Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2017-1226.NASLHistorySep 11, 2017 - 12:00 a.m.
EulerOS 2.0 SP2 : spice (EulerOS-SA-2017-1226)
2017-09-1100:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
68.9%
According to the version of the spice package installed, the EulerOS installation on the remote host is affected by the following vulnerability :
- A vulnerability was discovered in spice server’s protocol handling. An authenticated attacker could send specially crafted messages to the spice server, causing out-of-bounds memory accesses, leading to parts of server memory being leaked or a crash. (CVE-2017-7506)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(103084);
script_version("3.13");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id(
"CVE-2017-7506"
);
script_name(english:"EulerOS 2.0 SP2 : spice (EulerOS-SA-2017-1226)");
script_summary(english:"Checks the rpm output for the updated package.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the spice package installed, the EulerOS
installation on the remote host is affected by the following
vulnerability :
- A vulnerability was discovered in spice server's
protocol handling. An authenticated attacker could send
specially crafted messages to the spice server, causing
out-of-bounds memory accesses, leading to parts of
server memory being leaked or a crash. (CVE-2017-7506)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2017-1226
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?32683d7f");
script_set_attribute(attribute:"solution", value:
"Update the affected spice package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"patch_publication_date", value:"2017/09/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/09/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:spice-server");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
script_exclude_keys("Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(2)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2", "EulerOS UVP " + uvp);
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["spice-server-0.12.8-2.1"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", sp:"2", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "spice");
}
Related
suse
suse
Security update for spice (important)
2017-07-11 21:10:12
Security update for spice (important)
2017-07-11 21:14:14
Security update for spice (important)
2017-07-12 18:10:38
nessus
nessus
Fedora 24 : spice (2017-61689edaf4)
2017-07-21 00:00:00
Oracle Linux 7 : spice (ELSA-2017-2471)
2017-08-16 00:00:00
CentOS 6 : spice-server (CESA-2018:3522)
2018-11-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3355-1)
2017-07-20 00:00:00
RedHat Update for spice RHSA-2017:2471-01
2017-08-15 00:00:00
CentOS Update for spice-server CESA-2018:3522 centos6
2018-11-21 00:00:00
nvd
nvd
CVE-2017-7506
2017-07-18 15:29:00
oraclelinux
oraclelinux
spice-server security update
2018-11-08 00:00:00
spice security update
2017-08-15 00:00:00
spice-server security update
2019-01-31 00:00:00
ubuntucve
ubuntucve
CVE-2017-7506
2017-07-11 00:00:00
osv
osv
spice - security update
2017-07-11 00:00:00
CVE-2017-7506
2017-07-18 15:29:00
cve
cve
CVE-2017-7506
2017-07-18 15:29:00
redhat
redhat
(RHSA-2017:2471) Important: spice security update
2017-08-15 03:03:50
(RHSA-2018:3522) Important: spice-server security update
2018-11-07 22:23:33
debian
debian
[SECURITY] [DSA 3907-1] spice security update
2017-07-11 21:31:14
cvelist
cvelist
CVE-2017-7506
2017-07-18 15:00:00
alpinelinux
alpinelinux
CVE-2017-7506
2017-07-18 15:29:00
fedora
fedora
[SECURITY] Fedora 24 Update: spice-0.12.8-3.fc24
2017-07-20 18:49:10
centos
centos
spice security update
2018-11-20 14:49:17
spice security update
2017-08-24 09:44:09
ibm
ibm
Security Bulletin: A vulnerability in Spice affects PowerKVM
2018-06-18 01:38:03
ubuntu
ubuntu
Spice vulnerability
2017-07-19 00:00:00
prion
prion
Out-of-bounds
2017-07-18 15:29:00
mageia
mageia
Updated spice packages fix security vulnerability
2017-08-03 22:05:47
archlinux
archlinux
[ASA-201708-12] spice: arbitrary code execution
2017-08-14 00:00:00
debiancve
debiancve
CVE-2017-7506
2017-07-18 15:29:00
redhatcve
redhatcve
CVE-2017-7506
2017-07-11 07:19:24
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:26:17
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.003 Low
EPSS
Percentile
68.9%
Related for EULEROS_SA-2017-1226.NASL