Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.VMWARE_VCENTER_VMSA-2014-0012.NASL
HistoryDec 12, 2014 - 12:00 a.m.

VMware Security Updates for vCenter Server (VMSA-2014-0012)

2014-12-1200:00:00
This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
www.tenable.com
14
JSON

The VMware vCenter Server installed on the remote host is version 5.0 prior to Update 3c, 5.1 prior to Update 3, or 5.5 prior to Update 2.
It is, therefore, affected by multiple vulnerabilities in third party libraries :

  • Due to improper certificate validation when connecting to a CIM server on an ESXi host, an attacker can perform man-in-the-middle attacks. (CVE-2014-8371)

  • The bundled version of Oracle JRE is prior to 1.6.0_81 and thus is affected by multiple vulnerabilities. Note that this only affects version 5.1 and 5.0 of vCenter but is only fixed in 5.1 Update 3.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(79865);
  script_version("1.9");
  script_cvs_date("Date: 2018/11/15 20:50:24");

  script_cve_id(
    "CVE-2014-0015",
    "CVE-2014-0138",
    "CVE-2014-0191",
    "CVE-2014-2483",
    "CVE-2014-2490",
    "CVE-2014-4208",
    "CVE-2014-4209",
    "CVE-2014-4216",
    "CVE-2014-4218",
    "CVE-2014-4219",
    "CVE-2014-4220",
    "CVE-2014-4221",
    "CVE-2014-4223",
    "CVE-2014-4227",
    "CVE-2014-4244",
    "CVE-2014-4247",
    "CVE-2014-4252",
    "CVE-2014-4262",
    "CVE-2014-4263",
    "CVE-2014-4264",
    "CVE-2014-4265",
    "CVE-2014-4266",
    "CVE-2014-4268",
    "CVE-2014-8371"
  );
  script_bugtraq_id(
    65270,
    66457,
    67233,
    68562,
    68571,
    68576,
    68580,
    68583,
    68590,
    68596,
    68599,
    68603,
    68608,
    68612,
    68615,
    68620,
    68624,
    68626,
    68632,
    68636,
    68639,
    68642,
    68645,
    71493
  );
  script_xref(name:"VMSA", value:"2014-0012");

  script_name(english:"VMware Security Updates for vCenter Server (VMSA-2014-0012)");
  script_summary(english:"Checks the version of VMware vCenter.");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has a virtualization management application installed
that is affected by multiple security vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The VMware vCenter Server installed on the remote host is version 5.0
prior to Update 3c, 5.1 prior to Update 3, or 5.5 prior to Update 2.
It is, therefore, affected by multiple vulnerabilities in third party
libraries :

  - Due to improper certificate validation when connecting
    to a CIM server on an ESXi host, an attacker can
    perform man-in-the-middle attacks. (CVE-2014-8371)

  - The bundled version of Oracle JRE is prior to 1.6.0_81
    and thus is affected by multiple vulnerabilities. Note
    that this only affects version 5.1 and 5.0 of vCenter
    but is only fixed in 5.1 Update 3.");
  script_set_attribute(attribute:"see_also", value:"https://www.vmware.com/security/advisories/VMSA-2014-0012.html");
  script_set_attribute(attribute:"see_also", value:"http://lists.vmware.com/pipermail/security-announce/2014/000283.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to VMware vCenter Server 5.5u2 (5.5.0 build-2001466) / 5.1u3
(5.1.0 build-2306353) / 5.0u3c (5.0.0 build-2210222) or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/01/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/09/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/12/12");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:vmware:vcenter_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.");

  script_dependencies("vmware_vcenter_detect.nbin");
  script_require_keys("Host/VMware/vCenter", "Host/VMware/version", "Host/VMware/release");
  script_require_ports("Services/www", 80, 443);

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

port = get_kb_item_or_exit("Host/VMware/vCenter");
version = get_kb_item_or_exit("Host/VMware/version");
release = get_kb_item_or_exit("Host/VMware/release");

# Extract and verify the build number
build = ereg_replace(pattern:'^VMware vCenter Server [0-9\\.]+ build-([0-9]+)$', string:release, replace:"\1");
if (build !~ '^[0-9]+$') exit(1, 'Failed to extract the build number from the release string.');

release = release - 'VMware vCenter Server ';
fixversion = NULL;

# Check version and build numbers
if (version =~ '^VMware vCenter 5\\.0$' && int(build) < 2210222) fixversion = '5.0.0 build-2210222';
else if (version =~ '^VMware vCenter 5\\.1$' && int(build) < 2306353) fixversion = '5.1.0 build-2306353';
else if (version =~ '^VMware vCenter 5\\.5$' && int(build) < 2001466) fixversion = '5.5.0 build-2001466';
else audit(AUDIT_LISTEN_NOT_VULN, 'VMware vCenter', port, release);

if (report_verbosity > 0)
{
  report =
    '\n  Installed version : ' + release +
    '\n  Fixed version     : ' + fixversion +
    '\n';
  security_hole(port:port, extra:report);
}
else security_hole(port);
VendorProductVersionCPE
vmwarevcenter_servercpe:/a:vmware:vcenter_server

