Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is (C) 2013-2018 Tenable Network Security, Inc.VMWARE_ESXI_5_0_BUILD_764879_REMOTE.NASL
HistoryNov 13, 2013 - 12:00 a.m.

ESXi 5.0 < Build 764879 Multiple Vulnerabilities (remote check)

2013-11-1300:00:00
This script is (C) 2013-2018 Tenable Network Security, Inc.
www.tenable.com
20
JSON

The remote VMware ESXi 5.0 host is affected by the following security vulnerabilities :

  • Errors exist in the Libxml2 library functions ‘xmlXPathNextPrecedingSibling’, ‘xmlNodePtr’ and ‘xmlXPathNextPrecedingInternal’ that could allow denial of service attacks or arbitrary code execution.
    (CVE-2010-4008)

  • Buffer overflow errors exist in the libxml2 library functions ‘xmlCharEncFirstLineInt’ and ‘xmlCharEncInFunc’ that could allow denial of service attacks or arbitrary code execution. (CVE-2011-0216)

  • A buffer overflow error exists in the libxml2 library file ‘xpath.c’ related to handling ‘XPath’ nodesets that could allow denial of service attacks or arbitrary code execution. (CVE-2011-1944)

  • A double-free error exists in the libxml2 library function ‘xmlXPathCompOpEval’ related to handling invalid ‘XPath’ expressions that could allow denial of service attacks or arbitrary code execution.
    (CVE-2011-2834)

  • An out-of-bounds read error exists in the libxml2 library file ‘parser.c’ related to handling ‘Stop’ orders that could allow denial of service attacks.
    (CVE-2011-3905)

  • A buffer overflow error exists in the libxml2 library function ‘xmlStringLenDecodeEntities’ related to copying entities that could allow denial of service attacks or arbitrary code execution. (CVE-2011-3919)

  • An error exists in the libxml2 library related to hash collisions that could allow denial of service attacks.
    (CVE-2012-0841)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(70884);
  script_version("1.9");
  script_cvs_date("Date: 2018/08/06 14:03:14");

  script_cve_id(
    "CVE-2010-4008",
    "CVE-2011-0216",
    "CVE-2011-1944",
    "CVE-2011-2834",
    "CVE-2011-3905",
    "CVE-2011-3919",
    "CVE-2012-0841"
  );
  script_bugtraq_id(44779, 48056, 48832, 49658, 51084, 51300, 52107);
  script_xref(name:"VMSA", value:"2012-0012");

  script_name(english:"ESXi 5.0 < Build 764879 Multiple Vulnerabilities (remote check)");
  script_summary(english:"Checks ESXi version and build number");

  script_set_attribute(attribute:"synopsis", value:
"The remote VMware ESXi 5.0 host is affected by multiple security
vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote VMware ESXi 5.0 host is affected by the following security
vulnerabilities :

  - Errors exist in the Libxml2 library functions
    'xmlXPathNextPrecedingSibling', 'xmlNodePtr' and
    'xmlXPathNextPrecedingInternal' that could allow
    denial of service attacks or arbitrary code execution.
    (CVE-2010-4008)

  - Buffer overflow errors exist in the libxml2 library
    functions 'xmlCharEncFirstLineInt' and
    'xmlCharEncInFunc' that could allow denial of service
    attacks or arbitrary code execution. (CVE-2011-0216)

  - A buffer overflow error exists in the libxml2 library
    file 'xpath.c' related to handling 'XPath' nodesets that
    could allow denial of service attacks or arbitrary code
    execution. (CVE-2011-1944)

  - A double-free error exists in the libxml2 library
    function 'xmlXPathCompOpEval' related to handling
    invalid 'XPath' expressions that could allow denial of
    service attacks or arbitrary code execution.
    (CVE-2011-2834)

  - An out-of-bounds read error exists in the libxml2
    library file 'parser.c' related to handling 'Stop'
    orders that could allow denial of service attacks.
    (CVE-2011-3905)

  - A buffer overflow error exists in the libxml2 library
    function 'xmlStringLenDecodeEntities' related to
    copying entities that could allow denial of service
    attacks or arbitrary code execution. (CVE-2011-3919)

  - An error exists in the libxml2 library related to hash
    collisions that could allow denial of service attacks.
    (CVE-2012-0841)");
  # https://kb.vmware.com/selfservice/microsites/search.do?cmd=displayKC&externalId=2020572
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3fd0011c");
  script_set_attribute(attribute:"see_also", value:"http://www.vmware.com/security/advisories/VMSA-2012-0012.html");
  script_set_attribute(attribute:"solution", value:"Apply patch ESXi500-201207101-SG.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esxi:5.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2010/10/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/07/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/11/13");

