Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.VMWARE_VMSA-2010-0010.NASL
HistoryJun 28, 2010 - 12:00 a.m.

VMSA-2010-0010 : ESX 3.5 third-party update for Service Console kernel

2010-06-2800:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
JSON

a. Service Console update for COS kernel

The service console package kernel is updated to version 2.4.21-63.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2008-5029, CVE-2008-5300, CVE-2009-1337, CVE-2009-1385, CVE-2009-1895, CVE-2009-2848, CVE-2009-3002, and CVE-2009-3547 to the security issues fixed in kernel-2.4.21-63.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-2698, CVE-2009-2692 to the security issues fixed in kernel-2.4.21-60.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from VMware Security Advisory 2010-0010. 
# The text itself is copyright (C) VMware Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(47150);
  script_version("1.25");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2008-5029", "CVE-2008-5300", "CVE-2009-1337", "CVE-2009-1385", "CVE-2009-1895", "CVE-2009-2692", "CVE-2009-2698", "CVE-2009-2848", "CVE-2009-3002", "CVE-2009-3547");
  script_bugtraq_id(32154, 34405, 35185, 35647, 35930, 36038, 36108, 36176, 36901);
  script_xref(name:"VMSA", value:"2010-0010");

  script_name(english:"VMSA-2010-0010 : ESX 3.5 third-party update for Service Console kernel");
  script_summary(english:"Checks esxupdate output for the patch");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote VMware ESX host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description",
    value:
"a. Service Console update for COS kernel

   The service console package kernel is updated to version 2.4.21-63.

   The Common Vulnerabilities and Exposures project (cve.mitre.org)
   has assigned the names CVE-2008-5029, CVE-2008-5300, CVE-2009-1337,
   CVE-2009-1385, CVE-2009-1895, CVE-2009-2848, CVE-2009-3002, and
   CVE-2009-3547 to the security issues fixed in kernel-2.4.21-63.

   The Common Vulnerabilities and Exposures project (cve.mitre.org)
   has assigned the names CVE-2009-2698, CVE-2009-2692 to the security
   issues fixed in kernel-2.4.21-60."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://lists.vmware.com/pipermail/security-announce/2010/000098.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply the missing patch.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Linux Kernel Sendpage Local Privilege Escalation');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:'CANVAS');
  script_cwe_id(16, 119, 189, 200, 264, 362, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esx:3.5");

  script_set_attribute(attribute:"vuln_publication_date", value:"2008/11/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2010/06/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/06/28");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"VMware ESX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/VMware/release", "Host/VMware/version");
  script_require_ports("Host/VMware/esxupdate", "Host/VMware/esxcli_software_vibs");

  exit(0);
}


include("audit.inc");
include("vmware_esx_packages.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/VMware/release")) audit(AUDIT_OS_NOT, "VMware ESX / ESXi");
if (
  !get_kb_item("Host/VMware/esxcli_software_vibs") &&
  !get_kb_item("Host/VMware/esxupdate")
) audit(AUDIT_PACKAGE_LIST_MISSING);


init_esx_check(date:"2010-06-24");
flag = 0;


if (esx_check(ver:"ESX 3.5.0", patch:"ESX350-201006401-SG")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:esx_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
vmwareesx3.5cpe:/o:vmware:esx:3.5

