Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20170807_LOG4J_ON_SL7_X.NASLHistoryAug 22, 2017 - 12:00 a.m.
Scientific Linux Security Update : log4j on SL7.x (noarch) (20170807)
2017-08-2200:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
62
Security Fix(es) :
- It was found that when using remote logging with log4j socket server the log4j server would deserialize any log event received via TCP or UDP. An attacker could use this flaw to send a specially crafted log event that, during deserialization, would execute arbitrary code in the context of the logger application. (CVE-2017-5645)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(102666);
script_version("3.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2017-5645");
script_name(english:"Scientific Linux Security Update : log4j on SL7.x (noarch) (20170807)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Security Fix(es) :
- It was found that when using remote logging with log4j
socket server the log4j server would deserialize any log
event received via TCP or UDP. An attacker could use
this flaw to send a specially crafted log event that,
during deserialization, would execute arbitrary code in
the context of the logger application. (CVE-2017-5645)"
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1708&L=scientific-linux-errata&F=&S=&P=5404
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?20734978"
);
script_set_attribute(
attribute:"solution",
value:
"Update the affected log4j, log4j-javadoc and / or log4j-manual
packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:log4j");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:log4j-javadoc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:log4j-manual");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/04/17");
script_set_attribute(attribute:"patch_publication_date", value:"2017/08/07");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/08/22");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 7.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL7", reference:"log4j-1.2.17-16.el7_4")) flag++;
if (rpm_check(release:"SL7", reference:"log4j-javadoc-1.2.17-16.el7_4")) flag++;
if (rpm_check(release:"SL7", reference:"log4j-manual-1.2.17-16.el7_4")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "log4j / log4j-javadoc / log4j-manual");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | log4j | p-cpe:/a:fermilab:scientific_linux:log4j |
| fermilab | scientific_linux | log4j-javadoc | p-cpe:/a:fermilab:scientific_linux:log4j-javadoc |
| fermilab | scientific_linux | log4j-manual | p-cpe:/a:fermilab:scientific_linux:log4j-manual |
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
fedora
fedora
[SECURITY] Fedora 26 Update: log4j-2.7-4.fc26
2017-05-02 15:59:49
[SECURITY] Fedora 24 Update: log4j-2.5-3.fc24
2017-05-04 18:26:42
[SECURITY] Fedora 24 Update: log4j12-1.2.17-19.fc24
2017-06-12 19:29:11
osv
osv
Deserialization of Untrusted Data in Log4j
2020-01-06 18:43:38
CVE-2017-5645
2017-04-17 21:59:00
checkpoint_advisories
checkpoint_advisories
Apache Log4j Remote Code Execution (CVE-2017-5645)
2022-01-02 00:00:00
openvas
openvas
RedHat Update for log4j RHSA-2017:2423-01
2017-08-08 00:00:00
Fedora Update for log4j12 FEDORA-2017-8348115acd
2017-06-13 00:00:00
Oracle BI Publisher Code Execution Vulnerability (cpuoct2018)
2018-10-18 00:00:00
cve
cve
CVE-2017-5645
2017-04-17 21:59:00
redhat
redhat
oraclelinux
oraclelinux
log4j security update
2017-08-09 00:00:00
log4j security update
2022-05-23 00:00:00
seebug
seebug
Apache Log4j socket receiver deserialization vulnerability (CVE-2017-5645)
2017-04-18 00:00:00
symantec
symantec
Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2017-04-17 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:17:41
Remote Code Execution (RCE)
2017-04-18 01:36:45
nessus
nessus
Fedora 24 : log4j12 (2017-7e0ff7f73a)
2017-06-13 00:00:00
Fedora 25 : log4j12 (2017-8348115acd)
2017-06-13 00:00:00
Fedora 25 : log4j (2017-511ebfa8a3)
2017-05-03 00:00:00
f5
f5
K23173103 : log4j vulnerability CVE-2017-5645
2018-01-31 00:00:00
debiancve
debiancve
CVE-2017-5645
2017-04-17 21:59:00
ubuntucve
ubuntucve
CVE-2017-5645
2017-04-17 00:00:00
github
github
Deserialization of Untrusted Data in Log4j
2020-01-06 18:43:38
prion
prion
Code injection
2017-04-17 21:59:00
myhack58
myhack58
redhatcve
redhatcve
CVE-2017-5645
2019-10-10 10:12:57
CVE-2019-17571
2020-04-05 23:06:12
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Apache Log4J
2019-12-25 16:46:11
centos
centos
log4j security update
2017-08-31 18:57:53
amazon
amazon
Important: log4j
2022-01-18 20:15:00
Medium: log4j
2022-01-18 21:37:00
attackerkb
attackerkb
CVE-2019-17571
2019-12-20 00:00:00
ibm
ibm
impervablog
impervablog
Deserialization Attacks Surge Motivated by Illegal Crypto-mining
2018-01-24 17:45:08
oracle
oracle
Oracle Critical Patch Update - April 2018
2018-04-17 00:00:00
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
Related for SL_20170807_LOG4J_ON_SL7_X.NASL