Detections
Analytics

GLSA-202209-08 : Smokeping: Multiple vulnerabilities

medium Nessus Plugin ID 165443

Language:

Description

The remote host is affected by the vulnerability described in GLSA-202209-08 (Smokeping: Multiple vulnerabilities)

 - In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript uses a PID file that is writable by the smokeping user. By writing arbitrary PIDs to that file, the smokeping user can cause a denial of service to arbitrary PIDs when the service is stopped. (CVE-2017-20147)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Gentoo has discontinued support for Smokeping. We recommend that users remove it:

 # emerge --ask --depclean net-analyzer/smokeping

See Also

https://security.gentoo.org/glsa/202209-08

https://bugs.gentoo.org/show_bug.cgi?id=602652

https://bugs.gentoo.org/show_bug.cgi?id=631140

Plugin Details

Severity: Medium

ID: 165443

File Name: gentoo_GLSA-202209-08.nasl

Version: 1.3

Type: local

Published: 9/25/2022

Updated: 10/10/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS Score Source: CVE-2017-20147

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:smokeping, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/25/2022

Vulnerability Publication Date: 9/20/2022

Reference Information

CVE: CVE-2017-20147