Related

vmware 1
redhat 11
oraclelinux 6
centos 6
nessus 39
openvas 64
ubuntucve 8
canvas 1
cve 8
prion 8
suse 3
osv 4
debian 4
seebug 13
veracode 9
securityvulns 3
exploitpack 3
slackware 1
fedora 1
checkpoint_security 2
packetstorm 2
ubuntu 1
android 1
vmware
vmware
ESX 3.5 third party update for Service Console kernel
2010-06-24 00:00:00
redhat
redhat
(RHSA-2009:1550) Important: kernel security and bug fix update
2009-11-03 00:00:00
(RHSA-2009:1222) Important: kernel security and bug fix update
2009-08-24 00:00:00
(RHSA-2009:1233) Important: kernel security update
2009-08-27 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2009-11-04 00:00:00
kernel security and bug fix update
2009-08-24 00:00:00
kernel security update
2009-08-24 00:00:00
centos
centos
kernel security update
2009-11-04 00:55:32
kernel security update
2009-08-24 19:35:59
kernel security update
2009-08-24 15:30:11
nessus
nessus
Scientific Linux Security Update : kernel on SL3.x i386/x86_64
2012-08-01 00:00:00
RHEL 3 : kernel (RHSA-2009:1550)
2009-11-04 00:00:00
CentOS 3 : kernel (CESA-2009:1550)
2013-06-29 00:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1550 (kernel)
2009-11-11 00:00:00
CentOS Update for kernel CESA-2009:1550 centos3 i386
2011-08-09 00:00:00
RedHat Security Advisory RHSA-2009:1550
2009-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2008-5300
2008-12-01 00:00:00
CVE-2009-3002
2009-08-28 00:00:00
CVE-2009-1895
2009-07-16 00:00:00
canvas
canvas
Immunity Canvas: PROTO_OPS_NULL
2009-08-27 17:30:00
cve
cve
CVE-2008-5300
2008-12-01 17:30:00
CVE-2009-1895
2009-07-16 15:30:00
CVE-2009-2848
2009-08-18 21:00:00
prion
prion
Design/Logic Flaw
2008-12-01 17:30:00
Memory corruption
2009-08-28 15:30:00
Null pointer dereference
2009-07-16 15:30:00
suse
suse
local privilege escalation in kernel
2009-11-16 13:03:36
local privilege escalation in kernel
2009-11-11 17:52:30
local privilege escalation in kernel
2009-08-28 14:29:52
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2009-08-16 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2009-08-24 00:00:00
linux-2.6.24 - privilege escalation
2009-08-16 00:00:00
debian
debian
[SECURITY] [DSA 1865-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-08-16 20:52:56
[SECURITY] [DSA 1872-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-08-24 18:59:59
[SECURITY] [DSA 1862-1] New Linux 2.6.26 packages fix privilege escalation
2009-08-14 19:31:31
seebug
seebug
Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit
2014-07-01 00:00:00
Linux Kernel .getname函数多个信息泄露漏洞
2009-09-02 00:00:00
Linux Kernel &lt; 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit
2009-09-01 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:31:54
Denial Of Service (DoS)
2020-04-10 00:35:41
Denial Of Service (DoS)
2020-04-10 00:40:03
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2009-08-25 00:00:00
[SECURITY] [DSA 1872-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-08-25 00:00:00
Linux kernel uninitialized pointers
2009-08-31 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure (2)
2009-08-31 00:00:00
Linux Kernel 2.6 2.6.19 (White Box 4 CentOS 4.44.5 Fedora Core 456 x86) - ip_append_data() Ring0 Privilege Escalation (1)
2009-08-31 00:00:00
Linux Kernel 2.6.19 (x86x64) - udp_sendmsg Local Privilege Escalation (2)
2009-09-02 00:00:00
slackware
slackware
kernel
2009-08-18 20:47:47
fedora
fedora
[SECURITY] Fedora 11 Update: kernel-2.6.29.6-217.2.7.fc11
2009-08-15 21:45:53
checkpoint_security
checkpoint_security
Check Point response to CVE-2009-1385
2009-07-22 21:00:00
Check Point response to Linux NULL pointer dereference vulnerability (CVE-2009-2692)
2009-08-18 21:00:00
packetstorm
packetstorm
Linux Kernel Sendpage Local Privilege Escalation
2012-07-19 00:00:00
Linux Kernel exit_notify() Local Root
2009-04-08 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2009-08-19 00:00:00
android
android
sock_sendpage
2009-08-13 00:00:00
JSON
Related for VMWARE_VMSA-2010-0010.NASL
vmware1redhat11oraclelinux6centos6nessus39openvas64ubuntucve8canvas1cve8prion8suse3osv4debian4seebug13veracode9securityvulns3exploitpack3slackware1fedora1checkpoint_security2packetstorm2ubuntu1android1