Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2024 Tenable Network Security, Inc.OPENX_UNSUPPORTED.NASL
HistoryJun 30, 2014 - 12:00 a.m.

OpenX Source Unsupported Software Detection

2014-06-3000:00:00
This script is Copyright (C) 2014-2024 Tenable Network Security, Inc.
www.tenable.com
20

AI Score

7.5

Confidence

Low

JSON

OpenX Source, an open source ad server application is no longer maintained and is unsupported by the vendor.

Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(76313);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/05");
  script_xref(name:"IAVA", value:"0001-A-0573");

  script_name(english:"OpenX Source Unsupported Software Detection");

  script_set_attribute(attribute:"synopsis", value:
"A web application hosted on the remote web server is unsupported.");
  script_set_attribute(attribute:"description", value:
"OpenX Source, an open source ad server application is no longer
maintained and is unsupported by the vendor.

Lack of support implies that no new security patches for the product
will be released by the vendor. As a result, it is likely to contain
security vulnerabilities.");
  # http://openx.com/press-releases/openx-sells-open-source-ad-serving-product/
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?0f532340");
  # https://www.revive-adserver.com/blog/is-revive-adserver-compatible-with-openx-source/
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?8a826975");
  script_set_attribute(attribute:"solution", value:
"Migrate to Revive Adserver or an alternative ad server application.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/30");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:openx:openx");
  script_set_attribute(attribute:"unsupported_by_vendor", value:"true");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_set_attribute(attribute:"enable_cgi_scanning", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2014-2024 Tenable Network Security, Inc.");

  script_dependencies("openx_detect.nasl");
  script_require_keys("www/openx", "www/PHP");
  script_exclude_keys("Settings/disable_cgi_scanning");
  script_require_ports("Services/www", 80);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
include("webapp_func.inc");

port = get_http_port(default:80, php:TRUE);

install = get_install_from_kb(
  appname      : "openx",
  port         : port,
  exit_on_fail : TRUE
);

version = install['ver'];

register_unsupported_product(product_name:"OpenX",
                             cpe_base:"openx:openx", version:version);

if (report_verbosity > 0)
{
  report =
    '\n  URL     : ' + build_url(qs:install["dir"] + "/index.php", port:port) +
    '\n  Version : ' + version +
    '\n';
  security_hole(port:port, extra:report);
}
else security_hole(port);

AI Score

7.5

Confidence

Low

JSON