Module: Dawn::Kb::OperatingSystemCheck

Includes:

BasicCheck

Included in:

CVE_2008_4310_b, CVE_2010_2489_b, CVE_2011_0188_b, CVE_2011_0995_b

Defined in:

lib/dawn/kb/operating_system_check.rb

Constant Summary

Constants included from BasicCheck

BasicCheck::ALLOWED_FAMILIES

Instance Attribute Summary

• #safe_os ⇒ Object

  safe_os is an Hash with this form :vendor=>“”, :version=>“”.

• #target_os ⇒ Object

  Returns the value of attribute target_os.

Attributes included from BasicCheck

#applies, #aux_links, #check_family, #cve, #cvss, #cwe, #debug, #evidences, #fixes_version, #kind, #message, #mitigated, #name, #osvdb, #owasp, #priority, #release_date, #remediation, #ruby_version, #ruby_vulnerable_versions, #severity, #status, #target_version, #title

Instance Method Summary

• #different_family? ⇒ Boolean
• #different_vendor? ⇒ Boolean
• #initialize(options = {}) ⇒ Object
• #os_detect ⇒ Object
• #vuln? ⇒ Boolean
• #vulnerable_os? ⇒ Boolean

Methods included from BasicCheck

#applies_to?, #cve_link, #cvss_score, families, #family, #family=, #lint, #mitigated?, #nvd_link, #osvdb_link, #rubysec_advisories_link

Methods included from Utils

#__debug_me_and_return, #debug_me, #debug_me_and_return_false, #debug_me_and_return_true

Instance Attribute Details

#safe_os ⇒ Object

safe_os is an Hash with this form :vendor=>“”, :version=>“”

family can be one of the following:

"linux"
"windows"
"unix"
"osx"
"freebsd"
"netbsd"
"openbsd"
"unknown"

vendor will be either “microsoft”, “apple”, unix flavour or linux distribution accordingly

# File 'lib/dawn/kb/operating_system_check.rb', line 18

def safe_os
  @safe_os
end

#target_os ⇒ Object

Returns the value of attribute target_os.

# File 'lib/dawn/kb/operating_system_check.rb', line 19

def target_os
  @target_os
end

Instance Method Details

#different_family? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dawn/kb/operating_system_check.rb', line 34

def different_family?
  ret = false
  @safe_os.each do |sos|
    ret = true if ! ret && sos[:family] == @target_os[:family]
  end
  ret
end

#different_vendor? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dawn/kb/operating_system_check.rb', line 42

def different_vendor?
  ret = false
  @safe_os.each do |sos|
    ret = true if ! ret && sos[:vendor] == @target_os[:vendor]
  end
  ret
end

#initialize(options = {}) ⇒ Object

# File 'lib/dawn/kb/operating_system_check.rb', line 22

def initialize(options={})
  super(options)
  os_detect
end

#os_detect ⇒ Object

# File 'lib/dawn/kb/operating_system_check.rb', line 60

def os_detect
  platform = RUBY_PLATFORM

  @target_os = {}

  @target_os[:family] = "osx"; @target_os[:vendor]="apple" unless /darwin/.match(platform).nil?
  @target_os[:family] = "windows"; @target_os[:vendor]="microsoft" unless /win32/.match(platform).nil?
  @target_os[:family] = "linux" unless /linux/.match(platform).nil?
  @target_os[:family] = "unix"; @target_os[:vendor]="freebsd" unless /freebsd/.match(platform).nil?
  @target_os[:family] = "unix"; @target_os[:vendor]="openbsd" unless /openbsd/.match(platform).nil?
  @target_os[:family] = "unix"; @target_os[:vendor]="netbsd" unless /netbsd/.match(platform).nil?

  begin 
    require 'sys/uname'
    @target_os[:version]= [Sys::Uname.release]
  rescue # otherwise use shell
    @target_os[:version] = [`uname -r`.strip]
  end

  tmp = ""
  if File.exist?("/etc/SuSE-release")
    tmp = File.readlines("/etc/SuSE-release"); 
    @target_os[:vendor]="suse" 
  end

  if File.exist?("/etc/redhat_release")
    tmp = File.readlines("/etc/redhat_release"); 
    @target_os[:vendor]="redhat" 
  end
  if File.exist?("/etc/debian_release")
    tmp = File.readlines("/etc/debian_release");
    @target_os[:vendor]="debian" 
  end
end

#vuln? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dawn/kb/operating_system_check.rb', line 27

def vuln?
  
  return false if different_family? 
  return false if different_vendor?
  return vulnerable_os?
end

#vulnerable_os? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/dawn/kb/operating_system_check.rb', line 50

def vulnerable_os?
  ret = false
  @safe_os.each do |sos|
    ret = true if ! ret && sos[:version] = 'none'
    ret = true if ! ret && is_vulnerable_version?(@target_os[:family], sos[:version])
  end
  ret
end