Solaris 10 (x86) : 148694-01 (deprecated)

2013-07-14T00:00:00
ID SOLARIS10_X86_148694.NASL
Type nessus
Reporter Tenable
Modified 2018-03-12T00:00:00

Description

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/PAM-Unix). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via NFSv2. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data.

This plugin has been deprecated and either replaced with individual 148694 patch-revision plugins, or deemed non-security related.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# @DEPRECATED@
#
# Disabled on 2018/03/12. Deprecated and either replaced by
# individual patch-revision plugins, or has been deemed a
# non-security advisory.
#
include("compat.inc");

if (description)
{
  script_id(68872);
  script_version("1.6");
  script_cvs_date("Date: 2018/03/12 17:16:25");

  script_cve_id("CVE-2013-3813");
  script_bugtraq_id(61230);
  script_osvdb_id(95310);

  script_name(english:"Solaris 10 (x86) : 148694-01 (deprecated)");
  script_summary(english:"Check for patch 148694-01");

  script_set_attribute(
    attribute:"synopsis", 
    value:"This plugin has been deprecated."
  );
  script_set_attribute(
    attribute:"description",
    value:
"Vulnerability in the Solaris component of Oracle and Sun Systems
Products Suite (subcomponent: Libraries/PAM-Unix). The supported
version that is affected is 10. Difficult to exploit vulnerability
allows successful unauthenticated network attacks via NFSv2.
Successful attack of this vulnerability can result in unauthorized
update, insert or delete access to some Solaris accessible data as
well as read access to a subset of Solaris accessible data.

This plugin has been deprecated and either replaced with individual
148694 patch-revision plugins, or deemed non-security related."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://getupdates.oracle.com/readme/148694-01"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"n/a"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/07/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/07/14");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");
  script_family(english:"Solaris Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");

  exit(0);
}

exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 148694 instead.");


include("audit.inc");
include("global_settings.inc");
include("solaris.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"148694-01", obsoleted_by:"", package:"SUNWcsl", version:"11.10.0,REV=2005.01.21.16.34") < 0) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report());
  else security_warning(0);
  exit(0);
}
audit(AUDIT_HOST_NOT, "affected");