SUSE SLES11 Security Update : libvirt (SUSE-SU-2019:14097-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14097-1 advisory. - It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc API,...

Microsoft 3D Viewer Multiple Vulnerabilities (June 2021)

The Windows '3D Viewer' app installed on the remote host is affected by multiple vulnerabilities. - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-31942, CVE-2021-31943 - An information disclosure...

CentOS 8 : firefox (CESA-2019:3196)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:3196 advisory. - Mozilla: Use-after-free when creating index updates in IndexedDB CVE-2019-11757 - Mozilla: Potentially exploitable crash due to 360 Total Security...

openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2317)

This update for MozillaThunderbird fixes the following issues : - Mozilla Thunderbird 78.6 - new: MailExtensions: Added browser.windows.openDefaultBrowser bmo1664708 - changed: Thunderbird now only shows quota exceeded indications on the main window bmo1671748 - changed: MailExtensions: menus API...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2020-5924)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-5924 advisory. - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 - hdlcppp: add range checks in pppcpparsec...

KB4571719: Windows 7 and Windows Server 2008 R2 August 2020 Security Update

The remote Windows host is missing security update 4571719 or cumulative update 4571729. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Windows Media Audio Codec improperly handles objects. An attacker who successfully exploited the...

Photon OS 3.0: Linux PHSA-2020-3.0-0102

An update of the linux package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0102. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid137200;...

Amazon Linux AMI : php72 (ALAS-2020-1367)

The version of php72 installed on the remote host is prior to 7.2.30-1.22. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1367 advisory. In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.34, while parsing EXIF data with exifreaddata...

Photon OS 3.0: Openjdk11 PHSA-2020-3.0-0084

An update of the openjdk11 package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0084. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid136100;...

EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1508)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In f2fsxattrgenericlist of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information...

EulerOS 2.0 SP2 : ncurses (EulerOS-SA-2019-2420)

According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a heap-based buffer over-read in the ncfindentry function in tinfo/comphash.c in the terminfo library in ncurses before...

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20190918)

This update upgrades Thunderbird to version 60.9.0. Security Fixes : - Mozilla: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message CVE-2019-11739 - Mozilla: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9 CVE-2019-11740 - Mozill...

Security Updates for Microsoft Skype for Business and Microsoft Lync (November 2018)

The Microsoft Skype for Business or Microsoft Lync installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A denial of service vulnerability exists in Skype for Business. An attacker who successfully exploited the vulnerability...

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1232)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local...

Oracle Linux 7 : kernel (ELSA-2018-1965)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-1965 advisory. - x86 always enable eager FPU by default on non-AMD processors Paolo Bonzini 1589051 1589048 CVE-2018-3665 - x86 bugs: Switch the selection of mitigati...

EulerOS 2.0 SP1 : kernel (EulerOS-SA-2018-1054)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a...

JQuery 1.x < 1.12.0 / 2.x < 2.2.0 XSS

The version of JQuery library hosted on the remote web server is 1.x prior to 1.12.0 or 2.x prior to 2.2.0. It is, therefore, affected by a cross site scripting vulnerability when using location.host to select elements. C Tenable Network Security, Inc. include"compat.inc"; if description...

DNN (DotNetNuke) 5.2.0 < 9.1.1 Multiple Vulnerabilities

The version of DNN Platform formerly DotNetNuke running on the remote host is 5.2.0 or later but prior to 9.1.1. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists due to insecure use of web cookies to identify users. An unauthenticated, remote...

KB4019473: Windows 10 Version 1511 May 2017 Cumulative Update

The remote Windows 10 version 1511 host is missing security update KB4019473. It is, therefore, affected by multiple vulnerabilities : - A security bypass vulnerability exists in Internet Explorer due to an unspecified flaw. An unauthenticated, remote attacker can exploit this, by convincing a us...

Oracle Linux 5 : kernel (ELSA-2017-0323)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0323 advisory. - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424633 CVE-2017-6074 Tenable has extracted the preceding description...

CentOS 6 : kernel (CESA-2017:0293)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Fedora 25 : kernel (2017-0054c7b1f0)

The 4.9.10 stable kernel update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

Fedora 24 : kernel (2017-6cc158c193)

The 4.9.6 stable kernel update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

SUSE SLES11 Security Update : xen (SUSE-SU-2016:1745-1)

xen was updated to fix 36 security issues. These security issues were fixed : - CVE-2013-4527: Buffer overflow in hw/timer/hpet.c might have allowed remote attackers to execute arbitrary code via vectors related to the number of timers bnc864673. - CVE-2013-4529: Buffer overflow in hw/pci/pcieaer...

Oracle Solaris Critical Patch Update : jul2016_SRU11_3_8_7_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are VirtualBox prior to 4.0.36, prior to 4.1.44, prior to 4.2.36, prior t...

Oracle MySQL 5.6.x < 5.6.29 Multiple Vulnerabilities (April 2016 CPU)

The version of Oracle MySQL installed on the remote host is 5.6.x prior to 5.6.29. It is, therefore, affected by the following vulnerabilities : - A NULL pointer dereference flaw exists in the bundled version of OpenSSL in file rsaameth.c due to improper handling of ASN.1 signatures that are...

Debian DLA-412-1 : linux-2.6 security update

This update fixes the CVEs described below. CVE-2015-7566 Ralf Spenneberg of OpenSource Security reported that the visor driver crashes when a specially crafted USB device without bulk-out endpoint is detected. CVE-2015-8767 An SCTP denial of service was discovered which can be triggered by a loc...

