.ethereal.com/appnotes/enpa-sa-00010.html" Ethereal 0.9.4 in Debian 3.0 (woody) is affected by most of the problems described in the advisory, including: The following problems do not affect this version: as these modules are not present. For the stable distribution (woody) these problems have been fixed in version 0.9.4-1woody5. For the old stable distribution (potato) these problems will be fixed in a future advisory. For the unstable distribution (sid) these problems are fixed in version 0.9.13-1. We recommend that you update your ethereal package. Solution : http://www.debian.org/security/2003/dsa-324 Risk factor : High'; if (description) { script_id(15161); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "324"); script_cve_id("CVE-2003-0428", "CVE-2003-0429", "CVE-2003-0431", "CVE-2003-0432"); script_bugtraq_id(7878, 7880, 7881, 7883); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA324] DSA-324-1 ethereal"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-324-1 ethereal"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.0.\nUpgrade to ethereal_0.9.4-1woody5\n'); } if (deb_check(prefix: 'ethereal-common', release: '3.0', reference: '0.9.4-1woody5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-common is vulnerable in Debian 3.0.\nUpgrade to ethereal-common_0.9.4-1woody5\n'); } if (deb_check(prefix: 'ethereal-dev', release: '3.0', reference: '0.9.4-1woody5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal-dev is vulnerable in Debian 3.0.\nUpgrade to ethereal-dev_0.9.4-1woody5\n'); } if (deb_check(prefix: 'tethereal', release: '3.0', reference: '0.9.4-1woody5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tethereal is vulnerable in Debian 3.0.\nUpgrade to tethereal_0.9.4-1woody5\n'); } if (deb_check(prefix: 'ethereal', release: '3.1', reference: '0.9.13-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian 3.1.\nUpgrade to ethereal_0.9.13-1\n'); } if (deb_check(prefix: 'ethereal', release: '3.0', reference: '0.9.4-1woody5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package ethereal is vulnerable in Debian woody.\nUpgrade to ethereal_0.9.4-1woody5\n'); } if (w) { security_hole(port: 0, data: desc); } 4$Qb   ,  Pdب # This script was automatically generated from the dsa-326 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Orville Write, a replacement for the standard write(1) command, contains a number of buffer overflows. These could be exploited to gain either gid tty or root privileges, depending on the configuration selected when the package is installed. For the stable distribution (woody) this problem has been fixed in version 2.53-4woody1. The old stable distribution (potato) does not contain an orville-write package. For the unstable distribution (sid) this problem will be fixed soon. See Debian bug report #170747. We recommend that you update your orville-write package. Solution : http://www.debian.org/security/2003/dsa-326 Risk factor : High'; if (description) { script_id(15163); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "326"); script_cve_id("CVE-2003-0441"); script_bugtraq_id(7988); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA326] DSA-326-1 orville-write"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-326-1 orville-write"); exit(0); } include("debiaJFJFYbbH # This script was automatically generated from the dsa-325 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' eldav, a WebDAV client for Emacs, creates temporary files without taking appropriate security precautions. This vulnerability could be exploited by a local user to create or overwrite files with the privileges of the user running emacs and eldav. For the stable distribution (woody) this problem has been fixed in version 0.0.20020411-1woody1. The old stable distribution (potato) does not contain an eldav package. For the unstable distribution (sid) this problem has been fixed in version 0.7.2-1. We recommend that you update your eldav package. Solution : http://www.debian.org/security/2003/dsa-325 Risk factor : High'; if (description) { script_id(15162); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "325"); script_cve_id("CVE-2003-0438"); script_bugtraq_id(7987); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA325] DSA-325-1 eldav"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-325-1 eldav"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'eldav', release: '3.0', reference: '0.0.20020411-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eldav is vulnerable in Debian 3.0.