Mailing List Archive: Multiple CVE IDs in one script

Multiple CVE IDs in one script

Oct 12, 2002, 3:04 AM

Post #1 of 3 (637 views)

We have a good list of generic tests. Most of them cover flaws in
several products.
e.g. http_w98_devname_dos.nasl covers ~ 10 CVE
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=AUX

Should we write something like this?
cve_script_id("CVE-2001-0386+CVE-2001-0493+CVE-2001-0558");

--
mailto:arboi@bigfoot.com
GPG Public keys: http://michel.arboi.free.fr/pubkey.txt
http://michel.arboi.free.fr/ http://arboi.da.ru/
FAQNOPI de fr.comp.securite : http://faqnopi.da.ru/

Re: Multiple CVE IDs in one script [ In reply to ]

deraison at nessus

Oct 12, 2002, 4:53 AM

Post #2 of 3 (621 views)

Permalink

On Sat, Oct 12, 2002 at 12:04:16PM +0200, Michel Arboi wrote:
> Should we write something like this?
> cve_script_id("CVE-2001-0386+CVE-2001-0493+CVE-2001-0558");

No, that would break a lot of things. You can start writing :

script_cve_id("CVE-xxxxx-aaaa", "CVE-xxxxx-bbbbbb", ...);

at this time, and I'll add the backend support for this later on.

Re: Multiple CVE IDs in one script [ In reply to ]

georges.dagousset at orange

Nov 6, 2002, 2:20 PM

Post #3 of 3 (629 views)

Permalink

From: "Renaud Deraison" <deraison@nessus.org>

> On Sat, Oct 12, 2002 at 12:04:16PM +0200, Michel Arboi wrote:
> > Should we write something like this?
> > cve_script_id("CVE-2001-0386+CVE-2001-0493+CVE-2001-0558");
>
> No, that would break a lot of things. You can start writing :
>
> script_cve_id("CVE-xxxxx-aaaa", "CVE-xxxxx-bbbbbb", ...);
>
>
> at this time, and I'll add the backend support for this later on.
>

Is it the same for script_bugtraq_id

script_bugtraq_id(nnn,mmm,...);