Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2018-3127.NASL
HistoryNov 16, 2018 - 12:00 a.m.

CentOS 7 : 389-ds-base (CESA-2018:3127)

2018-11-1600:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.05 Low

EPSS

Percentile

92.9%

JSON

An update for 389-ds-base is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server.
The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.

The following packages have been upgraded to a later upstream version:
389-ds-base (1.3.8.4). (BZ#1560653)

Security Fix(es) :

  • 389-ds-base: Mishandled search requests in servers/slapd/search.c:do_search () allows for denial of service (CVE-2018-14648)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes :

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2018:3127 and 
# CentOS Errata and Security Advisory 2018:3127 respectively.
#

include("compat.inc");

if (description)
{
  script_id(118994);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/04/08");

  script_cve_id("CVE-2018-14648");
  script_xref(name:"RHSA", value:"2018:3127");

  script_name(english:"CentOS 7 : 389-ds-base (CESA-2018:3127)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote CentOS host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"An update for 389-ds-base is now available for Red Hat Enterprise
Linux 7.

Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server.
The base packages include the Lightweight Directory Access Protocol
(LDAP) server and command-line utilities for server administration.

The following packages have been upgraded to a later upstream version:
389-ds-base (1.3.8.4). (BZ#1560653)

Security Fix(es) :

* 389-ds-base: Mishandled search requests in
servers/slapd/search.c:do_search () allows for denial of service
(CVE-2018-14648)

For more details about the security issue(s), including the impact, a
CVSS score, and other related information, refer to the CVE page(s)
listed in the References section.

Additional Changes :

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 7.6 Release Notes linked from the References section."
  );
  # https://lists.centos.org/pipermail/centos-cr-announce/2018-November/005316.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?66d28eac"
  );
  script_set_attribute(
    attribute:"solution",
    value:"Update the affected 389-ds-base packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-14648");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:389-ds-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:389-ds-base-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:389-ds-base-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:389-ds-base-snmp");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/09/28");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/11/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/11/16");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 7.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"389-ds-base-1.3.8.4-15.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"389-ds-base-devel-1.3.8.4-15.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"389-ds-base-libs-1.3.8.4-15.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"389-ds-base-snmp-1.3.8.4-15.el7")) flag++;


if (flag)
{
  cr_plugin_caveat = '\n' +
    'NOTE: The security advisory associated with this vulnerability has a\n' +
    'fixed package version that may only be available in the continuous\n' +
    'release (CR) repository for CentOS, until it is present in the next\n' +
    'point release of CentOS.\n\n' +

    'If an equal or higher package level does not exist in the baseline\n' +
    'repository for your major version of CentOS, then updates from the CR\n' +
    'repository will need to be applied in order to address the\n' +
    'vulnerability.\n';
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get() + cr_plugin_caveat
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "389-ds-base / 389-ds-base-devel / 389-ds-base-libs / etc");
}
VendorProductVersionCPE
centoscentos389-ds-basep-cpe:/a:centos:centos:389-ds-base
centoscentos389-ds-base-develp-cpe:/a:centos:centos:389-ds-base-devel
centoscentos389-ds-base-libsp-cpe:/a:centos:centos:389-ds-base-libs
centoscentos389-ds-base-snmpp-cpe:/a:centos:centos:389-ds-base-snmp
centoscentos7cpe:/o:centos:centos:7

Related

nvd 2
openvas 6
nessus 16
debiancve 2
veracode 2
debian 2
ubuntucve 2
checkpoint_advisories 1
centos 1
amazon 2
prion 2
mageia 1
osv 1
cvelist 2
redhat 3
cve 2
redhatcve 2
oraclelinux 1
nvd
nvd
CVE-2018-14648
2018-09-28 13:29:00
CVE-2019-10171
2019-08-02 14:15:14
openvas
openvas
Debian: Security Advisory (DLA-1554-1)
2018-10-25 00:00:00
Mageia: Security Advisory (MGASA-2018-0461)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2018-1440)
2020-01-23 00:00:00
nessus
nessus
EulerOS 2.0 SP2 : 389-ds-base (EulerOS-SA-2018-1439)
2018-12-28 00:00:00
Amazon Linux AMI : 389-ds-base (ALAS-2018-1106)
2018-12-07 00:00:00
Debian DLA-1554-2 : 389-ds-base regression update
2018-10-26 00:00:00
debiancve
debiancve
CVE-2018-14648
2018-09-28 13:29:00
CVE-2019-10171
2019-08-02 14:15:14
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:25:42
Denial Of Service (DoS)
2019-07-22 00:16:24
debian
debian
[SECURITY] [DLA 1554-2] 389-ds-base regression update
2018-10-25 19:20:16
[SECURITY] [DLA 1554-1] 389-ds-base security update
2018-10-25 10:50:47
ubuntucve
ubuntucve
CVE-2018-14648
2018-09-28 00:00:00
CVE-2019-10171
2019-08-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Red Hat 389 Directory Server do_search Denial of Service (CVE-2018-14648)
2019-01-14 00:00:00
centos
centos
389 security update
2018-11-15 18:43:04
amazon
amazon
Medium: 389-ds-base
2018-11-13 17:55:00
Medium: 389-ds-base
2018-12-06 00:18:00
prion
prion
Denial of service
2018-09-28 13:29:00
Code injection
2019-08-02 14:15:00
mageia
mageia
Updated 389-ds-base packages fix security vulnerability
2018-11-20 14:11:24
osv
osv
389-ds-base - security update
2018-10-25 00:00:00
cvelist
cvelist
CVE-2018-14648
2018-09-28 13:00:00
CVE-2019-10171
2019-08-02 13:49:35
redhat
redhat
(RHSA-2018:3507) Moderate: 389-ds-base security and bug fix update
2018-11-06 14:46:40
(RHSA-2018:3127) Moderate: 389-ds-base security, bug fix, and enhancement update
2018-10-30 04:21:13
(RHSA-2019:1789) Important: 389-ds-base security update
2019-07-16 11:50:21
cve
cve
CVE-2018-14648
2018-09-28 13:29:00
CVE-2019-10171
2019-08-02 14:15:14
redhatcve
redhatcve
CVE-2018-14648
2018-09-21 16:20:38
CVE-2019-10171
2019-06-19 15:22:33
oraclelinux
oraclelinux
389-ds-base security, bug fix, and enhancement update
2018-11-05 00:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.05 Low

EPSS

Percentile

92.9%

JSON
Related for CENTOS_RHSA-2018-3127.NASL
nvd2openvas6nessus16debiancve2veracode2debian2ubuntucve2checkpoint_advisories1centos1amazon2prion2mageia1osv1cvelist2redhat3cve2redhatcve2oraclelinux1