\nUpgrade to eldav_0.0.20020411-1woody1\n'); } if (deb_check(prefix: 'eldav', release: '3.1', reference: '0.7.2-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eldav is vulnerable in Debian 3.1.\nUpgrade to eldav_0.7.2-1\n'); } if (deb_check(prefix: 'eldav', release: '3.0', reference: '0.0.20020411-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package eldav is vulnerable in Debian woody.\nUpgrade to eldav_0.0.20020411-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } аHXPdS4UMl Q 0  ,   p 4 ,  x# This script was automatically generated from the dsa-328 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' webfs, a lightweight HTTP server for static content, contains a buffer overflow whereby a long Request-URI in an HTTP request could cause arbitrary code to be executed. For the stable distribution (woody) this problem has been fixed in version 1.17.1. The old stable distribution (poJFJFYbbH # This script was automatically generated from the dsa-327 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Steve Kemp discovered several buffer overflows in xbl, a game, which can be triggered by long command line arguments. This vulnerability could be exploited by a local attacker to gain gid \'games\'. For the stable distribution (woody) this problem has been fixed in version 1.0k-3woody1. For the old stable distribution (potato) this problem has been fixed in version 1.0i-7potato1. For the unstable distribution (sid) this problem is fixed in version 1.0k-5. We recommend that you update your xbl package. Solution : http://www.debian.org/security/2003/dsa-327 Risk factor : High'; if (description) { script_id(15164); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "327"); script_cve_id("CVE-2003-0451"); script_bugtraq_id(7989); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA327] DSA-327-1 xbl"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-327-1 xbl"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xbl', release: '2.2', reference: '1.0i-7potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xbl is vulnerable in Debian 2.2.\nUpgrade to xbl_1.0i-7potato1\n'); } if (deb_check(prefix: 'xbl', release: '3.0', reference: '1.0k-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xbl is vulnerable in Debian 3.0.\nUpgrade to xbl_1.0k-3woody1\n'); } if (deb_check(prefix: 'xbl', release: '3.1', reference: '1.0k-5')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xbl is vulnerable in Debian 3.1.\nUpgrade to xbl_1.0k-5\n'); } if (deb_check(prefix: 'xbl', release: '2.2', reference: '1.0i-7potato1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xbl is vulnerable in Debian potato.\nUpgrade to xbl_1.0i-7potato1\n'); } if (deb_check(prefix: 'xbl', release: '3.0', reference: '1.0k-3woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xbl is vulnerable in Debian woody.\nUpgrade to xbl_1.0k-3woody1\n'); } if (w) { security_hole(port: 0, data: desc); } m JFJFYbbH n_package.inc"); w = 0; if (deb_check(prefix: 'orville-write', release: '3.0', reference: '2.53-4woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package orville-write is vulnerable in Debian 3.0.\nUpgrade to orville-write_2.53-4woody1\n'); } if (deb_check(prefix: 'orville-write', release: '3.0', reference: '2.53-4woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package orville-write is vulnerable in Debian woody.\nUpgrade to orville-write_2.53-4woody1\n'); } if (w) { security_hole(port: 0, data: desc); } UFKyocera_FS-103 y ! " $ & ( ) * + , - . /a 1 2 4 5 8 9q ; = ? B C E G H K L N O Q T U VQ X Y \ ]y _ ` a b ca f g i k m n o p r s9 vY y {A }         I  q            9       (L !x" #t$% &< ' ( )* +, -./0123 4t 56 789: ;<@= >D?A@BCD E FGHIJ@K0LM0N OPQ RSTUV WX`YZP[ \D ] ^_@`abcd4 efghi\ j|klLml nTop q r               i            " # % & ( ) * , - . 