Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2020 Tenable Network Security, Inc.VMWARE_WORKSTATION_LINUX_10_0_6.NASL
HistoryJun 16, 2015 - 12:00 a.m.

VMware Workstation 10.x < 10.0.6 RPC Command DoS (VMSA-2015-0004) (Linux)

2015-06-1600:00:00
This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.
www.tenable.com
16

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.008 Low

EPSS

Percentile

81.3%

JSON

The version of VMware Workstation installed on the remote Linux host is 10.x prior to 10.0.6. It is, therefore, affected by a denial of service vulnerability due to improper validation of user-supplied input to a remote procedure call (RPC) command. An unauthenticated, remote attacker can exploit this, via a crafted command, to crash the host or guest operating systems.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(84222);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/09/21");

  script_cve_id("CVE-2015-2341");
  script_bugtraq_id(75094);
  script_xref(name:"VMSA", value:"2015-0004");

  script_name(english:"VMware Workstation 10.x < 10.0.6 RPC Command DoS (VMSA-2015-0004) (Linux)");
  script_summary(english:"Checks the VMware Workstation version.");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has a virtualization application installed that is
affected by a denial of service vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of VMware Workstation installed on the remote Linux host
is 10.x prior to 10.0.6. It is, therefore, affected by a denial of
service vulnerability due to improper validation of user-supplied
input to a remote procedure call (RPC) command. An unauthenticated,
remote attacker can exploit this, via a crafted command, to crash the
host or guest operating systems.");
  script_set_attribute(attribute:"see_also", value:"http://www.vmware.com/security/advisories/VMSA-2015-0004.html");
  script_set_attribute(attribute:"solution", value:"Upgrade to VMware Workstation version 10.0.6 or later.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-2341");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/06/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/06/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/06/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:vmware:workstation");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.");
  script_family(english:"General");

  script_dependencies("vmware_workstation_linux_installed.nbin");
  script_require_keys("Host/uname", "Host/VMware Workstation/Version");
  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

if ("linux" >!< tolower(get_kb_item("Host/uname")))
  audit(AUDIT_OS_NOT, "Linux");

version = get_kb_item_or_exit("Host/VMware Workstation/Version");

fixed  = "10.0.6";
if (version =~ "^10\." && ver_compare(ver:version, fix:fixed, strict:FALSE) == -1)
{
  report +=
    '\n  Installed version : ' + version +
    '\n  Fixed version     : ' + fixed +
    '\n';
  security_report_v4(port:0, extra:report, severity:SECURITY_HOLE);
}
else audit(AUDIT_INST_VER_NOT_VULN, "VMware Workstation", version);
VendorProductVersionCPE
vmwareworkstationcpe:/a:vmware:workstation

Related

nessus 4
openvas 5
prion 1
cvelist 1
nvd 1
cve 1
vmware 1
securityvulns 2
kaspersky 1
nessus
nessus
VMware Fusion 6.x < 6.0.6 / 7.x < 7.0.1 RPC Command DoS
2015-06-16 00:00:00
VMware Player 6.x < 6.0.6 RPC Command DoS (VMSA-2015-0004) (Linux)
2015-06-16 00:00:00
VMware Workstation 10.x < 10.0.5 Multiple Vulnerabilities (VMSA-2015-0001 / VMSA-2015-0004) (Windows)
2015-02-05 00:00:00
openvas
openvas
VMware Player 'RPC Command' Denial of Service Vulnerability - Linux
2017-04-07 00:00:00
VMware Fusion 'RPC Command' Denial of Service Vulnerability - Mac OS X
2017-04-07 00:00:00
VMware Player 'RPC Command' Denial of Service Vulnerability - Windows
2017-04-07 00:00:00
prion
prion
Command injection
2015-06-13 14:59:00
cvelist
cvelist
CVE-2015-2341
2015-06-13 14:00:00
nvd
nvd
CVE-2015-2341
2015-06-13 14:59:04
cve
cve
CVE-2015-2341
2015-06-13 14:59:04
vmware
vmware
VMware Workstation, Fusion and Horizon View Client updates address critical security issues
2015-06-09 00:00:00
securityvulns
securityvulns
VMWare applications multiple security vulnereabilities
2015-06-14 00:00:00
NEW VMSA-2015-0004 - VMware Workstation, Fusion and Horizon View Client updates address critical security issues
2015-06-14 00:00:00
kaspersky
kaspersky
KLA10597 Multiple vulnerabilities in VMware products
2015-06-09 00:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.008 Low

EPSS

Percentile

81.3%

JSON
Related for VMWARE_WORKSTATION_LINUX_10_0_6.NASL
nessus4openvas5prion1cvelist1nvd1cve1vmware1securityvulns2kaspersky1