Does a few changes in cpe.inc. There might be incorrect so I try to explain:
I went through the whole list in cpe.inc ad find a few inconsistences.
1. line 190 (I wrote an eMail about this problem)
this kb-key entry is never been set in any nasl-file. there is
another Burning Board
entry in the cpe.inc-list in line 605 which is use by the file:
./secpod_woltlab_burning_board_detect.nasl
that's why I change the call of the get_kb_item- function in the file:
burning_board_database_sql_injection.nasl
I use the second entry of the cpe.inc list.
(Question is which regex is the right one)
2. line 734
there was a second entry of base in capital letters in line 811
this second one got the right cpe so I change the call of the
functions
set_/get_kb_item in the files base_36830.nasl and base_detect.nasl.
3. line 848
Change Vmaware to Vmware and also change this in the files
secpod_vmware_springsource_tc_server_sec_bypass_vuln.nasl and
secpod_vmware_springsource_tc_server_detect.nasl.
there I also put a missing / before the Vmware
4. line 854 and line 857
theres only the call of the functions set_/get_kb_item which uses
this key
without the double-slashes.
Tried to test if this were a problem with the test.nasl-file, but
it gets a error.
So, I deleted one of the slashes.
5. line 862
there is now file touch this emesene-key. I find three nasl-files
which get in
touch with emesene, but there is no use of the "emesene/ver"-key
neither of
the cpe:
./gb_fedora_2010_9692_emesene_fc13.nasl
./gb_fedora_2010_9696_emesene_fc11.nasl
./gb_fedora_2010_9679_emesene_fc12.nasl
6. line 894
this is a i-net application so there was a missing "www/*/......"
so I change this.
Index: secpod_vmware_springsource_tc_server_sec_bypass_vuln.nasl
===================================================================
--- secpod_vmware_springsource_tc_server_sec_bypass_vuln.nasl (Revision 11511)
+++ secpod_vmware_springsource_tc_server_sec_bypass_vuln.nasl (Arbeitskopie)
@@ -80,7 +80,7 @@
exit(0);
}
-sstcVer = get_kb_item(string("www/", sstcPort, "Vmaware/SSTC/Runtime"));
+sstcVer = get_kb_item(string("www/", sstcPort, "/Vmware/SSTC/Runtime"));
if(isnull(sstcVer)){
exit(0);
}
Index: secpod_vmware_springsource_tc_server_detect.nasl
===================================================================
--- secpod_vmware_springsource_tc_server_detect.nasl (Revision 11511)
+++ secpod_vmware_springsource_tc_server_detect.nasl (Arbeitskopie)
@@ -74,7 +74,7 @@
sstcVer = ereg_replace(pattern:"-", replace:".", string:sstcVer[1]);
if(sstcVer != NULL)
{
- set_kb_item(name:"www/"+ sstcPort + "Vmaware/SSTC/Runtime",
+ set_kb_item(name:"www/"+ sstcPort + "/Vmware/SSTC/Runtime",
value:sstcVer + " under " + dir);
security_note(data:"SpringSource tc Server Version " + sstcVer +
" running at location " + dir + " was detected on the host");
Index: base_36830.nasl
===================================================================
--- base_36830.nasl (Revision 11511)
+++ base_36830.nasl (Arbeitskopie)
@@ -82,7 +82,7 @@
if (!can_host_php(port:port)) exit(0);
-if(!version = get_kb_item(string("www/", port, "/base")))exit(0);
+if(!version = get_kb_item(string("www/", port, "/BASE")))exit(0);
if(!matches = eregmatch(string:version, pattern:"^(.+) under (/.*)$"))exit(0);
vers = matches[1];
Index: base_detect.nasl
===================================================================
--- base_detect.nasl (Revision 11511)
+++ base_detect.nasl (Arbeitskopie)
@@ -92,7 +92,7 @@
vers=chomp(version[1]);
}
- set_kb_item(name: string("www/", port, "/base"), value: string(vers," under ",install));
+ set_kb_item(name: string("www/", port, "/BASE"), value: string(vers," under ",install));
info = string("None\n\nBasic Analysis and Security Engine (BASE) Version '");
info += string(vers);
Index: burning_board_database_sql_injection.nasl
===================================================================
--- burning_board_database_sql_injection.nasl (Revision 11511)
+++ burning_board_database_sql_injection.nasl (Arbeitskopie)
