Lucene search
This script is Copyright (C) 2015-2023 and is owned by Tenable, Inc. or an Affiliate thereof.XEROX_XRX15AJ.NASLHistoryDec 11, 2015 - 12:00 a.m.
Xerox WorkCentre 3550 OpenSSL Multiple Vulnerabilities (XRX15AJ) (FREAK) (POODLE)
2015-12-1100:00:00
This script is Copyright (C) 2015-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
112
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
3.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
EPSS
0.975
Percentile
100.0%
According to its model number and software version, the remote Xerox WorkCentre 3550 device is affected by multiple OpenSSL vulnerabilities :
-
A man-in-the-middle (MitM) information disclosure vulnerability, known as POODLE, exists due to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block ciphers in cipher block chaining (CBC) mode. A MitM attacker can decrypt a selected byte of a cipher text in as few as 256 tries if they are able to force a victim application to repeatedly send the same data over newly created SSL 3.0 connections.
(CVE-2014-3566) -
A security feature bypass vulnerability, known as FREAK (Factoring attack on RSA-EXPORT Keys), exists due to the support of weak EXPORT_RSA cipher suites with keys less than or equal to 512 bits. A man-in-the-middle attacker may be able to downgrade the SSL/TLS connection to use EXPORT_RSA cipher suites which can be factored in a short amount of time, allowing the attacker to intercept and decrypt the traffic. (CVE-2015-0204)
#
# (C) Tenable Network Security, Inc.
#
include('compat.inc');
if (description)
{
script_id(87323);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/23");
script_cve_id("CVE-2014-3566", "CVE-2015-0204");
script_bugtraq_id(70574, 71936);
script_xref(name:"CERT", value:"243585");
script_name(english:"Xerox WorkCentre 3550 OpenSSL Multiple Vulnerabilities (XRX15AJ) (FREAK) (POODLE)");
script_set_attribute(attribute:"synopsis", value:
"The remote multi-function device is affected by multiple
vulnerabilities.");
script_set_attribute(attribute:"description", value:
"According to its model number and software version, the remote Xerox
WorkCentre 3550 device is affected by multiple OpenSSL
vulnerabilities :
- A man-in-the-middle (MitM) information disclosure
vulnerability, known as POODLE, exists due to the way
SSL 3.0 handles padding bytes when decrypting messages
encrypted using block ciphers in cipher block chaining
(CBC) mode. A MitM attacker can decrypt a selected byte
of a cipher text in as few as 256 tries if they are able
to force a victim application to repeatedly send the
same data over newly created SSL 3.0 connections.
(CVE-2014-3566)
- A security feature bypass vulnerability, known as FREAK
(Factoring attack on RSA-EXPORT Keys), exists due to the
support of weak EXPORT_RSA cipher suites with keys less
than or equal to 512 bits. A man-in-the-middle attacker
may be able to downgrade the SSL/TLS connection to use
EXPORT_RSA cipher suites which can be factored in a
short amount of time, allowing the attacker to intercept
and decrypt the traffic. (CVE-2015-0204)");
# https://www.xerox.com/download/security/security-bulletin/30b1a-51f527aa71c0f/cert_Security_Mini-_Bulletin_XRX15AJ_for_WC3550_v1-0.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?21539c55");
script_set_attribute(attribute:"see_also", value:"https://www.imperialviolet.org/2014/10/14/poodle.html");
script_set_attribute(attribute:"see_also", value:"https://www.openssl.org/~bodo/ssl-poodle.pdf");
script_set_attribute(attribute:"see_also", value:"https://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00");
script_set_attribute(attribute:"see_also", value:"https://www.smacktls.com/#freak");
script_set_attribute(attribute:"solution", value:
"Apply the appropriate cumulative update as described in the Xerox
security bulletin in the referenced URL.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-0204");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2014-3566");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/10/14");
script_set_attribute(attribute:"patch_publication_date", value:"2015/09/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/11");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/h:xerox:workcentre");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2015-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("xerox_workcentre_detect.nasl");
