Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2023 Tenable Network Security, Inc.AIX_JAVA_JUL2014_ADVISORY.NASL
HistoryAug 22, 2014 - 12:00 a.m.

AIX Java Advisory : java_jul2014_advisory.asc

2014-08-2200:00:00
This script is Copyright (C) 2014-2023 Tenable Network Security, Inc.
www.tenable.com
35
JSON

The version of Java SDK installed on the remote host is affected by the following vulnerabilities :

  • A privilege escalation vulnerability in IBM Java Virtual Machine allows remote attackers to execute code to increase access in the context of a security manager.
    (CVE-2014-3086)

  • Data integrity vulnerabilities exist in Oracle Java within the the Deployment subcomponent. (CVE-2014-4208, CVE-2014-4220, CVE-2014-4265)

  • An information disclosure vulnerability in Oracle Java’s JMX subcomponent allows a remote attacker to view or edit the SubjectDelegator class. (CVE-2014-4209)

  • A vulnerability in Oracle Java allows a remote attacker to bypass security features via flaws in ‘Proxy.java’ in the Libraries subcomponent. (CVE-2014-4218)

  • A vulnerability in Oracle Java allows remote code execution via a flaw in the Hotspot subcomponent, returning incomplete objects. (CVE-2014-4219)

  • An information disclosure vulnerability in Oracle Java’s Libraries subcomponent allows a remote attacker to view sensitive information. (CVE-2014-4221)

  • Vulnerabilities in Oracle Java allow remote code execution via flaws in the Deployment subcomponent.
    (CVE-2014-4227)

  • There are information disclosure vulnerabilities in the Security subcomponent of Oracle Java that can allow remote attackers to gain sensitive information, including information about used keys. (CVE-2014-4244, CVE-2014-4252, CVE-2014-4263)

  • A vulnerability in Oracle Java allows remote code execution via a memory corruption flaw in the Libraries subcomponent. (CVE-2014-4262)

  • A data integrity vulnerability exists in Oracle Java within the Serviceability subcomponent due to incorrect function return values. (CVE-2014-4266)

  • An information disclosure vulnerability in Oracle Java’s Swing subcomponent allows a remote attacker to view restricted file contents. (CVE-2014-4268)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text in the description was extracted from AIX Security
# Advisory java_jul2014_advisory.asc
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(77333);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/21");

  script_cve_id(
    "CVE-2014-3086",
    "CVE-2014-4208",
    "CVE-2014-4209",
    "CVE-2014-4218",
    "CVE-2014-4219",
    "CVE-2014-4220",
    "CVE-2014-4221",
    "CVE-2014-4227",
    "CVE-2014-4244",
    "CVE-2014-4252",
    "CVE-2014-4262",
    "CVE-2014-4263",
    "CVE-2014-4265",
    "CVE-2014-4266",
    "CVE-2014-4268"
  );
  script_bugtraq_id(
    68571,
    68576,
    68580,
    68583,
    68596,
    68599,
    68603,
    68615,
    68620,
    68624,
    68632,
    68636,
    68639,
    68642,
    69183
  );

  script_name(english:"AIX Java Advisory : java_jul2014_advisory.asc");
  script_summary(english:"Checks the version of the Java package.");

  script_set_attribute(attribute:"synopsis", value:
"The remote AIX host has a version of Java SDK installed that is
affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Java SDK installed on the remote host is affected by
the following vulnerabilities :

  - A privilege escalation vulnerability in IBM Java
    Virtual Machine allows remote attackers to execute code
    to increase access in the context of a security manager.
    (CVE-2014-3086)

  - Data integrity vulnerabilities exist in Oracle Java
    within the the Deployment subcomponent. (CVE-2014-4208,
    CVE-2014-4220, CVE-2014-4265)

  - An information disclosure vulnerability in Oracle Java's
    JMX subcomponent allows a remote attacker to view or
    edit the SubjectDelegator class. (CVE-2014-4209)

  - A vulnerability in Oracle Java allows a remote attacker
    to bypass security features via flaws in 'Proxy.java'
    in the Libraries subcomponent. (CVE-2014-4218)

  - A vulnerability in Oracle Java allows remote code
    execution via a flaw in the Hotspot subcomponent,
    returning incomplete objects. (CVE-2014-4219)

