Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.ALA_ALAS-2014-460.NASL
HistoryDec 15, 2014 - 12:00 a.m.

Amazon Linux AMI : php-ZendFramework (ALAS-2014-460)

2014-12-1500:00:00
This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

78.7%

JSON

The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with a null byte, which triggers an unauthenticated bind. (CVE-2014-8088)

The 1.12.9, 2.2.8, and 2.3.3 releases of the Zend Framework fix a SQL injection issue when using the sqlsrv PHP extension. Full details are available in the upstream advisory. (CVE-2014-8089)

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2014-460.
#

include("compat.inc");

if (description)
{
  script_id(79874);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/02/24");

  script_cve_id("CVE-2014-8088", "CVE-2014-8089");
  script_xref(name:"ALAS", value:"2014-460");

  script_name(english:"Amazon Linux AMI : php-ZendFramework (ALAS-2014-460)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap
component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows
remote attackers to bypass authentication via a password starting with
a null byte, which triggers an unauthenticated bind. (CVE-2014-8088)

The 1.12.9, 2.2.8, and 2.3.3 releases of the Zend Framework fix a SQL
injection issue when using the sqlsrv PHP extension. Full details are
available in the upstream advisory. (CVE-2014-8089)"
  );
  # http://framework.zend.com/security/advisory/ZF2014-06
  script_set_attribute(
    attribute:"see_also",
    value:"https://framework.zend.com/security/advisory/ZF2014-06"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2014-460.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Run 'yum update php-ZendFramework' to update your system."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Auth-Adapter-Ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Cache-Backend-Apc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Cache-Backend-Libmemcached");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Cache-Backend-Memcached");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Captcha");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Db-Adapter-Mysqli");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Db-Adapter-Pdo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Db-Adapter-Pdo-Mssql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Db-Adapter-Pdo-Mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Db-Adapter-Pdo-Pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Dojo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Feed");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Pdf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Search-Lucene");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Serializer-Adapter-Igbinary");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Services");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-Soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-demos");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-extras");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:php-ZendFramework-full");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/10/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/12/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/12/15");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Auth-Adapter-Ldap-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Cache-Backend-Apc-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Cache-Backend-Libmemcached-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Cache-Backend-Memcached-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Captcha-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Db-Adapter-Mysqli-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Db-Adapter-Pdo-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Db-Adapter-Pdo-Mssql-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Db-Adapter-Pdo-Mysql-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Db-Adapter-Pdo-Pgsql-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Dojo-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Feed-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Ldap-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Pdf-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Search-Lucene-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Serializer-Adapter-Igbinary-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Services-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-Soap-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-demos-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-extras-1.12.9-1.10.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"php-ZendFramework-full-1.12.9-1.10.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "php-ZendFramework / php-ZendFramework-Auth-Adapter-Ldap / etc");
}
VendorProductVersionCPE
amazonlinuxphp-zendframeworkp-cpe:/a:amazon:linux:php-zendframework
amazonlinuxphp-zendframework-auth-adapter-ldapp-cpe:/a:amazon:linux:php-zendframework-auth-adapter-ldap
amazonlinuxphp-zendframework-cache-backend-apcp-cpe:/a:amazon:linux:php-zendframework-cache-backend-apc
amazonlinuxphp-zendframework-cache-backend-libmemcachedp-cpe:/a:amazon:linux:php-zendframework-cache-backend-libmemcached
amazonlinuxphp-zendframework-cache-backend-memcachedp-cpe:/a:amazon:linux:php-zendframework-cache-backend-memcached
amazonlinuxphp-zendframework-captchap-cpe:/a:amazon:linux:php-zendframework-captcha
amazonlinuxphp-zendframework-db-adapter-mysqlip-cpe:/a:amazon:linux:php-zendframework-db-adapter-mysqli
amazonlinuxphp-zendframework-db-adapter-pdop-cpe:/a:amazon:linux:php-zendframework-db-adapter-pdo
amazonlinuxphp-zendframework-db-adapter-pdo-mssqlp-cpe:/a:amazon:linux:php-zendframework-db-adapter-pdo-mssql
amazonlinuxphp-zendframework-db-adapter-pdo-mysqlp-cpe:/a:amazon:linux:php-zendframework-db-adapter-pdo-mysql
Rows per page:
1-10 of 231

