Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.VMWARE_VMSA-2012-0016_REMOTE.NASL
HistoryFeb 29, 2016 - 12:00 a.m.

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0016) (remote check)

2016-02-2900:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
29
JSON

The remote VMware ESX / ESXi host is missing a security-related patch.
It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several components and third-party libraries :

  • bind
  • expat
  • nspr and nss
  • python
  • vSphere API
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(89039);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id(
    "CVE-2011-4940",
    "CVE-2011-4944",
    "CVE-2012-0441",
    "CVE-2012-0876",
    "CVE-2012-1033",
    "CVE-2012-1148",
    "CVE-2012-1150",
    "CVE-2012-1667",
    "CVE-2012-3817",
    "CVE-2012-5703"
  );
  script_bugtraq_id(
    51239,
    51898,
    52379,
    52732,
    53772,
    54083,
    54658,
    56571
  );
  script_xref(name:"VMSA", value:"2012-0016");

  script_name(english:"VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0016) (remote check)");
  script_summary(english:"Checks the ESX / ESXi version and build number.");

  script_set_attribute(attribute:"synopsis", value:
"The remote VMware ESX / ESXi host is missing a security-related patch.");
  script_set_attribute(attribute:"description", value:
"The remote VMware ESX / ESXi host is missing a security-related patch.
It is, therefore, affected by multiple vulnerabilities, including
remote code execution vulnerabilities, in several components and
third-party libraries :

  - bind
  - expat
  - nspr and nss
  - python
  - vSphere API");
  script_set_attribute(attribute:"see_also", value:"http://www.vmware.com/security/advisories/VMSA-2012-0016.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the vendor advisory that
pertains to ESX version 4.1 or ESXi version  4.1.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-1667");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/11/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/11/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/02/29");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esx");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esxi");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("vmware_vsphere_detect.nbin");
  script_require_keys("Host/VMware/version", "Host/VMware/release");
  script_require_ports("Host/VMware/vsphere");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

version = get_kb_item_or_exit("Host/VMware/version");
release = get_kb_item_or_exit("Host/VMware/release");
port    = get_kb_item_or_exit("Host/VMware/vsphere");

# Version + build map
# https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1014508
fixes = make_array();
fixes["ESXi 4.1"] = 874690;
fixes["ESX 4.1"]  = 874690;

matches = eregmatch(pattern:'^VMware (ESXi?).*build-([0-9]+)$', string:release);
if (empty_or_null(matches))
  exit(1, 'Failed to extract the ESX / ESXi build number.');

type  = matches[1];
build = int(matches[2]);

fixed_build = fixes[version];

if (!isnull(fixed_build) && build < fixed_build)
{
  padding = crap(data:" ", length:8 - strlen(type)); # Spacing alignment

  report = '\n  ' + type + ' version' + padding + ': ' + version +
           '\n  Installed build : ' + build +
           '\n  Fixed build     : ' + fixed_build +
           '\n';

  security_report_v4(extra:report, port:port, severity:SECURITY_HOLE);
}
else
  audit(AUDIT_INST_VER_NOT_VULN, "VMware " + version + " build " + build);
VendorProductVersionCPE
vmwareesxcpe:/o:vmware:esx
vmwareesxicpe:/o:vmware:esxi