  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is (C) 2013-2018 Tenable Network Security, Inc.");
  script_family(english:"Misc.");

  script_dependencies("vmware_vsphere_detect.nbin");
  script_require_keys("Host/VMware/version", "Host/VMware/release");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

ver = get_kb_item_or_exit("Host/VMware/version");
rel = get_kb_item_or_exit("Host/VMware/release");

if ("ESXi" >!< rel) audit(AUDIT_OS_NOT, "ESXi");
if ("VMware ESXi 5.0" >!< rel) audit(AUDIT_OS_NOT, "ESXi 5.0");

match = eregmatch(pattern:'^VMware ESXi.*build-([0-9]+)$', string:rel);
if (isnull(match)) exit(1, 'Failed to extract the ESXi build number.');

build = int(match[1]);
fixed_build = 764879;

if (build < fixed_build)
{
  if (report_verbosity > 0)
  {
    report = '\n  ESXi version    : ' + ver +
             '\n  Installed build : ' + build +
             '\n  Fixed build     : ' + fixed_build +
             '\n';
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
}
else exit(0, "The host has "+ver+" build "+build+" and thus is not affected.");
VendorProductVersionCPE
vmwareesxi5.0cpe:/o:vmware:esxi:5.0

Related

nessus 64
vmware 4
openvas 64
centos 4
oraclelinux 7
redhat 7
fedora 4
ubuntu 3
debian 4
securityvulns 5
osv 2
amazon 1
gentoo 2
suse 2
veracode 6
prion 4
debiancve 5
cve 5
freebsd 1
ubuntucve 5
nessus
nessus
VMware ESX / ESXi libxml2 Multiple Vulnerabilities (VMSA-2012-0012) (remote check)
2016-02-29 00:00:00
RHEL 5 : libxml2 (RHSA-2012:0017)
2012-01-12 00:00:00
CentOS 5 : libxml2 (CESA-2012:0017)
2012-01-12 00:00:00
vmware
vmware
VMware ESXi update to third party library
2012-07-12 00:00:00
VMware ESXi update to third party library
2012-07-12 00:00:00
VMware ESX updates to ESX Service Console
2012-04-26 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2012-0017)
2015-10-06 00:00:00
CentOS Update for libxml2 CESA-2012:0017 centos5
2012-07-30 00:00:00
RedHat Update for libxml2 RHSA-2012:0017-01
2012-01-13 00:00:00
centos
centos
libxml2 security update
2012-01-11 19:19:14
libxml2 security update
2012-01-11 18:47:59
mingw32 security update
2013-02-01 00:53:30
oraclelinux
oraclelinux
libxml2 security update
2012-01-11 00:00:00
libxml2 security update
2012-01-11 00:00:00
mingw32-libxml2 security update
2013-01-31 00:00:00
redhat
redhat
(RHSA-2012:0017) Important: libxml2 security update
2012-01-11 00:00:00
(RHSA-2012:0016) Important: libxml2 security update
2012-01-11 00:00:00
(RHSA-2013:0217) Important: mingw32-libxml2 security update
2013-01-31 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: libxml2-2.7.8-9.fc17
2012-09-26 08:56:06
[SECURITY] Fedora 16 Update: libxml2-2.7.8-8.fc16
2012-09-27 04:35:19
[SECURITY] Fedora 15 Update: libxml-1.8.17-27.fc15
2011-07-02 19:29:06
ubuntu
ubuntu
libxml2 vulnerabilities
2012-01-19 00:00:00
libxml2 vulnerability
2010-11-10 00:00:00
libxml2 vulnerability
2011-06-16 00:00:00
debian
debian
[SECURITY] [DSA 2394-1] libxml2 security update
2012-01-26 22:46:37
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
2010-12-01 20:15:40
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
2010-12-01 20:15:40
securityvulns
securityvulns
libxml library security vulnerabilities
2011-12-19 00:00:00
libxml2 memory corruption
2011-10-16 00:00:00
libxml2 memory corruption
2010-11-15 00:00:00
osv
osv
libxml2 - several
2012-01-27 00:00:00
libxml2 - potential code execution
2010-12-01 00:00:00
amazon
amazon
Important: libxml2
2012-01-19 20:08:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2011-10-26 00:00:00
libxml2: User-assisted execution of arbitrary code
2012-02-29 00:00:00
suse
suse
libxml2: fixing heap-based buffer overflow (CVE-2011-3919) (important)
2012-01-19 20:08:14
Security update for libxml2 (important)
2012-01-24 18:08:16
veracode
veracode
Heap-Based Buffer Overflow
2019-05-02 04:52:19
Out-Of-Bounds Read
2019-05-02 04:52:19
Denial Of Service (Dos)
2019-01-15 08:55:09
prion
prion
Out-of-bounds
2011-12-13 21:55:00
Heap overflow
2012-01-07 11:55:00
Design/Logic Flaw
2010-11-17 01:00:00
debiancve
debiancve
CVE-2011-3919
2012-01-07 11:55:00
CVE-2011-3905
2011-12-13 21:55:00
CVE-2010-4008
2010-11-17 01:00:00
cve
cve
CVE-2011-3919
2012-01-07 11:55:00
CVE-2010-4008
2010-11-17 01:00:00
CVE-2011-3905
2011-12-13 21:55:00
freebsd
freebsd
libxml2 -- heap buffer overflow
2012-01-05 00:00:00
ubuntucve
ubuntucve
CVE-2010-4008
2010-11-08 00:00:00
CVE-2011-3905
2011-12-13 00:00:00
CVE-2011-3919
2012-01-07 00:00:00
JSON
Related for VMWARE_ESXI_5_0_BUILD_764879_REMOTE.NASL
nessus64vmware4openvas64centos4oraclelinux7redhat7fedora4ubuntu3debian4securityvulns5osv2amazon1gentoo2suse2veracode6prion4debiancve5cve5freebsd1ubuntucve5