Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.HP_SYSTEMS_INSIGHT_MANAGER_74_MULTIPLE_VULNS.NASL
HistoryOct 07, 2014 - 12:00 a.m.

HP Systems Insight Manager < 7.4 Multiple Vulnerabilities

2014-10-0700:00:00
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.2%

JSON

The version of HP Systems Insight Manager installed on the remote Windows host is affected by the following vulnerabilities :

  • An unspecified vulnerability exists that allows a remote authenticated attacker to gain limited elevated privileges. (CVE-2014-2643)

  • A vulnerability exists that allows reflected cross-site scripting attacks, due to the improper validation of user-supplied input before it is returned to the users.
    Using a specially crafted request, a remote attacker can execute arbitrary script code within a user’s browser.
    (CVE-2014-2644)

  • An unspecified flaw exists that allows a remote attacker to conduct a clickjacking attack. (CVE-2014-2645)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(78079);
  script_version("1.8");
  script_cvs_date("Date: 2019/11/25");

  script_cve_id("CVE-2014-2643", "CVE-2014-2644", "CVE-2014-2645");
  script_bugtraq_id(70223, 70224, 70225);
  script_xref(name:"HP", value:"emr_na-c04468121");
  script_xref(name:"HP", value:"HPSBMU03118");
  script_xref(name:"HP", value:"SSRT101715");

  script_name(english:"HP Systems Insight Manager < 7.4 Multiple Vulnerabilities");
  script_summary(english:"Checks the version of HP Systems Insight Manager.");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains software that is affected by multiple
vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of HP Systems Insight Manager installed on the remote
Windows host is affected by the following vulnerabilities :

  - An unspecified vulnerability exists that allows a remote
    authenticated attacker to gain limited elevated
    privileges. (CVE-2014-2643)

  - A vulnerability exists that allows reflected cross-site
    scripting attacks, due to the improper validation of
    user-supplied input before it is returned to the users.
    Using a specially crafted request, a remote attacker can
    execute arbitrary script code within a user's browser.
    (CVE-2014-2644)

  - An unspecified flaw exists that allows a remote attacker
    to conduct a clickjacking attack. (CVE-2014-2645)");
  # https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c04468121
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?88eef9a4");
  script_set_attribute(attribute:"see_also", value:"https://www.securityfocus.com/archive/1/533606/30/0/threaded");
  script_set_attribute(attribute:"see_also", value:"https://www.securityfocus.com/archive/1/533635/30/0/threaded");
  script_set_attribute(attribute:"solution", value:
"Upgrade to HP Systems Insight Manager 7.4 or later. A hotfix has also
been made available for HP Systems Insight Manager 7.2.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-2643");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/10/02");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/10/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/10/07");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:hp:systems_insight_manager");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("hp_systems_insight_manager_installed.nasl");
  script_require_keys("installed_sw/HP Systems Insight Manager");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("install_func.inc");
include("misc_func.inc");

app_name = "HP Systems Insight Manager";
report   = NULL;

install = get_single_install(app_name:app_name);
path    = install['path'];
version = install['version'];

# A hotfix is available for 7.2
if (version =~ '^(([A-C]\\.)?07\\.02\\.[0-9\\.]+)')
{
  hotfixes = install['Hotfixes'];
  if (empty_or_null(hotfixes)) hotfixes = 'None';
  else hotfixes = str_replace(string:hotfixes, find:";", replace:", ");

  fixed_hotfix = 'HOTFIX72_038';
  if (fixed_hotfix >!< hotfixes)
    report =
      '\n  Path               : ' + path +
      '\n  Installed version  : ' + version +
      '\n  Installed hotfixes : ' + hotfixes +
      '\n  Fixed hotfix       : ' + fixed_hotfix + '\n';
}
else if (version =~ '^(([A-Z]\\.)?0[0-6]\\.|([A-C]\\.)?07\\.0[0-3]\\.[0-9\\.]+)')
{
  report =
    '\n  Path              : ' + path +
    '\n  Installed version : ' + version +
    '\n  Fixed version     : C.07.04.00.00\n';
}

if (!isnull(report))
{
  port = get_kb_item('SMB/transport');
  if (!port) port = 445;

  set_kb_item(name:'www/'+port+'/XSS', value:TRUE);

  if (report_verbosity > 0) security_warning(port:port, extra:report);
  else security_warning(port);
}
else audit(AUDIT_INST_PATH_NOT_VULN, app_name, version, path);
VendorProductVersionCPE
hpsystems_insight_managercpe:/a:hp:systems_insight_manager

Related

securityvulns 2
nvd 4
cve 4
prion 4
cvelist 3
securityvulns
securityvulns
HP Systems Insight Manager multiple security vulnerability
2014-10-05 00:00:00
[security bulletin] HPSBMU03118 rev.1 - HP Systems Insight Manager &#40;SIM&#41; on Linux and Windows, Multiple Remote Vulnerabilities
2014-10-05 00:00:00
nvd
nvd
CVE-2014-2645
2014-10-05 01:55:08
CVE-2014-2644
2014-10-06 01:55:07
CVE-2014-2643
2014-10-05 01:55:08
cve
cve
CVE-2014-2644
2014-10-06 01:55:07
CVE-2014-2643
2014-10-05 01:55:08
CVE-2014-2645
2014-10-05 01:55:08
prion
prion
Cross site scripting
2014-10-06 01:55:00
Code injection
2014-10-05 01:55:00
Code injection
2014-10-05 01:55:00
cvelist
cvelist
CVE-2014-2645
2014-10-05 01:00:00
CVE-2014-2644
2014-10-06 01:00:00
CVE-2014-2643
2014-10-05 01:00:00

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.2%

JSON
Related for HP_SYSTEMS_INSIGHT_MANAGER_74_MULTIPLE_VULNS.NASL
securityvulns2nvd4cve4prion4cvelist3