Security Updates for Outlook C2R DoS (August 2022)

The Microsoft Outlook application installed on the remote host is missing a security update. It is, therefore, affected by a denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services. Note that Nessus has not...

AlmaLinux 8 : php:7.4 (ALSA-2022:1935)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1935 advisory. php: Local privilege escalation via PHP-FPM CVE-2021-21703 php: SSRF bypass in FILTERVALIDATEURL CVE-2021-21705 Tenable has extracted the preceding...

RHEL 6 : kernel (RHSA-2020:1524)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1524 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: rtlp2pnoaie in...

Atlassian Jira 4.4.x < 7.6.14 Template Injection Vulnerability

According to its self-reported version number, the Atlassian Jira application running on the remote host is 4.4.x 7.6.14, 7.7.x 7.13.5, 8.0.x 8.0.3, 8.1.x 8.1.2, 8.2.x 8.2.3. It is, therefore, affected by a server-side template injection vulnerability that exists in the ContactAdministrators and...

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1266)

According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An address corruption flaw was discovered in the Linux kernel built with hardware breakpoint CONFIGHAVEHWBREAKPOINT support. While...

Apache ActiveMQ Web Console Missing X-Frame-Options Clickjacking

The version of Apache ActiveMQ running on the remote host is affected by a clickjacking vulnerability in the web-based administration console due to not setting the X-Frame-Options header in HTTP responses. A remote attacker can exploit this to trick a user into executing administrative tasks. No...

Java Debug Wire Protocol Detection

A Java Debug Wire Protocol JDWP server was detected on the remote host. This is a network protocol that allows debugging of a remote Java virtual machine. Authentication is not required to access this service. A remote, unauthenticated attacker could connect to this service and execute arbitrary...

CentOS 5 : php53 (CESA-2011:1423)

Updated php53 and php packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

Spring Framework Spring4Shell (CVE-2022-22965)

Binary data spring4shell.nbin...

RHEL 7 : Red Hat Virtualization Engine security, 4.3.9 (Low) (RHSA-2020:1308)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1308 advisory. The org.ovirt.engine-root is a core component of oVirt. The following packages have been upgraded to a later upstream version:...

KB4457131: Windows 10 Version 1607 and Windows Server 2016 September 2018 Security Update

The remote Windows host is missing security update 4457131. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way...

MySQL Enterprise Monitor 3.1.x < 3.1.7.8023 / 3.2.x < 3.2.7.1204 / 3.3.x < 3.3.3.1199 Multiple Vulnerabilities (April 2017 CPU)

According to its self-reported version, the MySQL Enterprise Monitor application running on the remote host is 3.1.x prior to 3.1.7.8023, 3.2.x prior to 3.2.7.1204, or 3.3.x prior to 3.3.3.1199. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in...

Ubuntu 14.04 LTS / 16.04 LTS : MySQL vulnerability (USN-3078-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3078-1 advisory. Dawid Golunski discovered that MySQL incorrectly handled configuration files. A remote attacker could possibly use this issue to execute arbitrary cod...

Oracle JRockit R27.8.4 / R28.3.4 Multiple Vulnerabilities (January 2015 CPU) (POODLE)

The remote host has a version of Oracle JRockit that is affected by multiple vulnerabilities in the following components : - Hotspot - JSSE - Security Note that CVE-2014-3566 is an error related to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block ciphers in...

Tenable Security Center Default Credentials

Tenable Network Security's Security Center, an asset-based security and compliance monitoring application, is installed on the remote system. By supplying default credentials, it is possible to log into the remote web application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

MailEnable POP3 Server Authentication Vulnerabilities

The remote host is running MailEnable, a commercial mail server for Windows. The POP3 server bundled with the version of MailEnable on the remote host has a buffer overflow flaw involving authentication commands that can be exploited remotely by an unauthenticated attacker to crash the affected...

VMware vCenter Server 7.x < 7.0 U3t / 8.x < 8.0.3 U3d Multiple Vulnerabilities (VMSA-2024-0019)

The version of VMware vCenter Server installed on the remote host is 7.x prior to 7.0 U3t or 8.x prior to 8.0 U3d. It is, therefore, affected by multiple vulnerabilities as referenced in the VMSA-2024-0019 advisory: - The vCenter Server contains a heap-overflow vulnerability in the implementation...

Atlassian Jira Unauthenticated User Enumeration (CVE-2020-36289)

Binary data jiraCVE-2020-36289userenum.nbin...

Apache Tomcat 8.5.0 < 8.5.68

The version of Tomcat installed on the remote host is prior to 8.5.68. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.68security-8 advisory. - Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP...

Oracle Linux 7 : python (ELSA-2020-5009)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5009 advisory. 2.7.5-90.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-90 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-209...

Oracle Solaris Critical Patch Update : jul2020_SRU11_4_21_69_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to th...

Zimbra Collaboration Server 8.7.x < 8.7.11p10 XML External Entity injection (XXE) vulnerability

Mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection XXE vulnerability. Note that Nessus does not identify patch level or components versions for the Synacor Zimbra Collaboration Suite. You will need to verify if the patch has been...

Oracle WebLogic Server Deserialization RCE (CVE-2019-2729)

The Oracle WebLogic server is affected by a remote code execution vulnerability in wls9asyncresponse.war and wls-wsat.war packages due to unsafe deserialization of Java objects. A remote unauthenticated attacker can exploit the issue by sending a custom Java serialized object via HTTP request to...

CentOS 7 : cockpit (CESA-2019:0482)

An update for cockpit is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

TLS 1.0 Weak Protocol

The remote server offers deprecated TLS 1.0 protocol which can lead to weaknesses. No source data...