  - An information disclosure vulnerability in Oracle Java's
    Libraries subcomponent allows a remote attacker to view
    sensitive information. (CVE-2014-4221)

  - Vulnerabilities in Oracle Java allow remote code
    execution via flaws in the Deployment subcomponent.
    (CVE-2014-4227)

  - There are information disclosure vulnerabilities in the
    Security subcomponent of Oracle Java that can allow
    remote attackers to gain sensitive information,
    including information about used keys. (CVE-2014-4244,
    CVE-2014-4252, CVE-2014-4263)

  - A vulnerability in Oracle Java allows remote code
    execution via a memory corruption flaw in the Libraries
    subcomponent. (CVE-2014-4262)

  - A data integrity vulnerability exists in Oracle Java
    within the Serviceability subcomponent due to incorrect
    function return values. (CVE-2014-4266)

  - An information disclosure vulnerability in Oracle Java's
    Swing subcomponent allows a remote attacker to view
    restricted file contents. (CVE-2014-4268)");
  # https://aix.software.ibm.com/aix/efixes/security/java_jul2014_advisory.asc
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?0cd279e0");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?aacaab25");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?70623e16");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1d08dc51");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?4ca2561a");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a624fae8");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?aa3fc787");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e42e2673");
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ae6bb0ba");
  script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/developerworks/java/jdk/aix/service.html#levels");
  script_set_attribute(attribute:"solution", value:
"Fixes are available by version and can be downloaded from the AIX
website.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:java");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/02/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/08/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/08/22");

  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2023 Tenable Network Security, Inc.");
  script_family(english:"AIX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");

  exit(0);
}

include("aix.inc");
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
oslevel = get_kb_item_or_exit("Host/AIX/version");
if ( oslevel != "AIX-5.3" && oslevel != "AIX-6.1" && oslevel != "AIX-7.1" )
{
  oslevel = ereg_replace(string:oslevel, pattern:"-", replace:" ");
  audit(AUDIT_OS_NOT, "AIX 5.3 / 6.1 / 7.1", oslevel);
}
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);

flag = 0;

#Java5 5.0.0.579
if (aix_check_package(release:"5.3", package:"Java5.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java5.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java5.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;
if (aix_check_package(release:"5.3", package:"Java5_64.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java5_64.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java5_64.sdk", minpackagever:"5.0.0.0", maxpackagever:"5.0.0.578", fixpackagever:"5.0.0.579") > 0) flag++;

#Java6 6.0.0.459
if (aix_check_package(release:"5.3", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;
if (aix_check_package(release:"5.3", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.458", fixpackagever:"6.0.0.459") > 0) flag++;

#Java7 7.0.0.134
if (aix_check_package(release:"6.1", package:"Java7.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.133", fixpackagever:"7.0.0.134") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.133", fixpackagever:"7.0.0.134") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java7_64.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.133", fixpackagever:"7.0.0.134") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7_64.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.133", fixpackagever:"7.0.0.134") > 0) flag++;

#Java7.1 7.1.0.14
if (aix_check_package(release:"6.1", package:"Java7.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.13", fixpackagever:"7.1.0.14") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.13", fixpackagever:"7.1.0.14") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java7_64.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.13", fixpackagever:"7.1.0.14") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7_64.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.13", fixpackagever:"7.1.0.14") > 0) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : aix_report_get()
  );
}
else
{
  tested = aix_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Java5 / Java6 / Java7");
}
VendorProductVersionCPE
ibmaixcpe:/o:ibm:aix
oraclejavacpe:/a:oracle:java

