| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
| Man-in-the-middle Hijacking Vulnerability in Multiple Vmware Products | 16 Apr 201600:00 | – | cnvd | |
| CVE-2016-2076 | 15 Apr 201614:00 | – | cve | |
| CVE-2016-2076 | 15 Apr 201614:00 | – | cvelist | |
| EUVD-2016-3181 | 7 Oct 202500:30 | – | euvd | |
| CVE-2016-2076 | 15 Apr 201614:59 | – | nvd | |
| VMware Security Updates for vCenter Server (VMSA-2016-0004) | 15 Apr 201600:00 | – | openvas | |
| CVE-2016-2076 | 15 Apr 201614:59 | – | osv | |
| Code injection | 15 Apr 201614:59 | – | prion | |
| VMSA-2016-0004:VMware product updates address a CRITICAL security issue in the VMware Client Integration Plugin | 12 Apr 201600:00 | – | vmware | |
| VMware vCenter Server 5.5.x < 5.5u3d / 6.0.x < 6.0u2 Client Integration Plugin Session Hijacking (VMSA-2016-0004) | 26 Apr 201600:00 | – | nessus |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(90711);
script_version("1.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/10/25");
script_cve_id("CVE-2016-2076");
script_xref(name:"VMSA", value:"2016-0004");
script_name(english:"VMware vCloud Director 5.5.x < 5.5.6 Client Integration Plugin Session Hijacking (VMSA-2016-0004)");
script_summary(english:"Checks the version of VMware vCloud Director.");
script_set_attribute(attribute:"synopsis", value:
"A virtualization appliance installed on the remote host is affected by
a session hijacking vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of VMware vCloud Director installed on the remote host is
5.5.x prior to 5.5.6. It is, therefore, affected by a flaw in the
VMware Client Integration Plugin due to a failure to handle session
content in a secure manner. A remote attacker can exploit this, by
convincing a user to visit a malicious web page, to conduct a session
hijacking attack. It can also be exploited to carry out a
man-in-the-middle attack.");
script_set_attribute(attribute:"see_also", value:"https://www.vmware.com/security/advisories/VMSA-2016-0004.html");
script_set_attribute(attribute:"solution", value:
"Upgrade to VMware vCloud Director version 5.5.6 or later.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-2076");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/04/14");
script_set_attribute(attribute:"patch_publication_date", value:"2016/04/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/26");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:vmware:vcloud_director");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("vmware_vcloud_director_installed.nbin");
script_require_keys("Host/VMware vCloud Director/Version", "Host/VMware vCloud Director/Build");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
version = get_kb_item_or_exit("Host/VMware vCloud Director/Version");
build = get_kb_item_or_exit("Host/VMware vCloud Director/Build");
port = 0;
vuln_ver = "5.5.5";
fixed_ver_string = "5.5.6 Build 3764659";
if (version != vuln_ver)
audit(AUDIT_INST_VER_NOT_VULN, 'VMware vCloud Director', version + ' Build ' + build);
report = report_items_str(
report_items:make_array(
"Installed version", version + ' Build ' + build,
"Fixed version", fixed_ver_string
),
ordered_fields:make_list("Installed version", "Fixed version")
);
security_report_v4(port:port, severity:SECURITY_WARNING, extra:report);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation