Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2022 Tenable Network Security, Inc.ORACLE_JAVA_CPU_FEB_2013_UNIX.NASL
HistoryFeb 22, 2013 - 12:00 a.m.

Oracle Java SE Multiple Vulnerabilities (February 2013 CPU) (Unix)

2013-02-2200:00:00
This script is Copyright (C) 2013-2022 Tenable Network Security, Inc.
www.tenable.com
58
JSON

The version of Oracle (formerly Sun) Java SE or Java for Business installed on the remote host is earlier than 7 Update 13 or 6 Update 39, or is earlier than or equal to 5 Update 38 or 1.4.2 Update 40. It is, therefore, potentially affected by security issues in the following components :

  • 2D
  • AWT
  • Beans
  • CORBA
  • Deployment
  • Install
  • JavaFX
  • JAXP
  • JAX-WS
  • JMX
  • JSSE
  • Libraries
  • Networking
  • RMI
  • Scripting
  • Sound
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(64850);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/25");

  script_cve_id(
    "CVE-2012-1541",
    "CVE-2012-1543",
    "CVE-2012-3213",
    "CVE-2012-3342",
    "CVE-2012-4301",
    "CVE-2012-4305",
    "CVE-2013-0351",
    "CVE-2013-0409",
    "CVE-2013-0419",
    "CVE-2013-0423",
    "CVE-2013-0424",
    "CVE-2013-0425",
    "CVE-2013-0426",
    "CVE-2013-0427",
    "CVE-2013-0428",
    "CVE-2013-0429",
    "CVE-2013-0430",
    "CVE-2013-0431",
    "CVE-2013-0432",
    "CVE-2013-0433",
    "CVE-2013-0434",
    "CVE-2013-0435",
    "CVE-2013-0436",
    "CVE-2013-0437",
    "CVE-2013-0438",
    "CVE-2013-0439",
    "CVE-2013-0440",
    "CVE-2013-0441",
    "CVE-2013-0442",
    "CVE-2013-0443",
    "CVE-2013-0444",
    "CVE-2013-0445",
    "CVE-2013-0446",
    "CVE-2013-0447",
    "CVE-2013-0448",
    "CVE-2013-0449",
    "CVE-2013-0450",
    "CVE-2013-1472",
    "CVE-2013-1473",
    "CVE-2013-1474",
    "CVE-2013-1475",
    "CVE-2013-1476",
    "CVE-2013-1477",
    "CVE-2013-1478",
    "CVE-2013-1479",
    "CVE-2013-1480",
    "CVE-2013-1481",
    "CVE-2013-1482",
    "CVE-2013-1483",
    "CVE-2013-1489"
  );
  script_bugtraq_id(
    57681,
    57682,
    57683,
    57684,
    57685,
    57686,
    57687,
    57688,
    57689,
    57690,
    57691,
    57692,
    57693,
    57694,
    57695,
    57696,
    57697,
    57699,
    57700,
    57701,
    57702,
    57703,
    57704,
    57705,
    57706,
    57707,
    57708,
    57709,
    57710,
    57711,
    57712,
    57713,
    57714,
    57715,
    57716,
    57717,
    57718,
    57719,
    57720,
    57721,
    57722,
    57723,
    57724,
    57725,
    57726,
    57727,
    57728,
    57729,
    57730,
    57731
  );
  script_xref(name:"CERT", value:"858729");
  script_xref(name:"EDB-ID", value:"24539");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/15");

  script_name(english:"Oracle Java SE Multiple Vulnerabilities (February 2013 CPU) (Unix)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Unix host contains a programming platform that is
potentially affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Oracle (formerly Sun) Java SE or Java for Business
installed on the remote host is earlier than 7 Update 13 or 6 Update 39,
or is earlier than or equal to 5 Update 38 or 1.4.2 Update 40.  It is,
therefore, potentially affected by security issues in the following
components :

  - 2D
  - AWT
  - Beans
  - CORBA
  - Deployment
  - Install
  - JavaFX
  - JAXP
  - JAX-WS
  - JMX
  - JSSE
  - Libraries
  - Networking
  - RMI
  - Scripting
  - Sound");
  script_set_attribute(attribute:"see_also", value:"https://seclists.org/fulldisclosure/2013/Feb/12");
  script_set_attribute(attribute:"see_also", value:"http://www.security-explorations.com/en/SE-2012-01-details.html");
  # http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a915dbbd");
  script_set_attribute(attribute:"solution", value:
"Update to JDK / JRE 7 Update 13 or 6 Update 39 or later and, if
necessary, remove any affected versions.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-1489");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Java Applet JMX Remote Code Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/01/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/02/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/02/22");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:jre");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:jdk");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2013-2022 Tenable Network Security, Inc.");

  script_dependencies("sun_java_jre_installed_unix.nasl");
  script_require_keys("Host/Java/JRE/Installed");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

# Check each installed JRE.
installs = get_kb_list_or_exit("Host/Java/JRE/Unmanaged/*");

info = "";
vuln = 0;
vuln2 = 0;
installed_versions = "";
granular = "";

foreach install (list_uniq(keys(installs)))
{
  ver = install - "Host/Java/JRE/Unmanaged/";
  if (ver !~ "^[0-9.]+") continue;

  installed_versions = installed_versions + " & " + ver;

  if (
    ver =~ '^1\\.4\\.2_([0-9]|[0-3][0-9]|40)([^0-9]|$)' ||
    ver =~ '^1\\.5\\.0_([0-9]|[0-2][0-9]|3[0-8])([^0-9]|$)' ||
    ver =~ '^1\\.6\\.0_([0-9]|[0-2][0-9]|3[0-8])([^0-9]|$)' ||
    ver =~ '^1\\.7\\.0_(0[0-9]|1[0-2])([^0-9]|$)'
  )
  {
    dirs = make_list(get_kb_list(install));
    vuln += max_index(dirs);

    foreach dir (dirs)
      info += '\n  Path              : ' + dir;

    info += '\n  Installed version : ' + ver;
    info += '\n  Fixed version     : 1.6.0_39 / 1.7.0_13\n';
  }
  else if (ver =~ "^[\d\.]+$")
  {
    dirs = make_list(get_kb_list(install));
    foreach dir (dirs)
      granular += "The Oracle Java version "+ver+" at "+dir+" is not granular enough to make a determination."+'\n';
  }
  else
  {
    dirs = make_list(get_kb_list(install));
    vuln2 += max_index(dirs);
  }