0 1 2 4 5 8 : ; = ? (L !x" #t$% &< ' ( )* +, -./0123 4t 56 789: ;<@= >D?A@BCD E FGHIJ@K0LM0N OPQ RSTUV WX`YZP[ \D ] ^_@`abcd4 efghi\ j|klLml nTop q rshtuvwhxy@ z{ |}~ 8 |   X0        t  DL  \ d  | L  X$  L  4 @…hÅąŅPƅh @gFKyocera_FS-170 y 0   ,    @ d !,8 !4%պ7 B k|װko#뤫ڤ;M'b0g*d?"h:,񙠺1\O <~DY;N5Y>hν~A"); script_name(english: "[DSA329] DSA-329-1 osh"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-329-1 osh"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'osh', release: '3.0', reference: '1.7-11woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package osh is vulnerable in Debian 3.0.\nUpgrade to osh_1.7-11woody1\n'); } if (deb_check(prefix: 'osh', release: '3.1', reference: '1.7-12')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package osh is vulnerable in Debian 3.1.\nUpgrade to osh_1.7-12\n'); } if (deb_check(prefix: 'osh', release: '3.0', reference: '1.7-11woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package osh is vulnerable in Debian woody.\nUpgrade to osh_1.7-11woody1\n'); } if (w) { security_hole(port: 0, data: desc); } ? JFJFYbbH tato) does not contain a webfs package. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you update your webfs package. Solution : http://www.debian.org/security/2003/dsa-328 Risk factor : High'; if (description) { script_id(15165); script_version("$Revision: 1.6 $"); script_xref(name: "DSA", value: "328"); script_cve_id("CVE-2003-0445"); script_bugtraq_id(7990); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA328] DSA-328-1 webfs"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-328-1 webfs"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'webfs', release: '3.0', reference: '1.17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package webfs is vulnerable in Debian 3.0.\nUpgrade to webfs_1.17.1\n'); } if (deb_check(prefix: 'webfs', release: '3.0', reference: '1.17.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package webfs is vulnerable in Debian woody.\nUpgrade to webfs_1.17.1\n'); } if (w) { security_hole(port: 0, data: desc); } 0SfTךu%F%fZ5 !  ", "R/WjSF5kv,a`?):GLuua9y+󕭪"L9jaި*!!kѠtXAr &t]ϣs2m+ of&X c,aNyvQ \kk? Lqf7AGZ#H!f=b+" 챾 [qjA+X"[\AA+ ݼ qqОyN`Mb(qe,7)E6d? bR%&AXiX\|guZ/^Ix; v:dK t ɵCPŝXG;vk5Vj7*Zqj>IEV}}T~Og/X[ Pz0`fUw{oV&xJ0ւ{oY &nJu=a+7 yVdv);̨R#~/E#AXSZBCؑ'u]wnu$ c\42j,e,I);* R%%9ڒI^Qrp2qҀIt A͓Ay )eQսcהsrlqzfwHY*ѡ 0"4^Nmx%qQ65iϏwwx6(%|x& IaifQ˦M+dS˦&,{ /~k,cBR! !$$ Z`ҊkȄu=QTS;~&%:`nG64"'`Mf/P(0m/y' &@)2SI d]3jK?L~8yi;/<#+{!i!c{^P4z7w l/y}c/w~y w| )]"); script_name(english: "[DSA330] DSA-330-1 tcptraceroute"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-330-1 tcptraceroute"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'tcptraceroute', release: '3.0', reference: '1.2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcptraceroute is vulnerable in Debian 3.0.\nUpgrade to tcptraceroute_1.2-2\n'); } if (deb_check(prefix: 'tcptraceroute', release: '3.1', reference: '1.4-4')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcptraceroute is vulnerable in Debian 3.1.\nUpgrade to tcptraceroute_1.4-4\n'); } if (deb_check(prefix: 'tcptraceroute', release: '3.0', reference: '1.2-2')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package tcptraceroute is vulnerable in Debian woody.\nUpgrade to tcptraceroute_1.2-2\n'); } if (w) { security_hole(port: 0, data: desc); } 0SfTךu%F%fZ5 " (  #, # $,x $ # This script was automatically generated from the dsa-333 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' acm, a multi-player aerial combat simulation, uses a network protocol based on the same RPC implementation used in many C libraries. This implementation was found to contain an integer overflow vulnerability which could be exploited to execute arbitrary code. For the stable distribution (woody) this problem has been fixed in version 5.0-3.woody.1. For the unstable distribution (sid) this proJFJFYbbH GJFJFYbbH # This script was automatically generated from