script_require_keys("www/xerox_workcentre", "www/xerox_workcentre/model", "www/xerox_workcentre/ssw");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
# Get model and system software version
model = get_kb_item_or_exit("www/xerox_workcentre/model");
ver = get_kb_item_or_exit("www/xerox_workcentre/ssw");
# 3550 only affected
if (model =~ "^3550$")
fix = "25.003.33.000";
else
audit(AUDIT_HOST_NOT, "an affected Xerox WebCentre model");
if (ver_compare(ver:ver, fix:fix, strict:FALSE) >= 0)
audit(AUDIT_INST_VER_NOT_VULN, "Xerox WorkCentre " + model + " System SW", ver);
if (report_verbosity > 0)
{
report =
'\n Model : Xerox WorkCentre ' + model +
'\n Installed system software version : ' + ver +
'\n Fixed system software version : ' + fix + '\n';
security_warning(port:0, extra:report);
}
else security_warning(0);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xerox | workcentre | cpe:/h:xerox:workcentre |
Related
nessus
nessus
cisa
cisa
FREAK
2015-03-06 00:00:00
cisco
cisco
OpenSSL RSA Temporary Key Cryptographic Downgrade Vulnerability
2015-01-13 19:57:19
SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2014-10-15 18:30:00
hackerone
hackerone
debiancve
debiancve
CVE-2015-0204
2015-01-09 02:59:10
ibm
ibm
f5
f5
K16139 : OpenSSL vulnerability CVE-2015-0204
2015-10-02 00:00:00
SOL16139 - OpenSSL vulnerability CVE-2015-0204
2015-02-12 00:00:00
K15702 : SSLv3 vulnerability CVE-2014-3566
2015-09-18 00:00:00
openvas
openvas
SSL/TLS: RSA Temporary Key Handling 'RSA_EXPORT' Downgrade Issue (FREAK)
2015-03-06 00:00:00
DTLS: Deprecated DTLSv1.0 Detection
2024-01-09 00:00:00
OpenSSL Information Disclosure Vulnerability (20150319 - 4) - Windows
2021-07-29 00:00:00
thn
thn
'FREAK' — New SSL/TLS Vulnerability Explained
2015-03-03 20:30:00
cvelist
cvelist
CVE-2015-0204
2015-01-09 02:00:00
CVE-2014-3566
2014-10-15 00:00:00
veracode
veracode
Brute Force Decryption
2017-02-10 01:27:34
Information Disclosure
2017-02-07 00:05:45
ubuntucve
ubuntucve
CVE-2015-0204
2015-01-08 00:00:00
nvd
nvd
CVE-2015-0204
2015-01-09 02:59:10
cert
cert
SSL/TLS implementations accept export-grade RSA keys (FREAK attack)
2015-03-06 00:00:00
POODLE vulnerability in SSL 3.0
2014-10-17 00:00:00
prion
prion
Code injection
2015-01-09 02:59:00
checkpoint_security
checkpoint_security
Check Point response to TLS FREAK Attack (CVE-2015-0204)
2015-03-03 22:00:00
fortinet
fortinet
TLS FREAK Attack
2015-03-04 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2015-0204
2015-01-06 00:00:00
cve
cve
CVE-2015-0204
2015-01-09 02:59:10
fedora
fedora
[SECURITY] Fedora 21 Update: subscription-manager-1.13.6-1.fc21
2014-11-10 06:34:40
[SECURITY] Fedora 20 Update: claws-mail-3.11.1-2.fc20
2014-11-10 06:30:29
[SECURITY] Fedora 19 Update: claws-mail-plugins-3.11.1-1.fc19
2015-01-05 07:36:19
centos
centos
openssl security update
2014-10-16 15:21:39
redhat
redhat
(RHSA-2014:1653) Moderate: openssl security update
2014-10-16 00:00:00
(RHSA-2015:1546) Important: node.js security update
2015-08-04 00:00:00
suse
suse
Security update for suseRegister (important)
2015-01-05 21:04:43
seebug
seebug
SSL 3.0 POODLE(CVE-2014-3566)
2017-02-17 00:00:00
citrix
citrix
CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw
2014-10-14 04:00:00
amazon
amazon
Important: openssl
2014-10-14 22:32:00
osv
osv
lighttpd - security update
2015-07-25 00:00:00
kitploit
kitploit
A2SV - Auto Scanning to SSL Vulnerability
2016-08-06 14:46:00
checkpoint_advisories
checkpoint_advisories
Secure Socket Layer (SSL) Version 3.0 (CVE-2014-3566)
2014-10-15 00:00:00
debian
debian
[SECURITY] [DLA 282-1] lighttpd security update
2015-07-25 14:29:15
[SECURITY] [DSA 3489-1] lighttpd security update
2016-02-23 18:26:27
virtuozzo
virtuozzo
Important product update: Virtuozzo PowerPanel RTM Hotfix 3 (7.0.1-415)
2017-09-20 00:00:00
mageia
mageia
Updated ruby-httpclient package enables SSL negotiation
2014-11-26 20:29:06
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
3.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
EPSS
0.975
Percentile
100.0%
Related for XEROX_XRX15AJ.NASL