Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SOLARIS10_X86_128641-30.NASL
HistoryMar 12, 2018 - 12:00 a.m.

Solaris 10 (x86) : 128641-30

2018-03-1200:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text in this plugin was
# extracted from the Oracle SunOS Patch Updates.
#
include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(107968);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-0217", "CVE-2009-2625", "CVE-2009-3555", "CVE-2011-3564", "CVE-2011-5035");

  script_name(english:"Solaris 10 (x86) : 128641-30");
  script_summary(english:"Check for patch 128641-30");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote host is missing Sun Security Patch number 128641-30"
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Vulnerability in the Oracle WebLogic Server component of Oracle Fusion
Middleware (subcomponent: Web Container). Supported versions that are
affected are 9.2.4, 10.0.2, 10.3.5, 10.3.6 and 12.1.1. Easily
exploitable vulnerability allows successful unauthenticated network
attacks via HTTP. Successful attack of this vulnerability can result
in unauthorized ability to cause a hang or frequently repeatable crash
(complete DOS) of Oracle WebLogic Server."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://getupdates.oracle.com/readme/128641-30"
  );
  script_set_attribute(attribute:"solution", value:"Install patch 128641-30 or higher");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2009-3555");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(264, 310);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:128641");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10");

  script_set_attribute(attribute:"vuln_publication_date", value:"2009/07/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Solaris Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("solaris.inc");

showrev = get_kb_item("Host/Solaris/showrev");
if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris");
os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev);
if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris");
full_ver = os_ver[1];
os_level = os_ver[2];
if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level);
package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev);
if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH);
package_arch = package_arch[1];
if (package_arch != "i386") audit(AUDIT_ARCH_NOT, "i386", package_arch);
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasJdbcDrivers", version:"9.1,REV=2007.09.07.14.07") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasac", version:"9.1,REV=2007.09.07.13.59") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasacee", version:"9.1,REV=2007.09.07.14.08") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWascml", version:"9.1,REV=2007.09.07.14.08") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWascmn", version:"9.1,REV=2007.09.07.14.02") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWascmnse", version:"9.1,REV=2007.09.07.14.08") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasdem", version:"9.1,REV=2007.09.07.14.02") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWashdm", version:"9.1,REV=2007.09.07.14.07") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasjdoc", version:"9.1,REV=2007.09.07.14.03") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWaslb", version:"9.1,REV=2007.09.07.14.04") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasman", version:"9.1,REV=2007.09.07.14.03") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasr", version:"9.1,REV=2007.09.07.14.03") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasu", version:"9.1,REV=2007.09.07.13.59") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasuee", version:"9.1,REV=2007.09.07.14.07") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWasut", version:"9.1,REV=2007.09.07.14.03") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"128641-30", obsoleted_by:"", package:"SUNWaswbcr", version:"9.1,REV=2007.09.07.14.08") < 0) flag++;

if (flag) {
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : solaris_get_report()
  );
} else {
  patch_fix = solaris_patch_fix_get();
  if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10");
  tested = solaris_pkg_tests_get();
  if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWasJdbcDrivers / SUNWasac / SUNWasacee / SUNWascml / SUNWascmn / etc");
}
VendorProductVersionCPE
oraclesolaris10p-cpe:/a:oracle:solaris:10:128641
oraclesolaris10cpe:/o:oracle:solaris:10

