Lucene search
This script is Copyright (C) 2014-2022 Tenable Network Security, Inc.MANDRIVA_MDVSA-2014-123.NASLHistoryJun 12, 2014 - 12:00 a.m.
Mandriva Linux Security Advisory : tor (MDVSA-2014:123)
2014-06-1200:00:00
This script is Copyright (C) 2014-2022 Tenable Network Security, Inc.
www.tenable.com
52
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.975 High
EPSS
Percentile
100.0%
Updated tor packages fix multiple vulnerabilities :
Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for relay identity keys and hidden-service identity keys, which might make it easier for remote attackers to bypass cryptographic protection mechanisms via unspecified vectors (CVE-2013-7295).
Update to version 0.2.4.22 solves these major and security problems :
-
Block authority signing keys that were used on authorities vulnerable to the heartbleed bug in OpenSSL (CVE-2014-0160).
-
Fix a memory leak that could occur if a microdescriptor parse fails during the tokenizing step.
-
The relay ciphersuite list is now generated automatically based on uniform criteria, and includes all OpenSSL ciphersuites with acceptable strength and forward secrecy.
-
Relays now trust themselves to have a better view than clients of which TLS ciphersuites are better than others.
-
Clients now try to advertise the same list of ciphersuites as Firefox 28.
For other changes see the upstream change log
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandriva Linux Security Advisory MDVSA-2014:123.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(74481);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/05");
script_cve_id("CVE-2013-7295", "CVE-2014-0160");
script_bugtraq_id(64651, 66690);
script_xref(name:"MDVSA", value:"2014:123");
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/05/25");
script_name(english:"Mandriva Linux Security Advisory : tor (MDVSA-2014:123)");
script_set_attribute(attribute:"synopsis", value:
"The remote Mandriva Linux host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Updated tor packages fix multiple vulnerabilities :
Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a
certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge
platforms, does not properly generate random numbers for relay
identity keys and hidden-service identity keys, which might make it
easier for remote attackers to bypass cryptographic protection
mechanisms via unspecified vectors (CVE-2013-7295).
Update to version 0.2.4.22 solves these major and security problems :
- Block authority signing keys that were used on
authorities vulnerable to the heartbleed bug in OpenSSL
(CVE-2014-0160).
- Fix a memory leak that could occur if a microdescriptor
parse fails during the tokenizing step.
- The relay ciphersuite list is now generated
automatically based on uniform criteria, and includes
all OpenSSL ciphersuites with acceptable strength and
forward secrecy.
- Relays now trust themselves to have a better view than
clients of which TLS ciphersuites are better than
others.
- Clients now try to advertise the same list of
ciphersuites as Firefox 28.
For other changes see the upstream change log");
script_set_attribute(attribute:"see_also", value:"http://advisories.mageia.org/MGASA-2014-0059.html");
script_set_attribute(attribute:"see_also", value:"http://advisories.mageia.org/MGASA-2014-0256.html");
script_set_attribute(attribute:"solution", value:
"Update the affected tor package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_set_attribute(attribute:"patch_publication_date", value:"2014/06/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:tor");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Mandriva Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2014-2022 Tenable Network Security, Inc.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"tor-0.2.4.22-1.mbs1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
cve
cve
CVE-2013-7295
2014-01-17 21:55:14
prion
prion
Design/Logic Flaw
2014-01-17 21:55:00
Buffer overflow
2014-04-07 22:55:00
cvelist
cvelist
CVE-2013-7295
2014-01-17 19:00:00
ubuntucve
ubuntucve
CVE-2013-7295
2014-01-17 00:00:00
CVE-2014-0160
2014-04-07 00:00:00
nvd
nvd
CVE-2013-7295
2014-01-17 21:55:14
CVE-2014-0160
2014-04-07 22:55:03
debiancve
debiancve
CVE-2013-7295
2014-01-17 21:55:14
CVE-2014-0160
2014-04-07 22:55:03
nessus
nessus
openSUSE Security Update : tor (openSUSE-SU-2014:0143-1)
2014-06-13 00:00:00
openSUSE Security Update : openssl (openSUSE-SU-2014:0560-1) (Heartbleed)
2014-06-13 00:00:00
