Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.IBM_HTTP_SERVER_521711.NASL
HistoryJan 06, 2021 - 12:00 a.m.

IBM HTTP Server 8.5.0.0 <= 8.5.5.4 / 8.0.0.0 <= 8.0.0.10 / 7.0.0.0 <= 7.0.0.35 / 6.1.0.0 <= 6.1.0.47 / 6.0.0.0 <= 6.0.2.43 (521711)

2021-01-0600:00:00
This script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
33
JSON

The version of IBM HTTP Server running on the remote host is affected by a vulnerability. The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0 through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway, WebAccelerator, and WOM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, PEM 11.3.0 through 11.6.0, and PSM 10.0.0 through 10.2.4 and 11.0.0 through 11.4.1 and BIG-IQ Cloud and Security 4.0.0 through 4.4.0 and Device 4.2.0 through 4.4.0, when using TLS 1.x before TLS 1.2, does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE). NOTE: the scope of this identifier is limited to the F5 implementation only. Other vulnerable implementations should receive their own CVE ID, since this is not a vulnerability within the design of TLS 1.x itself.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(144767);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id("CVE-2014-8730");
  script_bugtraq_id(71549);

  script_name(english:"IBM HTTP Server 8.5.0.0 <= 8.5.5.4 / 8.0.0.0 <= 8.0.0.10 / 7.0.0.0 <= 7.0.0.35 / 6.1.0.0 <= 6.1.0.47 / 6.0.0.0 <= 6.0.2.43 (521711)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of IBM HTTP Server running on the remote host is affected by a vulnerability. The SSL profiles component in
F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0
through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway, WebAccelerator, and WOM 10.1.0 through 10.2.4 and 11.0.0
through 11.3.0, PEM 11.3.0 through 11.6.0, and PSM 10.0.0 through 10.2.4 and 11.0.0 through 11.4.1 and BIG-IQ Cloud and
Security 4.0.0 through 4.4.0 and Device 4.2.0 through 4.4.0, when using TLS 1.x before TLS 1.2, does not properly check
CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain
cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).  NOTE: the scope of this identifier
is limited to the F5 implementation only. Other vulnerable implementations should receive their own CVE ID, since this
is not a vulnerability within the design of TLS 1.x itself.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/521711");
  script_set_attribute(attribute:"solution", value:
"Upgrade to IBM HTTP Server version 8.5.5.5, 8.0.0.11, 7.0.0.37 or later. Alternatively, upgrade to the minimal fix pack
level required by the interim fix and then apply Interim Fix PI34229.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-8730");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/12/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/12/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/01/06");

  script_set_attribute(attribute:"potential_vulnerability", value:"true");
  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:http_server");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ibm_http_server_nix_installed.nbin");
  script_require_keys("installed_sw/IBM HTTP Server (IHS)", "Settings/ParanoidReport");

  exit(0);
}

include('vcf.inc');

# Paranoid due to lack of workaround check
if (report_paranoia < 2)
  audit(AUDIT_PARANOID);

app = 'IBM HTTP Server (IHS)';

app_info = vcf::get_app_info(app:app);
vcf::check_granularity(app_info:app_info, sig_segments:4);

if ('PI34229' >< app_info['Fixes'] || 'PI31516' >< app_info['Fixes'])
  audit(AUDIT_INST_VER_NOT_VULN, app);

constraints = [
  { 'min_version' : '8.5.0.0', 'max_version' : '8.5.5.4', 'fixed_display' : '8.5.5.5 or Interim Fix PI34229'},
  { 'min_version' : '8.0.0.0', 'max_version' : '8.0.0.10', 'fixed_display' : '8.0.0.11 or Interim Fix PI34229'},
  { 'min_version' : '7.0.0.0', 'max_version' : '7.0.0.35', 'fixed_display' : '7.0.0.37 or Interim Fix PI34229'},
  { 'min_version' : '6.1.0.0', 'max_version' : '6.1.0.47', 'fixed_display' : 'Interim Fix PI31516'},
  { 'min_version' : '6.0.0.0', 'max_version' : '6.0.2.43', 'fixed_display' : 'Interim Fix PI31516'}
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
ibmhttp_servercpe:/a:ibm:http_server

