ID SOLARIS10_147713.NASL Type nessus Reporter Tenable Modified 2018-07-30T00:00:00
Description
SunOS 5.10: libc patch.
Date this patch was last updated by Sun : Oct/07/11
# @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a recommended security fix.
#
# Disabled on 2011/11/14.
#
#
# (C) Tenable Network Security, Inc.
#
#
if ( ! defined_func("bn_random") ) exit(0);
include("compat.inc");
if(description)
{
script_id(56464);
script_version("1.4");
script_name(english: "Solaris 10 (sparc) : 147713-01");
script_set_attribute(attribute: "synopsis", value:
"The remote host is missing Sun Security Patch number 147713-01");
script_set_attribute(attribute: "description", value:
'SunOS 5.10: libc patch.
Date this patch was last updated by Sun : Oct/07/11');
script_set_attribute(attribute: "solution", value:
"You should install this patch for your system to be up-to-date.");
script_set_attribute(attribute: "see_also", value:
"https://getupdates.oracle.com/readme/147713-01");
script_set_attribute(attribute: "risk_factor", value: "High");
script_set_attribute(attribute: "patch_publication_date", value: "2011/10/07");
script_set_attribute(attribute: "cpe", value: "cpe:/o:sun:solaris");
script_set_attribute(attribute: "plugin_type", value: "local");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/10/12");
script_cvs_date("Date: 2018/07/30 13:40:14");
script_end_attributes();
script_summary(english: "Check for patch 147713-01");
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.");
family["english"] = "Solaris Local Security Checks";
script_family(english:family["english"]);
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/Solaris/showrev");
exit(0);
}
# Deprecated.
exit(0, "The associated patch is not currently a recommended security fix.");
{"id": "SOLARIS10_147713.NASL", "bulletinFamily": "scanner", "title": "Solaris 10 (sparc) : 147713-01", "description": "SunOS 5.10: libc patch.\nDate this patch was last updated by Sun : Oct/07/11", "published": "2011-10-12T00:00:00", "modified": "2018-07-30T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=56464", "reporter": "Tenable", "references": ["https://getupdates.oracle.com/readme/147713-01"], "cvelist": [], "type": "nessus", "lastseen": "2018-07-31T03:55:40", "edition": 3, "viewCount": 2, "enchantments": {"score": {"value": 0.8, "vector": "NONE", "modified": "2018-07-31T03:55:40", "rev": 2}, "dependencies": {"references": [{"type": "slackware", "idList": ["SSA-2019-084-01"]}, {"type": "nessus", "idList": ["SOLARIS10_X86_147714-01.NASL", "F5_BIGIP_SOL15920.NASL", "SOLARIS10_147713-01.NASL", "SOLARIS10_X86_147714.NASL", "ORACLELINUX_ELSA-2011-0507.NASL", "SL_20110511_APR_ON_SL4_X.NASL", "FREEBSD_PKG_38560D790E4211E1902B20CF30E32F6D.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:71948", "OPENVAS:1361412562310863756", "OPENVAS:136141256231070602", "OPENVAS:881329", "OPENVAS:1361412562310122176", "OPENVAS:1361412562310881249", "OPENVAS:881249", "OPENVAS:136141256231071948", "OPENVAS:1361412562310881329", "OPENVAS:863756"]}], "modified": "2018-07-31T03:55:40", "rev": 2}, "vulnersScore": 0.8}, "sourceData": "\n# @DEPRECATED@\n#\n# This script has been deprecated as the associated patch is not\n# currently a recommended security fix.\n#\n# Disabled on 2011/11/14.\n#\n\n#\n# (C) Tenable Network Security, Inc.\n#\n#\n\nif ( ! defined_func(\"bn_random\") ) exit(0);\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(56464);\n script_version(\"1.4\");\n\n script_name(english: \"Solaris 10 (sparc) : 147713-01\");\n script_set_attribute(attribute: \"synopsis\", value:\n\"The remote host is missing Sun Security Patch number 147713-01\");\n script_set_attribute(attribute: \"description\", value:\n'SunOS 5.10: libc patch.\nDate this patch was last updated by Sun : Oct/07/11');\n script_set_attribute(attribute: \"solution\", value:\n\"You should install this patch for your system to be up-to-date.