Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 Tenable Network Security, Inc.VMWARE_VMSA-2014-0008.NASL
HistorySep 11, 2014 - 12:00 a.m.

VMSA-2014-0008 : VMware vSphere product updates to third-party libraries

2014-09-1100:00:00
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.
www.tenable.com
37
JSON

a. vCenter Server Apache Struts Update

The Apache Struts library is updated to address a security issue.

This issue may lead to remote code execution after authentication.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2014-0114 to this issue.

b. vCenter Server tc-server 2.9.5 / Apache Tomcat 7.0.52 updates

tc-server has been updated to version 2.9.5 to address multiple security issues. This version of tc-server includes Apache Tomcat 7.0.52.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifiers CVE-2013-4590, CVE-2013-4322, and CVE-2014-0050 to these issues.

c. Update to ESXi glibc package

glibc is updated to address multiple security issues.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifiers CVE-2013-0242 and CVE-2013-1914 to these issues.

d. vCenter and Update Manager, Oracle JRE 1.7 Update 55

Oracle has documented the CVE identifiers that are addressed in JRE 1.7.0 update 55 in the Oracle Java SE Critical Patch Update Advisory of April 2014. The References section provides a link to this advisory.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from VMware Security Advisory 2014-0008. 
# The text itself is copyright (C) VMware Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(77630);
  script_version("1.30");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2013-0242", "CVE-2013-1914", "CVE-2013-4322", "CVE-2013-4590", "CVE-2014-0050", "CVE-2014-0114");
  script_bugtraq_id(57638, 58839, 63676, 64493, 65400, 65568, 65767, 65768, 66856, 66866, 66870, 66873, 66877, 66879, 66881, 66883, 66886, 66887, 66891, 66893, 66894, 66897, 66898, 66899, 66902, 66903, 66904, 66905, 66907, 66908, 66909, 66910, 66911, 66912, 66913, 66914, 66915, 66916, 66917, 66918, 66919, 66920, 67121);
  script_xref(name:"VMSA", value:"2014-0008");

  script_name(english:"VMSA-2014-0008 : VMware vSphere product updates to third-party libraries");
  script_summary(english:"Checks esxupdate output for the patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote VMware ESXi host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"a. vCenter Server Apache Struts Update

   The Apache Struts library is updated to address a security issue.  

   This issue may lead to remote code execution after authentication.

   The Common Vulnerabilities and Exposures project (cve.mitre.org)
   has assigned the identifier CVE-2014-0114 to this issue.


b. vCenter Server tc-server 2.9.5 / Apache Tomcat 7.0.52 updates

   tc-server has been updated to version 2.9.5 to address multiple 
   security issues. This version of tc-server includes Apache Tomcat 
   7.0.52.

   The Common Vulnerabilities and Exposures project (cve.mitre.org)
   has assigned the identifiers CVE-2013-4590, CVE-2013-4322, and 
   CVE-2014-0050 to these issues. 

c. Update to ESXi glibc package

   glibc is updated to address multiple security issues.

   The Common Vulnerabilities and Exposures project (cve.mitre.org)
   has assigned the identifiers CVE-2013-0242 and CVE-2013-1914 to 
   these issues. 

d. vCenter and Update Manager, Oracle JRE 1.7 Update 55

   Oracle has documented the CVE identifiers that are addressed in 
   JRE 1.7.0 update 55 in the Oracle Java SE Critical Patch Update 
   Advisory of April 2014. The References section provides a link to
   this advisory."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://lists.vmware.com/pipermail/security-announce/2014/000282.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply the missing patch.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache Struts ClassLoader Manipulation Remote Code Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esxi:5.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:esxi:5.5");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/09/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/09/11");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.");
  script_family(english:"VMware ESX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/VMware/release", "Host/VMware/version");
  script_require_ports("Host/VMware/esxupdate", "Host/VMware/esxcli_software_vibs");

  exit(0);
}


include("audit.inc");
include("vmware_esx_packages.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/VMware/release")) audit(AUDIT_OS_NOT, "VMware ESX / ESXi");
if (
  !get_kb_item("Host/VMware/esxcli_software_vibs") &&
  !get_kb_item("Host/VMware/esxupdate")
) audit(AUDIT_PACKAGE_LIST_MISSING);


init_esx_check(date:"2014-09-09");
flag = 0;


if (esx_check(ver:"ESXi 5.1", vib:"VMware:esx-base:5.1.0-2.47.2323231")) flag++;

if (esx_check(ver:"ESXi 5.5", vib:"VMware:esx-base:5.5.0-1.30.1980513")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:esx_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
vmwareesxi5.1cpe:/o:vmware:esxi:5.1
vmwareesxi5.5cpe:/o:vmware:esxi:5.5

