OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero- length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the CCS Injection vulnerability.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(500473);
script_version("1.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/21");
script_cve_id("CVE-2014-0224");
script_xref(name:"HP", value:"HPSBMU03055");
script_xref(name:"HP", value:"HPSBMU03057");
script_xref(name:"HP", value:"HPSBMU03051");
script_xref(name:"HP", value:"HPSBGN03068");
script_xref(name:"HP", value:"HPSBMU03056");
script_xref(name:"HP", value:"HPSBPI03107");
script_xref(name:"HP", value:"HPSBMU03058");
script_xref(name:"HP", value:"HPSBMU03076");
script_xref(name:"HP", value:"HPSBMU03062");
script_xref(name:"SECUNIA", value:"59347");
script_xref(name:"FEDORA", value:"FEDORA-2014-9308");
script_xref(name:"SECUNIA", value:"59191");
script_xref(name:"SECUNIA", value:"58579");
script_xref(name:"SECUNIA", value:"59438");
script_xref(name:"SECUNIA", value:"59301");
script_xref(name:"SECUNIA", value:"59721");
script_xref(name:"SECUNIA", value:"59491");
script_xref(name:"SECUNIA", value:"59450");
script_xref(name:"SECUNIA", value:"59655");
script_xref(name:"SECUNIA", value:"59659");
script_xref(name:"SECUNIA", value:"58639");
script_xref(name:"SECUNIA", value:"58759");
script_xref(name:"SECUNIA", value:"59043");
script_xref(name:"SECUNIA", value:"59666");
script_xref(name:"SECUNIA", value:"59126");
script_xref(name:"HP", value:"HPSBMU03070");
script_xref(name:"SECUNIA", value:"59055");
script_xref(name:"SECUNIA", value:"59490");
script_xref(name:"SECUNIA", value:"59514");
script_xref(name:"SECUNIA", value:"59602");
script_xref(name:"SECUNIA", value:"59495");
script_xref(name:"SECUNIA", value:"58930");
script_xref(name:"SECUNIA", value:"59370");
script_xref(name:"SECUNIA", value:"59012");
script_xref(name:"SECUNIA", value:"58385");
script_xref(name:"SECUNIA", value:"59120");
script_xref(name:"SECUNIA", value:"59162");
script_xref(name:"SECUNIA", value:"58939");
script_xref(name:"SECUNIA", value:"59528");
script_xref(name:"SECUNIA", value:"59063");
script_xref(name:"SECUNIA", value:"58128");
script_xref(name:"SECUNIA", value:"59442");
script_xref(name:"SECUNIA", value:"59824");
script_xref(name:"SECUNIA", value:"59827");
script_xref(name:"SECUNIA", value:"59669");
script_xref(name:"SECUNIA", value:"59413");
script_xref(name:"SECUNIA", value:"59300");
script_xref(name:"SECUNIA", value:"59383");
script_xref(name:"SECUNIA", value:"59885");
script_xref(name:"SECUNIA", value:"59459");
script_xref(name:"SECUNIA", value:"58745");
script_xref(name:"SECUNIA", value:"59530");
script_xref(name:"SECUNIA", value:"59589");
script_xref(name:"SECUNIA", value:"59451");
script_xref(name:"SECUNIA", value:"59506");
script_xref(name:"SECUNIA", value:"59894");
script_xref(name:"SECUNIA", value:"60049");
script_xref(name:"SECUNIA", value:"58743");
script_xref(name:"SECUNIA", value:"59342");
script_xref(name:"SECUNIA", value:"59325");
script_xref(name:"SECUNIA", value:"59354");
script_xref(name:"SECUNIA", value:"59916");
script_xref(name:"RHSA", value:"RHSA-2014:0624");
script_xref(name:"RHSA", value:"RHSA-2014:0631");
script_xref(name:"RHSA", value:"RHSA-2014:0632");
script_xref(name:"RHSA", value:"RHSA-2014:0630");
script_xref(name:"RHSA", value:"RHSA-2014:0627");
script_xref(name:"HP", value:"HPSBMU03053");
script_xref(name:"RHSA", value:"RHSA-2014:0680");
script_xref(name:"RHSA", value:"RHSA-2014:0633");
script_xref(name:"RHSA", value:"RHSA-2014:0626");
script_xref(name:"SECUNIA", value:"60066");
script_xref(name:"SECUNIA", value:"59990");
script_xref(name:"SECUNIA", value:"60522");
script_xref(name:"SECUNIA", value:"60577");
script_xref(name:"SECUNIA", value:"59784");
script_xref(name:"SECUNIA", value:"59878");
script_xref(name:"SECUNIA", value:"60176");
script_xref(name:"SECUNIA", value:"60567");
script_xref(name:"SECUNIA", value:"60571");
script_xref(name:"SECUNIA", value:"60819");
script_xref(name:"HP", value:"HPSBST03103");
script_xref(name:"HP", value:"HPSBHF03145");
script_xref(name:"HP", value:"HPSBST03106");
script_xref(name:"HP", value:"HPSBST03097");
script_xref(name:"HP", value:"HPSBMU03083");
script_xref(name:"SECUNIA", value:"61815");
script_xref(name:"HP", value:"HPSBST03265");
script_xref(name:"HP", value:"SSRT101818");
script_xref(name:"SuSE", value:"openSUSE-SU-2015:0229");
script_xref(name:"SuSE", value:"SUSE-SU-2015:0578");
script_xref(name:"HP", value:"HPSBST03195");
script_xref(name:"HP", value:"HPSBHF03052");
script_xref(name:"HP", value:"HPSBMU03065");
script_xref(name:"HP", value:"HPSBMU03074");
script_xref(name:"HP", value:"HPSBGN03050");
script_xref(name:"HP", value:"HPSBST03098");
script_xref(name:"HP", value:"HPSBMU03089");
script_xref(name:"HP", value:"HPSBMU03101");
script_xref(name:"HP", value:"HPSBMU03071");
script_xref(name:"HP", value:"HPSBUX03046");
script_xref(name:"HP", value:"HPSBMU03094");
script_xref(name:"HP", value:"HPSBMU03078");
script_xref(name:"HP", value:"HPSBOV03047");
script_xref(name:"HP", value:"HPSBHF03088");
script_xref(name:"SuSE", value:"openSUSE-SU-2016:0640");
script_xref(name:"SuSE", value:"SUSE-SU-2015:0743");
script_xref(name:"GLSA", value:"GLSA-201407-05");
script_xref(name:"SECUNIA", value:"61254");
script_xref(name:"SECUNIA", value:"59677");
script_xref(name:"SECUNIA", value:"59661");
script_xref(name:"SECUNIA", value:"59529");
script_xref(name:"SECUNIA", value:"59525");
script_xref(name:"SECUNIA", value:"59518");
script_xref(name:"SECUNIA", value:"59502");
script_xref(name:"SECUNIA", value:"59483");
script_xref(name:"SECUNIA", value:"59460");
script_xref(name:"SECUNIA", value:"59454");
script_xref(name:"SECUNIA", value:"59449");
script_xref(name:"SECUNIA", value:"59448");
script_xref(name:"SECUNIA", value:"59447");
script_xref(name:"SECUNIA", value:"59446");
script_xref(name:"SECUNIA", value:"59445");
script_xref(name:"SECUNIA", value:"59444");
script_xref(name:"SECUNIA", value:"59441");
script_xref(name:"SECUNIA", value:"59440");
script_xref(name:"SECUNIA", value:"59437");
script_xref(name:"SECUNIA", value:"59435");
script_xref(name:"SECUNIA", value:"59429");
script_xref(name:"SECUNIA", value:"59389");
script_xref(name:"SECUNIA", value:"59380");
script_xref(name:"SECUNIA", value:"59375");
script_xref(name:"SECUNIA", value:"59374");
script_xref(name:"SECUNIA", value:"59368");
script_xref(name:"SECUNIA", value:"59365");
script_xref(name:"SECUNIA", value:"59364");
script_xref(name:"SECUNIA", value:"59362");
script_xref(name:"SECUNIA", value:"59338");
script_xref(name:"SECUNIA", value:"59310");
script_xref(name:"SECUNIA", value:"59306");
script_xref(name:"SECUNIA", value:"59305");
script_xref(name:"SECUNIA", value:"59287");
script_xref(name:"SECUNIA", value:"59284");
script_xref(name:"SECUNIA", value:"59282");
script_xref(name:"SECUNIA", value:"59264");
script_xref(name:"SECUNIA", value:"59231");
script_xref(name:"SECUNIA", value:"59223");
script_xref(name:"SECUNIA", value:"59215");
script_xref(name:"SECUNIA", value:"59214");
script_xref(name:"SECUNIA", value:"59211");
script_xref(name:"SECUNIA", value:"59202");
script_xref(name:"SECUNIA", value:"59192");
script_xref(name:"SECUNIA", value:"59190");
script_xref(name:"SECUNIA", value:"59189");
script_xref(name:"SECUNIA", value:"59188");
script_xref(name:"SECUNIA", value:"59186");
script_xref(name:"SECUNIA", value:"59175");
script_xref(name:"SECUNIA", value:"59167");
script_xref(name:"SECUNIA", value:"59163");
script_xref(name:"SECUNIA", value:"59142");
script_xref(name:"SECUNIA", value:"59135");
script_xref(name:"SECUNIA", value:"59132");
script_xref(name:"SECUNIA", value:"59101");
script_xref(name:"SECUNIA", value:"59093");
script_xref(name:"SECUNIA", value:"59040");
script_xref(name:"SECUNIA", value:"59004");
script_xref(name:"SECUNIA", value:"58977");
script_xref(name:"SECUNIA", value:"58945");
script_xref(name:"SECUNIA", value:"58742");
script_xref(name:"SECUNIA", value:"58719");
script_xref(name:"SECUNIA", value:"58716");
script_xref(name:"SECUNIA", value:"58714");
script_xref(name:"SECUNIA", value:"58713");
script_xref(name:"SECUNIA", value:"58667");
script_xref(name:"SECUNIA", value:"58660");
script_xref(name:"SECUNIA", value:"58615");
script_xref(name:"SECUNIA", value:"58492");
script_xref(name:"SECUNIA", value:"58433");
script_xref(name:"SECUNIA", value:"58337");
script_xref(name:"FEDORA", value:"FEDORA-2014-9301");
script_name(english:"Siemens OpenSSL Inadequate Encryption Strength (CVE-2014-0224)");
script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h
does not properly restrict processing of ChangeCipherSpec messages,
which allows man-in-the-middle attackers to trigger use of a zero-
length master key in certain OpenSSL-to-OpenSSL communications, and
consequently hijack sessions or obtain sensitive information, via a
crafted TLS handshake, aka the CCS Injection vulnerability.
This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
script_set_attribute(attribute:"see_also", value:"http://www.openssl.org/news/secadv_20140605.txt");
script_set_attribute(attribute:"see_also", value:"http://ccsinjection.lepidum.co.jp");
script_set_attribute(attribute:"see_also", value:"http://www.kb.cert.org/vuls/id/978508");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1103586");
script_set_attribute(attribute:"see_also", value:"https://www.imperialviolet.org/2014/06/05/earlyccs.html");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/site/blogs/766093/posts/908133");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59191");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58579");
script_set_attribute(attribute:"see_also", value:"https://kb.bluecoat.com/index?page=content&id=SA80");
# http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5539aa9d");
script_set_attribute(attribute:"see_also", value:"http://www.kerio.com/support/kerio-control/release-history");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59438");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676035");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59301");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59721");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59491");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59450");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676845");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59655");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677695");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59659");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58639");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095737