Related

openvas 74
vmware 1
nessus 51
oraclelinux 5
centos 5
redhat 5
securityvulns 4
veracode 5
amazon 3
ubuntu 7
f5 5
osv 2
slackware 1
debian 2
gentoo 2
fedora 2
ibm 6
checkpoint_advisories 2
prion 3
debiancve 3
cve 4
jvn 1
seebug 3
ubuntucve 2
cert 1
openvas
openvas
VMware ESXi/ESX security updates (VMSA-2012-0016)
2012-11-16 00:00:00
VMSA-2012-0016: VMware security updates for vSphere API and ESX Service Console
2012-11-16 00:00:00
Oracle: Security Advisory (ELSA-2012-0745)
2015-10-06 00:00:00
vmware
vmware
VMware security updates for vSphere API and ESX Service Console
2012-11-15 00:00:00
nessus
nessus
VMSA-2012-0016 : VMware security updates for vSphere API and ESX Service Console
2012-11-16 00:00:00
CentOS 5 : python (CESA-2012:0745)
2012-06-19 00:00:00
Oracle Linux 5 : python (ELSA-2012-0745)
2013-07-12 00:00:00
oraclelinux
oraclelinux
python security update
2012-06-18 00:00:00
python security update
2012-06-18 00:00:00
expat security update
2012-06-13 00:00:00
centos
centos
python, tkinter security update
2012-06-18 13:11:45
python, tkinter security update
2012-06-18 16:35:36
expat security update
2012-06-13 17:07:10
redhat
redhat
(RHSA-2012:0745) Moderate: python security update
2012-06-18 00:00:00
(RHSA-2012:0744) Moderate: python security update
2012-06-18 00:00:00
(RHSA-2012:0717) Important: bind97 security update
2012-06-07 00:00:00
securityvulns
securityvulns
[ MDVSA-2012:096-1 ] python
2012-07-09 00:00:00
expat security vulnerability
2012-04-02 00:00:00
python multiple security vulnerabilities
2012-07-29 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:41:53
Information Disclosure
2019-05-02 04:41:53
Denial Of Service (DoS)
2019-05-02 04:41:51
amazon
amazon
Low: python26
2012-07-05 16:16:00
Medium: expat
2012-06-19 15:59:00
Important: bind
2012-06-10 11:47:00
ubuntu
ubuntu
XML-RPC for C and C++ vulnerabilities
2012-09-10 00:00:00
Python 2.7 vulnerabilities
2012-10-02 00:00:00
Bind vulnerabilities
2012-06-05 00:00:00
f5
f5
SOL16949 - Expat vulnerabilities CVE-2012-0876 and CVE-2012-1148
2015-07-10 00:00:00
K16949 : Expat vulnerabilities CVE-2012-0876 and CVE-2012-1148
2015-07-11 00:00:00
K75910138 : Python vulnerabilities CVE-2011-1521, CVE-2011-4940, CVE-2011-4944, CVE-2012-0845, and CVE-2012-1150
2018-09-11 00:00:00
osv
osv
expat - several
2012-08-06 00:00:00
python2.6 - security update
2014-07-31 00:00:00
slackware
slackware
[slackware-security] bind
2012-06-14 23:45:02
debian
debian
[SECURITY] [DSA 2525-1] expat security update
2012-08-06 20:37:11
[DLA 25-1] python2.6 security update
2014-07-31 21:07:32
gentoo
gentoo
BIND: Multiple vulnerabilities
2012-09-24 00:00:00
Expat: Multiple vulnerabilities
2012-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: bind-9.9.1-5.P2.fc17
2012-08-09 23:14:49
[SECURITY] Fedora 16 Update: bind-9.8.3-3.P2.fc16
2012-08-09 22:53:15
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server that is shipped with IBM Rational ClearQuest (CVE-2012-0876, CVE-2012-1148, CVE-2016-4472, CVE-2016-0718)
2020-02-04 16:40:40
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM Rational ClearCase (CVE-2012-0876, CVE-2012-1148, CVE-2016-4472, CVE-2016-0718)
2018-07-10 08:34:12
Security Bulletin: Multiple Denial of Service vulnerabilities with Expat may affect IBM HTTP Server
2022-09-08 00:09:56
checkpoint_advisories
checkpoint_advisories
VMware ESX and ESXi Server SOAP Request Handling Denial Of Service (CVE-2012-5703)
2013-04-18 00:00:00
VMware ESX and ESXi Server SOAP Request Handling Denial Of Service - Ver2 (CVE-2012-5703)
2015-05-18 00:00:00
prion
prion
Cross site scripting
2012-06-27 10:18:00
Cross site request forgery (csrf)
2012-11-20 05:52:00
Race condition
2012-08-27 23:55:00
debiancve
debiancve
CVE-2011-4940
2012-06-27 10:18:00
CVE-2011-4944
2012-08-27 23:55:00
CVE-2012-1033
2012-02-08 20:55:00
cve
cve
CVE-2012-5703
2012-11-20 05:52:00
CVE-2011-4940
2012-06-27 10:18:00
CVE-2011-4944
2012-08-27 23:55:00
jvn
jvn
JVN#51176027: Python SimpleHTTPServer vulnerable to cross-site scripting
2012-06-19 00:00:00
seebug
seebug
Python SimpleHTTPServer 'list_directory()'函数跨站脚本漏洞
2012-06-23 00:00:00
python 'distutils' Component '~/.pypirc'本地竞争条件漏洞
2012-03-29 00:00:00
ISC BIND安全限制绕过漏洞(CVE-2012-1033)
2012-02-09 00:00:00
ubuntucve
ubuntucve
CVE-2011-4944
2012-08-27 00:00:00
CVE-2012-1033
2012-02-08 00:00:00
cert
cert
ISC BIND 9 resolver cache vulnerability
2012-02-08 00:00:00
JSON
Related for VMWARE_VMSA-2012-0016_REMOTE.NASL
openvas74vmware1nessus51oraclelinux5centos5redhat5securityvulns4veracode5amazon3ubuntu7f55osv2slackware1debian2gentoo2fedora2ibm6checkpoint_advisories2prion3debiancve3cve4jvn1seebug3ubuntucve2cert1