Slackware 14.1 / current : glibc (SSA:2014-296-01)

New glibc packages are available for Slackware 14.1 and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-296-01. The text itself is copyright C Slackwar...

Amazon Linux AMI : java-1.6.0-openjdk (ALAS-2014-430)

Multiple flaws were discovered in the Libraries, 2D, and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions. CVE-2014-6506 , CVE-2014-6531 , CVE-2014-6502 , CVE-2014-6511 , CVE-2014-6504 , CVE-2014-6519 It was...

SuSE 11.3 Security Update : PHP 5.3 (SAT Patch Number 9537)

PHP 5.3 has been updated to fix several security problems : - The SPL component in PHP incorrectly anticipated that certain data structures will have the array data type after unserialization, which allowed remote attackers to execute arbitrary code via a crafted string that triggers use of a...

HP Smart Update Manager 6.x < 6.4.1 Multiple Vulnerabilities

The version of HP Smart Update manager running on the remote host is prior to 6.4.1. It is, therefore, affected by the following vulnerabilities : - An error exists in the function 'ssl3readbytes' that can allow data to be injected into other sessions or allow denial of service attacks. Note that...

Amazon Linux AMI : openssl Information Disclosure Vulnerability (ALAS-2014-320)

A missing bounds check was found in the way OpenSSL handled TLS heartbeat extension packets. This flaw could be used to reveal up to 64k of memory from a connected client or server. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon...

SuSE 11.3 Security Update : Linux Kernel (SAT Patch Numbers 9047 / 9050 / 9051)

The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to fix various bugs and security issues. ---------------------------------------------------------------------- - WARNING: If you are running KVM with PCI pass-through on a system with one of the following Intel chipsets: 5500 revisio...

Jenkins Accessible without Credentials

The remote web server hosts Jenkins, a job scheduling / management system and a drop-in replacement for Hudson. By allowing unauthenticated access to the application, anyone may be able to configure Jenkins and jobs, and perform builds. Additionally, this script checks for unauthenticated access ...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120618)

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - A local, unprivileged user could use an integer overflow flaw in drmmodedirtyfbioctl to cause a denial of service or escalate their privileges. CVE-2012-0044,...

Adobe Acrobat < 10.1.1 / 9.4.6 / 8.3.1 Multiple Vulnerabilities (APSB11-21, APSB11-24)

The version of Adobe Acrobat installed on the remote host is earlier than 10.1.1 / 9.4.6 / 8.3.1. It is, therefore, potentially affected by the following vulnerabilities : - An unspecified error exists that can allow an attacker to bypass security leading to code execution. CVE-2011-2431 - Severa...

OpenOffice < 3.2.1 Multiple Vulnerabilities

Binary data 5564.prm...

Common Platform Enumeration (CPE)

Binary data cpe.nbin...

Mozilla Thunderbird < 1.5.0.12 Multiple Vulnerabilities

The remote version of Mozilla Thunderbird suffers from various security issues, at least one that may lead to execution of arbitrary code on the affected host subject to the user's privileges. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid25350; scriptversion"1.20";...

Opera < 7.50 onUnload Address Bar Spoofing

The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript 'unOnload' event handler when the brows...

MS03-026: Microsoft RPC Interface Buffer Overrun (823980) (uncredentialed check)

The remote version of Windows contains a flaw in the function RemoteActivation in its RPC interface that could allow an attacker to execute arbitrary code on the remote host with the SYSTEM privileges. A series of worms Blaster are known to exploit this vulnerability in the wild. C Tenable Networ...

Oracle MySQL Server 8.x < 8.4.4 (January 2025 CPU)

The versions of MySQL Server installed on the remote host are affected by a vulnerability as referenced in the January 2024 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.40 and prior, 8.4.3 and pri...

Cisco IOS XE Unauthenticated Remote Command Execution (CVE-2023-20198) (Direct Check)

Binary data ciscoiosxeCVE-2023-20198directcheck.nbin...

Rocky Linux 8 : openssh (RLSA-2022:2013)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:2013 advisory. - sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not...