the dsa-331 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' imagemagick\'s libmagick library, under certain circumstances, creates temporary files without taking appropriate security precautions. This vulnerability could be exploited by a local user to create or overwrite files with the privileges of another user who is invoking a program using this library. For the stable distribution (woody) this problem has been fixed in version 4:5.4.4.5-1woody1. For the unstable distribution (sid) this problem has been fixed in version 4:5.5.7-1. We recommend that you update your imagemagick package. Solution : http://www.debian.org/security/2003/dsa-331 Risk factor : High'; if (description) { script_id(15168); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "331"); script_cve_id("CVE-2003-0455"); script_bugtraq_id(8057); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA331] DSA-331-1 imagemagick"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-331-1 imagemagick"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'imagemagick', release: '3.0', reference: '5.4.4.5-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imagemagick is vulnerable in Debian 3.0.\nUpgrade to imagemagick_5.4.4.5-1woody1\n'); } if (deb_check(prefix: 'libmagick5', release: '3.0', reference: '5.4.4.5-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmagick5 is vulnerable in Debian 3.0.\nUpgrade to libmagick5_5.4.4.5-1woody1\n'); } if (deb_check(prefix: 'libmagick5-dev', release: '3.0', reference: '5.4.4.5-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmagick5-dev is vulnerable in Debian 3.0.\nUpgrade to libmagick5-dev_5.4.4.5-1woody1\n'); } if (deb_check(prefix: 'perlmagick', release: '3.0', reference: '5.4.4.5-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package perlmagick is vulnerable in Debian 3.0.\nUpgrade to perlmagick_5.4.4.5-1woody1\n'); } if (deb_check(prefix: 'imagemagick', release: '3.1', reference: '4:5.5.7-1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imagemagick is vulnerable in Debian 3.1.\nUpgrade to imagemagick_4:5.5.7-1\n'); } if (deb_check(prefix: 'imagemagick', release: '3.0', reference: '4:5.4.4.5-1woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package imagemagick is vulnerable in Debian woody.\nUpgrade to imagemagick_4:5.4.4.5-1woody1\n'); } if (w) { security_hole(port: 0, data: desc); } p-size:10.0pt;color $   %,  %  &, &Kyocera Mita FS-1800+, Kyocera Mita FS1900, Kyocera Mita FS1920, Kyocera Mita FS3JFJFYbbH # This script was automatically generated from the dsa-334 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' Steve Kemp discovered several buffer overflows in xgalaga, a game, which can be triggered by a long HOME environment variable. This vulnerability could be exploited by a local attacker to gain gid \'games\'. For the stable distribution (woody) this problem has been fixed in version 2.0.34-19woody1. For the unstable distribution (sid) this problem is fixed in version 2.0.34-22. We recommend that you update your xgalaga package. Solution : http://www.debian.org/security/2003/dsa-334 Risk factor : High'; if (description) { script_id(15171); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "334"); script_cve_id("CVE-2003-0454"); script_bugtraq_id(8058); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA334] DSA-334-1 xgalaga"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-334-1 xgalaga"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'xgalaga', release: '3.0', reference: '2.0.34-19woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xgalaga is vulnerable in Debian 3.0.\nUpgrade to xgalaga_2.0.34-19woody1\n'); } if (deb_check(prefix: 'xgalaga', release: '3.1', reference: '2.0.34-22')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xgalaga is vulnerable in Debian 3.1.\nUpgrade to xgalaga_2.0.34-22\n'); } if (deb_check(prefix: 'xgalaga', release: '3.0', reference: '2.0.34-19woody1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package xgalaga is vulnerable in Debian woody.