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d68c75da");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58759");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21678289");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59043");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59666");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59126");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095740
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?25e3d768");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140499864129699&w=2");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677567");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59055");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59490");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676419");
# https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_SNARE_for_MSSQL.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?23273edc");
script_set_attribute(attribute:"see_also", value:"http://www.novell.com/support/kb/doc.php?id=7015300");
# http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?2115f75f");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21673137");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59514");
script_set_attribute(attribute:"see_also", value:"http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59602");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59495");
script_set_attribute(attribute:"see_also", value:"http://www.novell.com/support/kb/doc.php?id=7015264");
script_set_attribute(attribute:"see_also", value:"http://esupport.trendmicro.com/solution/en-US/1103813.aspx");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58930");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59370");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59012");
script_set_attribute(attribute:"see_also", value:"http://www.blackberry.com/btsc/KB36051");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58385");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676655");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59120");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59162");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58939");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59528");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59063");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677828");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020172");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58128");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676062");
script_set_attribute(attribute:"see_also", value:"https://kc.mcafee.com/corporate/index?page=content&id=SB10075");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676496");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21678167");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59442");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59824");
# http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6060&myns=phmc&mync=E
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?2a8d3d74");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677527");
# https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_Snare_for_Windows.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d8f6abfb");
# https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=bc8923b1ec9c467755cd86f7848c50ee8812e441
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?dec0f0a3");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59827");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59669");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59413");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037761");
# http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=6061&myns=phmc&mync=E
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6b98b564");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677390");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59300");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004690");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59383");
script_set_attribute(attribute:"see_also", value:"http://www.splunk.com/view/SP-CAAAM2D");
script_set_attribute(attribute:"see_also", value:"https://discussions.nessus.org/thread/7517");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59885");
# http://www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-download
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?46b88aa1");
# http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?7de2f8eb");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59459");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58745");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59530");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59589");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59451");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=isg400001843");
script_set_attribute(attribute:"see_also", value:"http://www.fortiguard.com/advisory/FG-IR-14-018/");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59506");
script_set_attribute(attribute:"see_also", value:"https://filezilla-project.org/versions.php?type=server");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=isg400001841");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59894");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60049");
