Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.AIX_IJ26986.NASLHistoryDec 16, 2020 - 12:00 a.m.
AIX 7.2 TL 3 : perl (IJ26986)
2020-12-1600:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
48
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
8.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.0%
https://vulners.com/cve/CVE-2020-10543 https://vulners.com/cve/CVE-2020-10543 Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. Perl before 5.30.3 has an integer overflow related to mishandling of a ‘PL_regkind[OP(n)] == NOTHING’ situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
#
# (C) Tenable Network Security, Inc.
#
# The text in the description was extracted from AIX Security
# Advisory perl_advisory5.asc.
#
include("compat.inc");
if (description)
{
script_id(144320);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/06");
script_cve_id("CVE-2020-10543", "CVE-2020-10878", "CVE-2020-12723");
script_xref(name:"CEA-ID", value:"CEA-2021-0004");
script_xref(name:"CEA-ID", value:"CEA-2021-0025");
script_name(english:"AIX 7.2 TL 3 : perl (IJ26986)");
script_summary(english:"Check for APAR IJ26986");
script_set_attribute(
attribute:"synopsis",
value:"The remote AIX host is missing a security patch."
);
script_set_attribute(
attribute:"description",
value:
"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10543
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10543 Perl
before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow
because nested regular expression quantifiers have an integer
overflow. Perl before 5.30.3 has an integer overflow related to
mishandling of a 'PL_regkind[OP(n)] == NOTHING' situation. A crafted
regular expression could lead to malformed bytecode with a possibility
of instruction injection. regcomp.c in Perl before 5.30.3 allows a
buffer overflow via a crafted regular expression because of recursive
S_study_chunk calls."
);
script_set_attribute(
attribute:"see_also",
value:"https://aix.software.ibm.com/aix/efixes/security/perl_advisory5.asc"
);
script_set_attribute(
attribute:"solution",
value:"Install the appropriate interim fix."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-10878");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:7.2");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/12/09");
script_set_attribute(attribute:"patch_publication_date", value:"2020/12/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/12/16");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"AIX Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("aix.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);
if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") );
flag = 0;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"03", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.20.1.0", maxfilesetver:"5.20.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"03", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.28.1.0", maxfilesetver:"5.28.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"04", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.20.1.0", maxfilesetver:"5.20.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"04", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.28.1.0", maxfilesetver:"5.28.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"05", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.20.1.0", maxfilesetver:"5.20.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"05", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.28.1.0", maxfilesetver:"5.28.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"06", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.20.1.0", maxfilesetver:"5.20.1.3") < 0) flag++;
if (aix_check_ifix(release:"7.2", ml:"03", sp:"06", patch:"IJ26986s1a", package:"7.2.3", minfilesetver:"5.28.1.0", maxfilesetver:"5.28.1.3") < 0) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.2.0 : perl (EulerOS-SA-2020-1967)
2020-09-08 00:00:00
RHEL 7 : perl (RHSA-2021:0883)
2021-03-17 00:00:00
CentOS 7 : perl (CESA-2021:0343)
2021-02-03 00:00:00
cloudfoundry
cloudfoundry
USN-4602-1: Perl vulnerabilities | Cloud Foundry
2021-03-09 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2020-2459)
2020-11-05 00:00:00
Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2020-2085)
2020-09-29 00:00:00
Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2020-1943)
2020-09-04 00:00:00
aix
aix
There are vulnerabilities in Perl that affect AIX.
2020-12-09 16:36:39
ubuntu
ubuntu
Perl vulnerabilities
2020-10-27 00:00:00
Perl vulnerabilities
2020-10-26 00:00:00
mageia
mageia
Updated perl packages fix security vulnerability
2020-06-11 02:59:36
fedora
fedora
[SECURITY] Fedora 32 Update: perl-5.30.3-453.fc32
2020-06-05 02:32:03
[SECURITY] Fedora 31 Update: perl-5.30.3-452.fc31
2020-06-16 01:19:13
gentoo
gentoo
Perl: Multiple vulnerabilities
2020-06-12 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2021:1032) Moderate: perl security update
2021-03-30 07:25:33
(RHSA-2021:1266) Moderate: perl security update
2021-04-20 11:21:48
(RHSA-2021:0343) Moderate: perl security update
2021-02-02 09:28:11
suse
suse
Security update for perl (important)
2020-06-23 00:00:00
osv
osv
perl vulnerabilities
2020-10-27 14:02:08
perl vulnerabilities
2020-10-26 11:11:53
Moderate: perl security and bug fix update
2021-05-18 05:49:06
oraclelinux
oraclelinux
perl security update
2021-05-20 00:00:00
perl security update
2021-02-03 00:00:00
perl security and bug fix update
2021-05-25 00:00:00
amazon
amazon
Medium: perl
2021-02-19 01:26:00
centos
centos
perl security update
2021-02-04 01:04:16
rocky
rocky
perl security and bug fix update
2021-05-18 05:49:06
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0302
2020-06-23 00:00:00
Important Photon OS Security Update - PHSA-2020-0104
2020-06-23 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0104
2020-06-23 00:00:00
almalinux
almalinux
Moderate: perl security and bug fix update
2021-05-18 05:49:06
Moderate: perl security update
2021-02-16 07:35:46
veracode
veracode
Denial Of Service (DoS)
2020-08-06 21:34:50
Denial Of Service (DoS)
2020-08-06 21:34:46
Integer Overflow
2020-08-06 21:38:33
ubuntucve
ubuntucve
debiancve
debiancve
cvelist
cvelist
cve
cve
cloudlinux
cloudlinux
Fix of CVE: CVE-2020-10543
2021-09-22 16:31:04
Fixed CVE-2020-12723 in perl-5.10.1
2022-07-11 17:36:45
Fix of CVE: CVE-2020-10878
2021-09-22 16:30:34
redhatcve
redhatcve
alpinelinux
alpinelinux
prion
prion
Buffer overflow
2020-06-05 15:15:00
Integer overflow
2020-06-05 14:15:00
Integer overflow
2020-06-05 14:15:00
nvd
nvd
hackerone
hackerone
f5
f5
K40508224 : Perl vulnerability CVE-2020-10878
2022-02-03 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1949
2021-07-02 17:41:47
apple
apple
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
8.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.0%
Related for AIX_IJ26986.NASL