\nUpgrade to xgalaga_2.0.34-19woody1\n'); } if (w) { security_hole(port: 0, data: desc); } JFJFYbbH blem has been fixed in version 5.0-10. We recommend that you update your acm package. Solution : http://www.debian.org/security/2003/dsa-333 Risk factor : High'; if (description) { script_id(15170); if(defined_func("script_xref"))script_xref(name:"IAVA", value:"2002-t-0015"); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "333"); script_cve_id("CVE-2002-0391"); script_bugtraq_id(5356); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA333] DSA-333-1 acm"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-333-1 acm"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'acm', release: '3.0', reference: '5.0-3.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package acm is vulnerable in Debian 3.0.\nUpgrade to acm_5.0-3.woody.1\n'); } if (deb_check(prefix: 'acm', release: '3.1', reference: '5.0-10')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package acm is vulnerable in Debian 3.1.\nUpgrade to acm_5.0-10\n'); } if (deb_check(prefix: 'acm', release: '3.0', reference: '5.0-3.woody.1')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package acm is vulnerable in Debian woody.\nUpgrade to acm_5.0-3.woody.1\n'); } if (w) { security_hole(port: 0, data: desc); } 8+k%@鐓 q &  ', ' (, (ʀ!38vg&1!d38 -e;.ȼ*6d6'&-d2_'u9ǁ؜ĵ`¾:s0#|ph|ϧ]ײPL qr;Pנt  9fa\.Z-`p1 g^&υ(.t44&'19vUjɃK+-GfG|emtޞxm|Ha%AA8qxM'FKw$ zM-̝Sdr.Exɐ CpdcC_/Ʒb(;c>dmH2z Y "v\:.EV(Gtgw2Ҵ)>y`ɬ%f//>-6 ytӌ&NGGNEHƛ)];b3~Qe0LϿ )Hw˯!6-Os&<24_ Eƿ /7$oGoR?q z7}!5l9!+DžBuφA/s054-20O.$Jt1\^1xO7whIf,%'k7B61toڜ85C`ge8KS]z u.wNbPQxVSͨadaN7˹B`n'H;rEZf̹;[SL4ZMumr̪ 7l^J{@3`Ɉk6:.1 v*-u-|ywW.sp6N5&8;)r=߀{`48NXk?*fI '}\;c3)J'7厽s~wn&D3Xtyb `͛61)Z7KsM#{qDWP8HSG/~[u~@H>'<H1??iS1e3cY՝۬Zse5N7]VRͻP:I@yZ Ei Զ7\Fm"x.Da 62cl hftlβAР,j3e Z:`ܵnz8~qڨ.v`7Ɯѭ,baVB"@wr#/=;|!;ᡢc?dGkts?Bq 0~O:v.K՜']JFJFYbbH }JFJFYbbH # This script was automatically generated from the dsa-335 # Debian Security Advisory # It is released under the Nessus Script Licence. # Advisory is copyright 1997-2004 Software in the Public Interest, Inc. # See http://www.debian.org/license # DSA2nasl Convertor is copyright 2004 Michel Arboi if (! defined_func('bn_random')) exit(0); desc = ' mantis, a PHP/MySQL web based bug tracking system, stores the password used to access its database in a configuration file which is world-readable. This could allow a local attacker to read the password and gain read/write access to the database. For the stable distribution (woody) this problem has been fixed in version 0.17.1-3. The old stable distribution (potato) does not contain a mantis package. For the unstable distribution (sid) this problem is fixed in version 0.17.5-6. We recommend that you update your mantis package. Solution : http://www.debian.org/security/2003/dsa-335 Risk factor : High'; if (description) { script_id(15172); script_version("$Revision: 1.7 $"); script_xref(name: "DSA", value: "335"); script_cve_id("CVE-2003-0499"); script_bugtraq_id(8059); script_description(english: desc); script_copyright(english: "This script is (C) 2005 Michel Arboi "); script_name(english: "[DSA335] DSA-335-1 mantis"); script_category(ACT_GATHER_INFO); script_family(english: "Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Debian/dpkg-l"); script_summary(english: "DSA-335-1 mantis"); exit(0); } include("debian_package.inc"); w = 0; if (deb_check(prefix: 'mantis', release: '3.0', reference: '0.17.1-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mantis is vulnerable in Debian 3.0.\nUpgrade to mantis_0.17.1-3\n'); } if (deb_check(prefix: 'mantis', release: '3.1', reference: '0.17.5-6')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mantis is vulnerable in Debian 3.1.\nUpgrade to mantis_0.17.5-6\n'); } if (deb_check(prefix: 'mantis', release: '3.0', reference: '0.17.1-3')) { w ++; if (report_verbosity > 0) desc = strcat(desc, '\nThe package mantis is vulnerable in Debian woody.\nUpgrade to mantis_0.17.1-3\n'); } if (w) { security_hole(port: 0, data: desc); } txmlns:v="urn:schem (  ), )xmlns:w="urn:schemas-microsoft-com:office:word" xmlns="http://www.w3.org/TR/REC-html40"> Installation Note