# https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3014ab34");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58743");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59342");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59325");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59354");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59916");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0624.html");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140386311427810&w=2");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0631.html");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0632.html");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0630.html");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0627.html");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140369637402535&w=2");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0680.html");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0633.html");
script_set_attribute(attribute:"see_also", value:"http://rhn.redhat.com/errata/RHSA-2014-0626.html");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60066");
script_set_attribute(attribute:"see_also", value:"http://puppetlabs.com/security/cve/cve-2014-0224");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59990");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60522");
script_set_attribute(attribute:"see_also", value:"http://linux.oracle.com/errata/ELSA-2014-1053.html");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60577");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59784");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59878");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60176");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60567");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60571");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/60819");
script_set_attribute(attribute:"see_also", value:"http://support.apple.com/kb/HT6443");
# http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6dcc7b47");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141164638606214&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141383465822787&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141025641601169&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141383410222440&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141147110427269&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140983229106599&w=2");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/61815");
script_set_attribute(attribute:"see_also", value:"http://www.securitytracker.com/id/1031032");
script_set_attribute(attribute:"see_also", value:"http://www.vmware.com/security/advisories/VMSA-2014-0012.html");
script_set_attribute(attribute:"see_also", value:"http://seclists.org/fulldisclosure/2014/Dec/23");
# http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c02f1515");
script_set_attribute(attribute:"see_also", value:"http://www.securitytracker.com/id/1031594");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=142546741516006&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=142350350616251&w=2");
script_set_attribute(attribute:"see_also", value:"http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html");
# http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?acb4a410");
# http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c46d757d");
script_set_attribute(attribute:"see_also", value:"http://www.mandriva.com/security/advisories?name=MDVSA-2015:062");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=142805027510172&w=2");
# http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?453b5f8c");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=141658880509699&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140448122410568&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140491231331543&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140621259019789&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140482916501310&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140870499402361&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140784085708882&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140852826008699&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140604261522465&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140431828824371&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140266410314613&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140852757108392&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140544599631400&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140389274407904&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140672208601650&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140317760000786&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140904544427729&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140389355508263&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140752315422991&w=2");
script_set_attribute(attribute:"see_also", value:"http://marc.info/?l=bugtraq&m=140794476212181&w=2");
# https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3818101e");
# http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?bac902d5");
# http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e6ea11ce");
# http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e062d049");
script_set_attribute(attribute:"see_also", value:"https://www.novell.com/support/kb/doc.php?id=7015271");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/docview.wss?uid=ssg1S1004671");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/docview.wss?uid=ssg1S1004670");
