Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_HTTP_SERVER_CPU_OCT_2015.NASL
HistoryOct 23, 2015 - 12:00 a.m.

Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (October 2015 CPU)

2015-10-2300:00:00
This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
106
JSON

The version of Oracle HTTP Server installed on the remote host is affected by multiple vulnerabilities :

  • (CVE-2003-1418)

  • A denial of service vulnerability exists in libxml2, related to the xmlParserHandlePEReference() function in file parser.c, due to loading external parameter entities without regard to entity substitution or validation being enabled, as in the case of entity substitution in the doctype prolog. An unauthenticated, remote attacker can exploit this, via specially crafted XML content, to exhaust the system CPU, memory, or file descriptor resources. (CVE-2014-0191)

  • An unspecified vulnerability exists in the Web Listener component that allows an unauthenticated, remote attacker to impact availability. (CVE-2015-1829)

  • (CVE-2015-2808)

  • An unspecified vulnerability exists in the OSSL Module that allows an unauthenticated, remote attacker to impact confidentiality. (CVE-2015-4812)

  • An unspecified vulnerability exists in the Web Listener component that allows an authenticated, remote attacker to impact confidentiality. (CVE-2015-4914)

  • (CVE-2016-2183)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(86569);
  script_version("1.20");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id(
    "CVE-2003-1418",
    "CVE-2014-0191",
    "CVE-2015-1829",
    "CVE-2015-2808",
    "CVE-2015-4812",
    "CVE-2015-4914",
    "CVE-2016-2183"
  );
  script_bugtraq_id(
    67233,
    73684,
    75164,
    77195,
    77201,
    92630
  );

  script_name(english:"Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (October 2015 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Oracle HTTP Server installed on the remote host is
affected by multiple vulnerabilities :

  - (CVE-2003-1418)

  - A denial of service vulnerability exists in libxml2,
    related to the xmlParserHandlePEReference() function in
    file parser.c, due to loading external parameter
    entities without regard to entity substitution or
    validation being enabled, as in the case of entity
    substitution in the doctype prolog. An unauthenticated,
    remote attacker can exploit this, via specially crafted
    XML content, to exhaust the system CPU, memory, or file
    descriptor resources. (CVE-2014-0191)

  - An unspecified vulnerability exists in the Web Listener
    component that allows an unauthenticated, remote
    attacker to impact availability. (CVE-2015-1829)

  -  (CVE-2015-2808)

  - An unspecified vulnerability exists in the OSSL Module
    that allows an unauthenticated, remote attacker to
    impact confidentiality. (CVE-2015-4812)

  - An unspecified vulnerability exists in the Web Listener
    component that allows an authenticated, remote attacker
    to impact confidentiality. (CVE-2015-4914)

  - (CVE-2016-2183)");
  # http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?75a4a4fb");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the October 2015 Oracle Critical Patch Update advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-2183");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(200);

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/05/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/10/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/10/23");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:fusion_middleware");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:http_server");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_http_server_installed.nbin");
  script_require_keys("Oracle/OHS/Installed");

  exit(0);
}

include('oracle_http_server_patch_func.inc');

get_kb_item_or_exit('Oracle/OHS/Installed');
install_list = get_kb_list_or_exit('Oracle/OHS/*/EffectiveVersion');

install = branch(install_list, key:TRUE, value:TRUE);

patches = make_array();
patches['10.1.3.5'] = make_array('fix_ver', '10.1.3.5.151020', 'patch', '21845960');
patches['11.1.1.7'] = make_array('fix_ver', '11.1.1.7.151020', 'patch', '21640624');
patches['11.1.1.9'] = make_array('fix_ver', '11.1.1.9.151020', 'patch', '21663064');
patches['12.1.2.0'] = make_array('fix_ver', '12.1.2.0.151120', 'patch', '21768251');
patches['12.1.3.0'] = make_array('fix_ver', '12.1.3.0.160130', 'patch', '21640673');

oracle_http_server_check_vuln(
  install : install,
  min_patches : patches,
  severity : SECURITY_WARNING
);
VendorProductVersionCPE
oraclefusion_middlewarecpe:/a:oracle:fusion_middleware
oraclehttp_servercpe:/a:oracle:http_server

