EulerOS 2.0 SP2 : libvirt (EulerOS-SA-2017-1052)

🗓️ 01 May 2017 00:00:00Reported by TenableType

EulerOS 2.0 SP2 libvirt vulnerability CVE-2016-500

Reporter	Title	Published	Views	Family All 66
IBM Security Bulletins	Security Bulletin: Two vulnerabilities in libvirt affect PowerKVM (CVE-2015-5313, CVE-2016-5008)	18 Jun 201801:33	–	ibm
Tenable Nessus	CentOS 7 : libvirt (CESA-2016:2577)	28 Nov 201600:00	–	nessus
Tenable Nessus	Debian DLA-541-1 : libvirt security update	5 Jul 201600:00	–	nessus
Tenable Nessus	Debian DSA-3613-1 : libvirt - security update	5 Jul 201600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP1 : libvirt (EulerOS-SA-2017-1053)	1 May 201700:00	–	nessus
Tenable Nessus	Fedora 24 : libvirt (2016-65cc608ebe)	25 Jul 201600:00	–	nessus
Tenable Nessus	Fedora 23 : libvirt (2016-7b7e16a39e)	28 Jul 201600:00	–	nessus
Tenable Nessus	MiracleLinux 7 : libvirt-2.0.0-10.el7 (AXSA:2016-880:04)	16 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE Security Update : libvirt (openSUSE-2016-874)	18 Jul 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : libvirt (openSUSE-2016-875)	18 Jul 201600:00	–	nessus

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(99897);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/12/22");

  script_cve_id("CVE-2016-5008");

  script_name(english:"EulerOS 2.0 SP2 : libvirt (EulerOS-SA-2017-1052)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the version of the libvirt packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerability :

  - It was found that setting a VNC password to an empty
    string in libvirt did not disable all access to the VNC
    server as documented, instead it allowed access with no
    authentication required. An attacker could use this
    flaw to access a VNC server with an empty VNC password
    without any authentication.(CVE-2016-5008)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2017-1052
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?906a885c");
  script_set_attribute(attribute:"solution", value:
"Update the affected libvirt package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5008");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"patch_publication_date", value:"2017/03/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/05/01");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-config-network");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-config-nwfilter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-interface");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-lxc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-network");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-nodedev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-nwfilter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-qemu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-secret");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-driver-storage");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libvirt-daemon-kvm");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2017-2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");

sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(2)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2");

uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

flag = 0;

pkgs = ["libvirt-2.0.0-10.5",
        "libvirt-client-2.0.0-10.5",
        "libvirt-daemon-2.0.0-10.5",
        "libvirt-daemon-config-network-2.0.0-10.5",
        "libvirt-daemon-config-nwfilter-2.0.0-10.5",
        "libvirt-daemon-driver-interface-2.0.0-10.5",
        "libvirt-daemon-driver-lxc-2.0.0-10.5",
        "libvirt-daemon-driver-network-2.0.0-10.5",
        "libvirt-daemon-driver-nodedev-2.0.0-10.5",
        "libvirt-daemon-driver-nwfilter-2.0.0-10.5",
        "libvirt-daemon-driver-qemu-2.0.0-10.5",
        "libvirt-daemon-driver-secret-2.0.0-10.5",
        "libvirt-daemon-driver-storage-2.0.0-10.5",
        "libvirt-daemon-kvm-2.0.0-10.5"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"2", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libvirt");
}

22 Dec 2025 00:00Current

7.3High risk

Vulners AI Score7.3

CVSS 24.3

CVSS 39.8

EPSS0.03636