Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.SLACKWARE_SSA_2024-184-01.NASLHistoryJul 02, 2024 - 12:00 a.m.
Slackware Linux 15.0 / current httpd Multiple Vulnerabilities (SSA:2024-184-01)
2024-07-0200:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
4
slackware linux
httpd
multiple vulnerabilities
file data
scanner
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.8 High
AI Score
Confidence
High
The version of httpd installed on the remote host is prior to 2.4.60. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-184-01 advisory.
New httpd packages are available for Slackware 15.0 and -current to fix security issues.
Tenable has extracted the preceding description block directly from the httpd security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
#
# The descriptive text and package checks in this plugin were
# extracted from Slackware Security Advisory SSA:2024-184-01. The text
# itself is copyright (C) Slackware Linux, Inc.
##
include('compat.inc');
if (description)
{
script_id(201303);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/07/03");
script_cve_id(
"CVE-2024-36387",
"CVE-2024-38472",
"CVE-2024-38473",
"CVE-2024-38474",
"CVE-2024-38475",
"CVE-2024-38476",
"CVE-2024-38477",
"CVE-2024-39573"
);
script_name(english:"Slackware Linux 15.0 / current httpd Multiple Vulnerabilities (SSA:2024-184-01)");
script_set_attribute(attribute:"synopsis", value:
"The remote Slackware Linux host is missing a security update to httpd.");
script_set_attribute(attribute:"description", value:
"The version of httpd installed on the remote host is prior to 2.4.60. It is, therefore, affected by multiple
vulnerabilities as referenced in the SSA:2024-184-01 advisory.
New httpd packages are available for Slackware 15.0 and -current to fix security issues.
Tenable has extracted the preceding description block directly from the httpd security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# http://www.slackware.com/security/viewer.php?l=slackware-security&y=2024&m=slackware-security.395060
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f7dddb63");
script_set_attribute(attribute:"solution", value:
"Upgrade the affected httpd package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-36387");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2024-39573");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/01");
script_set_attribute(attribute:"patch_publication_date", value:"2024/07/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/07/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:slackware:slackware_linux:httpd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux");
script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:15.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Slackware Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Slackware/release", "Host/Slackware/packages");
exit(0);
}
include("slackware.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Slackware/release")) audit(AUDIT_OS_NOT, "Slackware");
if (!get_kb_item("Host/Slackware/packages")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Slackware", cpu);
var flag = 0;
var constraints = [
{ 'fixed_version' : '2.4.60', 'product' : 'httpd', 'os_name' : 'Slackware Linux', 'os_version' : '15.0', 'service_pack' : '2_slack15.0', 'arch' : 'i586' },
{ 'fixed_version' : '2.4.60', 'product' : 'httpd', 'os_name' : 'Slackware Linux', 'os_version' : '15.0', 'service_pack' : '2_slack15.0', 'arch' : 'x86_64' },
{ 'fixed_version' : '2.4.60', 'product' : 'httpd', 'os_name' : 'Slackware Linux', 'os_version' : 'current', 'service_pack' : '2', 'arch' : 'i586' },
{ 'fixed_version' : '2.4.60', 'product' : 'httpd', 'os_name' : 'Slackware Linux', 'os_version' : 'current', 'service_pack' : '2', 'arch' : 'x86_64' }
];
foreach var constraint (constraints) {
var pkg_arch = constraint['arch'];
var arch = NULL;
if (pkg_arch == "x86_64") {
arch = pkg_arch;
}
if (slackware_check(osver:constraint['os_version'],
arch:arch,
pkgname:constraint['product'],
pkgver:constraint['fixed_version'],
pkgarch:pkg_arch,
pkgnum:constraint['service_pack'])) flag++;
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : slackware_report_get()
);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| slackware | slackware_linux | httpd | p-cpe:/a:slackware:slackware_linux:httpd |
| slackware | slackware_linux | cpe:/o:slackware:slackware_linux | |
| slackware | slackware_linux | 15.0 | cpe:/o:slackware:slackware_linux:15.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36387
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38472
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38473
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38474
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38475
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38476
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38477
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39573
www.nessus.org/u?f7dddb63
Related
openvas
openvas
Slackware: Security Advisory (SSA:2024-184-01)
2024-07-03 00:00:00
Apache HTTP Server < 2.4.60 Multiple Vulnerabilities - Linux
2024-07-01 00:00:00
Apache HTTP Server < 2.4.60 Multiple Vulnerabilities - Windows
2024-07-01 00:00:00
kaspersky
kaspersky
KLA70199 Multiple vulnerabilities in Apache HTTP Server
2024-07-01 00:00:00
nessus
nessus
Apache 2.4.x < 2.4.60 Multiple Vulnerabilities
2024-07-01 00:00:00
Apache 2.4.x < 2.4.60 Multiple Vulnerabilities
2024-07-03 00:00:00
slackware
slackware
[slackware-security] httpd
2024-07-02 19:38:48
freebsd
freebsd
Apache httpd -- Multiple vulnerabilities
2024-07-01 00:00:00
debiancve
debiancve
alpinelinux
alpinelinux
cve
cve
vulnrichment
vulnrichment
ubuntucve
ubuntucve
nvd
nvd
cvelist
cvelist
osv
osv
BIT-apache-2024-39573
2024-07-03 07:16:17
BIT-apache-2024-38474
2024-07-03 07:17:14
BIT-apache-2024-38475
2024-07-03 07:17:00
redhatcve
redhatcve
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.8 High
AI Score
Confidence
High
Related for SLACKWARE_SSA_2024-184-01.NASL