Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_ILOM_3_2_6.NASL
HistoryOct 20, 2017 - 12:00 a.m.

Oracle Integrated Lights Out Manager (ILOM) < 3.2.6 Multiple Vulnerabilities (uncredentialed check)

2017-10-2000:00:00
This script is Copyright (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
525

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

8.2

Confidence

Low

EPSS

0.566

Percentile

97.7%

JSON

According to its self-reported version number, the version of Oracle Integrated Lights Out Manager (ILOM) is affected by multiple vulnerabilities as described in the advisory.

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(104047);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/05");

  script_cve_id(
    "CVE-2016-6304",
    "CVE-2016-7431",
    "CVE-2017-3588",
    "CVE-2017-10099",
    "CVE-2017-10194",
    "CVE-2017-10260",
    "CVE-2017-10265",
    "CVE-2017-10275"
  );
  script_bugtraq_id(
    93150,
    94454,
    101426,
    101431,
    101435,
    101437,
    101442,
    101445
  );

  script_name(english:"Oracle Integrated Lights Out Manager (ILOM) < 3.2.6 Multiple Vulnerabilities (uncredentialed check)");

  script_set_attribute(attribute:"synopsis", value:
"A network management system installed on the remote host is affected
by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version number, the version of Oracle
Integrated Lights Out Manager (ILOM) is affected by multiple vulnerabilities
as described in the advisory.");
  # http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1e07fa0e");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Oracle Integrated Lights Out Manager (ILOM) 3.2.6 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-10265");

  script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/10/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/10/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/10/20");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:sun:embedded_lights_out_manager");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:integrated_lights_out_manager_firmware");
  script_set_attribute(attribute:"enable_cgi_scanning", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2017-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_ilom_web_detect.nasl");
  script_require_keys("installed_sw/ilom", "Settings/ParanoidReport");
  script_exclude_keys("Settings/disable_cgi_scanning");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
include("install_func.inc");

if (report_paranoia < 2) audit(AUDIT_PARANOID);

get_install_count(app_name:"ilom", exit_if_zero:TRUE);

port = get_http_port(default:443);
app = "Oracle ILOM";

install = get_single_install(
  app_name : "ilom",
  port     : port,
  exit_if_unknown_ver : TRUE
  );
version = install["version"];
path = install["path"];
url = build_url(port:port, qs:path);

fix = "3.2.6";

if (ver_compare(ver:version, fix:fix) == -1)
{
  report =
  '\n  URL               : ' + url +
  '\n  Installed version : ' + version +
  '\n  Fixed version     : ' + fix +
  '\n';
  security_report_v4(port:port, extra:report, severity:SECURITY_HOLE);
}
else audit(AUDIT_WEB_APP_NOT_AFFECTED, app, url, version);
VendorProductVersionCPE
sunembedded_lights_out_managercpe:/a:sun:embedded_lights_out_manager
oracleintegrated_lights_out_manager_firmwarecpe:/o:oracle:integrated_lights_out_manager_firmware

