MySQL 5.6.x < 5.6.37 Multiple Vulnerabilities (RPM Check) (July 2017 CPU) (October 2017 CPU)

The version of MySQL running on the remote host is 5.6.x prior to 5.6.37. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the Memcached component that allows an unauthenticated, remote attacker to impact integrity and availability. CVE-2017-3633 - Multiple...

Debian DLA-472-2 : icedove regression update

The security update for icedove did not build on armhf. This is resolved by this upload. The text of the original DLA follows : Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client. Multiple memory safety errors may lead to the execution of...

MS14-071: Vulnerability in Windows Audio Service Could Allow Elevation of Privilege (3005607)

The remote Windows host is affected by a vulnerability in the Windows Audio service component that allows privilege escalation. A remote attacker could exploit this vulnerability to elevate privileges but not execute code. C Tenable Network Security, Inc. include"compat.inc"; if description...

MS08-037: Vulnerabilities in DNS Could Allow Spoofing (951746) (uncredentialed check)

According to its self-reported version number, the Microsoft DNS Server running on the remote host contains issues in the DNS library that could allow an attacker to send malicious DNS responses to DNS requests made by the remote host thereby spoofing or redirecting internet traffic from legitima...

IBM Rational ClearQuest 7.x < 7.1.2.7 / 8.0.0.x < 8.0.0.3 Multiple Vulnerabilities (credentialed check)

The remote host has a version of IBM Rational ClearQuest 7.x prior to 7.1.2.7 / 8.0.0.x prior to 8.0.0.3 installed. It is, therefore, affected by the following vulnerabilities : - A cross-site scripting vulnerability exists that can be exploited by an attacker by tricking a victim into opening a...

SQL Dump Files Disclosed via Web Server

The remote web server hosts publicly available files that contain SQL instructions. These files are most likely database dumps and may contain sensitive information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Oracle Java SE Multiple Vulnerabilities (January 2023 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component:...

AlmaLinux 8 : mariadb-connector-c (ALSA-2020:5503)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:5503 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior...

CentOS 7 : kernel (RHSA-2020:5437)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5437 advisory. - The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs...

RHEL 7 : nss and nspr (RHSA-2020:4076)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4076 advisory. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server...

Microsoft Office Trust Access to VBA Project Model Object Enabled

A Microsoft Office application installed on the remote host has trust access to VBA project model object enabled. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is copyright C Microsof...

Security Updates for Windows 10 / Windows Server 2019 (February 2019) (Spectre) (Meltdown) (Foreshadow)

The remote Windows host is missing a security update. It is, therefore, missing microcode updates to address the following vulnerabilities: - Spectre Variant 3a CVE-2018-3640: Rogue System Register Read RSRE. - Spectre Variant 4 CVE-2018-3639: Speculative Store Bypass SSB - L1TF CVE-2018-3620,...

Intel Management Engine Authentication Bypass (INTEL-SA-00075) (remote check)

Binary data intelamtauthbypass.nbin...

Amazon Web Services EC2 Instance Metadata Enumeration (Unix)

The remote host appears to be an Amazon Machine Image. Nessus was able to use the metadata API to collect information about the system. TRUSTED...

IBM HTTP Server SSL/TLS RC4 Stream Cipher Key Invariance (Bar Mitzvah)

According to its banner, the version of IBM HTTP Server running on the remote host is affected by a security feature bypass vulnerability, known as Bar Mitzvah, due to improper combination of state data with key data by the RC4 cipher algorithm during the initialization phase. A man-in-the-middle...

MS15-116: Security Update for Microsoft Office to Address Remote Code Execution (3104540)

The remote Windows host has a version of Microsoft Office, Access, Excel, InfoPath, OneNote, PowerPoint, Project, Publisher, Visio, Word, Excel Viewer, Word Viewer, SharePoint Server, Office Compatibility Pack, Office Web Apps, Skype for Business, or Lync installed that is affected by multiple...

Debian DSA-1871-1 : wordpress - several vulnerabilities

Several vulnerabilities have been discovered in wordpress, weblog manager. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-6762 It was discovered that wordpress is prone to an open redirect vulnerability which allows remote attackers to conduct...

Microsoft Windows SMB Blank Administrator Password

The remote host is running one of the Microsoft Windows operating systems. It was possible to log into it using the administrator account with a blank password. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid26918; scriptversion"1.20"; scriptcvsdate"Date: 2018/07/27...

VMware vCenter Server 7.x < 7.0 U3t / 8.x < 8.0.3 U3d Multiple Vulnerabilities (VMSA-2024-0019)

The version of VMware vCenter Server installed on the remote host is 7.x prior to 7.0 U3t or 8.x prior to 8.0 U3d. It is, therefore, affected by multiple vulnerabilities as referenced in the VMSA-2024-0019 advisory: - The vCenter Server contains a heap-overflow vulnerability in the implementation...

PHP 8.2.x < 8.2.9 Multiple Vulnerabilities

The version of PHP installed on the remote host is prior to 8.2.9. It is, therefore, affected by multiple vulnerabilities as referenced in the Version 8.2.9 advisory. - In PHP versions 8.0. before 8.0.30, 8.1. before 8.1.22, and 8.2. before 8.2.8 various XML functions rely on libxml global state ...

Microsoft Message Queuing RCE (CVE-2023-21554, QueueJumper)

Binary data msmq2023-04.nbin...

Security Updates for Microsoft .NET Framework (February 2023)

The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities, as follows: - A denial of service DoS vulnerability. CVE-2023-21722 - A remote code execution vulnerability. CVE-2023-21808 %NASLMINLEVEL 80900 C...

Oracle Business Intelligence Publisher (OAS) (Jan 2023 CPU)

The versions of Oracle Business Intelligence Enterprise Edition OAS installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware...