Related

nessus 10
fedora 8
openvas 11
amazon 1
mageia 1
friendsofphp 6
cve 2
cvelist 2
veracode 1
nvd 2
github 2
prion 2
ubuntucve 2
osv 6
securityvulns 5
debian 4
rapid7blog 1
nessus
nessus
Fedora 21 : php-ZendFramework2-2.3.3-1.fc21 (2014-12676)
2014-10-16 00:00:00
Fedora 19 : php-ZendFramework2-2.2.8-2.fc19 (2014-14043)
2014-11-11 00:00:00
Fedora 20 : php-ZendFramework-1.12.9-1.fc20 (2014-12418)
2014-10-20 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: php-ZendFramework2-2.3.3-1.fc21
2014-10-16 02:00:15
[SECURITY] Fedora 21 Update: php-ZendFramework-1.12.9-1.fc21
2014-11-01 16:20:08
[SECURITY] Fedora 19 Update: php-ZendFramework-1.12.9-1.fc19
2014-10-17 08:37:23
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0434)
2022-01-28 00:00:00
Fedora Update for php-ZendFramework2 FEDORA-2014-14043
2014-11-11 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-460)
2015-09-08 00:00:00
amazon
amazon
Medium: php-ZendFramework
2014-12-11 14:23:00
mageia
mageia
Updated php-ZendFramework packages fix security vulnerabilities
2014-10-29 14:30:40
friendsofphp
friendsofphp
SQL injection vector when manually quoting values for sqlsrv extension, using null byte
2014-09-16 22:00:00
SQL injection vector when manually quoting values for sqlsrv extension, using null byte
2014-09-16 22:00:00
SQL injection vector when manually quoting values for sqlsrv extension, using null byte
2014-09-16 22:00:00
cve
cve
CVE-2014-8089
2020-02-17 22:15:11
CVE-2014-8088
2014-10-22 14:55:07
cvelist
cvelist
CVE-2014-8089
2020-02-17 21:39:04
CVE-2014-8088
2014-10-22 14:00:00
veracode
veracode
Sql Injection
2024-04-26 12:28:57
nvd
nvd
CVE-2014-8089
2020-02-17 22:15:11
CVE-2014-8088
2014-10-22 14:55:07
github
github
Zend Framework SQL injection vulnerability
2024-04-23 22:39:03
Zend Access Restriction Bypass
2022-05-17 00:28:35
prion
prion
Sql injection
2020-02-17 22:15:00
Authentication flaw
2014-10-22 14:55:00
ubuntucve
ubuntucve
CVE-2014-8089
2020-02-17 00:00:00
CVE-2014-8088
2014-10-22 00:00:00
osv
osv
Zend Framework SQL injection vulnerability
2024-04-23 22:39:03
Zend Access Restriction Bypass
2022-05-17 00:28:35
zendframework - security update
2015-05-20 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:216 ] php-ZendFramework
2014-12-01 00:00:00
[ MDVSA-2015:097 ] php-ZendFramework
2015-05-12 00:00:00
[SECURITY] [DSA 3265-1] zendframework security update
2015-06-08 00:00:00
debian
debian
[SECURITY] [DSA 3265-1] zendframework security update
2015-05-20 09:37:25
[SECURITY] [DSA 3265-2] zendframework regression update
2015-05-24 11:55:24
[SECURITY] [DLA 251-2] zendframework regression update
2015-06-23 20:26:59
rapid7blog
rapid7blog
NICER Protocol Deep Dive: Internet Exposure of HTTP and HTTPS
2021-01-29 14:20:22

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

78.7%

JSON
Related for ALA_ALAS-2014-460.NASL
nessus10fedora8openvas11amazon1mageia1friendsofphp6cve2cvelist2veracode1nvd2github2prion2ubuntucve2osv6securityvulns5debian4rapid7blog1