Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2023 Tenable Network Security, Inc.AIX_JAVA_JULY2016_ADVISORY.NASL
HistoryNov 18, 2016 - 12:00 a.m.

AIX Java Advisory : java_july2016_advisory.asc (July 2016 CPU)

2016-11-1800:00:00
This script is Copyright (C) 2016-2023 Tenable Network Security, Inc.
www.tenable.com
54

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

0.016 Low

EPSS

Percentile

87.4%

JSON

The version of Java SDK installed on the remote AIX host is affected by multiple vulnerabilities in the following subcomponents :

  • An unspecified flaw exists in the Networking subcomponent that allows a local attacker to impact integrity. (CVE-2016-3485)

  • An unspecified flaw exists in the Deployment subcomponent that allows a local attacker to gain elevated privileges. (CVE-2016-3511)

  • A flaw exists in the Libraries subcomponent in the share/classes/java/lang/invoke/MethodHandles.java class within the MethodHandles::dropArguments() function that allows an unauthenticated, remote attacker to impact confidentiality, integrity, and availability.
    (CVE-2016-3598)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(94970);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/21");

  script_cve_id(
    "CVE-2016-3485",
    "CVE-2016-3511",
    "CVE-2016-3598"
  );
  script_bugtraq_id(
    91918,
    91990
  );

  script_name(english:"AIX Java Advisory : java_july2016_advisory.asc (July 2016 CPU)");
  script_summary(english:"Checks the version of the Java package.");

  script_set_attribute(attribute:"synopsis", value:
"The version of Java SDK installed on the remote AIX host is affected
by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Java SDK installed on the remote AIX host is affected
by multiple vulnerabilities in the following subcomponents :

  - An unspecified flaw exists in the Networking
    subcomponent that allows a local attacker to impact
    integrity. (CVE-2016-3485)

  - An unspecified flaw exists in the Deployment
    subcomponent that allows a local attacker to gain
    elevated privileges. (CVE-2016-3511)

  - A flaw exists in the Libraries subcomponent in the
    share/classes/java/lang/invoke/MethodHandles.java class
    within the MethodHandles::dropArguments() function that
    allows an unauthenticated, remote attacker to impact
    confidentiality, integrity, and availability.
    (CVE-2016-3598)");
  # https://aix.software.ibm.com/aix/efixes/security/java_july2016_advisory.asc
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?46a051b3");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=6.0.0.0&platform=AIX+32-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ce533d8f");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=6.0.0.0&platform=AIX+64-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?17d05c61");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=7.0.0.0&platform=AIX+32-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d4595696");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=7.0.0.0&platform=AIX+64-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?9abd5252");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=7.1.0.0&platform=AIX+32-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?4ee03dc1");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=7.1.0.0&platform=AIX+64-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?8f7a066c");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=8.0.0.0&platform=AIX+32-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?52d4ddf3");
  # https://www-945.ibm.com/support/fixcentral/swg/selectFixes?
  # parent=ibm~WebSphere&product=ibm/IBM+SDKs+for+Java+Technology/Java+Standard+Edition+%28Java+SE%29&release=8.0.0.0&platform=AIX+64-bit,+pSeries&function=all
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?343fa903");
  script_set_attribute(attribute:"solution", value:
"Fixes are available by version and can be downloaded from the IBM AIX
website.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:jre");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:jdk");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/05/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/08/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/18");

  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"AIX Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2016-2023 Tenable Network Security, Inc.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");

  exit(0);
}

include("aix.inc");
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
oslevel = get_kb_item_or_exit("Host/AIX/version");
if ( oslevel != "AIX-5.3" && oslevel != "AIX-6.1" && oslevel != "AIX-7.1" && oslevel != "AIX-7.2" )
{
  oslevel = ereg_replace(string:oslevel, pattern:"-", replace:" ");
  audit(AUDIT_OS_NOT, "AIX 5.3 / 6.1 / 7.1 / 7.2", oslevel);
}

if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);

flag = 0;

#Java6 6.0.0.585
if (aix_check_package(release:"5.3", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java6.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"5.3", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java6_64.sdk", minpackagever:"6.0.0.0", maxpackagever:"6.0.0.584", fixpackagever:"6.0.0.585") > 0) flag++;

#Java7 7.0.0.450
if (aix_check_package(release:"6.1", package:"Java7.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java7.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java7_64.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7_64.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java7_64.sdk", minpackagever:"7.0.0.0", maxpackagever:"7.0.0.449", fixpackagever:"7.0.0.450") > 0) flag++;

#Java7.1 7.1.0.350
if (aix_check_package(release:"6.1", package:"Java7.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java7.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java7_64.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java7_64.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java7_64.sdk", minpackagever:"7.1.0.0", maxpackagever:"7.1.0.349", fixpackagever:"7.1.0.350") > 0) flag++;

#Java8.0 8.0.0.310
if (aix_check_package(release:"6.1", package:"Java8.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java8.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java8.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;
if (aix_check_package(release:"6.1", package:"Java8_64.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;
if (aix_check_package(release:"7.1", package:"Java8_64.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;
if (aix_check_package(release:"7.2", package:"Java8_64.sdk", minpackagever:"8.0.0.0", maxpackagever:"8.0.0.309", fixpackagever:"8.0.0.310") > 0) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : aix_report_get()
  );
}
else
{
  tested = aix_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Java6 / Java7 / Java8");
}
VendorProductVersionCPE
ibmaixcpe:/o:ibm:aix
oraclejrecpe:/a:oracle:jre
oraclejdkcpe:/a:oracle:jdk