F5 BIG-IP RCE (CVE-2022-1388)

Binary data f5cve-2022-1388.nbin...

CentOS 7 : polkit (RHSA-2022:0274)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0274 advisory. - A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users ...

Oracle Java SE 1.7.0_291 / 1.8.0_281 / 1.11.0_10 / 1.15.0_2 Information Disclosure (Windows Jan 2021 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 7 Update 291, 8 Update 281, 11 Update 10, or 15 Update 2. It is, therefore, affected by an information disclosure vulnerability as referenced in the January 2021 CPU advisory. Specifically, an...

Scientific Linux Security Update : php on SL7.x x86_64 (20191031)

Security Fixes : - php: underflow in envpathinfo in fpmmain.c CVE-2019-11043 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid130447; scriptversion"1.11";...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3565)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3565 advisory. - KEYS: Fix ASN.1 indefinite length object parsing This fixes CVE-2016-0758. David Howells Orabug: 23279020 CVE-2016-0758 - net: add validation for...

IBM WebSphere Application Server 8.5 < Fix Pack 8.5.5.2 Multiple Vulnerabilities

IBM WebSphere Application Server 8.5 prior to Fix Pack 8.5.5.2 appears to be running on the remote host and is, therefore, potentially affected by the following vulnerabilities : - Numerous errors exist related to the included IBM SDK for Java based on the Oracle JDK that could allow denial of...

Fedora 18 : kernel-3.8.3-201.fc18 (2013-3893)

The stable 3.8.3 update contains a large number of important fixes across the kernel tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

Scientific Linux Security Update : mysql on SL4.x i386/x86_64

CVE-2008-4098 mysql: incomplete upstream fix for CVE-2008-2079 CVE-2008-4456 mysql: mysql command line client XSS flaw CVE-2009-2446 MySQL: Format string vulnerability by manipulation with database instances crash CVE-2009-4030 mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098 Multiple flaw...

COM+ Internet Services (CIS) Server Detection

COM+ Internet Services are RPC over HTTP tunneling and require IIS to operate. CIS ports shouldn't be visible on internet but only behind a firewall. This script was written by Georges Dagousset See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title 10/12/09...

htgrep hdr Parameter Arbitrary File access

The 'htgrep' cgi is installed. This CGI has a well known security flaw that lets anyone read arbitrary files with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription...

Dell Client BIOS DoS (DSA-2023-467)

The Dell BIOS on the remote device is missing a security patch and is, therefore, affected by an improper NULL termination vulnerability that can result in a denial of service DoS condition. A high-privilege user with network access to the affected device can send malicious data to the device in...

Amazon Linux 2 : java-11-amazon-corretto (ALAS-2020-1410)

The version of java-11-amazon-corretto installed on the remote host is prior to 11.0.7+10-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1410 advisory. Further information about this update can be found in the Corretto 11 change log...

KB4551762: Windows 10 Version 1903 and Windows 10 Version 1909 OOB Security Update (ADV200005)(CVE-2020-0796)

The remote Windows host is missing security update 4551762. It is, therefore, affected by a remote code execution vulnerability. The vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests. An attacker who successfully exploited the...

iLO 2 2.29 Remote Code Execution Vulnerability

A remote command execution vulnerability exists in Integrated Lights-Out 2 iLO 2 version 2.29 due to insufficient access control. An unauthenticated, remote attacker can exploit this to bypass authentication, execute arbitrary commands or cause a denial of service. C Tenable Network Security, Inc...

RHEL 7 : kernel-rt (RHSA-2017:3322)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3322 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

Default Password 'anko' for 'root' Account

The account 'root' on the remote host has the default password 'anko'. A remote attacker can exploit this issue to gain administrative access to the affected system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "root"; password = "anko"; include'deprecatednasllevel.inc';...

PostgreSQL Unsupported Version Detection

According to its self-reported version number, the installation of PostgreSQL on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. %NASLMINLEVE...

openSUSE Security Update : libfreebl3 (openSUSE-SU-2010:0100-1)

Mozilla NSS was updated to version 3.12.6. This fixes all currently known issues in mozilla-nss, and also implements the new TLS/SSL renegotiation handling CVE-2009-3555. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fro...

Apache CouchDB Unauthenticated Administrative Access

Nessus was able to perform administrative actions on the remote CouchDB server without providing authentication. A remote attacker could exploit this to take control of the CouchDB server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid45434; scriptversion"$Revision:...

Oracle Java SE Multiple Vulnerabilities (July 2023 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java...

MariaDB 10.3.0 < 10.3.39

The version of MariaDB installed on the remote host is prior to 10.3.39. It is, therefore, affected by a vulnerability as referenced in the 10.3.39 advisory. - MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spiderdbmbase::printwarnings to...

RHEL 8 : firefox (RHSA-2022:5477)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:5477 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

RHEL 7 : kernel (RHSA-2019:4168)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:4168 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: brcmfmac heap buffer overflow in...

Atlassian Jira 4.4.x < 7.6.14 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 4.4.x 7.6.14, 7.7.x 7.13.5, 8.0.x 8.0.3, 8.1.x 8.1.2, 8.2.x 8.2.3. It is, therefore, affected by a server-side template injection vulnerability that exists in the ContactAdministrators and...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4200)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-4200 advisory. - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459728 CVE-2018-7566 - ALSA: seq: Fix racy pool initializations Takashi Iwai Orabug: 28459728...

RHEL 7 : java-1.8.0-oracle (RHSA-2018:2253)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2253 advisory. Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades...

Ubuntu 14.04 LTS / 16.04 LTS : NTP vulnerabilities (USN-3349-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3349-1 advisory. Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to caus...