Lucene search
This script is Copyright (C) 2016 Greenbone Networks GmbHOPENVAS:1361412562310106471HistoryDec 15, 2016 - 12:00 a.m.
Splunk Enterprise Multiple Vulnerabilities
2016-12-1500:00:00
This script is Copyright (C) 2016 Greenbone Networks GmbH
plugins.openvas.org
40
0.028 Low
EPSS
Percentile
89.5%
Splunk Enterprise is prone to multiple vulnerabilities.
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_splunk_enterprise_mult_vuln2.nasl 12431 2018-11-20 09:21:00Z asteins $
#
# Splunk Enterprise Multiple Vulnerabilities
#
# Authors:
# Christian Kuersteiner <[email protected]>
#
# Copyright:
# Copyright (c) 2016 Greenbone Networks GmbH
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
CPE = 'cpe:/a:splunk:splunk';
if (description)
{
script_oid("1.3.6.1.4.1.25623.1.0.106471");
script_version("$Revision: 12431 $");
script_tag(name:"last_modification", value:"$Date: 2018-11-20 10:21:00 +0100 (Tue, 20 Nov 2018) $");
script_tag(name:"creation_date", value:"2016-12-15 10:22:34 +0700 (Thu, 15 Dec 2016)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_cve_id("CVE-2016-5636", "CVE-2016-5699", "CVE-2016-0772");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"VendorFix");
script_name("Splunk Enterprise Multiple Vulnerabilities");
script_category(ACT_GATHER_INFO);
script_copyright("This script is Copyright (C) 2016 Greenbone Networks GmbH");
script_family("Web application abuses");
script_dependencies("gb_splunk_detect.nasl");
script_mandatory_keys("Splunk/installed");
script_tag(name:"summary", value:"Splunk Enterprise is prone to multiple vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Splunk Enterprise is prone to multiple Vulnerabilities in Python
(CVE-2016-5636, CVE-2016-5699, CVE-2016-0772)");
script_tag(name:"affected", value:"Splunk Enterprise 6.3.x, 6.2.x, 6.1.x, 6.0.x and 5.0.x");
script_tag(name:"solution", value:"Update to version 6.3.8, 6.2.12, 6.1.12, 6.0.13, 5.0.17 or later.");
script_xref(name:"URL", value:"https://www.splunk.com/view/SP-CAAAPSR");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if (!port = get_app_port(cpe: CPE))
exit(0);
if (!version = get_app_version(cpe: CPE, port: port))
exit(0);
if (version =~ "^6\.3") {
if (version_is_less(version: version, test_version: "6.3.8")) {
report = report_fixed_ver(installed_version: version, fixed_version: "6.3.8");
security_message(port: port, data: report);
exit(0);
}
}
if (version =~ "^6\.2") {
if (version_is_less(version: version, test_version: "6.2.12")) {
report = report_fixed_ver(installed_version: version, fixed_version: "6.2.12");
security_message(port: port, data: report);
exit(0);
}
}
if (version =~ "^6\.1") {
if (version_is_less(version: version, test_version: "6.1.12")) {
report = report_fixed_ver(installed_version: version, fixed_version: "6.1.12");
security_message(port: port, data: report);
exit(0);
}
}
if (version =~ "^6\.0") {
if (version_is_less(version: version, test_version: "6.0.13")) {
report = report_fixed_ver(installed_version: version, fixed_version: "6.0.13");
security_message(port: port, data: report);
exit(0);
}
}
if (version_is_less(version: version, test_version: "5.0.17")) {
report = report_fixed_ver(installed_version: version, fixed_version: "5.0.17");
security_message(port: port, data: report);
exit(0);
}
exit(0);
References
Related
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2016-724)
2016-10-26 00:00:00
Splunk Enterprise Multiple Vulnerabilities (Nov 2016)
