HPE Power Advisor Version Detection (Windows)

2016-09-02T00:00:00
ID OPENVAS:1361412562310809192
Type openvas
Reporter Copyright (C) 2016 Greenbone Networks GmbH
Modified 2017-04-26T00:00:00

Description

Detection of installed version of HPE Power Advisor.

The script logs in via smb, searches for

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_hpe_power_advisor_detect.nasl 6032 2017-04-26 09:02:50Z teissa $
#
# HPE Power Advisor Version Detection (Windows)
#
# Authors:
# Tushar Khelge <ktushar@secpod.com>
#
# Copyright:
# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.809192");
  script_version("$Revision: 6032 $");
  script_tag(name:"cvss_base", value:"0.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N");
  script_tag(name:"last_modification", value:"$Date: 2017-04-26 11:02:50 +0200 (Wed, 26 Apr 2017) $");
  script_tag(name:"creation_date", value:"2016-09-02 14:36:53 +0530 (Fri, 02 Sep 2016)");
  script_name("HPE Power Advisor Version Detection (Windows)");

  script_tag(name: "summary" , value: "Detection of installed version of
  HPE Power Advisor.

  The script logs in via smb, searches for 'HPE Power Advisor' in the registry,
  gets version and installation path information from the registry.");

  script_tag(name:"qod_type", value:"registry");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone Networks GmbH");
  script_family("Product detection");
  script_dependencies("secpod_reg_enum.nasl", "smb_reg_service_pack.nasl");
  script_mandatory_keys("SMB/WindowsVersion", "SMB/Windows/Arch");
  script_require_ports(139, 445);
  exit(0);
}

include("smb_nt.inc");
include("secpod_smb_func.inc");
include("cpe.inc");
include("host_details.inc");
include("version_func.inc");

## variable Initialization
os_arch = "";
hpPath = "";
hpName = "";
hpVer = "";
key = "";

## Confirm HPE product
if(!registry_key_exists(key:"SOFTWARE\Hewlett Packard Enterprise\Sizers\HPE Power Advisor") &&
   !registry_key_exists(key:"SOFTWARE\Wow6432Node\Hewlett Packard Enterprise\Sizers\HPE Power Advisor")){
  exit(0);
}

## Get OS Architecture
os_arch = get_kb_item("SMB/Windows/Arch");
if(!os_arch){
  exit(0);
}

##Key based on architecture
if("x86" >< os_arch){
  key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\";
}

# Check for 64 bit platform, Currently only 32-bit application is available
else if("x64" >< os_arch){
  key =  "SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\";
}

foreach item (registry_enum_keys(key:key))
{
  hpName = registry_get_sz(key:key + item, item:"DisplayName");

  ## Confirm the application
  if("HPE Power Advisor" >< hpName)
  {
    hpVer = registry_get_sz(key:key + item, item:"DisplayVersion");

    if(hpVer)
    {
      hpPath = registry_get_sz(key:key + item, item:"InstallLocation");
      if(!hpPath){
        hpPath = "Couldn find the install location from registry";
      }

      ## Set the version in KB
      set_kb_item(name:"HPE/Power/Advisor/Win/Ver", value:hpVer);

      ## build cpe and store it as host_detail
      cpe = build_cpe(value:hpVer, exp:"^([0-9.]+)", base:"cpe:/a:hp:power_advisor:");
      if(isnull(cpe))
        cpe = "cpe:/a:hp:power_advisor";

      ## Register Product and Build Report
      register_product(cpe:cpe, location:hpPath);

      log_message(data: build_detection_report(app: "HPE Power Advisor",
                                               version: hpVer,
                                               install: hpPath,
                                               cpe: cpe,
                                               concluded: hpVer));
    }
  }
}