CentOS 6 : openssl (CESA-2014:0376)
2014-04-08 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0059)
2022-01-28 00:00:00
CentOS Update for openssl CESA-2014:0376 centos6
2014-04-08 00:00:00
HP Printers Information Disclosure Vulnerability (Apr 2014, Heartbleed)
2014-06-03 00:00:00
mageia
mageia
Updated tor package fixes security vulnerability
2014-02-12 21:13:24
suse
suse
update for openssl (important)
2014-04-08 13:04:15
fortinet
fortinet
Information Disclosure Vulnerability in OpenSSL (Heartbleed)
2014-04-08 00:00:00
checkpoint_security
checkpoint_security
Check Point response to OpenSSL vulnerability (CVE-2014-0160)
2014-04-07 21:00:00
securityvulns
securityvulns
hp
hp
ibm
ibm
n0where
n0where
Access Point Impersonation Attacks: hostapd-wpe
2016-04-12 22:19:39
ics
ics
ABB Relion 650 Series OpenSSL Vulnerability (Update A)
2018-09-06 12:00:00
Schneider Electric Wonderware Intelligence Security Patch for OpenSSL Vulnerability
2018-08-27 12:00:00
Digi International OpenSSL Vulnerability
2018-09-06 12:00:00
f5
f5
K15159 : OpenSSL vulnerability CVE-2014-0160
2015-02-16 00:00:00
SOL15159 - OpenSSL vulnerability CVE-2014-0160
2014-04-08 00:00:00
vulnerlab
vulnerlab
HeartBleed SSL CVE 20140160 - 10 Steps to Fix in Ubuntu
2014-04-09 00:00:00
seebug
seebug
Oracle Session Monitor Suite OpenSSL TLS心跳信息泄漏漏洞
2014-04-21 00:00:00
OpenVPN OpenSSL TLS心跳信息泄漏漏洞
2014-04-21 00:00:00
Sophos Antivirus for vShield OpenSSL TLS心跳信息泄漏漏洞
2014-04-16 00:00:00
packetstorm
packetstorm
Heartbleed Proof Of Concept
2014-04-08 00:00:00
Streamworks Job Scheduler Release 7 Authentication Weakness
2019-01-16 00:00:00
Heartbleed OpenSSL Information Leak Proof Of Concept
2014-04-24 00:00:00
exploitpack
exploitpack
OpenSSL TLS Heartbeat Extension - Heartbleed Memory Disclosure
2014-04-08 00:00:00
zdt
zdt
OpenSSL Heartbeat (Heartbleed) Information Leak Exploit
2014-04-10 00:00:00
OpenSSL TLS Heartbeat Extension - Memory Disclosure
2014-04-08 00:00:00
thn
thn
HeartBleed Bug Explained - 10 Most Frequently Asked Questions
2014-04-14 20:40:00
Heartbleed - OpenSSL Zero-day Bug leaves Millions of websites Vulnerable
2014-04-08 08:23:00
How Heartbleed Bug Exposes Your Passwords to Hackers
2014-04-10 07:00:00
atlassian
atlassian
Update Tomcat Native DLL in JIRA Installer
2014-06-26 19:39:26
Update Tomcat Native DLL in JIRA Installer
2014-06-26 19:39:26
attackerkb
attackerkb
CVE-2014-0160 (AKA: Heartbleed)
2014-04-07 00:00:00
redhat
redhat
(RHSA-2014:0396) Important: rhev-hypervisor6 security update
2014-04-10 00:00:00
(RHSA-2014:0376) Important: openssl security update
2014-04-08 00:00:00
malwarebytes
malwarebytes
Five years later, Heartbleed vulnerability still unpatched
2019-09-12 15:00:00
debian
debian
[SECURITY] [DSA 2896-1] openssl security update
2014-04-07 21:36:46
[SECURITY] [DSA 2896-2] openssl security update
2014-04-08 13:47:13
[SECURITY] [DSA 2896-2] openssl security update
2014-04-08 13:47:13
hackerone
hackerone
Internet Bug Bounty: TLS heartbeat read overrun
2014-04-05 23:51:06
Mail.ru: scfbp.tng.mail.ru: Heartbleed
2015-02-25 07:49:11
Mail.ru: Heartbleed: my.com (185.30.178.33) port 1433
2015-01-19 13:54:12
freebsd
freebsd
OpenSSL -- Remote Information Disclosure
2014-04-07 00:00:00
threatpost
threatpost
Oracle Gives Heartbleed Update, Patches 14 Products
2014-04-21 13:55:42
Tor Blacklisting Exit Nodes Vulnerable to Heartbleed Bug
2014-04-17 11:40:41
April 2014 Oracle Critical Patch Update
2014-04-16 12:32:06
veracode
veracode
Information Disclosure Through Buffer Over-read
2019-01-15 09:00:11
kitploit
kitploit
sslscan - tests SSL/TLS enabled services to discover supported cipher suites
2016-12-26 14:30:00
Collection of Heartbleed Tools (OpenSSL CVE-2014-0160)
2014-04-10 00:55:00
intel
intel
Multiple Intel Software Products and API Services impacted by CVE-2014-0160
2014-04-30 00:00:00
osv
osv
openssl - security update
2014-04-07 00:00:00
symantec
symantec
openssl
openssl
Vulnerability in OpenSSL CVE-2014-0160
2014-04-07 00:00:00
centos
centos
openssl security update
2014-04-08 02:54:58
myhack58
myhack58
oraclelinux
oraclelinux
openssl security update
2014-04-07 00:00:00
cert
cert
cisco
cisco
OpenSSL TLS/DTLS Heartbeat Information Disclosure Vulnerability
2014-04-08 14:39:29
OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products
2014-04-09 03:00:00
qt
qt
Heartbleed Bug (CVE-2014-0160) and Qt
2014-04-10 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.975 High
EPSS
Percentile
100.0%
Related for MANDRIVA_MDVSA-2014-123.NASL