Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.ALA_ALAS-2019-1187.NASL
HistoryApr 10, 2019 - 12:00 a.m.

Amazon Linux AMI : bind (ALAS-2019-1187)

2019-04-1000:00:00
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
JSON

To provide fine-grained controls over the ability to use Dynamic DNS (DDNS) to update records in a zone, BIND 9 provides a feature called update-policy. Various rules can be configured to limit the types of updates that can be performed by a client, depending on the key used when sending the update request. Unfortunately, some rule types were not initially documented, and when documentation for them was added to the Administrator Reference Manual (ARM) in change #3112, the language that was added to the ARM at that time incorrectly described the behavior of two rule types, krb5-subdomain and ms-subdomain. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. (CVE-2018-5741)

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2019-1187.
#

include("compat.inc");

if (description)
{
  script_id(123956);
  script_version("1.2");
  script_cvs_date("Date: 2020/01/23");

  script_cve_id("CVE-2018-5741");
  script_xref(name:"ALAS", value:"2019-1187");

  script_name(english:"Amazon Linux AMI : bind (ALAS-2019-1187)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"To provide fine-grained controls over the ability to use Dynamic DNS
(DDNS) to update records in a zone, BIND 9 provides a feature called
update-policy. Various rules can be configured to limit the types of
updates that can be performed by a client, depending on the key used
when sending the update request. Unfortunately, some rule types were
not initially documented, and when documentation for them was added to
the Administrator Reference Manual (ARM) in change #3112, the language
that was added to the ARM at that time incorrectly described the
behavior of two rule types, krb5-subdomain and ms-subdomain. This
incorrect documentation could mislead operators into believing that
policies they had configured were more restrictive than they actually
were. (CVE-2018-5741)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2019-1187.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Run 'yum update bind' to update your system."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-chroot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-sdb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bind-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/01/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/04/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/04/10");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"bind-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-chroot-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-debuginfo-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-devel-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-libs-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-sdb-9.8.2-0.68.rc1.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"bind-utils-9.8.2-0.68.rc1.59.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chroot / bind-debuginfo / bind-devel / bind-libs / etc");
}
VendorProductVersionCPE
amazonlinuxbindp-cpe:/a:amazon:linux:bind
amazonlinuxbind-chrootp-cpe:/a:amazon:linux:bind-chroot
amazonlinuxbind-debuginfop-cpe:/a:amazon:linux:bind-debuginfo
amazonlinuxbind-develp-cpe:/a:amazon:linux:bind-devel
amazonlinuxbind-libsp-cpe:/a:amazon:linux:bind-libs
amazonlinuxbind-sdbp-cpe:/a:amazon:linux:bind-sdb
amazonlinuxbind-utilsp-cpe:/a:amazon:linux:bind-utils
amazonlinuxcpe:/o:amazon:linux

Related

amazon 2
alpinelinux 1
f5 1
ibm 4
nessus 26
cloudlinux 1
veracode 1
cve 1
debiancve 1
osv 1
ubuntucve 1
redhatcve 1
oraclelinux 2
prion 1
fedora 3
redhat 1
centos 1
cisa 1
openvas 7
gentoo 1
rosalinux 1
suse 2
amazon
amazon
Medium: bind
2019-04-04 21:42:00
Medium: bind
2019-04-04 19:13:00
alpinelinux
alpinelinux
CVE-2018-5741
2019-01-16 20:29:00
f5
f5
K04713734 : BIND vulnerability CVE-2018-5741
2018-10-15 00:00:00
ibm
ibm
Security Bulletin: IBM i is affected by networking BIND vulnerability CVE-2018-5741
2019-12-18 14:26:38
Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2018-5741)
2023-01-12 21:59:00
Security Bulletin: Vulnerability in BIND affects IBM Integrated Analytics System
2020-11-10 10:16:40
nessus
nessus
Scientific Linux Security Update : bind on SL7.x x86_64 (20190806)
2019-08-27 00:00:00
Fedora 29 : 32:bind (2018-a54e46032f)
2019-01-03 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : bind Vulnerability (NS-SA-2019-0232)
2019-12-31 00:00:00
cloudlinux
cloudlinux
Fixed CVE-2018-5741 in bind
2022-07-11 17:39:56
veracode
veracode
Authorization Bypass
2019-08-08 00:07:41
cve
cve
CVE-2018-5741
2019-01-16 20:29:00
debiancve
debiancve
CVE-2018-5741
2019-01-16 20:29:00
osv
osv
CVE-2018-5741
2019-01-16 20:29:01
ubuntucve
ubuntucve
CVE-2018-5741
2019-01-16 00:00:00
redhatcve
redhatcve
CVE-2018-5741
2020-04-02 08:32:24
oraclelinux
oraclelinux
bind security update
2022-02-03 00:00:00
bind security, bug fix, and enhancement update
2019-08-13 00:00:00
prion
prion
Design/Logic Flaw
2019-01-16 20:29:00
fedora
fedora
[SECURITY] Fedora 29 Update: bind-9.11.4-10.P2.fc29
2018-10-02 19:36:09
[SECURITY] Fedora 28 Update: bind-9.11.4-10.P2.fc28
2018-10-04 20:33:54
[SECURITY] Fedora 27 Update: bind-9.11.4-3.P2.fc27
2018-10-14 23:30:38
redhat
redhat
(RHSA-2019:2057) Moderate: bind security, bug fix, and enhancement update
2019-08-06 07:56:21
centos
centos
bind security update
2019-08-30 02:35:20
cisa
cisa
ISC Releases Security Advisory for BIND
2018-09-19 00:00:00
openvas
openvas
Fedora Update for bind FEDORA-2018-f22b937f52
2018-10-05 00:00:00
Fedora Update for bind FEDORA-2018-54d84b0b0c
2018-10-15 00:00:00
Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2019-2453)
2020-01-23 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2019-03-14 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1803
2021-07-02 16:31:31
suse
suse
Security update for bind (moderate)
2020-10-20 00:00:00
Security update for bind (moderate)
2020-10-19 00:00:00
JSON
Related for ALA_ALAS-2019-1187.NASL
amazon2alpinelinux1f51ibm4nessus26cloudlinux1veracode1cve1debiancve1osv1ubuntucve1redhatcve1oraclelinux2prion1fedora3redhat1centos1cisa1openvas7gentoo1rosalinux1suse2