Related

vmware 2
openvas 35
veracode 4
nessus 49
securityvulns 6
redhat 12
oraclelinux 6
centos 4
ibm 38
tomcat 2
fedora 4
mageia 3
amazon 2
ubuntu 1
seebug 2
atlassian 3
debiancve 4
github 1
ubuntucve 4
checkpoint_advisories 2
cve 4
osv 2
prion 4
debian 3
packetstorm 1
suse 1
vmware
vmware
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
openvas
openvas
VMSA-2014-0008: VMware vSphere product updates to third party libraries (remote check)
2014-09-11 00:00:00
VMware ESXi product updates to third party libraries (VMSA-2014-0008)
2014-09-11 00:00:00
VMware Security Updates for vCenter Server (VMSA-2014-0008)
2014-09-11 00:00:00
veracode
veracode
Stack-based Buffer Overflow
2019-05-02 04:44:45
XML External Entity (XXE)
2019-01-15 08:58:51
Denial Of Service (DoS)
2019-01-15 08:52:21
nessus
nessus
ESXi 5.5 < Build 1980513 glibc Library Multiple Vulnerabilities (remote check)
2014-10-09 00:00:00
VMware ESXi Multiple DoS (VMSA-2014-0008)
2015-12-30 00:00:00
Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20130424)
2013-04-26 00:00:00
securityvulns
securityvulns
GNU glibc security vulnerabilities
2013-05-09 00:00:00
[ MDVSA-2013:163 ] glibc
2013-05-09 00:00:00
Apache Tomcat multiple security vulnerabilities
2014-03-31 00:00:00
redhat
redhat
(RHSA-2013:0769) Low: glibc security and bug fix update
2013-04-24 00:00:00
(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2014:0429) Moderate: tomcat6 security update
2014-04-23 00:00:00
oraclelinux
oraclelinux
glibc security and bug fix update
2013-04-24 00:00:00
glibc security, bug fix, and enhancement update
2013-11-25 00:00:00
tomcat6 security update
2014-04-23 00:00:00
centos
centos
glibc, nscd security update
2013-04-24 21:58:40
glibc, nscd security update
2013-11-26 13:31:38
tomcat6 security update
2014-04-23 19:07:14
ibm
ibm
Security Bulletin: ClassLoader manipulation with Apache Struts (CVE-2014-0114) and Denial Of Service vulnerability in Apache Commons FileUpload (CVE-2014-0050) affect IBM Business Process Manager (BPM) V8.5.5.0
2018-06-15 07:00:58
Security Bulletin: Apache Tomcat and FileUpload Vulnerabilities in IBM UrbanCode Release (CVE-2014-0050, CVE-2013-4286, CVE-2014-0033, CVE-2013-4322, CVE-2013-4590)
2018-06-17 22:31:46
Security Bulletin: Apache Tomcat and FileUpload Vulnerabilities in IBM UrbanCode Deploy (CVE-2014-0050, CVE-2013-4286, CVE-2014-0033, CVE-2013-4322, CVE-2013-4590)
2018-06-17 22:31:44
tomcat
tomcat
Fixed in Apache Tomcat 7.0.50
2014-01-08 00:00:00
Fixed in Apache Tomcat 8.0.0-RC10
2013-12-26 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: tomcat-7.0.52-1.fc20
2014-09-26 09:02:42
[SECURITY] Fedora 17 Update: glibc-2.15-59.fc17
2013-06-02 01:58:33
[SECURITY] Fedora 18 Update: glibc-2.16-30.fc18
2013-03-30 21:30:28
mageia
mageia
Updated tomcat package fixes security vulnerabilities
2014-04-03 04:16:05
Updated tomcat package fixes security vulnerabilities
2014-04-03 04:16:05
Updated struts packages fix CVE-2014-0114
2014-05-15 02:13:20
amazon
amazon
Medium: glibc
2013-12-17 21:39:00
Medium: tomcat6
2014-05-21 10:45:00
ubuntu
ubuntu
Tomcat vulnerabilities
2014-03-06 00:00:00
seebug
seebug
Apache TomcatXML外部实体信息泄漏漏洞
2014-02-27 00:00:00
Apache Commons FileUpload/Apache Tomcat拒绝服务漏洞
2014-02-13 00:00:00
atlassian
atlassian
CVE-2013-4590 vulnerability with Tomcat 7.0.42 shipped with Crowd 2.7.2
2014-05-24 04:42:42
CVE-2013-4590 vulnerability with Tomcat 7.0.42 shipped with Crowd 2.7.2
2014-05-24 04:42:42
Security vulnerability in apache commons fileupload
2014-02-10 05:56:15
debiancve
debiancve
CVE-2013-4590
2014-02-26 14:55:00
CVE-2013-1914
2013-04-29 22:55:00
CVE-2013-0242
2013-02-08 20:55:00
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat
2022-05-14 01:10:35
ubuntucve
ubuntucve
CVE-2013-4590
2014-02-26 00:00:00
CVE-2013-0242
2013-02-08 00:00:00
CVE-2013-1914
2013-04-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Tomcat Large Chunked Transfer Denial of Service (CVE-2013-4322)
2014-03-05 00:00:00
Apache Tomcat FileUpload Content-Type Header Infinite Loop (CVE-2014-0050)
2014-03-16 00:00:00
cve
cve
CVE-2013-4590
2014-02-26 14:55:00
CVE-2013-1914
2013-04-29 22:55:00
CVE-2013-0242
2013-02-08 20:55:00
osv
osv
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat
2022-05-14 01:10:35
tomcat6 - regression update
2014-11-23 00:00:00
prion
prion
Xxe
2014-02-26 14:55:00
Stack overflow
2013-04-29 22:55:00
Buffer overflow
2013-02-08 20:55:00
debian
debian
[SECURITY] [DSA 2897-1] tomcat7 security update
2014-04-08 18:25:14
[SECURITY] [DSA 2856-1] libcommons-fileupload-java security update
2014-02-07 22:59:08
[SECURITY] [DSA 2940-1] libstruts1.2-java security update
2014-08-21 06:39:48
packetstorm
packetstorm
OSCAR EMR 15.21beta361 XSS / Disclosure / CSRF / Insecure Direct Object Reference
2018-08-23 00:00:00
suse
suse
Security update for struts (important)
2014-07-16 01:10:20
JSON
Related for VMWARE_VMSA-2014-0008.NASL
vmware2openvas35veracode4nessus49securityvulns6redhat12oraclelinux6centos4ibm38tomcat2fedora4mageia3amazon2ubuntu1seebug2atlassian3debiancve4github1ubuntucve4checkpoint_advisories2cve4osv2prion4debian3packetstorm1suse1