Related

openvas 30
ibm 73
suse 11
nessus 33
aix 1
redhat 6
nvd 4
prion 4
cvelist 4
cve 4
redhatcve 3
ubuntucve 4
debiancve 4
veracode 2
zdi 1
kaspersky 1
f5 2
gentoo 2
osv 1
archlinux 3
ubuntu 1
centos 2
amazon 2
oraclelinux 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:2286-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2347-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2726-1)
2021-04-19 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring (CVE-2016-3485, CVE-2016-3511, CVE-2016-3598)
2018-06-17 15:30:16
Security Bulletin: Multiple vulnerabilities may affect IBM® WebSphere Real Time
2018-06-15 07:06:02
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Development Package for Apache Spark
2018-06-15 07:06:05
suse
suse
Security update for java-1_7_1-ibm (important)
2016-09-07 20:09:17
Security update for java-1_7_0-ibm (important)
2016-09-10 16:09:41
Security update for java-1_7_1-ibm (important)
2016-09-21 20:10:13
nessus
nessus
SUSE SLES12 Security Update : java-1_7_1-ibm (SUSE-SU-2016:2347-1)
2016-09-22 00:00:00
SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2016:2286-1)
2016-09-13 00:00:00
SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2016:2726-1)
2016-11-07 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2016-08-18 15:35:03
redhat
redhat
(RHSA-2016:1588) Critical: java-1.7.1-ibm security update
2016-08-10 13:34:23
(RHSA-2016:1589) Critical: java-1.7.0-ibm security update
2016-08-10 00:00:00
(RHSA-2016:1587) Critical: java-1.8.0-ibm security update
2016-08-10 13:34:08
nvd
nvd
CVE-2016-3485
2016-07-21 10:12:39
CVE-2016-3511
2016-07-21 10:13:04
CVE-2016-3610
2016-07-21 10:14:43
prion
prion
Buffer overflow
2016-07-21 10:12:00
Buffer overflow
2016-07-21 10:13:00
Buffer overflow
2016-07-21 10:14:00
cvelist
cvelist
CVE-2016-3485
2016-07-21 10:00:00
CVE-2016-3511
2016-07-21 10:00:00
CVE-2016-3598
2016-07-21 10:00:00
cve
cve
CVE-2016-3485
2016-07-21 10:12:39
CVE-2016-3511
2016-07-21 10:13:04
CVE-2016-3598
2016-07-21 10:14:38
redhatcve
redhatcve
CVE-2016-3485
2016-07-20 08:18:31
CVE-2016-3610
2016-07-20 07:48:36
CVE-2016-3598
2016-07-20 07:48:42
ubuntucve
ubuntucve
CVE-2016-3485
2016-07-21 00:00:00
CVE-2016-3511
2016-07-21 00:00:00
CVE-2016-3598
2016-07-21 00:00:00
debiancve
debiancve
CVE-2016-3485
2016-07-21 10:12:39
CVE-2016-3511
2016-07-21 10:13:04
CVE-2016-3598
2016-07-21 10:14:38
veracode
veracode
Privilege Escalation
2019-05-02 05:39:34
Arbitrary Code Execution
2019-01-15 09:12:48
zdi
zdi
Oracle Java MethodHandles dropArguments Remote Code Execution Vulnerability
2016-07-21 00:00:00
kaspersky
kaspersky
KLA10849 Multiple vulnerabilities in Oracle Java SE
2016-07-19 00:00:00
f5
f5
SOL40521234 - Multiple Oracle Java SE vulnerabilities
2016-09-07 00:00:00
K40521234 : Multiple Oracle Java SE vulnerabilities
2016-09-07 00:00:00
gentoo
gentoo
Oracle JRE/JDK: Multiple vulnerabilities
2016-10-15 00:00:00
IcedTea: Multiple vulnerabilities
2017-01-19 00:00:00
osv
osv
openjdk-7 - security update
2016-08-05 00:00:00
archlinux
archlinux
jre7-openjdk: multiple issues
2016-08-05 00:00:00
jre7-openjdk-headless: multiple issues
2016-08-05 00:00:00
jdk7-openjdk: multiple issues
2016-08-05 00:00:00
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2016-08-16 00:00:00
centos
centos
java security update
2016-07-27 10:40:30
java security update
2016-07-20 15:49:13
amazon
amazon
Important: java-1.7.0-openjdk
2016-08-01 13:30:00
Critical: java-1.8.0-openjdk
2016-07-20 18:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2016-07-27 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

0.016 Low

EPSS

Percentile

87.4%

JSON
Related for AIX_JAVA_JULY2016_ADVISORY.NASL
openvas30ibm73suse11nessus33aix1redhat6nvd4prion4cvelist4cve4redhatcve3ubuntucve4debiancve4veracode2zdi1kaspersky1f52gentoo2osv1archlinux3ubuntu1centos2amazon2oraclelinux1