Lucene search
This script is Copyright (C) 2008-2011 Tenable Network Security, Inc.SOLARIS8_X86_126357.NASLHistoryJan 18, 2008 - 12:00 a.m.
Solaris 5.8 (x86) : 126357-03
2008-01-1800:00:00
This script is Copyright (C) 2008-2011 Tenable Network Security, Inc.
www.tenable.com
21
EPSS
0.881
Percentile
98.7%
Sun Java System Access Manager 7.1 Solaris_x86.
Date this patch was last updated by Sun : Jun/19/09
#%NASL_MIN_LEVEL 999999
# @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a recommended security fix.
#
# Disabled on 2011/09/17.
#
# (C) Tenable Network Security, Inc.
#
#
if ( ! defined_func("bn_random") ) exit(0);
include("compat.inc");
if(description)
{
script_id(30012);
script_version("1.12");
script_name(english: "Solaris 5.8 (x86) : 126357-03");
script_cve_id("CVE-2008-3529", "CVE-2008-4225", "CVE-2008-4226", "CVE-2009-2268", "CVE-2009-2712", "CVE-2009-2713");
script_set_attribute(attribute: "synopsis", value:
"The remote host is missing Sun Security Patch number 126357-03");
script_set_attribute(attribute: "description", value:
'Sun Java System Access Manager 7.1 Solaris_x86.
Date this patch was last updated by Sun : Jun/19/09');
script_set_attribute(attribute: "solution", value:
"You should install this patch for your system to be up-to-date.");
script_set_attribute(attribute: "see_also", value:
"https://getupdates.oracle.com/readme/126357-03");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_cwe_id(264);
script_set_attribute(attribute:"plugin_publication_date", value: "2008/01/18");
script_cvs_date("Date: 2018/08/22 16:49:14");
script_end_attributes();
script_summary(english: "Check for patch 126357-03");
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2008-2018 and is owned by Tenable, Inc. or an Affiliate thereof.");
family["english"] = "Solaris Local Security Checks";
script_family(english:family["english"]);
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/Solaris/showrev");
exit(0);
}
# Deprecated.
exit(0, "The associated patch is not currently a recommended security fix.");
include("solaris.inc");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamclnt", version:"7.1,REV=06.11.22.00.23");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamcon", version:"7.1,REV=06.11.22.00.22");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamconsdk", version:"7.1,REV=06.11.22.00.22");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamdistauth", version:"7.1,REV=06.11.22.00.23");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamext", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamfcd", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWampwd", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamrsa", version:"7.1,REV=06.06.28.17.03");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsam", version:"7.1,REV=06.11.20.12.26");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsci", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsdk", version:"7.1,REV=07.01.18.06.04");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsdkconfig", version:"7.1,REV=06.12.15.12.35");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsfodb", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsvc", version:"7.1,REV=06.12.19.15.12");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamsvcconfig", version:"7.1,REV=06.11.20.12.28");
e += solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"126357-03", obsoleted_by:"", package:"SUNWamutl", version:"7.1,REV=07.01.18.05.38");
if ( e < 0 ) {
if ( NASL_LEVEL < 3000 )
security_hole(0);
else
security_hole(port:0, extra:solaris_get_report());
exit(0);
}
exit(0, "Host is not affected");
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3529
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4225
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4226
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2268
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2712
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2713
getupdates.oracle.com/readme/126357-03
Related
nessus
nessus
Solaris 5.9 (x86) : 126356-03
2010-01-20 00:00:00
Solaris 5.9 (x86) : 126357-03
2008-01-18 00:00:00
Solaris 5.10 (x86) : 126357-03
2008-01-18 00:00:00
openvas
openvas
Solaris Update for libxml, libxslt and Freeware man pages 114014-22
2009-06-03 00:00:00
Solaris Update for XML and XSLT libraries 125732-04
2009-06-03 00:00:00
Solaris Update for XML and XSLT libraries 125731-04
2009-06-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package libxml2 version 1:2.7.2-alt2
2008-11-25 00:00:00
Security fix for the ALT Linux 9 package libxml2 version 1:2.7.2-alt2
2008-11-25 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: libxml2-2.7.2-2.fc10
2008-11-22 16:50:52
[SECURITY] Fedora 8 Update: libxml2-2.7.2-2.fc8
2008-11-19 14:51:06
[SECURITY] Fedora 9 Update: libxml2-2.7.2-2.fc9
2008-11-19 14:55:44
freebsd
freebsd
libxml2 -- multiple vulnerabilities
2008-11-18 00:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2008-11-19 00:00:00
osv
osv
libxml2 - several vulnerabilities
2008-11-17 00:00:00
centos
centos
libxml2 security update
2008-11-17 23:54:51
libxml2 security update
2008-11-24 00:43:15
slackware
slackware
[slackware-security] libxml2
2008-11-20 03:51:12
debian
debian
[SECURITY] [DSA 1666-1] New libxml2 packages fix several vulnerabilities
2008-11-17 23:34:04
[SECURITY] [DSA 1654-1] New libxml2 packages fix execution of arbitrary code
2008-10-14 18:04:50
oraclelinux
oraclelinux
libxml2 security update
2008-11-17 00:00:00
libxml2 security update
2008-09-11 00:00:00
redhat
redhat
(RHSA-2008:0988) Important: libxml2 security update
2008-11-17 00:00:00
(RHSA-2008:0884) Important: libxml2 security update
2008-09-11 00:00:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2008-12-02 00:00:00
vmware
vmware
prion
prion
Cross site scripting
2009-07-01 13:00:00
Code injection
2009-08-07 19:00:00
Cross site scripting
2009-08-07 19:00:00
cvelist
cvelist
cve
cve
nvd
nvd
exploitpack
exploitpack
Apple Safari - RSS feed: Buffer Overflow via libxml2 (PoC)
2009-05-26 00:00:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
libxml XML实体名堆溢出漏洞
2008-09-22 00:00:00
Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC
2009-05-27 00:00:00
libxml XML实体名堆缓冲区溢出漏洞
2008-09-14 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-11-09 03:48:07
securityvulns
securityvulns
packetstorm
packetstorm
Safari RSS feed:// Buffer Overflow
2009-05-27 00:00:00
ubuntucve
ubuntucve
zdt
zdt
Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC
2009-05-26 00:00:00
debiancve
debiancve
CVE-2008-4225
2008-11-25 23:30:00
CVE-2008-4226
2008-11-25 23:30:00
exploitdb
exploitdb
Apple Safari - RSS 'feed://' Buffer Overflow via libxml2 (PoC)
2009-05-26 00:00:00