Photon OS 4.0: Linux PHSA-2021-4.0-0011

An update of the linux package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0011. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid148815;...

IBM HTTP Server 8.0.0.0 <= 8.0.0.11 / 8.5.0.0 <= 8.5.5.6 (533837)

The version of IBM HTTP Server running on the remote host is affected by a vulnerability. The BNGF2mmodinv function in crypto/bn/bngf2m.c in OpenSSL before 0.9.8s, 1.0.0 before 1.0.0e, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b does not properly handle ECParameters structures in which the curve...

Oracle Linux 7 : firefox (ELSA-2020-4080)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-4080 advisory. 78.3.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.j...

FreeBSD : samba -- Unauthenticated domain takeover via netlogon (24ace516-fad7-11ea-8d8c-005056a311d1)

The Samba Team reports : An unauthenticated attacker on the network can gain administrator access by exploiting a netlogon protocol flaw. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020...

Photon OS 3.0: Linux PHSA-2020-3.0-0119

An update of the linux package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0119. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid139076;...

Ubuntu 16.04 LTS / 18.04 LTS : PHP vulnerabilities (USN-4330-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4330-1 advisory. It was discovered that PHP incorrectly handled certain file uploads. An attacker could possibly use this issue to cause a crash. CVE-2020-706...

RHEL 7 : kernel (RHSA-2020:1347)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1347 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: heap overflow in...

KB4537789: Windows 10 Version 1709 February 2020 Security Update

The remote Windows host is missing security update 4537789. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this...

openSUSE Security Update : sqlite3 (openSUSE-2019-2298)

This update for sqlite3 fixes the following issues : Security issue fixed : - CVE-2019-16168: Fixed improper validation of sqlitestat1 field that could lead to denial of service bsc1150137. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network...

Amazon Linux 2 : kernel (ALAS-2019-1293)

An out-of-bounds access issue was found in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvmcoalescedmmio' object, wherein write indices 'ring-first' and 'ring-last' value could be supplied by a host user-space...

CentOS 6 / 7 : java-1.7.0-openjdk (CESA-2017:1204)

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

Debian DLA-795-1 : tiff security update

Numerous security vulnerabilities have been found through fuzzing on various tiff-related binaries. Crafted TIFF images allows remote attacks to cause denial of service or, in certain cases arbitrary code execution through divide-by-zero, out of bunds write, integer and heap overflow. CVE-2016-36...

MiCasaVerde VeraLite UPnP RCE

The remote MiCasaVerde VeraLite Smart Home Controller is affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this, via the UPnP RunLua action, to execute arbitrary shell commands as root. Note that MiCasaVerde VeraLite is reportedly affected by...

RHEL 7 : Red Hat JBoss Web Server 2.1.1 security update on RHEL 7 (Important) (RHSA-2016:1648)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1648 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

OpenSSL 1.0.2 < 1.0.2f Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 1.0.2f. It is, therefore, affected by multiple vulnerabilities as referenced in the 1.0.2f advisory. - The DHcheckpubkey function in crypto/dh/dhcheck.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriat...

Ubuntu 14.04 LTS : OpenJDK 7 vulnerabilities (USN-2487-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2487-1 advisory. Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit...

Amazon Linux AMI : php55 (ALAS-2014-372)

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file. A denial of service flaw was found in the way the File Information fileinfo extension parsed certain Composite Document...

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2336-1)

A flaw was discovered in the Linux kernel virtual machine's kvm validation of interrupt requests irq. A guest OS user could exploit this flaw to cause a denial of service host OS crash. CVE-2014-0155 Andy Lutomirski discovered a flaw in the authorization of netlink socket operations when a socket...

Oracle Linux 7 : php (ELSA-2014-1013)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1013 advisory. - fileinfo: cdfunpacksummaryinfo excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 -...

Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2014-3053)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-3053 advisory. - filter: prevent nla extensions to peek beyond the end of the message Mathias Krause Orabug: 19315782 CVE-2014-3144 CVE-2014-3145 Tenable has...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20140723)

A NULL pointer dereference flaw was found in the rdsiwladdrcheck function in the Linux kernel's implementation of Reliable Datagram Sockets RDS. A local, unprivileged user could use this flaw to crash the system. CVE-2014-2678, Moderate - It was found that the Xen hypervisor implementation did...

Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2543)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-2543 advisory. - block: do not pass disk names as format strings Kees Cook Orabug: 17230083 CVE-2013-2851 - libceph: Fix NULL pointer dereference in auth client...

Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64

CVE-2009-3555 TLS: MITM attacks via session renegotiation CVE-2010-0082 OpenJDK Loader-constraint table allows arrays instead of only the base-classes 6626217 CVE-2010-0084 OpenJDK Policy/PolicyFile leak dynamic ProtectionDomains. 6633872 CVE-2010-0085 OpenJDK File TOCTOU deserialization...

RHEL 3 / 4 : seamonkey (RHSA-2010:0781)

Updated SeaMonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Adobe ColdFusion 'locale' Parameter Directory Traversal

The version of Adobe ColdFusion running on the remote host is affected by a directory traversal vulnerability in the administrative web interface. Input to the 'locale' parameter of multiple pages is not properly sanitized. A remote, unauthenticated attacker can exploit this by sending specially...