# https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f997f6c0");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?957ff7ff");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?87b3d108");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?eb9f4c47");
# http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c603c39c");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037870");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037732");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037731");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037730");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037729");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24037727");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21683332");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21678233");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677836");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677131");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21677080");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676889");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676879");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676833");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676786");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676644");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676615");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676536");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676529");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676501");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676478");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676334");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676333");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21676071");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21675821");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21675626");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg1IV61506");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163");
script_set_attribute(attribute:"see_also", value:"http://www.vmware.com/security/advisories/VMSA-2014-0006.html");
script_set_attribute(attribute:"see_also", value:"http://www.mandriva.com/security/advisories?name=MDVSA-2014:106");
script_set_attribute(attribute:"see_also", value:"http://www.mandriva.com/security/advisories?name=MDVSA-2014:105");
# http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?bc543587");
script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/support/docview.wss?uid=swg24037783");
script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/support/docview.wss?uid=swg21676877");
script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/support/docview.wss?uid=swg21676356");
script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/support/docview.wss?uid=swg1IT02314");
script_set_attribute(attribute:"see_also", value:"http://www.ibm.com/support/docview.wss?uid=ssg1S1004678");
script_set_attribute(attribute:"see_also", value:"http://www.f-secure.com/en/web/labs_global/fsc-2014-6");
# http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?91a242c9");
script_set_attribute(attribute:"see_also", value:"http://support.citrix.com/article/CTX140876");
script_set_attribute(attribute:"see_also", value:"http://security.gentoo.org/glsa/glsa-201407-05.xml");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/61254");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59677");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59661");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59529");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59525");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59518");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59502");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59483");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59460");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59454");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59449");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59448");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59447");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59446");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59445");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59444");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59441");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59440");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59437");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59435");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59429");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59389");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59380");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59375");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59374");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59368");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59365");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59364");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59362");