Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-6037-1.NASL
HistoryApr 25, 2023 - 12:00 a.m.

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Apache Commons Net vulnerability (USN-6037-1)

2023-04-2500:00:00
Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 22.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6037-1 advisory.

  • Prior to Apache Commons Net 3.9.0, Net’s FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a different host, but the user has to connect to the malicious server in the first place. This may lead to leakage of information about services running on the private network of the client. The default in version 3.9.0 is now false to ignore such hosts, as cURL does. See https://issues.apache.org/jira/browse/NET-711. (CVE-2021-37533)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-6037-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(174751);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/16");

  script_cve_id("CVE-2021-37533");
  script_xref(name:"USN", value:"6037-1");

  script_name(english:"Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Apache Commons Net vulnerability (USN-6037-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 22.10 host has a package installed that is affected by a
vulnerability as referenced in the USN-6037-1 advisory.

  - Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A
    malicious server can redirect the Commons Net code to use a different host, but the user has to connect to
    the malicious server in the first place. This may lead to leakage of information about services running on
    the private network of the client. The default in version 3.9.0 is now false to ignore such hosts, as cURL
    does. See https://issues.apache.org/jira/browse/NET-711. (CVE-2021-37533)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-6037-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected libcommons-net-java package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-37533");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/12/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/04/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/04/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libcommons-net-java");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release || '20.04' >< os_release || '22.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04 / 20.04 / 22.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '16.04', 'pkgname': 'libcommons-net-java', 'pkgver': '3.4-2ubuntu2+esm1'},
    {'osver': '18.04', 'pkgname': 'libcommons-net-java', 'pkgver': '3.6-1+deb11u1build0.18.04.1'},
    {'osver': '20.04', 'pkgname': 'libcommons-net-java', 'pkgver': '3.6-1+deb11u1build0.20.04.1'},
    {'osver': '22.04', 'pkgname': 'libcommons-net-java', 'pkgver': '3.6-1+deb11u1build0.22.04.1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libcommons-net-java');
}
VendorProductVersionCPE
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:esm
canonicalubuntu_linux18.04cpe:/o:canonical:ubuntu_linux:18.04:-:lts
canonicalubuntu_linux20.04cpe:/o:canonical:ubuntu_linux:20.04:-:lts
canonicalubuntu_linux22.04cpe:/o:canonical:ubuntu_linux:22.04:-:lts
canonicalubuntu_linuxlibcommons-net-javap-cpe:/a:canonical:ubuntu_linux:libcommons-net-java

Related

nessus 5
debian 2
ubuntucve 1
openvas 4
osv 5
ibm 26
redhatcve 1
debiancve 1
cve 1
veracode 1
prion 1
github 1
ubuntu 1
redhat 2
oracle 6
nessus
nessus
Debian DLA-3251-1 : libcommons-net-java - LTS security update
2022-12-30 00:00:00
Debian DSA-5307-1 : libcommons-net-java - security update
2022-12-30 00:00:00
Oracle Primavera Gateway (Jul 2023 CPU)
2023-07-19 00:00:00
debian
debian
[SECURITY] [DSA 5307-1] libcommons-net-java security update
2022-12-29 21:27:28
[SECURITY] [DLA 3251-1] libcommons-net-java security update
2022-12-29 20:41:57
ubuntucve
ubuntucve
CVE-2021-37533
2022-12-03 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3251-1)
2022-12-30 00:00:00
Apache Commons Net < 3.9.0 Information Disclosure Vulnerability
2022-12-05 00:00:00
Ubuntu: Security Advisory (USN-6037-1)
2023-04-26 00:00:00
osv
osv
Apache Commons Net vulnerability
2023-04-28 10:19:40
libcommons-net-java - security update
2022-12-29 00:00:00
CVE-2021-37533
2022-12-03 15:15:09
ibm
ibm
Security Bulletin: Vulnerability found in commons-net-1.4.1.jar which is shipped with IBM® Intelligent Operations Center(CVE-2021-37533)
2023-09-05 13:32:13
Security Bulletin: There is a vulnerability in Apache Commons Net used by IBM Jazz Reporting Service (CVE-2021-37533)
2023-10-04 10:44:01
Security Bulletin: IBM Tivoli Business Service Manager is vulnerable to remote code execution due to Apache Commons Net (CVE-2021-37533)
2023-06-21 20:26:58
redhatcve
redhatcve
CVE-2021-37533
2023-02-15 06:59:18
debiancve
debiancve
CVE-2021-37533
2022-12-03 15:15:00
cve
cve
CVE-2021-37533
2022-12-03 15:15:00
veracode
veracode
Information Disclosure
2022-12-06 01:50:10
prion
prion
Design/Logic Flaw
2022-12-03 15:15:00
github
github
Apache Commons Net vulnerable to information leakage via malicious server
2022-12-03 15:30:26
ubuntu
ubuntu
Apache Commons Net vulnerability
2023-04-28 00:00:00
redhat
redhat
(RHSA-2023:3667) Moderate: Red Hat Integration Camel Extensions for Quarkus 2.13.3 security update
2023-06-19 16:31:18
(RHSA-2023:2100) Important: Red Hat Integration Camel for Spring Boot 3.20.1 security update
2023-05-03 14:03:49
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
JSON
Related for UBUNTU_USN-6037-1.NASL
nessus5debian2ubuntucve1openvas4osv5ibm26redhatcve1debiancve1cve1veracode1prion1github1ubuntu1redhat2oracle6