2016-11-18 00:00:00
Splunk Enterprise Python Vulnerabilities
2017-01-24 00:00:00
nessus
nessus
Debian DLA-522-1 : python2.7 security update
2016-06-22 00:00:00
openSUSE Security Update : python (openSUSE-2016-906)
2016-07-28 00:00:00
Amazon Linux AMI : python26 / python27,python34 (ALAS-2016-724)
2016-07-21 00:00:00
debian
debian
[SECURITY] [DLA 522-1] python2.7 security update
2016-06-21 20:22:20
[SECURITY] [DLA 1663-1] python3.4 security update
2019-02-07 10:12:00
[SECURITY] [DLA 871-1] python3.2 security update
2017-03-25 08:53:26
mageia
mageia
Updated python packages fix security vulnerabilities
2016-06-22 19:36:39
osv
osv
python2.7 - security update
2016-06-21 00:00:00
python3.4 - security update
2019-02-07 00:00:00
python3.2 - security update
2017-03-24 00:00:00
amazon
amazon
Medium: python26, python27, python34
2016-07-20 18:00:00
oraclelinux
oraclelinux
python security, bug fix, and enhancement update
2016-11-09 00:00:00
python security and bug fix update
2017-08-07 00:00:00
python security update
2016-08-18 00:00:00
cloudfoundry
cloudfoundry
USN-3134-1: Python vulnerabilities | Cloud Foundry
2016-12-14 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2016-11-22 00:00:00
ibm
ibm
Security Bulletin: OpenSource Python Vulnerablities affect IBM Tivoli Application Dependency Discovery Manager (TADDM) (CVE-2016-5699, CVE-2016-5636)
2018-06-17 15:39:52
kaspersky
kaspersky
KLA10866 Multiple vulnerabilities in Python
2016-02-09 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: pypy3-2.4.0-3.fc22
2016-07-12 02:24:30
[SECURITY] Fedora 23 Update: python3-3.4.3-9.fc23
2016-07-05 08:27:14
[SECURITY] Fedora 23 Update: pypy3-2.4.0-3.fc23
2016-07-12 02:27:18
gentoo
gentoo
Python: Multiple vulnerabilities
2017-01-10 00:00:00
redhat
redhat
(RHSA-2016:1626) Moderate: python security update
2016-08-18 14:24:36
(RHSA-2016:1628) Moderate: python27-python security update
2016-08-18 14:44:18
(RHSA-2016:1629) Moderate: python33-python security update
2016-08-18 14:44:37
centos
centos
python, tkinter security update
2016-08-18 17:23:01
python, tkinter security update
2016-11-25 15:43:04
veracode
veracode
Integer Overflows
2020-09-21 06:29:36
CRLF Injection
2019-05-02 05:46:32
Man-in-the-Middle (MitM)
2019-01-15 09:12:44
prion
prion
Crlf injection
2016-09-02 14:59:00
Integer overflow
2016-09-02 14:59:00
Code injection
2016-09-02 14:59:00
cve
cve
hackerone
hackerone
Internet Bug Bounty: urllib HTTP header injection CVE-2016-5699
2016-09-01 20:42:07
Internet Bug Bounty: Additional information for CVE-2016-5699
2016-09-02 00:15:29
ubuntucve
ubuntucve
freebsd
freebsd
Python -- Integer overflow in zipimport module
2016-01-21 00:00:00
Python -- HTTP Header Injection in Python urllib
2014-11-24 00:00:00
Python -- smtplib StartTLS stripping vulnerability
2016-06-14 00:00:00
packetstorm
packetstorm
Ruby HTTP Header Injection
2016-06-25 00:00:00
f5
f5
K10420455 : Python urllib and urllib2 library vulnerability CVE-2016-5699
2016-12-07 00:00:00
K01955184 : Python smtplib library vulnerability CVE-2016-0772
2016-11-17 00:00:00
debiancve
debiancve
exploitpack
exploitpack
Python smtplib 2.7.11 3.4.4 3.5.1 - Man In The Middle StartTLS Stripping
2016-07-03 00:00:00
zdt
zdt
redhatcve
redhatcve
CVE-2016-0772
2016-06-14 15:18:44
exploitdb
exploitdb
Python smtplib 2.7.11 / 3.4.4 / 3.5.1 - Man In The Middle StartTLS Stripping
2016-07-03 00:00:00
suse
suse
Security update for python3 (important)
2020-01-21 00:00:00