@@ -88,7 +88,7 @@
# Test any installs.
-installs = get_kb_list(string("www/", port, "/burning_board*"));
+installs = get_kb_list(string("www/", port, "/BurningBoard"));
if ( isnull(installs) ) exit(0);
Index: cpe.inc
===================================================================
--- cpe.inc (Revision 11511)
+++ cpe.inc (Arbeitskopie)
@@ -190,7 +190,8 @@
"www/*/TorrentTraderClassic", "^([0-9.]+)", "cpe:/a:torrenttrader:torrenttrader_classic:",
"www/*/torrenttrader", "^([0-9.]+)", "cpe:/a:torrenttrader:torrenttrader_classic:",
"www/*/webfileexplorer", "^([0-9.]+)", "cpe:/a:webfileexplorer:web_file_explorer:",
-"www/*/burning_board*", "^([0-9.]+([a-z0-9]+)?)", "cpe:/a:woltlab:burning_board:",
+## not in use: see "www/*/BurningBoard"
+#"www/*/burning_board*", "^([0-9.]+([a-z0-9]+)?)", "cpe:/a:woltlab:burning_board:",
"znc/*/version", "^([0-9.]+)", "cpe:/a:znc:znc:",
"www/*/chora", "^([0-9.]+)", "cpe:/a:horde:chora:",
"www/*/horde", "^([0-9.]+)", "cpe:/a:horde:horde_groupware:",
@@ -734,7 +735,8 @@
"www/*/landesk", "^([0-9.]+([a-z0-9]+)?)", "cpe:/a:landesk:landesk_management_suite:",
"Snort/Linux/Ver", "^([0-9.]+)", "cpe:/a:snort:snort:",
"www/*/joomla", "^([0-9.]+)", "cpe:/a:joomla:joomla",
-"www/*/base", "^([0-9.]+)", "cpe:/a:base:basic_analysis_and_security_engine:",
+## not in use: see "www/*/BASE"
+#"www/*/base", "^([0-9.]+)", "cpe:/a:base:basic_analysis_and_security_engine:",
"www/*/tftgallery", "^([0-9.]+)", "cpe:/a:tftgallery:tftgallery:",
"SquidGuard/Ver", "^([0-9.]+)", "cpe:/a:squidguard:squidguard:",
"EurekaEmail/Ver", "^([0-9.]+)", "cpe:/a:eureka-email:eureka_email:",
@@ -848,13 +850,13 @@
"www/*/OpenMairie/Open_Catalogue", "^([0-9.]+)", "cpe:/a:openmairie:opencatalogue:",
"www/*/OpenMairie/Open_Cimetiere", "^([0-9.]+)", "cpe:/a:openmairie:opencimetiere:",
"www/*/TaskFreak", "^([0-9.]+)", "cpe:/a:taskfreak:taskfreak%21:",
-"www/*/Vmaware/SSTC/Runtime", "^([0-9.]+)", "cpe:/a:vmware:tc_server:",
+"www/*/Vmware/SSTC/Runtime", "^([0-9.]+)", "cpe:/a:vmware:tc_server:",
"www/*/DataTrack_Ststem", "^([0-9.]+)", "cpe:/a:magnoware:datatrack_system:",
"www/*/OCS_Inventory_NG", "^([0-9.]+)", "cpe:/a:ocsinventory-ng:ocs_inventory_ng:",
-"www/*//HP/OVNNM/Ver", "^([0-9.]+)", "cpe:/a:hp:openview_network_node_manager:",
+"www/*/HP/OVNNM/Ver", "^([0-9.]+)", "cpe:/a:hp:openview_network_node_manager:",
"Mathematica/Ver", "^([0-9.]+)", "cpe:/a:wolfram_research:mathematica:",
"OrbitDownloader/Ver", "^([0-9.]+)", "cpe:/a:orbitdownloader:orbit_downloader:",
-"www/*//Uniform-Server", "^([0-9.]+)", "cpe:/a:uniformserver:uniformserver:",
+"www/*/Uniform-Server", "^([0-9.]+)", "cpe:/a:uniformserver:uniformserver:",
"www/*/JV2/Folder/Gallery", "^([0-9.]+)", "cpe:/a:jv2design:jv2_folder_gallery:",
"www/*/snipegallery", "^([0-9.]+)", "cpe:/a:snipegallery:snipe_gallery:",
"www/*/pacificTimeSheet/Ver", "^([0-9.]+)", "cpe:/a:pacifictimesheet:pacific_timesheet:",
@@ -862,7 +864,8 @@
"www/*/symphony", "^([0-9.]+)", "cpe:/a:symphony-cms:symphony_cms:",
"www/*/Weborf", "^([0-9.]+)", "cpe:/a:galileo_students:team_weborf:",
"www/*/TCExam", "^([0-9.]+)", "cpe:/a:tecnick:tcexam:",
-"emesene/ver", "^([0-9.]+)", "cpe:/a:emesene:emesene:",
+## not in use
+#"emesene/ver", "^([0-9.]+)", "cpe:/a:emesene:emesene:",
"Adobe/Photoshop/Ver", "^([0-9.]+)", "cpe:/a:adobe:photoshop_cs4:",
"HP/SWSM", "^([0-9.]+)", "cpe:/a:hp:storageworks_storage_mirroring:",
"www/*/PHP-Quick-Arcade", "^([0-9.]+)", "cpe:/a:jcink:php-quick-arcade:",
@@ -894,7 +897,7 @@
"www/*/FCMS", "^([0-9.]+)", "cpe:/a:haudenschilt:family_connections_cms:",
"SmartMail/Ver", "^([0-9.]+)", "cpe:/a:smartertools:smartermail:",
"pyftpdlib/Ver", "^([0-9.]+)", "cpe:/a:g.rodola:pyftpdlib:",
-"GetSimple_cms", "^([0-9.]+)", "cpe:/a:getsimple:getsimple:",
+"www/*/GetSimple_cms", "^([0-9.]+)", "cpe:/a:getsimple:getsimple:",
"Novell/ZHM/Ver", "^([0-9.]+)", "cpe:/a:novell:zenworks_handheld_management:",
"www/*/SiteEngine", "^([0-9.]+)", "cpe:/a:boka:siteengine:",
"www/*/Hastymail2", "Hastymail2", "cpe:/a:hastymail:hastymail2:",
function test(){
set_kb_item(name:"test/1", value: "1");
testing = get_kb_item(value:"test//1");
if(!isnull(testing))
display("HelloWorld");
}
test();
_______________________________________________
Openvas-plugins mailing list
[email protected]
http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
