Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.HPUX_PHSS_36385.NASL
HistorySep 25, 2007 - 12:00 a.m.

HP-UX PHSS_36385 : HP OpenView Network Node Manager (OV NNM) Running Apache, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execute Arbitrary Code (HPSBMA02328 SSRT071293 rev.2)

2007-09-2500:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
23
JSON

s700_800 11.X PA-RISC OV NNM7.51 Intermediate Patch 16 :

Potential vulnerabilities have been identified with HP OpenView Network Node Manager (OV NNM) running Apache. These vulnerabilities could be exploited remotely resulting in cross site scripting (XSS), Denial of Service (DoS), or execution of arbitrary code.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and patch checks in this plugin were 
# extracted from HP patch PHSS_36385. The text itself is
# copyright (C) Hewlett-Packard Development Company, L.P.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(26154);
  script_version("1.26");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2005-3352", "CVE-2005-3357", "CVE-2006-3747");
  script_bugtraq_id(15834, 16152, 19204);
  script_xref(name:"HP", value:"emr_na-c01428449");
  script_xref(name:"HP", value:"SSRT071293");

  script_name(english:"HP-UX PHSS_36385 : HP OpenView Network Node Manager (OV NNM) Running Apache, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execute Arbitrary Code (HPSBMA02328 SSRT071293 rev.2)");
  script_summary(english:"Checks for the patch in the swlist output");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote HP-UX host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"s700_800 11.X PA-RISC OV NNM7.51 Intermediate Patch 16 : 

Potential vulnerabilities have been identified with HP OpenView
Network Node Manager (OV NNM) running Apache. These vulnerabilities
could be exploited remotely resulting in cross site scripting (XSS),
Denial of Service (DoS), or execution of arbitrary code."
  );
  # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01428449
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?69af359a"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Install patch PHSS_36385 or subsequent."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache Module mod_rewrite LDAP Protocol Buffer Overflow');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_cwe_id(189);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:hp:hp-ux");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/07/18");
  script_set_attribute(attribute:"patch_modification_date", value:"2008/04/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/09/25");
  script_set_attribute(attribute:"vuln_publication_date", value:"2005/12/05");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"HP-UX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/HP-UX/version", "Host/HP-UX/swlist");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("hpux.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/HP-UX/version")) audit(AUDIT_OS_NOT, "HP-UX");
if (!get_kb_item("Host/HP-UX/swlist")) audit(AUDIT_PACKAGE_LIST_MISSING);

if (!hpux_check_ctx(ctx:"11.00 11.11 11.23 11.31", proc:"parisc"))
{
  exit(0, "The host is not affected since PHSS_36385 applies to a different OS release / architecture.");
}

patches = make_list("PHSS_36385", "PHSS_36901", "PHSS_37273");
foreach patch (patches)
{
  if (hpux_installed(app:patch))
  {
    exit(0, "The host is not affected because patch "+patch+" is installed.");
  }
}


flag = 0;
if (hpux_check_patch(app:"OVNNMETCore.OVNNMET-CORE", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMETCore.OVNNMET-PD", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMETCore.OVNNMET-PESA", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVMIB-CONTRIB", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVNNM-RUN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVNNMGR-JPN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVNNMGR-KOR", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVNNMGR-SCH", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVRPT-RUN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVWWW-JPN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVWWW-KOR", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgr.OVWWW-SCH", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgrMan.OVNNM-RUN-MAN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgrRtDOC.OVNNM-DOC-REUS", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVNNMgrRtDOC.OVNNM-ENG-DOC", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVDB-RUN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVEVENT-MIN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVMIN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVSNMP-MIN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVWIN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVWWW-EVNT", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVWWW-FW", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatform.OVWWW-SRV", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatformMan.OVEVENTMIN-MAN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatformMan.OVSNMP-MIN-MAN", version:"B.07.50.00")) flag++;
if (hpux_check_patch(app:"OVPlatformMan.OVWIN-MAN", version:"B.07.50.00")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:hpux_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
hphp-uxcpe:/o:hp:hp-ux