Apache Tomcat 8.5.0 < 8.5.76

The version of Tomcat installed on the remote host is prior to 8.5.76. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.76security-8 advisory. - If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running ...

VMware Workspace One Access / VMware Identity Manager Multiple Vulnerabilities (VMSA-2022-0011)

The VMware Workspace One Access formerly VMware Identity Manager application running on the remote host is affected by the following vulnerabilities: - Server-side Template Injection Remote Code Execution Vulnerability CVE-2022-22954 - OAuth2 ACS Authentication Bypass Vulnerabilities...

Azul Zulu Java Multiple Vulnerabilities (2022-01-18)

The version of Azul Zulu installed on the remote host is prior to 6 6.45 / 7 7.51.0.12 / 8 8.59.0.12 / 11 11.53.14 / 13 13.45.12 / 15 15.37.14 / 17 17.32.14. It is, therefore, affected by multiple vulnerabilities as referenced in the 2022-01-18 advisory. - Vulnerability in the Oracle Java SE,...

RHEL 8 : thunderbird (RHSA-2022:0131)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0131 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.5.0. Security Fixes: Mozilla:...

Photon OS 4.0: Linux PHSA-2021-4.0-0126

An update of the linux package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0126. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if descripti...

KB5004947: Windows 10 1809 and Windows Server 2019 OOB Security Update RCE (July 2021)

A remote command execution vulnerability exists in Windows Print Spooler service improperly performs privileged file operations. An authenticated, remote attacker can exploit this to bypass and run arbitrary code with SYSTEM privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

CentOS 7 : java-1.8.0-openjdk (RHSA-2021:1298)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1298 advisory. - Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are...

RHEL 8 : libpq (RHSA-2020:5638)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5638 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. The following...

SUSE SLES12 Security Update : postgresql10 (SUSE-SU-2020:3464-1)

This update for postgresql10 fixes the following issues : Upgrade to version 10.15 : - CVE-2020-25695, bsc1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. - CVE-2020-25694, bsc1178667: a Fix usage of complex...

Photon OS 2.0: Glibc PHSA-2020-2.0-0248

An update of the glibc package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0248. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid137198...

Debian DSA-4603-1 : thunderbird - security update

Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4603. The...

Debian DSA-4516-1 : firefox-esr - security update

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, bypass of the same-origin policy, sandbox escape, information disclosure or denial of service. C Tenable Network Security, Inc. The...

Ubuntu 19.04 : linux, linux-aws, linux-gcp, linux-kvm, linux-raspi2, linux-snapdragon (USN-4005-1)

It was discovered that a NULL pointer dereference vulnerability existed in the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2019-11810 It was discovered that a race condition leading to a use-after-free existed in th...

Fedora 30 : httpd (2019-cf7695b470)

Resolves: 1695046 CVE-2019-0196 CVE-2019-0197 CVE-2019-0215 CVE-2019-0217 CVE-2019-0220 httpd: various flaws Resolves: 1694510 httpd-2.4.39 is available Resolves: 1694986 - CVE-2019-0211 httpd: privilege escalation from modules scripts Note that Tenable Network Security has extracted the precedin...

openSUSE Security Update : libqt5-qtsvg (openSUSE-2019-1116)

This update for libqt5-qtsvg fixes the following issues : Security issues fixed : - CVE-2018-19869: Fixed Denial of Service when parsing malformed URL reference bsc1118599 This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

KB4487026: Windows 10 Version 1607 and Windows Server 2016 February 2019 Security Update

The remote Windows host is missing security update 4487026. It is, therefore, affected by multiple vulnerabilities : - An information vulnerability exists when Windows improperly discloses file information. Successful exploitation of the vulnerability could allow the attacker to read the contents...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0284)

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert commit 8bd274934987 'block: fix bdi vs gendisk lifetime mismatch' Ashish Samant Orabug: 28968102 - KVM/x86: Add IBPB support Ashok Raj Orabug: 28703712 - x86/intel/spectrev2: Remove unnecessary...

