Vulners
Lucene search
HP Virtual Machine Manager Detection
| Source | Link |
|---|---|
| nessus | www.nessus.org/u |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(46238);
script_version("1.13");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/02/06");
script_name(english:"HP Virtual Machine Manager Detection");
script_summary(english:"Checks for bin/product.version in a VMM installation");
script_set_attribute(attribute:"synopsis", value:
"A virtualization management product is installed on the remote Windows
host.");
script_set_attribute(attribute:"description", value:
"HP Virtual Machine Manager (VMM) is installed on the remote host. VMM
provides centralized management for multiple virtualization platforms.");
# https://support.hpe.com/hpesc/public/home/productSelector?psiTask=advisories&sp4ts.oid=443201
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?36fdc018");
script_set_attribute(attribute:"solution", value:"n/a");
script_set_attribute(attribute:"risk_factor", value:"None");
script_set_attribute(attribute:"plugin_publication_date", value:"2010/05/05");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:hp:insight_virtual_machine_management");
script_set_attribute(attribute:"asset_inventory", value:"True");
script_set_attribute(attribute:"asset_inventory_category", value:"software_enumeration");
script_set_attribute(attribute:"agent", value:"windows");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2010-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("smb_hotfixes.nasl");
script_require_keys("SMB/Registry/Enumerated");
script_require_ports(139, 445);
exit(0);
}
include("global_settings.inc");
include("misc_func.inc");
include("smb_func.inc");
include("audit.inc");
include("install_func.inc");
app = "HP Virtual Machine Manager";
if (!get_kb_item("SMB/Registry/Enumerated"))
exit(1, "The 'SMB/Registry/Enumerated' KB item is missing.");
name = kb_smb_name();
port = kb_smb_transport();
login = kb_smb_login();
pass = kb_smb_password();
domain = kb_smb_domain();
if(! smb_session_init()) audit(AUDIT_FN_FAIL, 'smb_session_init');
rc = NetUseAdd(login:login, password:pass, domain:domain, share:"IPC$");
if (rc != 1)
{
NetUseDel();
exit(1, "Can't connect to IPC$ share.");
}
# Connect to remote registry.
hklm = RegConnectRegistry(hkey:HKEY_LOCAL_MACHINE);
if (isnull(hklm))
{
NetUseDel();
exit(1, "Cannot connect to remote registry.");
}
prods = make_list(
'SOFTWARE\\HP\\Insight Control virtual machine management', # 6.0
'SOFTWARE\\HP\\Virtual Machine Management Pack' # pre-6.0
);
paths = make_list();
# Figure out the installation path and product version
foreach key (prods)
{
key_h = RegOpenKey(handle:hklm, key:key, mode:MAXIMUM_ALLOWED);
if (!isnull(key_h))
{
path = RegQueryValue(handle:key_h, item:'ExtensionBase');
if (path) paths = make_list(paths, path[1]);
RegCloseKey(handle:key_h);
}
}
RegCloseKey(handle:hklm);
if (max_index(paths) == 0)
{
NetUseDel();
exit(0, "HP Virtual Machine Manager does not appear to be installed.");
}
# Research indicates only one version of VMM can be installed at a time,
# but it's possible multiple versions will be in the registry due to an
# improper uninstallation. We'll stop on the first evidence of a valid
# installation
ver = NULL;
foreach path (paths)
{
NetUseDel(close:FALSE);
share = ereg_replace(pattern:'^([A-Za-z]):.*', replace:"\1$", string:path);
txt = ereg_replace(
pattern:'^[A-Za-z]:(.*)',
replace:"\1\bin\product.version",
string:path
);
rc = NetUseAdd(login:login, password:pass, domain:domain, share:share);
if (rc != 1)
{
debug_print("Unable to access share: " + share);
continue;
}
fh = CreateFile(
file:txt,
desired_access:GENERIC_READ,
file_attributes:FILE_ATTRIBUTE_NORMAL,
share_mode:FILE_SHARE_READ,
create_disposition:OPEN_EXISTING
);
if (fh)
{
# This file was ~200 bytes in a 3.7.2 install - the 1k check is just a
# sanity check to ensure we don't try to read a very large amount
len = GetFileSize(handle:fh);
if (len > 1024) len = 1024;
data = ReadFile(handle:fh, length:len, offset:0);
if (strlen(data) == len)
{
match = pregmatch(string:data, pattern:'productVersion = ([0-9.]+)');
if (match)
{
ver = match[1];
set_kb_item(name:'SMB/hpvmm/version', value:ver);
set_kb_item(name:'SMB/hpvmm/path', value:path);
}
}
else debug_print('Unable to read ' + len + ' bytes from ' + path);
CloseFile(handle:fh);
if (ver) break;
else debug_print("Error getting version from "+share+':'-'$'+txt);
}
}
NetUseDel();
if (isnull(ver)) exit(1, "Unable to extract the version of HP VMM.");
register_install(
app_name:app,
path:path,
vendor:"HPE",
product:"Insight Virtual Machine Management",
version:ver,
cpe:"cpe:/a:hp:insight_virtual_machine_management");
report_installs(app_name:app, port:port);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
06 Feb 2023 00:00Current
5.5Medium risk
Vulners AI Score5.5