\");\n script_set_attribute(attribute: \"see_also\", value:\n\"https://getupdates.oracle.com/readme/147713-01\");\n script_set_attribute(attribute: \"risk_factor\", value: \"High\");\n script_set_attribute(attribute: \"patch_publication_date\", value: \"2011/10/07\");\n script_set_attribute(attribute: \"cpe\", value: \"cpe:/o:sun:solaris\");\n script_set_attribute(attribute: \"plugin_type\", value: \"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/12\");\n script_cvs_date(\"Date: 2018/07/30 13:40:14\");\n script_end_attributes();\n\n script_summary(english: \"Check for patch 147713-01\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n family[\"english\"] = \"Solaris Local Security Checks\";\n script_family(english:family[\"english\"]);\n \n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Solaris/showrev\");\n exit(0);\n}\n\n# Deprecated.\nexit(0, \"The associated patch is not currently a recommended security fix.\");\n", "naslFamily": "Solaris Local Security Checks", "pluginID": "56464", "cpe": ["cpe:/o:sun:solaris"]}
{"nessus": [{"lastseen": "2021-01-17T14:00:33", "description": "Vulnerability in the Solaris component of Oracle Sun Products Suite\n(subcomponent: Library/libc). Supported versions that are affected are\n9 and 10. Difficult to exploit vulnerability allows successful\nunauthenticated network attacks via TCP/IP. Successful attack of this\nvulnerability can result in unauthorized ability to cause a partial\ndenial of service (partial DOS) of Solaris.", "edition": 23, "published": "2018-03-12T00:00:00", "title": "Solaris 10 (sparc) : 147713-01", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0419"], "modified": "2018-03-12T00:00:00", "cpe": ["p-cpe:/a:oracle:solaris:10:147713", "cpe:/o:oracle:solaris:10"], "id": "SOLARIS10_147713-01.NASL", "href": "https://www.tenable.com/plugins/nessus/107622", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(107622);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-0419\");\n\n script_name(english:\"Solaris 10 (sparc) : 147713-01\");\n script_summary(english:\"Check for patch 147713-01\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote host is missing Sun Security Patch number 147713-01\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Vulnerability in the Solaris component of Oracle Sun Products Suite\n(subcomponent: Library/libc). Supported versions that are affected are\n9 and 10. Difficult to exploit vulnerability allows successful\nunauthenticated network attacks via TCP/IP. Successful attack of this\nvulnerability can result in unauthorized ability to cause a partial\ndenial of service (partial DOS) of Solaris.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://getupdates.oracle.com/readme/147713-01\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Install patch 147713-01\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:solaris:10:147713\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:solaris:10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/03/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"solaris.inc\");\n\nshowrev = get_kb_item(\"Host/Solaris/showrev\");\nif (empty_or_null(showrev)) audit(AUDIT_OS_NOT, \"Solaris\");\nos_ver = pregmatch(pattern:\"Release: (\\d+.(\\d+))\", string:showrev);\nif (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Solaris\");\nfull_ver = os_ver[1];\nos_level = os_ver[2];\nif (full_ver != \"5.10\") audit(AUDIT_OS_NOT, \"Solaris 10\", \"Solaris \" + os_level);\npackage_arch = pregmatch(pattern:\"Application architecture: (\\w+)\", string:showrev);\nif (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH);\npackage_arch = package_arch[1];\nif (package_arch != \"sparc\") audit(AUDIT_ARCH_NOT, \"sparc\", package_arch);\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.10\", arch:\"sparc\", patch:\"147713-01\", obsoleted_by:\"147440-05 147147-26 \", package:\"SUNWcslr\", version:\"11.10.0,REV=2005.01.21.15.53\") < 0) flag++;\n\nif (flag) {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : solaris_get_report()\n );\n} else {\n patch_fix = solaris_patch_fix_get();\n if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, \"Solaris 10\");\n tested = solaris_pkg_tests_get();\n if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n audit(AUDIT_PACKAGE_NOT_INSTALLED, \"SUNWcslr\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"}}]}