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59347");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59338");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59310");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59306");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59305");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59287");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59284");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59282");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59264");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59231");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59223");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59215");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59214");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59211");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59202");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59192");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59190");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59189");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59188");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59186");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59175");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59167");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59163");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59142");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59135");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59132");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59101");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59093");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59040");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/59004");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58977");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58945");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58742");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58719");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58716");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58714");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58713");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58667");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58660");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58615");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58492");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58433");
script_set_attribute(attribute:"see_also", value:"http://secunia.com/advisories/58337");
script_set_attribute(attribute:"see_also", value:"http://seclists.org/fulldisclosure/2014/Jun/38");
# http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f68d352b");
# http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c49877be");
script_set_attribute(attribute:"see_also", value:"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29217");
script_set_attribute(attribute:"see_also", value:"http://kb.juniper.net/InfoCenter/index?page=content&id=KB29195");
script_set_attribute(attribute:"see_also", value:"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10629");
script_set_attribute(attribute:"see_also", value:"http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc");
# http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?76f5def7");
# http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1e07fa0e");
script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/archive/1/534161/100/0/threaded");
script_set_attribute(attribute:"see_also", value:"https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf");
script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-0224");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_cwe_id(326);
script_set_attribute(attribute:"vuln_publication_date", value:"2014/06/05");
script_set_attribute(attribute:"patch_publication_date", value:"2014/06/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/07");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:cp1543-1_firmware");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:s7-1500_firmware");
script_set_attribute(attribute:"generated_plugin", value:"former");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Tenable.ot");
script_copyright(english:"This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("tenable_ot_api_integration.nasl");
script_require_keys("Tenable.ot/Siemens");
exit(0);
}
include('tenable_ot_cve_funcs.inc');
get_kb_item_or_exit('Tenable.ot/Siemens');
var asset = tenable_ot::assets::get(vendor:'Siemens');
var vuln_cpes = {
"cpe:/o:siemens:cp1543-1_firmware" :
{"versionEndExcluding" : "1.1.25", "family" : "S71500"},
"cpe:/o:siemens:s7-1500_firmware" :
{"versionEndExcluding" : "1.6", "family" : "S71500"}
};
tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_WARNING);
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | cp1543-1_firmware | cpe:/o:siemens:cp1543-1_firmware | |
siemens | s7-1500_firmware | cpe:/o:siemens:s7-1500_firmware |
aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc
ccsinjection.lepidum.co.jp
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224
dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html
esupport.trendmicro.com/solution/en-US/1103813.aspx
kb.juniper.net/InfoCenter/index?page=content&id=JSA10629