Related

f5 4
lenovo 2
ibm 116
cisco 2
prion 1
cve 1
fortinet 1
nessus 28
securityvulns 2
thn 1
threatpost 1
paloalto 1
fedora 15
suse 1
redhat 2
centos 1
openvas 12
seebug 1
osv 1
citrix 1
veracode 1
amazon 1
cert 1
hackerone 1
checkpoint_advisories 1
f5
f5
SOL15882 - TLS1.x padding vulnerability CVE-2014-8730
2014-12-08 00:00:00
SOL15702 - SSLv3 vulnerability CVE-2014-3566
2014-10-14 00:00:00
K15882 : TLS1.x padding vulnerability CVE-2014-8730
2015-09-25 00:00:00
lenovo
lenovo
POODLE: SSLv3 Vulnerability - Lenovo Support US
2016-07-22 00:00:00
POODLE: SSLv3 Vulnerability
2016-07-22 00:00:00
ibm
ibm
Security Bulletin:GSKit vulnerable to FREAK - GSKit Ephemeral RSA Vulnerability
2018-08-03 04:23:43
Security Bulletin: Vulnerability in SSLv3 affects IBM HTTP Server (CVE-2014-3566)
2022-09-08 00:09:56
Security Bulletin: Vulnerability in TLS affects IBM Tivoli Monitoring (CVE-2014-8730 )
2018-06-17 15:33:48
cisco
cisco
SSL-TLS Implementations Cipher Block Chaining Padding Information Disclosure Vulnerability
2014-12-11 19:21:05
SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2014-10-15 18:30:00
prion
prion
Code injection
2014-12-10 00:59:00
cve
cve
CVE-2014-8730
2014-12-10 00:59:00
fortinet
fortinet
CVE-2014-8730 "Poodle for TLS" vulnerability
2014-12-18 00:00:00
nessus
nessus
F5 Networks BIG-IP : TLS1.x padding vulnerability (K15882)
2014-12-09 00:00:00
AIX 7.1 TL 2 : nettcp (IV73974) (POODLE)
2015-06-19 00:00:00
Fedora 21 : claws-mail-3.11.1-2.fc21 / claws-mail-plugins-3.11.1-1.fc21 / libetpan-1.6-1.fc21 (2014-14217) (POODLE)
2014-11-11 00:00:00
securityvulns
securityvulns
[oss-security] CVE question: Return of POODLE
2014-12-09 00:00:00
OpenSSL multiple security vulnerabilities
2014-12-09 00:00:00
thn
thn
POODLE SSL Vulnerability Now Attacking TLS Security Protocol
2014-12-09 04:03:00
threatpost
threatpost
Two Cisco Products Vulnerable to POODLE Attack on TLS
2014-12-16 09:10:44
paloalto
paloalto
Padding-oracle attack on TLS CBC cipher mode
2015-01-12 08:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: fossil-1.33-1.fc22
2015-10-15 03:51:23
[SECURITY] Fedora 20 Update: claws-mail-3.11.1-2.fc20
2014-11-10 06:30:29
[SECURITY] Fedora 20 Update: nodejs-0.10.33-1.fc20
2014-12-15 04:34:00
suse
suse
Security update for suseRegister (important)
2015-01-05 21:04:43
redhat
redhat
(RHSA-2014:1653) Moderate: openssl security update
2014-10-16 00:00:00
(RHSA-2015:1546) Important: node.js security update
2015-08-04 00:00:00
centos
centos
openssl security update
2014-10-16 15:21:39
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-429)
2015-09-08 00:00:00
Fedora Update for asterisk FEDORA-2014-15621
2015-01-05 00:00:00
Fedora Update for nodejs FEDORA-2014-15411
2015-01-05 00:00:00
seebug
seebug
SSL 3.0 POODLE(CVE-2014-3566)
2017-02-17 00:00:00
osv
osv
lighttpd - security update
2015-07-25 00:00:00
citrix
citrix
CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw
2014-10-14 04:00:00
veracode
veracode
Information Disclosure
2017-02-07 00:05:45
amazon
amazon
Important: openssl
2014-10-14 22:32:00
cert
cert
POODLE vulnerability in SSL 3.0
2014-10-17 00:00:00
hackerone
hackerone
New Relic: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2017-03-26 19:08:23
checkpoint_advisories
checkpoint_advisories
Secure Socket Layer (SSL) Version 3.0 (CVE-2014-3566)
2014-10-15 00:00:00
JSON
Related for IBM_HTTP_SERVER_521711.NASL
f54lenovo2ibm116cisco2prion1cve1fortinet1nessus28securityvulns2thn1threatpost1paloalto1fedora15suse1redhat2centos1openvas12seebug1osv1citrix1veracode1amazon1cert1hackerone1checkpoint_advisories1