Related

nessus 70
debiancve 3
cisa 1
ubuntucve 3
prion 3
openvas 58
veracode 3
cve 3
cvelist 5
nvd 5
checkpoint_advisories 3
fedora 7
github 1
redhat 3
freebsd 1
debian 5
oraclelinux 2
centos 3
ubuntu 3
fortinet 1
securityvulns 5
mskb 1
osv 1
cert 1
seebug 2
cisco 1
altlinux 1
slackware 1
hackerone 1
packetstorm 1
f5 1
nessus
nessus
Solaris 10 (x86) : 128641-30 (deprecated)
2009-01-19 00:00:00
Solaris 10 (sparc) : 128640-30
2018-03-12 00:00:00
Solaris 9 (x86) : 128641-30
2009-01-19 00:00:00
debiancve
debiancve
CVE-2011-5035
2011-12-30 01:55:00
CVE-2009-0217
2009-07-14 23:30:00
CVE-2011-3564
2012-01-18 22:55:00
cisa
cisa
Apple Update for Java for OS X Lion and Mac OS X
2012-04-04 00:00:00
ubuntucve
ubuntucve
CVE-2011-5035
2011-12-29 00:00:00
CVE-2009-0217
2009-07-14 00:00:00
CVE-2011-3564
2012-01-18 00:00:00
prion
prion
Buffer overflow
2011-12-30 01:55:00
Authentication flaw
2009-07-14 23:30:00
Buffer overflow
2012-01-18 22:55:00
openvas
openvas
Oracle GlassFish Server Hash Collision Denial of Service Vulnerability
2012-01-05 00:00:00
Oracle GlassFish Server Hash Collision DoS Vulnerability
2012-01-05 00:00:00
Microsoft .NET Framework XML HMAC Truncation Vulnerability (981343)
2010-06-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2017-03-23 05:36:32
Man-in-the-Middle (MitM)
2020-04-10 00:36:56
Authentication Bypass
2020-04-10 00:35:27
cve
cve
CVE-2011-5035
2011-12-30 01:55:01
CVE-2009-0217
2009-07-14 23:30:00
CVE-2011-3564
2022-10-03 16:15:08
cvelist
cvelist
CVE-2011-5035
2011-12-30 01:00:00
CVE-2009-0217
2009-07-14 23:00:00
CVE-2011-3564
2022-10-03 16:15:08
nvd
nvd
CVE-2011-5035
2011-12-30 01:55:01
CVE-2011-3564
2012-01-18 22:55:03
CVE-2009-0217
2009-07-14 23:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft XML Signature HMAC Truncation Bypass (MS10-041) - Ver2 (CVE-2009-0217)
2015-03-26 00:00:00
Microsoft XML Signature HMAC Truncation Bypass (MS10-041; CVE-2009-0217)
2010-06-08 00:00:00
TLS Renegotiation (CVE-2009-3555)
2009-11-22 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: xml-security-c-1.5.1-1.fc11
2009-07-31 18:04:52
[SECURITY] Fedora 12 Update: nss-util-3.12.5-1.fc12.1
2009-12-10 04:13:15
[SECURITY] Fedora 10 Update: xml-security-c-1.5.1-1.fc10
2009-07-31 17:59:26
github
github
Apache XML Security For Java vulnerable to authentication bypass by HMAC truncation
2022-05-02 03:13:38
redhat
redhat
(RHSA-2009:1649) Moderate: JBoss Enterprise Application Platform 4.3.0.CP07 update
2009-12-09 00:00:00
(RHSA-2009:1428) Moderate: xmlsec1 security update
2009-09-08 00:00:00
(RHSA-2010:0165) Moderate: nss security update
2010-03-25 00:00:00
freebsd
freebsd
mono -- XML signature HMAC truncation spoofing
2009-07-15 00:00:00
debian
debian
[Backports-security-announce] Security Update for xml-security-c
2009-08-06 08:38:10
[SECURITY] [DSA-2141-1] New apache2 packages add backward compatibility option
2011-01-05 23:21:00
[Backports-security-announce] Security Update for xml-security-c
2009-08-06 08:37:46
oraclelinux
oraclelinux
xmlsec1 security update
2009-09-09 00:00:00
openssl097a security update
2010-03-25 00:00:00
centos
centos
xmlsec1 security update
2009-09-09 00:48:06
openssl097a security update
2010-03-27 17:44:36
nspr, nss security update
2010-03-28 15:36:50
ubuntu
ubuntu
nss vulnerability
2010-06-29 00:00:00
NSS vulnerability
2010-07-23 00:00:00
NSS vulnerability
2010-04-09 00:00:00
fortinet
fortinet
FortiOS SSL Deep-Inspection possible Insecure Renegotiation
2017-11-03 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:295 ] apache
2009-11-09 00:00:00
SSL data injection
2010-02-10 00:00:00
[ MDVSA-2009:337 ] proftpd
2009-12-22 00:00:00
mskb
mskb
MS10-041: Vulnerabilities in the Microsoft .NET Framework that could allow tampering
2012-05-08 22:34:55
osv
osv
Apache XML Security For Java vulnerable to authentication bypass by HMAC truncation
2022-05-02 03:13:38
cert
cert
XML signature HMAC truncation authentication bypass
2009-07-14 00:00:00
seebug
seebug
Cisco Security Advisory: Transport Layer Security Renegotiation Vulnerability
2009-11-10 00:00:00
TLS Renegotiation Vulnerability PoC Exploit
2009-12-21 00:00:00
cisco
cisco
Transport Layer Security Renegotiation Vulnerability
2009-11-09 13:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl1.1 version 0.9.8l-alt1
2009-11-07 00:00:00
slackware
slackware
openssl
2009-11-16 13:42:36
hackerone
hackerone
Slack: TLS1/SSLv3 Renegotiation Vulnerability
2014-04-02 13:01:00
packetstorm
packetstorm
TLS Renegotiation Exploit
2009-12-21 00:00:00
f5
f5
K10737 : SSL Renegotiation vulnerability - CVE-2009-3555 / VU#120541
2013-07-05 00:00:00

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON
Related for SOLARIS10_X86_128641-30.NASL
nessus70debiancve3cisa1ubuntucve3prion3openvas58veracode3cve3cvelist5nvd5checkpoint_advisories3fedora7github1redhat3freebsd1debian5oraclelinux2centos3ubuntu3fortinet1securityvulns5mskb1osv1cert1seebug2cisco1altlinux1slackware1hackerone1packetstorm1f51