Related

nessus 35
openvas 11
cve 6
prion 5
redhat 1
freebsd 1
fedora 2
ibm 118
veracode 2
debian 4
securityvulns 1
ubuntu 1
ubuntucve 1
gentoo 1
centos 1
debiancve 2
mageia 1
pentestpartners 1
aix 1
amazon 1
huawei 1
ics 1
f5 1
nessus
nessus
Oracle Fusion Middleware Oracle HTTP Server Multiple Vulnerabilities (July 2016 CPU)
2016-07-25 00:00:00
Apache Server ETag Header Information Disclosure
2016-01-22 00:00:00
AIX 6.1 TL 9 : bos.rte.control (U861276)
2014-11-10 00:00:00
openvas
openvas
Apache HTTP Server ETag Header Information Disclosure Weakness
2011-03-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-341)
2015-09-08 00:00:00
Fedora Update for mingw-libxml2 FEDORA-2014-17609
2015-01-05 00:00:00
cve
cve
CVE-2003-1418
2003-12-31 05:00:00
CVE-2015-4812
2015-10-21 21:59:00
CVE-2015-4914
2015-10-22 00:00:00
prion
prion
Design/Logic Flaw
2015-10-21 21:59:00
Design/Logic Flaw
2015-10-22 00:00:00
Design/Logic Flaw
2015-01-21 14:59:00
redhat
redhat
(RHSA-2015:0749) Moderate: libxml2 security update
2015-03-30 00:00:00
freebsd
freebsd
libxml2 -- entity substitution DoS
2013-12-03 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mingw-libxml2-2.9.2-1.fc21
2015-01-02 05:01:30
[SECURITY] Fedora 20 Update: mingw-libxml2-2.9.2-1.fc20
2015-01-02 05:01:49
ibm
ibm
Security Bulletin: Rational Systems Tester is affected by Libxml2 vulnerability (CVE-2014-0191)
2018-06-17 04:55:54
Security Bulletin: InfoSphere Streams is affected by libxml2 vulnerability (CVE-2014-0191)
2018-06-16 13:06:50
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM Rational ClearQuest (CVE-2015-1829)
2018-06-17 05:03:28
veracode
veracode
XML External Entities (XXE)
2018-08-06 02:11:43
Information Disclosure
2019-05-02 05:39:15
debian
debian
libxml2 security update
2014-07-19 14:43:46
[SECURITY] [DSA 2978-1] libxml2 security update
2014-07-11 14:29:53
[DLA-0016-1] libxml2 security update
2014-07-19 15:07:28
securityvulns
securityvulns
libxml2 DoS
2014-05-07 00:00:00
ubuntu
ubuntu
libxml2 vulnerability
2014-05-15 00:00:00
ubuntucve
ubuntucve
CVE-2014-0191
2014-05-07 00:00:00
gentoo
gentoo
libxml2: Denial of service
2014-09-19 00:00:00
centos
centos
libxml2 security update
2015-04-01 03:26:34
debiancve
debiancve
CVE-2014-0191
2015-01-21 14:59:00
CVE-2015-2808
2015-04-01 02:00:00
mageia
mageia
Updated libxml2 packages fix CVE-2014-0191
2014-05-10 23:46:24
pentestpartners
pentestpartners
Vulnerabilities that aren’t. ETag headers
2022-02-04 06:24:59
aix
aix
AIX libxml2 vulnerability,VIOS libxml2 vulnerability
2014-08-15 10:26:30
amazon
amazon
Medium: libxml2
2014-05-21 10:31:00
huawei
huawei
Security Advisory - Bar Mitzvah Attack Vulnerability in Huawei Products
2015-09-19 00:00:00
ics
ics
Mitsubishi Electric Air Conditioning Systems
2022-06-20 12:00:00
f5
f5
K16864 : SSL/TLS RC4 vulnerability CVE-2015-2808
2015-08-17 00:00:00
JSON
Related for ORACLE_HTTP_SERVER_CPU_OCT_2015.NASL
nessus35openvas11cve6prion5redhat1freebsd1fedora2ibm118veracode2debian4securityvulns1ubuntu1ubuntucve1gentoo1centos1debiancve2mageia1pentestpartners1aix1amazon1huawei1ics1f51