I also notice a bug with NTP matching :
> the plugin match :
> */NTP/Linux/Ver=4.2.4p7/* as /cpe:/a:ntp:ntp:4.2.4p7:p7/
> this is not cpe mitre compliant it should be :
> */cpe:/a:ntp:ntp:4.2.4p7 /*
> and
> */NTP/Linux/Ver=4.2.4p7-rc1/* should be
> */cpe/:/a:ntp:ntp:/4.2/./4p7/:*/*rc1*/
/
have add a look on the ntp,
should be a litle bit more complicate to fix,
in gb_ntp_detect_lin.nasl , the ntp version number is split and
reassemble to have
{version}.{patch}.{rc} or //{version}.{patch} or //{version}//
means :
*NTP */*/4.2/./4p7/-*/*rc1 *translate
to*//*/*/NTP/Linux/Ver=/*/*4.2.4.p7.rc1
*//*NTP */*/4.2/./4p7 /*/translate to //**/*/NTP/Linux/Ver=4.2.4.p7
/*/i do not dig to see and understand the purpose, perhaps Chandan S can
explain us.
at the end , my level in writing regexp is not high enough to split
//*4.2.4.p7.rc1 *into * *//*4.2.4p7 *and*rc1*// with the
strip of the dot between patch and version (my problem :-()
//or*4.2.6.p6 *into * *//*4.2.6p6 */
/*4.2.7 *into * *//*4.2.7 *(euh sorry this one, i can do)/ :-P
_______________________________________________
Openvas-plugins mailing list
[email protected]
http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
