Debian DSA-4634-1 : opensmtpd - security update

critical Nessus Plugin ID 134094

Synopsis

The remote Debian host is missing a security-related update.

Description

Qualys discovered that the OpenSMTPD SMTP server performed insufficient validation of SMTP commands, which could result in local privilege escalation or the execution of arbitrary code.

Solution

Upgrade the opensmtpd packages.

For the oldstable distribution (stretch), this problem has been fixed in version 6.0.2p1-2+deb9u3.

For the stable distribution (buster), this problem has been fixed in version 6.0.3p1-5+deb10u4.

See Also

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=952453

https://security-tracker.debian.org/tracker/source-package/opensmtpd

https://www.debian.org/security/2020/dsa-4634

Plugin Details

Severity: Critical

ID: 134094

File Name: debian_DSA-4634.nasl

Version: 1.4

Type: local

Agent: unix

Published: 2/27/2020

Updated: 3/25/2024

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 8.4

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2020-8794

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:debian:debian_linux:10.0, cpe:/o:debian:debian_linux:9.0, p-cpe:/a:debian:debian_linux:opensmtpd

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/26/2020

Vulnerability Publication Date: 2/25/2020

Exploitable With

Metasploit (OpenSMTPD OOB Read Local Privilege Escalation)

Reference Information

CVE: CVE-2020-8794

DSA: 4634