Lucene search
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.MANDRIVA_MDVSA-2014-189.NASLHistorySep 26, 2014 - 12:00 a.m.
Mandriva Linux Security Advisory : nss (MDVSA-2014:189)
2014-09-2600:00:00
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.
www.tenable.com
13
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.038
Percentile
91.9%
A vulnerability has been discovered and corrected in Mozilla NSS :
Antoine Delignat-Lavaud, security researcher at Inria Paris in team Prosecco, reported an issue in Network Security Services (NSS) libraries affecting all versions. He discovered that NSS is vulnerable to a variant of a signature forgery attack previously published by Daniel Bleichenbacher. This is due to lenient parsing of ASN.1 values involved in a signature and could lead to the forging of RSA certificates (CVE-2014-1568).
The updated NSPR packages have been upgraded to the latest 4.10.7 version.
The updated NSS packages have been upgraded to the latest 3.17.1 version which is not vulnerable to this issue.
Additionally the rootcerts package has also been updated to the latest version as of 2014-08-05.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandriva Linux Security Advisory MDVSA-2014:189.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(77889);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2014-1568");
script_bugtraq_id(70116);
script_xref(name:"MDVSA", value:"2014:189");
script_name(english:"Mandriva Linux Security Advisory : nss (MDVSA-2014:189)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mandriva Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"A vulnerability has been discovered and corrected in Mozilla NSS :
Antoine Delignat-Lavaud, security researcher at Inria Paris in team
Prosecco, reported an issue in Network Security Services (NSS)
libraries affecting all versions. He discovered that NSS is vulnerable
to a variant of a signature forgery attack previously published by
Daniel Bleichenbacher. This is due to lenient parsing of ASN.1 values
involved in a signature and could lead to the forging of RSA
certificates (CVE-2014-1568).
The updated NSPR packages have been upgraded to the latest 4.10.7
version.
The updated NSS packages have been upgraded to the latest 3.17.1
version which is not vulnerable to this issue.
Additionally the rootcerts package has also been updated to the latest
version as of 2014-08-05."
);
script_set_attribute(
attribute:"see_also",
value:"https://www.mozilla.org/security/announce/2014/mfsa2014-73.html"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64nspr-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64nspr4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64nss-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64nss-static-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64nss3");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:nss");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:nss-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:rootcerts");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:rootcerts-java");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");
script_set_attribute(attribute:"patch_publication_date", value:"2014/09/25");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/09/26");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64nspr-devel-4.10.7-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64nspr4-4.10.7-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64nss-devel-3.17.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64nss-static-devel-3.17.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64nss3-3.17.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"nss-3.17.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", reference:"nss-doc-3.17.1-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"rootcerts-20140805.00-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"rootcerts-java-20140805.00-1.mbs1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-424)
2015-09-08 00:00:00
Seamonkey RSA Spoof Vulnerability (Sep 2014) - Mac OS X
2014-09-30 00:00:00
Mozilla Firefox ESR RSA Spoof Vulnerability (Sep 2014) - Windows
2014-09-29 00:00:00
nessus
nessus
Debian DSA-3034-1 : iceweasel - security update
2014-09-26 00:00:00
Oracle Linux 5 / 6 / 7 : nss (ELSA-2014-1307)
2014-09-29 00:00:00
SuSE 11.3 Security Update : mozilla-nss (SAT Patch Number 9777)
2014-09-29 00:00:00
osv
osv
nss - security update
2014-09-25 00:00:00
CVE-2018-16253
2018-11-07 20:29:00
CVE-2018-16152
2018-09-26 21:29:01
debian
debian
[SECURITY] [DSA 3033-1] nss security update
2014-09-25 00:23:40
[SECURITY] [DSA 3037-1] icedove security update
2014-09-26 19:31:43
[SECURITY] [DLA 62-1] nss security update
2014-09-25 14:59:30
suse
suse
Security update for mozilla-nss (important)
2014-10-01 17:04:53
NSS update to avoid signature forgery (critical)
2014-09-28 12:04:18
Security update for mozilla-nss (important)
2014-09-27 00:04:18
prion
prion
Design/Logic Flaw
2014-09-25 17:55:00
Code injection
2018-11-07 20:29:00
Design/Logic Flaw
2018-09-26 21:29:00
centos
centos
nss security update
2014-09-26 11:29:24
cert
cert
mozilla
mozilla
RSA Signature Forgery in NSS — Mozilla
2014-09-24 00:00:00
amazon
amazon
Important: nss
2014-10-01 16:32:00
Important: nss-softokn
2014-10-01 16:32:00
Important: nss-util
2014-10-01 16:32:00
veracode
veracode
Spoofable RSA Signatures
2019-01-15 09:01:59
redhat
redhat
(RHSA-2014:1307) Important: nss security update
2014-09-26 00:00:00
(RHSA-2014:1371) Important: nss security update
2014-10-10 00:00:00
(RHSA-2014:1354) Critical: rhev-hypervisor6 security update
2014-10-02 00:00:00
archlinux
archlinux
NSS: Signature forgery attack
2014-09-24 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-09-24 00:00:00
NSS vulnerability
2014-09-24 00:00:00
Firefox vulnerabilities
2014-09-24 00:00:00
mageia
mageia
Updated nss packages fix CVE-2014-1568
2014-09-26 19:55:04
fedora
fedora
[SECURITY] Fedora 21 Update: nss-3.17.1-1.fc21
2014-09-29 04:00:07
[SECURITY] Fedora 21 Update: nss-softokn-3.17.1-2.fc21
2014-09-29 04:00:06
[SECURITY] Fedora 21 Update: nss-util-3.17.1-1.fc21
2014-09-29 04:00:07
checkpoint_advisories
checkpoint_advisories
Mozilla Network Security Services RSA Signature Forgery (CVE-2014-1568)
2014-10-19 00:00:00
debiancve
debiancve
ubuntucve
ubuntucve
CVE-2014-1568
2014-09-24 00:00:00
CVE-2018-16152
2018-09-24 00:00:00
freebsd
freebsd
NSS -- RSA Signature Forgery
2014-09-23 00:00:00
chromium -- RSA signature malleability in NSS
2014-09-24 00:00:00
cvelist
cvelist
cve
cve
oraclelinux
oraclelinux
nss security update
2014-09-26 00:00:00
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
2014-12-02 00:00:00
nvd
nvd
chrome
chrome
Stable Channel Update
2014-09-24 00:00:00
redhatcve
redhatcve
CVE-2018-16152
2018-10-03 20:20:39
alpinelinux
alpinelinux
CVE-2018-16152
2018-09-26 21:29:01
ibm
ibm
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-04-17 00:00:00
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-01-25 00:00:00
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2015-07-20 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2015
2015-04-14 00:00:00
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
Oracle Critical Patch Update Advisory - July 2015
2015-07-14 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.038
Percentile
91.9%
Related for MANDRIVA_MDVSA-2014-189.NASL