Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-3815.NASL
HistoryMar 24, 2017 - 12:00 a.m.

Debian DSA-3815-1 : wordpress - security update

2017-03-2400:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
33

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.003

Percentile

71.8%

JSON

Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to delete unintended files, mount Cross-Site Scripting attacks, or bypass redirect URL validation mechanisms.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-3815. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(97922);
  script_version("3.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2017-6814", "CVE-2017-6815", "CVE-2017-6816", "CVE-2017-6817");
  script_xref(name:"DSA", value:"3815");

  script_name(english:"Debian DSA-3815-1 : wordpress - security update");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several vulnerabilities were discovered in wordpress, a web blogging
tool. They would allow remote attackers to delete unintended files,
mount Cross-Site Scripting attacks, or bypass redirect URL validation
mechanisms."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857026"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/jessie/wordpress"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2017/dsa-3815"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the wordpress packages.

For the stable distribution (jessie), these problems have been fixed
in version 4.1+dfsg-1+deb8u13.

For the upcoming stable (stretch) and unstable (sid) distributions,
these problems have been fixed in version 4.7.3+dfsg-1."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wordpress");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/03/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/03/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/03/24");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"8.0", prefix:"wordpress", reference:"4.1+dfsg-1+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"wordpress-l10n", reference:"4.1+dfsg-1+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"wordpress-theme-twentyfifteen", reference:"4.1+dfsg-1+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"wordpress-theme-twentyfourteen", reference:"4.1+dfsg-1+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"wordpress-theme-twentythirteen", reference:"4.1+dfsg-1+deb8u13")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Related

openvas 5
debian 3
osv 6
nessus 13
archlinux 1
prion 4
cve 4
debiancve 4
nvd 4
cvelist 4
wpvulndb 4
ubuntucve 4
openvas
openvas
Debian Security Advisory DSA 3815-1 (wordpress - security update)
2017-03-23 00:00:00
Debian: Security Advisory (DSA-3815-1)
2017-03-22 00:00:00
Debian: Security Advisory (DLA-860-1)
2018-01-11 00:00:00
debian
debian
[SECURITY] [DSA 3815-1] wordpress security update
2017-03-23 07:56:13
[SECURITY] [DSA 3815-1] wordpress security update
2017-03-23 07:56:13
[SECURITY] [DLA 860-1] wordpress security update
2017-03-17 11:22:03
osv
osv
wordpress - security update
2017-03-23 00:00:00
wordpress - security update
2017-03-17 00:00:00
CVE-2017-6815
2017-03-12 01:59:00
nessus
nessus
Debian DLA-860-1 : wordpress security update
2017-03-20 00:00:00
WordPress 4.1.x < 4.1.16 Multiple Vulnerabilities
2018-11-05 00:00:00
WordPress 4.0.x < 4.0.16 Multiple Vulnerabilities
2018-11-05 00:00:00
archlinux
archlinux
[ASA-201703-14] wordpress: multiple issues
2017-03-16 00:00:00
prion
prion
Input validation
2017-03-12 01:59:00
Cross site scripting
2017-03-12 01:59:00
Cross site scripting
2017-03-12 01:59:00
cve
cve
CVE-2017-6815
2017-03-12 01:59:00
CVE-2017-6817
2017-03-12 01:59:00
CVE-2017-6814
2017-03-12 01:59:00
debiancve
debiancve
CVE-2017-6814
2017-03-12 01:59:00
CVE-2017-6817
2017-03-12 01:59:00
CVE-2017-6815
2017-03-12 01:59:00
nvd
nvd
CVE-2017-6815
2017-03-12 01:59:00
CVE-2017-6814
2017-03-12 01:59:00
CVE-2017-6817
2017-03-12 01:59:00
cvelist
cvelist
CVE-2017-6815
2017-03-12 01:00:00
CVE-2017-6817
2017-03-12 01:00:00
CVE-2017-6814
2017-03-12 01:00:00
wpvulndb
wpvulndb
WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
2017-03-06 00:00:00
WordPress 4.0-4.7.2 - Authenticated Stored Cross-Site Scripting (XSS) in YouTube URL Embeds
2017-03-06 00:00:00
WordPress 3.6.0-4.7.2 - Authenticated Cross-Site Scripting (XSS) via Media File Metadata
2017-03-06 00:00:00
ubuntucve
ubuntucve
CVE-2017-6815
2017-03-12 00:00:00
CVE-2017-6817
2017-03-12 00:00:00
CVE-2017-6814
2017-03-12 00:00:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.003

Percentile

71.8%

JSON
Related for DEBIAN_DSA-3815.NASL
openvas5debian3osv6nessus13archlinux1prion4cve4debiancve4nvd4cvelist4wpvulndb4ubuntucve4