| code | #
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the Oracle CPU for jan2015.
#
include("compat.inc");
if (description)
{
script_id(80935);
script_version("1.9");
script_cvs_date("Date: 2020/01/16");
script_cve_id("CVE-2014-6510", "CVE-2014-6518");
script_bugtraq_id(72131, 72160);
script_name(english:"Oracle Solaris Critical Patch Update : jan2015_SRU10_5a");
script_summary(english:"Check for the jan2015 CPU");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Solaris system is missing a security patch from CPU
jan2015."
);
script_set_attribute(
attribute:"description",
value:
"This Solaris system is missing necessary patches to address critical
security updates :
- Vulnerability in the Solaris component of Oracle Sun
Systems Products Suite (subcomponent: Power Management
Utility). The supported version that is affected is 11.
Easily exploitable vulnerability requiring logon to
Operating System. Successful attack of this
vulnerability can result in unauthorized Operating
System takeover including arbitrary code execution.
(CVE-2014-6510)
- Vulnerability in the Solaris component of Oracle Sun
Systems Products Suite (subcomponent: Unix File
System(UFS)). Supported versions that are affected are
10 and 11. Easily exploitable vulnerability requiring
logon to Operating System. Successful attack of this
vulnerability can result in unauthorized write access to
any arbitrary Operating System location and Operating
System hang or frequently repeatable crash (complete
DOS). (CVE-2014-6518)"
);
script_set_attribute(
attribute:"see_also",
value:"https://support.oracle.com/epmos/faces/DocumentDisplay?id=1956176.1"
);
# https://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/2367957.xml
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?8b92ae0e"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.oracle.com/security-alerts/cpujan2015.html"
);
script_set_attribute(
attribute:"solution",
value:"Install the jan2015 CPU from the Oracle support website."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:11.0");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/01/21");
script_set_attribute(attribute:"patch_publication_date", value:"2015/01/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/01/23");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Solaris Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Solaris11/release");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("solaris.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Solaris11/release");
if (isnull(release)) audit(AUDIT_OS_NOT, "Solaris11");
fix_release = "0.5.11-0.175.0.10.0.5.0";
flag = 0;
if (solaris_check_release(release:"0.5.11-0.175.0.10.0.5.0", sru:"SRU10.5a") > 0) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report2());
else security_hole(0);
exit(0);
}
audit(AUDIT_OS_RELEASE_NOT, "Solaris", fix_release, release);
|