Apache ServerTokens Information Disclosure

The HTTP headers sent by the remote web server disclose information that can aid an attacker, such as the server version, operating system, and module versions. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid106232; scriptversion"1.3";...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3593)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3593 advisory. - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393865 CVE-2016-4470 Tenable has extracted the preceding description block directl...

Apache Tomcat 6.0.x < 6.0.43 Multiple Vulnerabilities (POODLE)

According to its self-reported version number, the Apache Tomcat service listening on the remote host is 6.0.x prior to 6.0.43. It is, therefore, affected by the following vulnerabilities : - An error exists in the function 'ssl3readbytes' that can allow data to be injected into other sessions or...

Oracle MySQL Server 8.0.x < 8.0.34 (April 2023 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Compiling curl. Supported versions that are affected are 5.7.43 and prior...

RHEL 6 : kernel-rt (RHSA-2020:3810)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3810 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

Fedora 31 : community-mysql (2019-d40df38271)

MySQL 8.0.18 Release notes : https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-18.html CVEs fixed : CVE-2019-2911 CVE-2019-2914 CVE-2019-2938 CVE-2019-2946 CVE-2019-2957 CVE-2019-2960 CVE-2019-2963 CVE-2019-2966 CVE-2019-2967 CVE-2019-2968 CVE-2019-2974 CVE-2019-2982 CVE-2019-2991...

Scientific Linux Security Update : php53 and php on SL5.x, SL6.x i386/x86_64 (20140930)

It was found that the fix for CVE-2012-1571 was incomplete; the File Information fileinfo extension did not correctly parse certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file. CVE-2014-3587 ...

Debian DSA-2303-2 : linux-2.6 - privilege escalation/denial of service/information leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-1020 Kees Cook discovered an issue in the /proc filesystem that allows loc...

Web Server Malicious JavaScript Link Detection

The remote web server seems to link to malicious JavaScript files hosted on a third-party website. This typically means that the remote web server has been compromised, and it may infect its visitors as well. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

PHP 8.3.x < 8.3.6 Multiple Vulnerabilities

According to its self-reported version number, the version of PHP installed on the remote host is 8.1.x prior to 8.1.28, 8.2.x prior to 8.2.18, or 8.3.x prior to 8.3.6. It is, therefore, affected by multiple vulnerabilities: - A command injection via array-ish $command parameter of procopen...

Dell OpenManage Server Administrator Path Traversal (DSA-2020-172)

The version of Dell OpenManage Server Administrator OMSA running on the remote host is affected by a path traversal vulnerability due to improper sanitization of user-supplied input to a web API request. An unauthenticated, remote attacker can exploit this, via a crafted request, to gain file...

CentOS 7 : kernel (RHSA-2020:4060)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4060 advisory. - An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function...

Mozilla Firefox < 78.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 78.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2020-24 advisory. - Mozilla developers and community members Bob Clary, Benjamin Bouvier, Calixte Denizet, Christian Holler...

Photon OS 2.0: Linux PHSA-2018-2.0-0010

An update of the linux package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0010. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121906...

Security Updates for Internet Explorer (June 2018)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4004)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4004 advisory. - kABI: Revert kABI: Make the bootcpudata look normal Konrad Rzeszutek Wilk CVE-2017-5715 - userns: prevent speculative execution Elena Reshetova...

Microsoft Malware Protection Engine < 1.1.13804 Multiple Vulnerabilities

The version of Microsoft Malware Protection Engine MMPE installed on the remote Windows host is prior to 1.1.13804.0. It is, therefore, affected by multiple vulnerabilities : - Multiple denial of service vulnerabilities exist due to improper scanning of specially crafted files. An unauthenticated...

RHEL 6 / 7 : python (RHSA-2016:1626) (httpoxy)

An update for python is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Apache Tomcat 8.0.0.RC1 < 8.0.32 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 8.0.32. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat8.0.32security-8 advisory. - Session fixation vulnerability in Apache Tomcat 7.x before 7.0.66, 8.x before 8.0.30, and 9.x before...

CentOS 7 : php (CESA-2015:1135)

Updated php packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

Scientific Linux Security Update : php on SL6.x, SL7.x i386/x86_64 (20141030)

A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application. CVE-2014-3670 An integer overflo...

Fedora 20 : bash-4.2.47-4.fc20 (2014-11360)

Disclosure - http://www.openwall.com/lists/oss-security/2014/09/24/10 Behaviour prior to patch : $ env x=' :;; echo OOPS' bash -c /usr/sbin/nologin OOPS This account is currently not available. Note that Tenable Network Security has extracted the preceding description block directly from the Fedo...

Microsoft DNS Server Version Detection

Nessus was able to obtain version information from the remote Microsoft DNS server by sending a special TXT record query to the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid72780; scriptversion"1.5"; scriptcvsdate"Date: 2020/01/22";...

OpenSSH < 4.7 Trusted X11 Cookie Connection Policy Bypass

According to the banner, OpenSSH earlier than 4.7 is running on the remote host. Such versions contain an authentication bypass vulnerability. In the event that OpenSSH cannot create an untrusted cookie for X, for example due to the temporary partition being full, it will use a trusted cookie...

Microsoft Windows SMB : Obtains the Password Policy

Using the supplied credentials it was possible to extract the password policy for the remote Windows host. The password policy must conform to the Informational System Policy. C Tenable Network Security, Inc. Requested by Michael Richardson include"compat.inc"; if description scriptid17651;...