Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.SOLARIS_APR2012_SRU4.NASL
HistoryJul 26, 2014 - 12:00 a.m.

Oracle Solaris Critical Patch Update : apr2012_SRU4

2014-07-2600:00:00
This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:S/C:C/I:C/A:C

EPSS

0.002

Percentile

55.3%

JSON

This Solaris system is missing necessary patches to address critical security updates :

  • Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: gssd(1M)). Supported versions that are affected are 8, 9, 10 and 11. Very difficult to exploit vulnerability requiring logon to Operating System plus additional, multiple logins to components. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. (CVE-2012-1683)

  • Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Kernel/Privileges). The supported version that is affected is 11. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. (CVE-2012-1691)

  • Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Kernel/GLD(7D)). The supported version that is affected is 11. Very difficult to exploit vulnerability allows successful authenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized read access to a subset of Solaris accessible data. (CVE-2012-1698)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the Oracle CPU for apr2012.
#
include('deprecated_nasl_level.inc');
include("compat.inc");

if (description)
{
  script_id(76801);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/08/11");

  script_cve_id("CVE-2012-1683", "CVE-2012-1691", "CVE-2012-1698");
  script_bugtraq_id(53128, 53130, 53137);

  script_name(english:"Oracle Solaris Critical Patch Update : apr2012_SRU4");
  script_summary(english:"Check for the apr2012 CPU");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote Solaris system is missing a security patch from CPU
apr2012."
  );
  script_set_attribute(
    attribute:"description",
    value:
"This Solaris system is missing necessary patches to address critical
security updates :

  - Vulnerability in the Solaris component of Oracle Sun
    Products Suite (subcomponent: gssd(1M)). Supported
    versions that are affected are 8, 9, 10 and 11. Very
    difficult to exploit vulnerability requiring logon to
    Operating System plus additional, multiple logins to
    components. Successful attack of this vulnerability can
    escalate attacker privileges resulting in unauthorized
    Operating System takeover including arbitrary code
    execution. (CVE-2012-1683)

  - Vulnerability in the Solaris component of Oracle Sun
    Products Suite (subcomponent: Kernel/Privileges). The
    supported version that is affected is 11. Difficult to
    exploit vulnerability requiring logon to Operating
    System plus additional login/authentication to component
    or subcomponent. Successful attack of this vulnerability
    can escalate attacker privileges resulting in
    unauthorized Operating System takeover including
    arbitrary code execution. (CVE-2012-1691)

  - Vulnerability in the Solaris component of Oracle Sun
    Products Suite (subcomponent: Kernel/GLD(7D)). The
    supported version that is affected is 11. Very difficult
    to exploit vulnerability allows successful authenticated
    network attacks via TCP/IP. Successful attack of this
    vulnerability can result in unauthorized read access to
    a subset of Solaris accessible data. (CVE-2012-1698)"
  );
  # http://support.oracle.com/CSP/main/article?cmd=show&type=NOT&id=1446032.1
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?75401354"
  );
  # https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/1690959.xml
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?7ef6c355"
  );
  script_set_attribute(
    attribute:"solution",
    value:"Install the apr2012 CPU from the Oracle support website."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:11.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/05/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/04/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/07/26");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Solaris Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris11/release");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("solaris.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Solaris11/release");
if (isnull(release)) audit(AUDIT_OS_NOT, "Solaris11");


fix_release = "0.5.11-0.175.0.4.0.5.0";

flag = 0;

if (solaris_check_release(release:"0.5.11-0.175.0.4.0.5.0", sru:"11/11 SRU 4") > 0) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report2());
  else security_warning(0);
  exit(0);
}
audit(AUDIT_OS_RELEASE_NOT, "Solaris", fix_release, release);

Related

cvelist 3
cve 3
nvd 3
prion 3
nessus 4
securityvulns 1
oracle 1
cvelist
cvelist
CVE-2012-1691
2012-05-03 22:00:00
CVE-2012-1683
2012-05-03 22:00:00
CVE-2012-1698
2012-05-03 22:00:00
cve
cve
CVE-2012-1691
2012-05-03 22:55:02
CVE-2012-1683
2012-05-03 22:55:02
CVE-2012-1698
2012-05-03 22:55:02
nvd
nvd
CVE-2012-1691
2012-05-03 22:55:02
CVE-2012-1683
2012-05-03 22:55:02
CVE-2012-1698
2012-05-03 22:55:02
prion
prion
Design/Logic Flaw
2012-05-03 22:55:00
Design/Logic Flaw
2012-05-03 22:55:00
Design/Logic Flaw
2012-05-03 22:55:00
nessus
nessus
Solaris 10 (x86) : 147441-27
2011-10-10 00:00:00
Solaris 10 (sparc) : 147440-15
2011-10-10 00:00:00
Solaris 9 (x86) : 115168-24
2004-07-12 00:00:00
securityvulns
securityvulns
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-12-02 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2012
2012-07-19 00:00:00

CVSS2

6.6

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:S/C:C/I:C/A:C

EPSS

0.002

Percentile

55.3%

JSON
Related for SOLARIS_APR2012_SRU4.NASL
cvelist3cve3nvd3prion3nessus4securityvulns1oracle1