References

Related

ibm 47
aix 1
nessus 38
openvas 36
redhat 9
debian 3
ubuntu 4
suse 4
oraclelinux 3
amazon 2
centos 3
kaspersky 1
mageia 1
osv 1
prion 10
ubuntucve 9
cvelist 9
cve 9
thn 1
veracode 7
checkpoint_advisories 1
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Asset and Service Management
2022-09-22 03:02:31
Security Bulletin: Vulnerabilities in IBM Tivoli System Automation for Integrated Operations Management (Several CVE's)
2018-08-09 04:20:36
Security Bulletin: Multiple vulnerabilities in the IBM SDK Java™ Technology for IBM i
2019-12-18 14:26:38
aix
aix
Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition
2014-08-18 14:04:26
nessus
nessus
SuSE 11.3 Security Update : IBM Java 1.7.0 (SAT Patch Number 9616)
2014-08-20 00:00:00
RHEL 5 / 6 : java-1.7.0-ibm (RHSA-2014:1041)
2014-08-12 00:00:00
RHEL 7 : java-1.7.1-ibm (RHSA-2014:1042)
2014-08-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:1037-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1055-1)
2021-06-09 00:00:00
Debian Security Advisory DSA 2980-1 (openjdk-6 - security update)
2014-07-17 00:00:00
redhat
redhat
(RHSA-2014:1042) Critical: java-1.7.1-ibm security update
2014-08-11 00:00:00
(RHSA-2014:1041) Critical: java-1.7.0-ibm security update
2014-08-11 00:00:00
(RHSA-2014:1033) Critical: java-1.6.0-ibm security update
2014-08-07 00:00:00
debian
debian
[SECURITY] [DSA 2980-1] openjdk-6 security update
2014-07-17 16:00:25
[SECURITY] [DSA 2987-1] openjdk-7 security update
2014-07-23 19:51:55
[SECURITY] [DLA 96-1] openjdk-6 security update
2014-11-28 10:26:06
ubuntu
ubuntu
OpenJDK 6 vulnerabilities
2014-08-12 00:00:00
OpenJDK 7 regression
2014-08-26 00:00:00
OpenJDK 7 vulnerabilities
2014-08-20 00:00:00
suse
suse
Security update for openjdk (important)
2014-08-04 19:04:23
Security update for java-1_7_0-ibm (important)
2015-02-21 01:05:45
Security update for java-1_5_0-ibm (important)
2015-02-25 19:05:32
oraclelinux
oraclelinux
java-1.6.0-openjdk security and bug fix update
2014-07-21 00:00:00
java-1.7.0-openjdk security update
2014-07-16 00:00:00
java-1.7.0-openjdk security update
2014-07-16 00:00:00
amazon
amazon
Important: java-1.6.0-openjdk
2014-07-31 13:52:00
Critical: java-1.7.0-openjdk
2014-07-23 14:01:00
centos
centos
java security update
2014-07-21 18:20:14
java security update
2014-07-16 10:46:11
java security update
2014-07-16 10:53:36
kaspersky
kaspersky
KLA10507 Multiple vulnerabilities in Oracle products
2014-07-17 00:00:00
mageia
mageia
Updated java-1.7.0-openjdk packages fix multiple vulnerabilities
2014-07-26 15:03:50
osv
osv
openjdk-6 - security update
2014-11-28 00:00:00
prion
prion
Design/Logic Flaw
2014-07-17 05:10:00
Design/Logic Flaw
2014-07-17 05:10:00
Buffer overflow
2014-07-17 11:17:00
ubuntucve
ubuntucve
CVE-2014-4220
2014-07-17 00:00:00
CVE-2014-4208
2014-07-17 00:00:00
CVE-2014-4268
2014-07-17 00:00:00
cvelist
cvelist
CVE-2014-4208
2014-07-17 02:36:00
CVE-2014-4220
2014-07-17 02:36:00
CVE-2014-4265
2014-07-17 10:00:00
cve
cve
CVE-2014-4208
2014-07-17 05:10:00
CVE-2014-4220
2014-07-17 05:10:00
CVE-2014-4265
2014-07-17 11:17:00
thn
thn
Update Your Java to Patch 20 Vulnerabilities Or Just Disable it
2014-07-15 23:03:00
veracode
veracode
Authorization Bypass
2019-05-02 05:08:04
Privilege Escalation
2020-02-12 00:05:43
Arbitrary Code Execution
2019-05-02 05:08:03
checkpoint_advisories
checkpoint_advisories
Oracle Java AtomicReferenceFieldUpdater Type Confusion (CVE-2014-4262)
2014-09-21 00:00:00
JSON
Related for AIX_JAVA_JUL2014_ADVISORY.NASL
ibm47aix1nessus38openvas36redhat9debian3ubuntu4suse4oraclelinux3amazon2centos3kaspersky1mageia1osv1prion10ubuntucve9cvelist9cve9thn1veracode7checkpoint_advisories1