References

Related

nessus 48
suse 4
openvas 49
kaspersky 1
redhat 10
ibm 40
debian 3
ubuntu 4
oraclelinux 4
centos 4
mageia 2
amazon 3
aix 1
osv 2
cve 5
ubuntucve 5
prion 5
debiancve 1
alpinelinux 1
fedora 2
securityvulns 1
vmware 2
f5 2
nessus
nessus
Oracle Java SE Multiple Vulnerabilities (July 2014 CPU)
2014-07-16 00:00:00
Puppet Enterprise 3.3.0 Bundled Oracle Java Vulnerabilities
2014-08-20 00:00:00
Debian DSA-2987-1 : openjdk-7 - security update
2014-07-26 00:00:00
suse
suse
Security update for openjdk (important)
2014-08-04 19:04:23
Security update for java-1_5_0-ibm (important)
2015-02-25 19:05:32
Security update for java-1_7_0-ibm (important)
2015-02-21 01:05:45
openvas
openvas
SUSE: Security Advisory for openjdk (SUSE-SU-2014:0961-1)
2015-10-16 00:00:00
Debian: Security Advisory (DSA-2987-1)
2014-07-22 00:00:00
Ubuntu: Security Advisory (USN-2319-1)
2014-08-20 00:00:00
kaspersky
kaspersky
KLA10507 Multiple vulnerabilities in Oracle products
2014-07-17 00:00:00
redhat
redhat
(RHSA-2014:0902) Critical: java-1.7.0-oracle security update
2014-07-18 01:28:56
(RHSA-2014:0890) Important: java-1.7.0-openjdk security update
2014-07-16 00:00:00
(RHSA-2014:0889) Critical: java-1.7.0-openjdk security update
2014-07-16 00:00:00
ibm
ibm
Security Bulletin: July 2014 Java Runtime Environment (JRE) Vulnerabilities in Multiple N series Products
2018-06-18 00:32:15
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Support Assistant Team Server July 2014 CPU
2018-06-15 07:01:18
Security Bulletin: Multiple vulnerabilities in the IBM SDK Java™ Technology for IBM i
2019-12-18 14:26:38
debian
debian
[SECURITY] [DSA 2987-1] openjdk-7 security update
2014-07-23 19:51:55
[SECURITY] [DSA 2980-1] openjdk-6 security update
2014-07-17 16:00:25
[SECURITY] [DLA 96-1] openjdk-6 security update
2014-11-28 10:26:06
ubuntu
ubuntu
OpenJDK 7 update
2014-09-17 00:00:00
OpenJDK 7 regression
2014-08-26 00:00:00
OpenJDK 7 vulnerabilities
2014-08-20 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2014-07-16 00:00:00
java-1.7.0-openjdk security update
2014-07-16 00:00:00
java-1.6.0-openjdk security and bug fix update
2014-07-21 00:00:00
centos
centos
java security update
2014-07-16 10:46:11
java security update
2014-07-16 10:53:36
java security update
2014-07-21 18:20:14
mageia
mageia
Updated java-1.7.0-openjdk packages fix multiple vulnerabilities
2014-07-26 15:03:50
Updated curl packages fix multiple vulnerabilities
2014-04-03 04:56:35
amazon
amazon
Critical: java-1.7.0-openjdk
2014-07-23 14:01:00
Important: java-1.6.0-openjdk
2014-07-31 13:52:00
Medium: curl
2014-04-10 23:54:00
aix
aix
Multiple vulnerabilities in current releases of the IBM SDK Java Technology Edition
2014-08-18 14:04:26
osv
osv
openjdk-6 - security update
2014-11-28 00:00:00
CVE-2014-0138
2014-04-15 14:55:00
cve
cve
CVE-2014-4223
2014-07-17 05:10:00
CVE-2014-4208
2014-07-17 05:10:00
CVE-2014-4220
2014-07-17 05:10:00
ubuntucve
ubuntucve
CVE-2014-4223
2014-07-17 00:00:00
CVE-2014-2483
2014-07-17 00:00:00
CVE-2014-4220
2014-07-17 00:00:00
prion
prion
Design/Logic Flaw
2014-07-17 05:10:00
Design/Logic Flaw
2014-07-17 05:10:00
Buffer overflow
2014-07-17 05:10:00
debiancve
debiancve
CVE-2014-0138
2014-04-15 14:55:00
alpinelinux
alpinelinux
CVE-2014-0138
2014-04-15 14:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: curl-7.32.0-8.fc20
2014-03-31 02:15:35
[SECURITY] Fedora 19 Update: curl-7.29.0-17.fc19
2014-03-31 02:12:04
securityvulns
securityvulns
NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
2014-12-11 00:00:00
vmware
vmware
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
f5
f5
K15862 : Multiple cURL and libcurl vulnerabilities CVE-2014-0015, CVE-2014-0138, and CVE-2014-0139
2014-11-25 00:00:00
SOL15862 - Multiple cURL and libcurl vulnerabilities CVE-2014-0015, CVE-2014-0138, and CVE-2014-0139
2014-11-25 00:00:00
JSON
Related for VMWARE_VCENTER_VMSA-2014-0012.NASL
nessus48suse4openvas49kaspersky1redhat10ibm40debian3ubuntu4oraclelinux4centos4mageia2amazon3aix1osv2cve5ubuntucve5prion5debiancve1alpinelinux1fedora2securityvulns1vmware2f52