Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2018 Tenable Network Security, Inc.CISCO_TELEPRESENCE_MCU_CVE_2013_3379.NASL
HistoryJul 24, 2013 - 12:00 a.m.

Cisco TelePresence Management Address Unspecified Admin Access

2013-07-2400:00:00
This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.
www.tenable.com
15

8.3 High

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

39.6%

JSON

According to the self-reported version returned by the SNMP service on the remote device, it is affected by a vulnerability that could allow an unauthorized user to gain admin access on the administration interface.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(69050);
  script_version("1.6");
  script_cvs_date("Date: 2018/11/15 20:50:20");

  script_cve_id("CVE-2013-3379");
  script_bugtraq_id(60679);

  script_name(english:"Cisco TelePresence Management Address Unspecified Admin Access");
  script_summary(english:"Checks software version");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote device is affected by a flaw that could allow an
unauthorized user to obtain admin access."
  );
  script_set_attribute(
    attribute:"description",
    value:
"According to the self-reported version returned by the SNMP service on
the remote device, it is affected by a vulnerability that could allow an
unauthorized user to gain admin access on the administration interface."
  );
  # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130619-tpc
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ee78a164");
  script_set_attribute(attribute:"solution", value:
"Upgrade to the appropriate software version per the vendor's
advisory.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/06/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/06/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/07/24");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_e20");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:telepresence_mxp_software");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:telepresence_9000_mxp");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:telepresence_6000_mxp");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:telepresence_c_series_software");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_codec_c40");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_codec_c60");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_codec_c90");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_ex90");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_ex60");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CISCO");

  script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");

  script_dependencies("cisco_telepresence_mcu_detect.nasl");
  script_require_keys("Cisco/TelePresence_MCU/Version");
  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

device = get_kb_item_or_exit("Cisco/TelePresence_MCU/Device");
version = get_kb_item_or_exit("Cisco/TelePresence_MCU/Version");

fix = '';
found_affected_device = FALSE;

if (
  # all of the devices I've seen running TC4.1.x so far don't
  # have a string after "MCU" in the sysDesc.  The report_paranoia
  # check below will allow this scan to flag potentially vulnerable
  # installs at the cost of a possible false positive, although the
  # advisory from cisco doesn't list any non affected products
  (device == "unknown" && report_paranoia > 1) ||

  "TelePresence Profile" >< device || # profile series
   # quick set series
   device =~ " SX20($|[ \n\r])" || device =~ " C20($|[ \n\r])" ||
   # c series
   device =~ " C40($|[ \n\r])" || device =~ " C60($|[ \n\r])" ||
   device =~ " C90($|[ \n\r])" ||
   # MX Series
   device =~ " MX200($|[ \n\r])" || device =~ " MX300($|[ \n\r])" ||
   # EX Series
   device =~ " EX60($|[ \n\r])" || device =~ " EX90($|[ \n\r])"
)
{
  found_affected_device = TRUE;
  item = eregmatch(pattern: "^TC([0-9.]+)", string: version);
  if (
    !isnull(item) && 
    ver_compare(ver:item[1], fix:"4.2", strict:FALSE) == -1
  )
  {
    version = item[0];
    fix = "TC4.2";
  }
}

if (!found_affected_device) exit(0, "The remote TelePresence Device is not affected.");

if (fix != '')
{
  if (report_verbosity > 0)
  {
    report = '\n  Detected version : ' + version +
             '\n  Fixed version    : ' + fix + '\n';
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
}
else audit(AUDIT_INST_VER_NOT_VULN, "Cisco TelePresence Codecs", version);
VendorProductVersionCPE
ciscotelepresence_c_series_softwarecpe:/a:cisco:telepresence_c_series_software
ciscotelepresence_codec_c40cpe:/h:cisco:telepresence_codec_c40
ciscotelepresence_e20cpe:/h:cisco:telepresence_e20
ciscotelepresence_mxp_softwarecpe:/a:cisco:telepresence_mxp_software
ciscotelepresence_9000_mxpcpe:/a:cisco:telepresence_9000_mxp
ciscotelepresence_6000_mxpcpe:/a:cisco:telepresence_6000_mxp
ciscotelepresence_codec_c60cpe:/h:cisco:telepresence_codec_c60
ciscotelepresence_codec_c90cpe:/h:cisco:telepresence_codec_c90
ciscotelepresence_ex90cpe:/h:cisco:telepresence_ex90
ciscotelepresence_ex60cpe:/h:cisco:telepresence_ex60

Related

prion 1
nvd 1
cvelist 1
cve 1
cisco 1
securityvulns 1
prion
prion
Design/Logic Flaw
2013-06-21 13:57:00
nvd
nvd
CVE-2013-3379
2013-06-21 13:57:25
cvelist
cvelist
CVE-2013-3379
2022-10-03 16:14:45
cve
cve
CVE-2013-3379
2022-10-03 16:14:45
cisco
cisco
Multiple Vulnerabilities in Cisco TelePresence TC and TE Software
2013-06-19 16:00:00
securityvulns
securityvulns
Cisco TelePresence security vulnerabilities
2013-08-12 00:00:00

8.3 High

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

39.6%

JSON
Related for CISCO_TELEPRESENCE_MCU_CVE_2013_3379.NASL
prion1nvd1cvelist1cve1cisco1securityvulns1