}

# Report if any were found to be vulnerable.
if (info)
{
  if (report_verbosity > 0)
  {
    if (vuln > 1) s = "s of Java are";
    else s = " of Java is";

    report =
      '\n' +
      'The following vulnerable instance'+s+' installed on the\n' +
      'remote host :\n' +
      info;
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
  if (granular) exit(0, granular);
}
else
{
  if (granular) exit(0, granular);

  installed_versions = substr(installed_versions, 3);
  if (vuln2 > 1)
    exit(0, "The Java "+installed_versions+" installs on the remote host are not affected.");
  else
    exit(0, "The Java "+installed_versions+" install on the remote host is not affected.");
}
VendorProductVersionCPE
oraclejrecpe:/a:oracle:jre
oraclejdkcpe:/a:oracle:jdk

References

Related

nessus 46
openvas 48
cert 1
securityvulns 2
redhat 9
suse 15
ubuntu 1
oraclelinux 3
centos 3
amazon 2
fedora 5
ibm 30
ubuntucve 9
cve 10
prion 12
veracode 2
zdi 1
nessus
nessus
Oracle Java SE Multiple Vulnerabilities (February 2013 CPU)
2013-02-04 00:00:00
RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2013:0237)
2013-02-05 00:00:00
Scientific Linux Security Update : jdk-1.6.0 on SL 5.0 - 5.8 (i386 x86_64) (20130205)
2013-02-13 00:00:00
openvas
openvas
Oracle Java SE Multiple Vulnerabilities -01 Feb 13 (Windows)
2013-02-06 00:00:00
Oracle Java SE Multiple Vulnerabilities -01 (Feb 2013) - Windows
2013-02-06 00:00:00
Ubuntu Update for openjdk-7 USN-1724-1
2013-02-15 00:00:00
cert
cert
Oracle Java contains multiple vulnerabilities
2013-02-01 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2013-03-19 00:00:00
[SE-2012-01] Details of issues fixed by Feb 2013 Java SE CPU
2013-02-11 00:00:00
redhat
redhat
(RHSA-2013:0237) Critical: java-1.7.0-oracle security update
2013-02-04 00:00:00
(RHSA-2013:0236) Critical: java-1.6.0-sun security update
2013-02-04 00:00:00
(RHSA-2013:0247) Important: java-1.7.0-openjdk security update
2013-02-08 00:00:00
suse
suse
Security update for Java (important)
2013-03-15 22:05:23
Security update for Java (important)
2013-03-14 22:04:21
Security update for Java (important)
2013-03-15 16:04:22
ubuntu
ubuntu
OpenJDK vulnerabilities
2013-02-14 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2013-02-08 00:00:00
java-1.6.0-openjdk security update
2013-02-08 00:00:00
java-1.6.0-openjdk security update
2013-02-08 00:00:00
centos
centos
java security update
2013-02-09 00:57:50
java security update
2013-02-09 11:03:54
java security update
2013-02-08 22:39:51
amazon
amazon
Important: java-1.7.0-openjdk
2013-02-17 15:35:00
Important: java-1.6.0-openjdk
2013-02-17 15:35:00
fedora
fedora
[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc18
2013-02-09 11:29:39
[SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc17
2013-02-09 11:30:33
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-71.1.11.6.fc16
2013-02-09 11:28:38
ibm
ibm
IBM WebSphere Cast Iron Security Bulletin: Multiple security vulnerabilities in IBM JRE 6
2018-06-15 06:56:07
Security Bulletin: Vulnerability in Rational Application Developer for WebSphere Software due to issues in IBM Java SDK (CVE-2013-0440, CVE-2013-0443, CVE-2013-0169)
2020-02-05 00:09:48
Security Bulletin: Vulnerability in Rational Developer for System z due to issues in IBM Java SDK (CVE-2013-0440, CVE-2013-0443, CVE-2013-0169)
2020-10-27 15:51:50
ubuntucve
ubuntucve
CVE-2013-0428
2013-02-01 00:00:00
CVE-2013-0426
2013-02-01 00:00:00
CVE-2013-0425
2013-02-01 00:00:00
cve
cve
CVE-2013-0425
2013-02-02 00:55:00
CVE-2013-0426
2013-02-02 00:55:00
CVE-2013-0428
2013-02-02 00:55:00
prion
prion
Design/Logic Flaw
2013-02-02 00:55:00
Design/Logic Flaw
2013-02-02 00:55:00
Design/Logic Flaw
2013-02-02 00:55:00
veracode
veracode
Sandbox Restrictions Bypass
2019-05-02 04:54:13
Sandbox Restrictions Bypass
2019-05-02 04:54:13
zdi
zdi
Oracle Java NativeJavaConstructor Class Serialization Remote Code Execution Vulnerability
2013-02-11 00:00:00
JSON
Related for ORACLE_JAVA_CPU_FEB_2013_UNIX.NASL
nessus46openvas48cert1securityvulns2redhat9suse15ubuntu1oraclelinux3centos3amazon2fedora5ibm30ubuntucve9cve10prion12veracode2zdi1