kb.juniper.net/InfoCenter/index?page=content&id=KB29195
kb.juniper.net/InfoCenter/index?page=content&id=KB29217
linux.oracle.com/errata/ELSA-2014-1053.html
lists.opensuse.org/opensuse-updates/2015-02/msg00030.html
marc.info/?l=bugtraq&m=140266410314613&w=2
marc.info/?l=bugtraq&m=140317760000786&w=2
marc.info/?l=bugtraq&m=140369637402535&w=2
marc.info/?l=bugtraq&m=140386311427810&w=2
marc.info/?l=bugtraq&m=140389274407904&w=2
marc.info/?l=bugtraq&m=140389355508263&w=2
marc.info/?l=bugtraq&m=140431828824371&w=2
marc.info/?l=bugtraq&m=140448122410568&w=2
marc.info/?l=bugtraq&m=140482916501310&w=2
marc.info/?l=bugtraq&m=140491231331543&w=2
marc.info/?l=bugtraq&m=140499864129699&w=2
marc.info/?l=bugtraq&m=140544599631400&w=2
marc.info/?l=bugtraq&m=140604261522465&w=2
marc.info/?l=bugtraq&m=140621259019789&w=2
marc.info/?l=bugtraq&m=140672208601650&w=2
marc.info/?l=bugtraq&m=140752315422991&w=2
marc.info/?l=bugtraq&m=140784085708882&w=2
marc.info/?l=bugtraq&m=140794476212181&w=2
marc.info/?l=bugtraq&m=140852757108392&w=2
marc.info/?l=bugtraq&m=140852826008699&w=2
marc.info/?l=bugtraq&m=140870499402361&w=2
marc.info/?l=bugtraq&m=140904544427729&w=2
marc.info/?l=bugtraq&m=140983229106599&w=2
marc.info/?l=bugtraq&m=141025641601169&w=2
marc.info/?l=bugtraq&m=141147110427269&w=2
marc.info/?l=bugtraq&m=141164638606214&w=2
marc.info/?l=bugtraq&m=141383410222440&w=2
marc.info/?l=bugtraq&m=141383465822787&w=2
marc.info/?l=bugtraq&m=141658880509699&w=2
marc.info/?l=bugtraq&m=142350350616251&w=2
marc.info/?l=bugtraq&m=142546741516006&w=2
marc.info/?l=bugtraq&m=142805027510172&w=2
puppetlabs.com/security/cve/cve-2014-0224
rhn.redhat.com/errata/RHSA-2014-0624.html
rhn.redhat.com/errata/RHSA-2014-0626.html
rhn.redhat.com/errata/RHSA-2014-0627.html
rhn.redhat.com/errata/RHSA-2014-0630.html
rhn.redhat.com/errata/RHSA-2014-0631.html
rhn.redhat.com/errata/RHSA-2014-0632.html
rhn.redhat.com/errata/RHSA-2014-0633.html
rhn.redhat.com/errata/RHSA-2014-0680.html
seclists.org/fulldisclosure/2014/Dec/23
seclists.org/fulldisclosure/2014/Jun/38
secunia.com/advisories/58128
secunia.com/advisories/58337
secunia.com/advisories/58385
secunia.com/advisories/58433
secunia.com/advisories/58492
secunia.com/advisories/58579
secunia.com/advisories/58615
secunia.com/advisories/58639
secunia.com/advisories/58660
secunia.com/advisories/58667
secunia.com/advisories/58713
secunia.com/advisories/58714
secunia.com/advisories/58716
secunia.com/advisories/58719
secunia.com/advisories/58742
secunia.com/advisories/58743
secunia.com/advisories/58745
secunia.com/advisories/58759
secunia.com/advisories/58930
secunia.com/advisories/58939
secunia.com/advisories/58945
secunia.com/advisories/58977
secunia.com/advisories/59004
secunia.com/advisories/59012
secunia.com/advisories/59040
secunia.com/advisories/59043
secunia.com/advisories/59055
secunia.com/advisories/59063
secunia.com/advisories/59093
secunia.com/advisories/59101
secunia.com/advisories/59120
secunia.com/advisories/59126
secunia.com/advisories/59132
secunia.com/advisories/59135
secunia.com/advisories/59142
secunia.com/advisories/59162
secunia.com/advisories/59163
secunia.com/advisories/59167
secunia.com/advisories/59175
secunia.com/advisories/59186
secunia.com/advisories/59188
secunia.com/advisories/59189
secunia.com/advisories/59190
secunia.com/advisories/59191
secunia.com/advisories/59192
secunia.com/advisories/59202
secunia.com/advisories/59211
secunia.com/advisories/59214
secunia.com/advisories/59215
secunia.com/advisories/59223
secunia.com/advisories/59231
secunia.com/advisories/59264
secunia.com/advisories/59282
secunia.com/advisories/59284
secunia.com/advisories/59287
secunia.com/advisories/59300
secunia.com/advisories/59301
secunia.com/advisories/59305
secunia.com/advisories/59306
secunia.com/advisories/59310
secunia.com/advisories/59325
secunia.com/advisories/59338
secunia.com/advisories/59342
secunia.com/advisories/59347
secunia.com/advisories/59354
secunia.com/advisories/59362
secunia.com/advisories/59364
secunia.com/advisories/59365
secunia.com/advisories/59368
secunia.com/advisories/59370
secunia.com/advisories/59374
secunia.com/advisories/59375
secunia.com/advisories/59380
secunia.com/advisories/59383
secunia.com/advisories/59389
secunia.com/advisories/59413
secunia.com/advisories/59429
secunia.com/advisories/59435
secunia.com/advisories/59437
secunia.com/advisories/59438
secunia.com/advisories/59440
secunia.com/advisories/59441
secunia.com/advisories/59442
secunia.com/advisories/59444
secunia.com/advisories/59445
secunia.com/advisories/59446
secunia.com/advisories/59447
secunia.com/advisories/59448
secunia.com/advisories/59449
secunia.com/advisories/59450
secunia.com/advisories/59451
secunia.com/advisories/59454
secunia.com/advisories/59459
secunia.com/advisories/59460
secunia.com/advisories/59483
secunia.com/advisories/59490
secunia.com/advisories/59491
secunia.com/advisories/59495
secunia.com/advisories/59502
secunia.com/advisories/59506
secunia.com/advisories/59514
secunia.com/advisories/59518
secunia.com/advisories/59525
secunia.com/advisories/59528
secunia.com/advisories/59529
secunia.com/advisories/59530
secunia.com/advisories/59589
secunia.com/advisories/59602
secunia.com/advisories/59655
secunia.com/advisories/59659
secunia.com/advisories/59661
secunia.com/advisories/59666
secunia.com/advisories/59669
secunia.com/advisories/59677
secunia.com/advisories/59721
secunia.com/advisories/59784