CentOS 3 / 4 : php (CESA-2009:0337)

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

Oracle Enterprise Manager Agent (January 2023 CPU)

The 13.4.0.0 and 13.5.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by a vulnerability as referenced in the January 2023 CPU advisory. - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Management...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.20.4)

The version of AOS installed on the remote host is prior to 5.20.4. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.20.4 advisory. - In Expat aka libexpat before 2.4.5, there is an integer overflow in storeRawNames. CVE-2022-25315 - CVE-2020-9493 identified ...

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-001)

The version of kernel installed on the remote host is prior to 5.10.35-31.135. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2022-001 advisory. 2024-05-23: CVE-2021-46972 was added to this advisory. 2024-05-23: CVE-2021-46974 was added to this...

openSUSE 15 Security Update : qemu (openSUSE-SU-2021:3605-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3605-1 advisory. - An out-of-bounds write flaw was found in the UAS USB Attached SCSI device emulation of QEMU in versions prior to 6.2.0-rc0. The device us...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9485)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9485 advisory. - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - Bluetooth: defer cleanup of resources in hciunregisterdev Tetsuo Han...

Siemens JT2Go < 13.1.0.1 Multiple Vulnerabilities (SSA-663999)

The version of Siemens JT2Go installed on the remote Windows hosts is prior to 13.1.0.1. It is, therefore, affected by multiple vulnerabilities, including the following: - A vulnerability has been identified in JT2Go. Affected applications lack proper validation of user-supplied data when parsing...

SUSE SLED15 / SLES15 Security Update : java-11-openjdk (SUSE-SU-2020:2143-1)

This update for java-11-openjdk fixes the following issues : Update to upstream tag jdk-11.0.8+10 July 2020 CPU, bsc1174157 - Security fixes : + JDK-8230613: Better ASCII conversions + JDK-8231800: Better listing of arrays + JDK-8232014: Expand DTD support + JDK-8233234: Better Zip Naming +...

ProFTPD 'mod_copy' Arbitrary File Copy Vulnerability (Remote)

The remote host is running ProFTPD. It is affected by a vulnerability in the modcopy module which fails to honor and configurations as expected. An unauthenticated, remote attacker can exploit this, by using the modcopy module's functionality, in order to copy arbitrary files in the FTP directory...

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssl Multiple Vulnerabilities (NS-SA-2019-0206)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssl packages installed that are affected by multiple vulnerabilities: - The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signin...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0022)

The remote OracleVM system is missing necessary patches to address critical security updates : - scsi: libfc: sanitize EDTOV and RATOV setting Hannes Reinecke Orabug: 25933179 - scsi: libfc: use configured rport EDTOV Hannes Reinecke Orabug: 25933179 - scsi: libfc: additional debugging messages...

Amazon Linux 2 : kernel (ALAS-2018-1133)

A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation removal. The new file created with the same inode may contain leftover pages from cleancache and the old file data instead of the new one.CVE-2018-16862 An issue wa...

RHEL 7 : Red Hat Ceph Storage 3.0 (RHSA-2018:2177)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2177 advisory. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system...

RHEL 7 : kernel (RHSA-2018:1130)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1130 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Use-after-free vulnerability i...

Cisco IOS XE Software Multiple Vulnerabilities in ntpd (cisco-sa-20150408-ntpd)

According to its self-reported version, the IOS XE is affected by one or more vulnerabilities. Please see the included Cisco BIDs and the Cisco Security Advisory for more information. TRUSTED...

RHEL 6 : kernel (RHSA-2017:2681)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:2681 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A stack buffer overflow flaw was found in the w...

Windows 8.1 and Windows Server 2012 R2 September 2017 Security Updates

The remote Windows host is missing security update 4038793 or cumulative update 4038792. It is, therefore, affected by multiple vulnerabilities : - A race condition that could lead to a remote code execution vulnerability exists in NetBT Session Services when NetBT fails to maintain certain...

Microsoft Windows SMB Versions Supported (remote check)

Nessus was able to obtain the version of SMB running on the remote host by sending an authentication request to port 139 or 445. Note that this plugin is a remote check and does not work on agents. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid100871;...

Debian DLA-951-1 : samba security update (SambaCry)

steelo discovered a remote code execution vulnerability in Samba, a SMB/CIFS file, print, and login server for Unix. A malicious client with access to a writable share, can take advantage of this flaw by uploading a shared library and then cause the server to load and execute it. For Debian 7...

SUSE SLED12 / SLES12 Security Update : expat (SUSE-SU-2017:0424-1)

This update for expat fixes the following security issues : - CVE-2012-6702: Expat, when used in a parser that has not called XMLSetHashSalt or passed it a seed of 0, made it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors involving use of the sran...

Ubuntu 16.04 LTS : Linux kernel (Qualcomm Snapdragon) vulnerability (USN-3106-4)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3106-4 advisory. It was discovered that a race condition existed in the memory manager of the Linux kernel when handling copy-on-write breakage of private read-only memory mapping...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3567)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3567 advisory. - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267965 CVE-2015-8543 CVE-2015-8543 - ext4: Fix null...

Mandriva Linux Security Advisory : kernel (MDVSA-2015:057)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a parenthesized module template expression in the salgname field, as...

Mozilla Firefox < 20.0 Multiple Vulnerabilities

Binary data 6734.prm...

RHEL 6 : kernel (RHSA-2012:1304)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1304 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: An...