Amazon Linux AMI : kernel (ALAS-2018-1023)

A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions delivered after a stac...

EulerOS 2.0 SP1 : php (EulerOS-SA-2018-1096)

According to the versions of the php packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing a...

Debian DSA-4073-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2017-8824 Mohamed Ghannam discovered that the DCCP implementation did not correctly manage resources when a socket is disconnected and reconnecte...

Palo Alto Networks PAN-OS Management Interface RCE (PAN-SA-2017-0027)

The Palo Alto Networks PAN-OS running on the remote host is affected by a remote code execution vulnerability in the management interface due to improper validation of user-supplied input when handling HTTP requests. An unauthenticated, remote attacker can exploit this, via a series of specially...

SUSE SLES12 Security Update : xen (SUSE-SU-2017:0582-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-5973: A infinite loop while doing control transfer in xhcikickepctx allowed privileged user inside the guest to crash the host process resulting in DoS bsc1025188 - CVE-2016-10155: The virtual hardware watchdo...

McAfee ePolicy Orchestrator Agent < 5.0.4.449 Log Viewer DoS

According to its self-reported version, the McAfee ePolicy Orchestrator ePO Agent running on the remote host is 5.0.x prior to 5.0.4.449. It is, therefore, affected by a flaw in its remote log viewer component due to improper validation of input to an unspecified HTTP GET parameter. An...

FreeBSD : OpenSSL -- multiple vulnerabilities (43eaa656-80bc-11e6-bf52-b499baebfeaf)

OpenSSL reports : High: OCSP Status Request extension unbounded memory growth SSLpeek hang on empty record SWEET32 Mitigation OOB write in MDC2Update Malformed SHA512 ticket DoS OOB write in BNbn2dec OOB read in TSOBJprintbio Pointer arithmetic undefined behaviour Constant time flag not preserved...

SUSE SLED11 Security Update : java-1_7_0-openjdk (SUSE-SU-2015:1320-1) (Bar Mitzvah) (Logjam)

OpenJDK was updated to 2.6.1 - OpenJDK 7u85 to fix security issues and bugs. The following vulnerabilities were fixed : - CVE-2015-2590: Easily exploitable vulnerability in the Libraries component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this...

Ubuntu 14.10 : linux vulnerability (USN-2600-1)

A race condition between chown and execve was discovered in the Linux kernel. A local attacker could exploit this race by using chown on a setuid-user-binary to gain administrative privileges. Note that Tenable Network Security has extracted the preceding description block directly from the Ubunt...

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2419-1)

A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...

SuSE 11.3 Security Update : IBM Java (SAT Patch Number 9615)

java-160-ibm has been updated to fix ten security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEVEL 3000 exit0;...

VMware vCenter Converter Multiple Vulnerabilities (VMSA-2014-0006)

The version of VMware vCenter Converter installed on the remote Windows host is version 5.1.x prior to 5.1.1 or 5.5.x prior to 5.5.2. It is, therefore, affected by multiple vulnerabilities in the bundled OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to ...

RHEL 5 : kernel (RHSA-2009:1457)

Updated kernel packages that fix several security issues are now available for Red Hat Enterprise Linux 5.2 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any...

Debian DSA-2553-1 : iceweasel - several vulnerabilities

Several vulnerabilities have been discovered in Iceweasel, a web browser based on Firefox. The included XULRunner library provides rendering services for several other applications included in Debian. The reported vulnerabilities could lead to the execution of arbitrary code or the bypass of...

Scientific Linux Security Update : postgresql on SL3.x, SL4.x, SL5.x i386/x86_64

PostgreSQL is an advanced object-relational database management system DBMS. PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages, and are installed in trusted mode by default. In trusted mode, certain operations, such as operating system level access, are...

Scientific Linux Security Update : tomcat5 on SL5.x i386/x86_64

A flaw was found in the way Tomcat handled the Transfer-Encoding header in HTTP requests. A specially crafted HTTP request could prevent Tomcat from sending replies, or cause Tomcat to return truncated replies, or replies containing data related to the requests of other users, for all subsequent...