secunia.com/advisories/59824
secunia.com/advisories/59827
secunia.com/advisories/59878
secunia.com/advisories/59885
secunia.com/advisories/59894
secunia.com/advisories/59916
secunia.com/advisories/59990
secunia.com/advisories/60049
secunia.com/advisories/60066
secunia.com/advisories/60176
secunia.com/advisories/60522
secunia.com/advisories/60567
secunia.com/advisories/60571
secunia.com/advisories/60577
secunia.com/advisories/60819
secunia.com/advisories/61254
secunia.com/advisories/61815
security.gentoo.org/glsa/glsa-201407-05.xml
support.apple.com/kb/HT6443
support.citrix.com/article/CTX140876
www-01.ibm.com/support/docview.wss?uid=isg400001841
www-01.ibm.com/support/docview.wss?uid=isg400001843
www-01.ibm.com/support/docview.wss?uid=nas8N1020163
www-01.ibm.com/support/docview.wss?uid=nas8N1020172
www-01.ibm.com/support/docview.wss?uid=ssg1S1004690
www-01.ibm.com/support/docview.wss?uid=swg1IV61506
www-01.ibm.com/support/docview.wss?uid=swg21673137
www-01.ibm.com/support/docview.wss?uid=swg21675626
www-01.ibm.com/support/docview.wss?uid=swg21675821
www-01.ibm.com/support/docview.wss?uid=swg21676035
www-01.ibm.com/support/docview.wss?uid=swg21676062
www-01.ibm.com/support/docview.wss?uid=swg21676071
www-01.ibm.com/support/docview.wss?uid=swg21676333
www-01.ibm.com/support/docview.wss?uid=swg21676334
www-01.ibm.com/support/docview.wss?uid=swg21676419
www-01.ibm.com/support/docview.wss?uid=swg21676478
www-01.ibm.com/support/docview.wss?uid=swg21676496
www-01.ibm.com/support/docview.wss?uid=swg21676501
www-01.ibm.com/support/docview.wss?uid=swg21676529
www-01.ibm.com/support/docview.wss?uid=swg21676536
www-01.ibm.com/support/docview.wss?uid=swg21676615
www-01.ibm.com/support/docview.wss?uid=swg21676644
www-01.ibm.com/support/docview.wss?uid=swg21676655
www-01.ibm.com/support/docview.wss?uid=swg21676786
www-01.ibm.com/support/docview.wss?uid=swg21676833
www-01.ibm.com/support/docview.wss?uid=swg21676845
www-01.ibm.com/support/docview.wss?uid=swg21676879
www-01.ibm.com/support/docview.wss?uid=swg21676889
www-01.ibm.com/support/docview.wss?uid=swg21677080
www-01.ibm.com/support/docview.wss?uid=swg21677131
www-01.ibm.com/support/docview.wss?uid=swg21677390
www-01.ibm.com/support/docview.wss?uid=swg21677527
www-01.ibm.com/support/docview.wss?uid=swg21677567
www-01.ibm.com/support/docview.wss?uid=swg21677695
www-01.ibm.com/support/docview.wss?uid=swg21677828
www-01.ibm.com/support/docview.wss?uid=swg21677836
www-01.ibm.com/support/docview.wss?uid=swg21678167
www-01.ibm.com/support/docview.wss?uid=swg21678233
www-01.ibm.com/support/docview.wss?uid=swg21678289
www-01.ibm.com/support/docview.wss?uid=swg21683332
www-01.ibm.com/support/docview.wss?uid=swg24037727
www-01.ibm.com/support/docview.wss?uid=swg24037729
www-01.ibm.com/support/docview.wss?uid=swg24037730
www-01.ibm.com/support/docview.wss?uid=swg24037731
www-01.ibm.com/support/docview.wss?uid=swg24037732
www-01.ibm.com/support/docview.wss?uid=swg24037761
www-01.ibm.com/support/docview.wss?uid=swg24037870
www.blackberry.com/btsc/KB36051
www.f-secure.com/en/web/labs_global/fsc-2014-6
www.fortiguard.com/advisory/FG-IR-14-018/
www.ibm.com/support/docview.wss?uid=ssg1S1004678
www.ibm.com/support/docview.wss?uid=swg1IT02314
www.ibm.com/support/docview.wss?uid=swg21676356
www.ibm.com/support/docview.wss?uid=swg21676877
www.ibm.com/support/docview.wss?uid=swg24037783
www.kb.cert.org/vuls/id/978508
www.kerio.com/support/kerio-control/release-history
www.mandriva.com/security/advisories?name=MDVSA-2014:105
www.mandriva.com/security/advisories?name=MDVSA-2014:106
www.mandriva.com/security/advisories?name=MDVSA-2015:062
www.nessus.org/u?1e07fa0e
www.nessus.org/u?2115f75f
www.nessus.org/u?23273edc
www.nessus.org/u?25e3d768
www.nessus.org/u?2a8d3d74
www.nessus.org/u?3014ab34
www.nessus.org/u?3818101e
www.nessus.org/u?453b5f8c
www.nessus.org/u?46b88aa1
www.nessus.org/u?5539aa9d
www.nessus.org/u?6b98b564
www.nessus.org/u?6dcc7b47
www.nessus.org/u?76f5def7
www.nessus.org/u?7de2f8eb
www.nessus.org/u?87b3d108
www.nessus.org/u?91a242c9
www.nessus.org/u?957ff7ff
www.nessus.org/u?acb4a410
www.nessus.org/u?bac902d5
www.nessus.org/u?bc543587
www.nessus.org/u?c02f1515
www.nessus.org/u?c46d757d
www.nessus.org/u?c49877be
www.nessus.org/u?c603c39c
www.nessus.org/u?d68c75da
www.nessus.org/u?d8f6abfb
www.nessus.org/u?dec0f0a3
www.nessus.org/u?e062d049
www.nessus.org/u?e6ea11ce
www.nessus.org/u?eb9f4c47
www.nessus.org/u?f68d352b
www.nessus.org/u?f997f6c0
www.novell.com/support/kb/doc.php?id=7015264
www.novell.com/support/kb/doc.php?id=7015300
www.openssl.org/news/secadv_20140605.txt
www.securityfocus.com/archive/1/534161/100/0/threaded
www.securitytracker.com/id/1031032
www.securitytracker.com/id/1031594
www.splunk.com/view/SP-CAAAM2D
www.vmware.com/security/advisories/VMSA-2014-0006.html
www.vmware.com/security/advisories/VMSA-2014-0012.html
access.redhat.com/site/blogs/766093/posts/908133
bugzilla.redhat.com/show_bug.cgi?id=1103586
cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf
discussions.nessus.org/thread/7517
filezilla-project.org/versions.php?type=server
kb.bluecoat.com/index?page=content&id=SA80
kc.mcafee.com/corporate/index?page=content&id=SB10075
www.ibm.com/support/docview.wss?uid=ssg1S1004670
www.ibm.com/support/docview.wss?uid=ssg1S1004671
www.imperialviolet.org/2014/06/05/earlyccs.html
www.novell.com/support/kb/doc.php?id=7015271