Related

nessus 49
cert 1
openvas 61
gentoo 2
ubuntu 2
suse 2
centos 2
redhat 2
cve 3
seebug 5
debiancve 3
ubuntucve 3
httpd 8
securityvulns 6
slackware 2
jvn 1
freebsd 2
exploitpack 2
debian 3
saint 4
f5 2
packetstorm 5
checkpoint_advisories 2
exploitdb 2
osv 1
fedora 1
oracle 1
nessus
nessus
HP-UX PHSS_36386 : HP OpenView Network Node Manager (OV NNM) Running Apache, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execute Arbitrary Code (HPSBMA02328 SSRT071293 rev.2)
2007-09-25 00:00:00
Ubuntu 4.10 / 5.04 / 5.10 : apache2, apache vulnerabilities (USN-241-1)
2006-01-21 00:00:00
SUSE-SA:2006:043: apache,apache2
2007-02-18 00:00:00
cert
cert
Apache mod_rewrite contains off-by-one error in ldap scheme handling
2006-07-28 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200602-03 (Apache)
2008-09-24 00:00:00
SLES9: Security update for Apache 2
2009-10-10 00:00:00
SLES9: Security update for Apache2
2009-10-10 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2006-02-06 00:00:00
Apache: Off-by-one flaw in mod_rewrite
2006-08-01 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2006-01-13 00:00:00
Apache vulnerability
2006-07-28 00:00:00
suse
suse
remote denial of service in apache,apache2
2006-07-28 14:21:14
cryptographic problems in apache2
2006-09-08 14:34:17
centos
centos
httpd, mod_ssl security update
2006-01-05 21:38:50
apache security update
2006-01-30 00:50:54
redhat
redhat
(RHSA-2006:0159) httpd security update
2006-01-05 00:00:00
(RHSA-2006:0158) apache security update
2006-01-17 00:00:00
cve
cve
CVE-2005-3352
2005-12-13 20:03:00
CVE-2005-3357
2005-12-31 05:00:00
CVE-2006-3747
2006-07-28 18:02:00
seebug
seebug
Apache Mod_SSL可定制错误文档拒绝服务漏洞
2006-08-17 00:00:00
Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)
2007-04-10 00:00:00
Apache mod_rewrite模块单字节缓冲区溢出漏洞
2006-11-05 00:00:00
debiancve
debiancve
CVE-2005-3357
2005-12-31 05:00:00
CVE-2005-3352
2005-12-13 20:03:00
CVE-2006-3747
2006-07-28 18:02:00
ubuntucve
ubuntucve
CVE-2005-3357
2005-12-31 00:00:00
CVE-2005-3352
2005-12-13 00:00:00
CVE-2006-3747
2006-07-28 00:00:00
httpd
httpd
Apache Httpd < 2.2.2 : mod_ssl access control DoS
2005-12-05 00:00:00
Apache Httpd < 2.2.2 : mod_imap Referer Cross-Site Scripting
2005-11-01 00:00:00
Apache Httpd < 2.0.58 : mod_imap Referer Cross-Site Scripting
2005-11-01 00:00:00
securityvulns
securityvulns
[OpenPKG-SA-2005.029] OpenPKG Security Advisory &#40;apache&#41;
2005-12-16 00:00:00
[Full-disclosure] [USN-328-1] Apache vulnerability
2006-07-28 00:00:00
[Full-disclosure] [Announcement] Apache HTTP Server 2.2.3 &#40;2.0.59, 1.3.37&#41; Released
2006-07-28 00:00:00
slackware
slackware
[slackware-security] Apache httpd
2006-05-09 22:19:21
[slackware-security] Apache httpd
2006-07-29 00:21:45
jvn
jvn
JVN#06045169 mod_imap cross-site scripting vulnerability
2005-12-15 00:00:00
freebsd
freebsd
apache -- mod_imap cross-site scripting flaw
2005-11-01 00:00:00
apache -- mod_rewrite buffer overflow vulnerability
2006-07-27 00:00:00
exploitpack
exploitpack
Apache 1.3.372.0.592.2.3 mod_rewrite - Remote Overflow
2006-08-21 00:00:00
Apache mod_rewrite (Windows x86) - Off-by-One Remote Overflow
2007-04-07 00:00:00
debian
debian
[SECURITY] [DSA 1132-1] New apache2 packages fix buffer overflow
2006-08-01 12:57:19
[SECURITY] [DSA 1131-1] New apache package fix buffer overflow
2006-08-01 10:46:24
[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities
2006-09-04 15:08:06
saint
saint
Apache mod_rewrite LDAP URL buffer overflow
2007-06-22 00:00:00
Apache mod_rewrite LDAP URL buffer overflow
2007-06-22 00:00:00
Apache mod_rewrite LDAP URL buffer overflow
2007-06-22 00:00:00
f5
f5
SOL6878 - Apache Rewrite module (mod_rewrite) vulnerabilities CVE-2006-3747
2007-05-16 00:00:00
K6878 : Apache Rewrite module (mod_rewrite) vulnerabilities CVE-2006-3747
2013-03-19 00:00:00
packetstorm
packetstorm
apache2058-rewrite.txt
2007-05-31 00:00:00
Apache module mod_rewrite LDAP protocol Buffer Overflow
2009-11-26 00:00:00
apache-mod-rewrite.rb.txt
2008-01-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Apache LDAP HTTP Server Buffer Overflow Vulnerability
2006-09-12 00:00:00
Apache Server mod_rewrite Module LDAP Scheme Handling Buffer Overflow (CVE-2006-3747)
2009-09-30 00:00:00
exploitdb
exploitdb
Apache mod_rewrite (Windows x86) - Off-by-One Remote Overflow
2007-04-07 00:00:00
Apache &lt; 1.3.37/2.0.59/2.2.3 mod_rewrite - Remote Overflow
2006-08-21 00:00:00
osv
osv
apache - missing input sanitising
2006-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: httpd-2.2.2-1.3
2007-07-02 15:01:38
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
JSON
Related for HPUX_PHSS_36385.NASL
nessus49cert1openvas61gentoo2ubuntu2suse2centos2redhat2cve3seebug5debiancve3ubuntucve3httpd8securityvulns6slackware2jvn1freebsd2exploitpack2debian3saint4f52packetstorm5checkpoint_advisories2exploitdb2osv1fedora1oracle1