Oracle Linux 6 / 7 : java-1.7.0-openjdk (ELSA-2015-1229)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1229 advisory. 1:1.7.0.85-2.6.1.2.0.1.el71 - Update DISTRONAME in specfile 1:1.7.0.85-2.6.1.2 - Bump upstream tarball to u25b01 to fix issue with 8075374 backport...

MS15-067: Vulnerability in RDP Could Allow Remote Code Execution (3073094)

The remote Windows host is affected by a remote code execution vulnerability due to improper handling of packets by the Remote Desktop Protocol RDP service. A remote attacker can exploit this, by sending a specially crafted sequence of packets to the remote RDP server, to execute arbitrary code. ...

Oracle Solaris Third-Party Patch Update : apache (multiple_denial_of_service_dos5)

The remote Solaris system is missing necessary patches to address security updates : - The cacheinvalidate function in modules/cache/cachestorage.c in the modcache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of...

Mandriva Linux Security Advisory : java-1.7.0-openjdk (MDVSA-2014:011)

Multiple vulnerabilities has been discovered and corrected in java-1.7.0-openjdk : An input validation flaw was discovered in the font layout engine in the 2D component. A specially crafted font file could trigger Java Virtual Machine memory corruption when processed. An untrusted Java applicatio...

RHEL 5 : kernel (RHSA-2013:1034)

Updated kernel packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 6425)

Mozilla Firefox has been updated to 10.0.5ESR fixing various bugs and security issues. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain...

Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1574-1)

A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service panic. CVE-2012-2745 Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO TCP...

Scientific Linux Security Update : samba on SL4.x, SL5.x i386/x86_64

Samba is a suite of programs used by machines to share files, printers, and other information. A cross-site scripting XSS flaw was found in the password change page of the Samba Web Administration Tool SWAT. If a remote attacker could trick a user, who was logged into the SWAT interface, into...

CentOS 6 : php (CESA-2012:1046)

Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

SuSE 11.1 Security Update : Java 1.6.0 (SAT Patch Number 5845)

java-160-openjdk was updated to the IcedTea 1.11.1 b24 release, fixing multiple security issues : - S7082299, CVE-2011-3571: Fix inAtomicReferenceArray - S7088367, CVE-2011-3563: Fix issues in java sound - S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method - S7110687,...

Fedora 15 : kernel-2.6.41.10-3.fc15 (2012-0861)

Update to the 3.1.10 stable release Fedora 2.6.41.10. Also fixes CVEs : - CVE-2012-0056 - CVE-2011-4127 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much a...

CGI Generic Tests Load Estimation (quick tests, HTML injection)

This script computes the maximum number of requests that would be done by the generic web tests, depending on miscellaneous options. It does not perform any test by itself. It adjusts the mode of each script if it is unable to run in the given time. The results can be used to estimate the duratio...

RHEL 6 : glibc (RHSA-2011:0413)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0413 advisory. The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the...

MySQL Zero-length Scrambled String Crafted Packet Authentication Bypass

A bug in the version of MySQL running on the remote host allows a remote attacker to bypass the password authentication mechanism using a specially crafted packet with a zero-length scramble buff string. An attacker with knowledge of an existing account defined to the affected service can leverag...

CentOS 4 : kernel (CESA-2010:0474)

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severit...

Mandriva Linux Security Advisory : glibc (MDVSA-2010:112)

Multiple vulnerabilities was discovered and fixed in glibc : Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted...

Web Application SQL Backend Identification

At least one web application hosted on the remote web server is built on a SQL backend that Nessus was able to identify by looking at error messages. Leaking this kind of information may help an attacker fine-tune attacks against the application and its backend. %NASLMINLEVEL 70300 C Tenable...

PHP < 5.2.5 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is older than 5.2.5. Such versions may be affected by various issues, including but not limited to several buffer overflows. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

Multiple Web Server Encoded Space (%20) Request ASP Source Disclosure

It appears possible to get the source code of the remote ASP scripts by appending a '%20' to the request. ASP source code usually contains sensitive information such as logins and passwords. This has been reported in Simple HTTPD shttpd, Mono XSP for ASP.NET and vWebServer. This type of request m...

IBM Java 7.0 < 7.0.11.5 / 7.1 < 7.1.5.5 / 8.0 < 8.0.7.5 Multiple Vulnerabilities

The version of IBM Java installed on the remote host is prior to 7.0 7.0.11.5 / 7.1 7.1.5.5 / 8.0 8.0.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle January 18 2022 CPU advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition...

OpenSSH < 7.8

According to its banner, the version of OpenSSH running on the remote host is prior to 7.8. It is, therefore, affected by an information disclosure vulnerability in the auth2-gss.c, auth2-hostbased.c, and auth2-pubkey due to not delaying for an invalid authenticating user. An unauthenticated,...

Amazon Linux 2 : cyrus-sasl (ALAS-2022-1758)

The version of cyrus-sasl installed on the remote host is prior to 2.1.26-24. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1758 advisory. A flaw was found in the SQL plugin shipped with Cyrus SASL. Failure to properly escape the SQL input allows a remote attacker ...

Oracle WebLogic Server (Jan 2022 CPU)

The 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 versions of WebLogic Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2022 CPU advisory. - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Cor...