Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2020-1898.NASL
HistoryAug 28, 2020 - 12:00 a.m.

EulerOS Virtualization for ARM 64 3.0.6.0 : samba (EulerOS-SA-2020-1898)

2020-08-2800:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.7%

JSON

According to the versions of the samba packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :

  • A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash.(CVE-2020-14303)

  • A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server to consume excessive CPU use, resulting in a denial of service. This highest threat from this vulnerability is to system availability.(CVE-2020-10745)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(140001);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/22");

  script_cve_id("CVE-2020-10745", "CVE-2020-14303");

  script_name(english:"EulerOS Virtualization for ARM 64 3.0.6.0 : samba (EulerOS-SA-2020-1898)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization for ARM 64 host is missing multiple security
updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the samba packages installed, the
EulerOS Virtualization for ARM 64 installation on the remote host is
affected by the following vulnerabilities :

  - A flaw was found in the AD DC NBT server in all Samba
    versions before 4.10.17, before 4.11.11 and before
    4.12.4. A samba user could send an empty UDP packet to
    cause the samba server to crash.(CVE-2020-14303)

  - A flaw was found in all Samba versions before 4.10.17,
    before 4.11.11 and before 4.12.4 in the way it
    processed NetBios over TCP/IP. This flaw allows a
    remote attacker could to cause the Samba server to
    consume excessive CPU use, resulting in a denial of
    service. This highest threat from this vulnerability is
    to system availability.(CVE-2020-10745)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1898
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?04287f25");
  script_set_attribute(attribute:"solution", value:
"Update the affected samba packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-10745");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-14303");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"patch_publication_date", value:"2020/08/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/08/28");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libsmbclient");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libwbclient");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-client-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-common-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-common-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:samba-libs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.6.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.6.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.6.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

flag = 0;

pkgs = ["libsmbclient-4.9.1-2.h22.eulerosv2r8",
        "libwbclient-4.9.1-2.h22.eulerosv2r8",
        "samba-client-libs-4.9.1-2.h22.eulerosv2r8",
        "samba-common-4.9.1-2.h22.eulerosv2r8",
        "samba-common-libs-4.9.1-2.h22.eulerosv2r8",
        "samba-common-tools-4.9.1-2.h22.eulerosv2r8",
        "samba-libs-4.9.1-2.h22.eulerosv2r8"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "samba");
}
VendorProductVersionCPE
huaweieuleroslibsmbclientp-cpe:/a:huawei:euleros:libsmbclient
huaweieuleroslibwbclientp-cpe:/a:huawei:euleros:libwbclient
huaweieulerossamba-client-libsp-cpe:/a:huawei:euleros:samba-client-libs
huaweieulerossamba-commonp-cpe:/a:huawei:euleros:samba-common
huaweieulerossamba-common-libsp-cpe:/a:huawei:euleros:samba-common-libs
huaweieulerossamba-common-toolsp-cpe:/a:huawei:euleros:samba-common-tools
huaweieulerossamba-libsp-cpe:/a:huawei:euleros:samba-libs
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:3.0.6.0

Related

openvas 32
nessus 26
fedora 4
freebsd 1
cisa 1
mageia 1
rosalinux 2
altlinux 1
suse 3
nvd 2
ubuntucve 2
samba 2
debiancve 2
redhatcve 2
ubuntu 3
cvelist 2
prion 2
cve 2
veracode 2
osv 3
alpinelinux 2
gentoo 1
debian 1
openvas
openvas
Samba Multiple DoS Vulnerabilities (CVE-2020-10745, CVE-2020-14303)
2020-07-06 00:00:00
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2020-1826)
2020-07-31 00:00:00
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2020-1898)
2020-08-31 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : samba (EulerOS-SA-2020-1826)
2020-07-30 00:00:00
openSUSE Security Update : samba (openSUSE-2020-984)
2020-07-20 00:00:00
Fedora 32 : 2:samba / libldb (2020-ccd9bdb2eb)
2020-07-06 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: libldb-2.0.12-1.fc31
2020-07-18 01:09:08
[SECURITY] Fedora 31 Update: samba-4.11.11-0.fc31
2020-07-18 01:09:09
[SECURITY] Fedora 32 Update: samba-4.12.5-0.fc32
2020-07-04 01:14:40
freebsd
freebsd
samba -- Multiple Vulnerabilities
2020-07-02 00:00:00
cisa
cisa
Samba Releases Security Updates
2020-07-03 00:00:00
mageia
mageia
Updated samba packages fix security vulnerability
2020-07-10 11:01:08
rosalinux
rosalinux
Advisory ROSA-SA-2024-2386
2024-04-02 07:01:49
Advisory ROSA-SA-2021-1967
2021-07-02 18:07:38
altlinux
altlinux
Security fix for the ALT Linux 10 package samba version 4.11.11-alt1
2020-07-07 00:00:00
suse
suse
Security update for samba (important)
2020-07-18 00:00:00
Security update for ldb, samba (important)
2020-07-21 00:00:00
Security update for ldb, samba (important)
2020-09-01 00:00:00
nvd
nvd
CVE-2020-14303
2020-07-06 18:15:20
CVE-2020-10745
2020-07-07 14:15:11
ubuntucve
ubuntucve
CVE-2020-14303
2020-07-06 00:00:00
CVE-2020-10745
2020-07-02 00:00:00
samba
samba
Empty UDP packet DoS in Samba AD DC nbtd
2020-07-02 00:00:00
Parsing and packing of NBT and DNS packets
2020-07-02 00:00:00
debiancve
debiancve
CVE-2020-14303
2020-07-06 18:15:20
CVE-2020-10745
2020-07-07 14:15:11
redhatcve
redhatcve
CVE-2020-14303
2020-07-02 09:50:50
CVE-2020-10745
2020-07-02 09:50:42
ubuntu
ubuntu
Samba vulnerability
2020-08-10 00:00:00
Samba vulnerability
2020-08-10 00:00:00
Samba vulnerabilities
2020-07-02 00:00:00
cvelist
cvelist
CVE-2020-14303
2020-07-06 17:12:08
CVE-2020-10745
2020-07-07 13:33:08
prion
prion
Design/Logic Flaw
2020-07-06 18:15:00
Denial of service
2020-07-07 14:15:00
cve
cve
CVE-2020-14303
2020-07-06 18:15:20
CVE-2020-10745
2020-07-07 14:15:11
veracode
veracode
Denial Of Service (DoS)
2020-09-07 02:39:03
Denial Of Service (DoS)
2020-09-07 02:36:21
osv
osv
CVE-2020-14303
2020-07-06 18:15:20
CVE-2020-10745
2020-07-07 14:15:11
samba - security update
2020-11-22 00:00:00
alpinelinux
alpinelinux
CVE-2020-14303
2020-07-06 18:15:20
CVE-2020-10745
2020-07-07 14:15:11
gentoo
gentoo
Samba: Multiple vulnerabilities
2020-07-26 00:00:00
debian
debian
[SECURITY] [DLA 2463-1] samba security update
2020-11-23 03:18:54

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.7%

JSON
Related for EULEROS_SA-2020-1898.NASL
openvas32nessus26fedora4freebsd1cisa1mageia1rosalinux2altlinux1suse3nvd2ubuntucve2samba2debiancve2redhatcve2ubuntu3cvelist2prion2cve2veracode2osv3alpinelinux2gentoo1debian1