Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2016-2093.NASL
HistoryOct 24, 2016 - 12:00 a.m.

Oracle Linux 5 / 6 : bind (ELSA-2016-2093)

2016-10-2400:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.242

Percentile

96.6%

JSON

From Red Hat Security Advisory 2016:2093 :

An update for bind is now available for Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

Security Fix(es) :

  • A denial of service flaw was found in the way BIND handled packets with malformed options. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS packet. (CVE-2016-2848)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:2093 and 
# Oracle Linux Security Advisory ELSA-2016-2093 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(94221);
  script_version("2.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2016-2848");
  script_xref(name:"RHSA", value:"2016:2093");

  script_name(english:"Oracle Linux 5 / 6 : bind (ELSA-2016-2093)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Oracle Linux host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"From Red Hat Security Advisory 2016:2093 :

An update for bind is now available for Red Hat Enterprise Linux 5 and
Red Hat Enterprise Linux 6.

Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the
Domain Name System (DNS) protocols. BIND includes a DNS server
(named); a resolver library (routines for applications to use when
interfacing with DNS); and tools for verifying that the DNS server is
operating correctly.

Security Fix(es) :

* A denial of service flaw was found in the way BIND handled packets
with malformed options. A remote attacker could use this flaw to make
named exit unexpectedly with an assertion failure via a specially
crafted DNS packet. (CVE-2016-2848)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://oss.oracle.com/pipermail/el-errata/2016-October/006421.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://oss.oracle.com/pipermail/el-errata/2016-October/006422.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected bind packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-chroot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-libbind-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-sdb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:bind-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:caching-nameserver");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:5");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:6");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/10/21");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/10/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/10/24");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Oracle Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^(5|6)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 5 / 6", "Oracle Linux " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);

flag = 0;
if (rpm_check(release:"EL5", reference:"bind-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-chroot-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-devel-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-libbind-devel-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-libs-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-sdb-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"bind-utils-9.3.6-25.P1.el5_11.10")) flag++;
if (rpm_check(release:"EL5", reference:"caching-nameserver-9.3.6-25.P1.el5_11.10")) flag++;

if (rpm_check(release:"EL6", reference:"bind-9.8.2-0.47.rc1.el6_8.2")) flag++;
if (rpm_check(release:"EL6", reference:"bind-chroot-9.8.2-0.47.rc1.el6_8.2")) flag++;
if (rpm_check(release:"EL6", reference:"bind-devel-9.8.2-0.47.rc1.el6_8.2")) flag++;
if (rpm_check(release:"EL6", reference:"bind-libs-9.8.2-0.47.rc1.el6_8.2")) flag++;
if (rpm_check(release:"EL6", reference:"bind-sdb-9.8.2-0.47.rc1.el6_8.2")) flag++;
if (rpm_check(release:"EL6", reference:"bind-utils-9.8.2-0.47.rc1.el6_8.2")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bind / bind-chroot / bind-devel / bind-libbind-devel / bind-libs / etc");
}
VendorProductVersionCPE
oraclelinuxbindp-cpe:/a:oracle:linux:bind
oraclelinuxbind-chrootp-cpe:/a:oracle:linux:bind-chroot
oraclelinuxbind-develp-cpe:/a:oracle:linux:bind-devel
oraclelinuxbind-libbind-develp-cpe:/a:oracle:linux:bind-libbind-devel
oraclelinuxbind-libsp-cpe:/a:oracle:linux:bind-libs
oraclelinuxbind-sdbp-cpe:/a:oracle:linux:bind-sdb
oraclelinuxbind-utilsp-cpe:/a:oracle:linux:bind-utils
oraclelinuxcaching-nameserverp-cpe:/a:oracle:linux:caching-nameserver
oraclelinux5cpe:/o:oracle:linux:5
oraclelinux6cpe:/o:oracle:linux:6

Related

f5 2
ubuntu 1
nessus 25
openvas 11
centos 2
ubuntucve 1
redhatcve 1
osv 1
cvelist 1
redhat 3
debian 1
amazon 1
prion 1
debiancve 1
nvd 1
cve 1
veracode 1
aix 1
altlinux 1
checkpoint_advisories 1
ibm 1
oraclelinux 2
kitploit 1
f5
f5
SOL01471335 - BIND vulnerability CVE-2016-2848
2016-10-27 00:00:00
K01471335 : BIND vulnerability CVE-2016-2848
2016-10-27 00:00:00
ubuntu
ubuntu
Bind vulnerability
2016-10-21 00:00:00
nessus
nessus
Scientific Linux Security Update : bind on SL5.x, SL6.x i386/x86_64 (20161020)
2016-10-21 00:00:00
CentOS 5 : bind97 (CESA-2016:2094)
2016-10-24 00:00:00
RHEL 5 : bind97 (RHSA-2016:2094)
2016-10-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3108-1)
2016-10-22 00:00:00
RedHat Update for bind RHSA-2016:2093-01
2016-10-21 00:00:00
ISC BIND NSID Request Denial of Service Vulnerability - Windows
2016-10-24 00:00:00
centos
centos
bind, caching security update
2016-10-21 21:24:40
bind97 security update
2016-10-21 22:01:10
ubuntucve
ubuntucve
CVE-2016-2848
2016-10-21 00:00:00
redhatcve
redhatcve
CVE-2016-2848
2016-10-20 18:47:25
osv
osv
bind9 - security update
2016-10-20 00:00:00
cvelist
cvelist
CVE-2016-2848
2016-10-21 10:00:00
redhat
redhat
(RHSA-2016:2094) Important: bind97 security update
2016-10-20 00:00:00
(RHSA-2016:2093) Important: bind security update
2016-10-20 00:00:00
(RHSA-2016:2099) Important: bind security update
2016-10-25 07:38:10
debian
debian
[SECURITY] [DLA 672-1] bind9 security update
2016-10-20 17:52:34
amazon
amazon
Important: bind
2016-10-20 11:32:00
prion
prion
Design/Logic Flaw
2016-10-21 10:59:00
debiancve
debiancve
CVE-2016-2848
2016-10-21 10:59:00
nvd
nvd
CVE-2016-2848
2016-10-21 10:59:00
cve
cve
CVE-2016-2848
2016-10-21 10:59:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:13:56
aix
aix
There are two vulnerabilities in BIND that impact AIX.,Vulnerabilities in BIND impact AIX
2016-12-15 22:06:41
altlinux
altlinux
Security fix for the ALT Linux 6 package bind version 9.3.6-alt7.M60P.3
2016-10-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Non Compliant DNS (CVE-2014-3859; CVE-2016-2848; CVE-2016-5426)
2019-06-23 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Samba, BIND and Libreswan affect IBM Netezza Host Management
2019-10-18 03:10:29
oraclelinux
oraclelinux
bind security update
2016-10-20 00:00:00
bind97 security update
2016-10-20 00:00:00
kitploit
kitploit
Vision2 - Nmap's XML result parse and NVD's CPE correlation to search CVE
2017-09-08 13:30:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.242

Percentile

96.6%

JSON
Related for ORACLELINUX_ELSA-2016-2093.NASL
f52ubuntu1nessus25openvas11centos2ubuntucve1redhatcve1osv1cvelist1redhat3debian1amazon1prion1debiancve1nvd1cve1veracode1aix1altlinux1checkpoint_advisories1ibm1oraclelinux2kitploit1