Related

prion 8
cve 8
nvd 8
cvelist 8
openvas 25
zdt 1
f5 3
veracode 2
nessus 37
alpinelinux 1
hackerone 1
redhat 10
ubuntucve 3
checkpoint_advisories 1
osv 1
debiancve 2
openssl 1
ibm 45
redhatcve 1
threatpost 2
thn 1
amazon 1
talos 1
seebug 1
freebsd 2
freebsd_advisory 2
suse 6
archlinux 1
huawei 1
kaspersky 1
symantec 1
slackware 1
cert 1
ics 1
cisco 1
fedora 3
oraclelinux 1
centos 1
altlinux 3
cloudfoundry 1
prion
prion
Code injection
2017-10-19 17:29:00
Buffer overflow
2017-10-19 17:29:00
Code injection
2017-10-19 17:29:00
cve
cve
CVE-2017-10260
2017-10-19 17:29:01
CVE-2017-10265
2017-10-19 17:29:01
CVE-2017-10275
2017-10-19 17:29:01
nvd
nvd
CVE-2017-10265
2017-10-19 17:29:01
CVE-2017-10260
2017-10-19 17:29:01
CVE-2017-10275
2017-10-19 17:29:01
cvelist
cvelist
CVE-2017-10260
2017-10-19 17:00:00
CVE-2017-10265
2017-10-19 17:00:00
CVE-2017-10275
2017-10-19 17:00:00
openvas
openvas
NTP.org 'ntpd' Zero Origin Timestamp Regression Vulnerability (Nov 2016)
2016-06-03 00:00:00
OpenSSL OCSP Status Request extension unbounded memory growth Vulnerability - Linux
2016-09-26 00:00:00
OpenSSL OCSP Status Request extension unbounded memory growth Vulnerability - Windows
2016-09-26 00:00:00
zdt
zdt
OpenSSL OCSP Status Request Extension Unbounded Memory Growth Vulnerability
2016-10-21 00:00:00
f5
f5
SOL54211024 - OpenSSL vulnerability CVE-2016-6304
2016-11-02 00:00:00
K54211024 : OpenSSL vulnerability CVE-2016-6304
2016-11-02 00:00:00
K80996302 : Multiple NTP vulnerabilities
2016-12-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2017-01-26 01:52:41
Denial Of Service (DoS)
2019-01-15 09:14:47
nessus
nessus
F5 Networks BIG-IP : OpenSSL vulnerability (K54211024)
2016-11-03 00:00:00
RHEL 6 : openssl (RHSA-2016:2802)
2016-11-17 00:00:00
Amazon Linux AMI : openssl (ALAS-2016-749)
2016-09-23 00:00:00
alpinelinux
alpinelinux
CVE-2016-6304
2016-09-26 19:59:00
hackerone
hackerone
Internet Bug Bounty: OCSP Status Request extension unbounded memory growth (CVE-2016-6304)
2017-03-29 01:24:57
redhat
redhat
(RHSA-2016:2802) Important: openssl security update
2016-11-17 12:52:35
(RHSA-2017:2494) Important: Red Hat JBoss Web Server 2 security update
2017-08-21 15:21:48
(RHSA-2017:1658) Important: Red Hat JBoss Enterprise Application Platform 6.4.16 natives update
2017-06-28 19:58:57
ubuntucve
ubuntucve
CVE-2016-6304
2016-09-22 00:00:00
CVE-2016-7431
2017-01-13 00:00:00
CVE-2016-9042
2016-12-31 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenSSL OCSP Extension Unbounded Memory Denial of Service (CVE-2016-6304)
2016-09-22 00:00:00
osv
osv
CVE-2016-6304
2016-09-26 19:59:00
debiancve
debiancve
CVE-2016-6304
2016-09-26 19:59:00
CVE-2016-7431
2017-01-13 16:59:00
openssl
openssl
Vulnerability in OpenSSL CVE-2016-6304
2016-09-22 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in NTP affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter systems
2023-04-14 14:32:25
Security Bulletin: Vulnerabilities in OpenSSL affect IBM Enterprise Content Management System Monitor (CVE-2016-6304, CVE-2016-2177)
2018-06-17 12:17:29
Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru, QLogic 8Gb Intelligent Pass-thru Module & SAN Switch Module for BladeCenter and QLogic Virtual Fabric Extension Module for IBM BladeCenter
2019-01-31 02:25:02
redhatcve
redhatcve
CVE-2016-7431
2016-11-22 10:47:56
threatpost
threatpost
OpenSSL Patches High-Severity OCSP Bug, Mitigates SWEET32 Attack
2016-09-23 15:47:13
Oracle Fixes 253 Vulnerabilities in Last CPU of 2016
2016-10-19 13:39:40
thn
thn
Critical DoS Flaw found in OpenSSL — How It Works
2016-09-23 01:10:00
amazon
amazon
Important: openssl
2016-09-22 16:00:00
talos
talos
Network Time Protocol Origin Timestamp Check Denial of Service Vulnerability
2017-03-29 00:00:00
seebug
seebug
Network Time Protocol Origin Timestamp Check Denial of Service Vulnerability(CVE-2016-9042)
2017-09-20 00:00:00
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities of ntp
2016-12-22 00:00:00
ntp -- multiple vulnerabilities
2016-11-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:39.ntp
2016-12-22 00:00:00
FreeBSD-SA-16:26.openssl
2016-09-23 00:00:00
suse
suse
Security update for nodejs4 (important)
2016-11-01 16:19:35
Security update for nodejs4 (important)
2016-10-06 20:14:21
Security update for nodejs (important)
2016-10-11 19:20:03
archlinux
archlinux
[ASA-201611-28] ntp: multiple issues
2016-11-26 00:00:00
huawei
huawei
Security Advisory - Multiple NTPd Vulnerabilities in Huawei Products
2017-11-29 00:00:00
kaspersky
kaspersky
KLA10888 Multiple vulnerabilities in Oracle VM VirtualBox
2016-10-19 00:00:00
symantec
symantec
SA139 : November 2016 NTP Security Vulnerabilities
2017-01-12 08:00:00
slackware
slackware
[slackware-security] ntp
2016-11-21 19:25:10
cert
cert
NTP.org ntpd contains multiple denial of service vulnerabilities
2016-11-21 00:00:00
ics
ics
Advantech Spectre RT Industrial Routers
2021-02-23 12:00:00
cisco
cisco
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: November 2016
2016-11-23 16:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: openssl-1.0.2j-1.fc25
2016-10-09 03:28:42
[SECURITY] Fedora 23 Update: openssl-1.0.2j-1.fc23
2016-10-11 23:24:05
[SECURITY] Fedora 24 Update: openssl-1.0.2j-1.fc24
2016-09-28 01:57:16
oraclelinux
oraclelinux
openssl security update
2016-09-27 00:00:00
centos
centos
openssl security update
2016-09-28 14:48:04
altlinux
altlinux
Security fix for the ALT Linux 10 package openssl1.1 version 1.0.2i-alt1
2016-09-22 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.2i-alt1
2016-09-22 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.2i-alt1
2016-09-22 00:00:00
cloudfoundry
cloudfoundry
USN-3087-2 OpenSSL Regression | Cloud Foundry
2016-09-28 00:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

8.2

Confidence

Low

EPSS

0.566

Percentile

97.7%

JSON
Related for ORACLE_ILOM_3_2_6.NASL
prion8cve8nvd8cvelist8openvas25zdt1f53veracode2nessus37alpinelinux1hackerone1redhat10ubuntucve3checkpoint_advisories1osv1debiancve2openssl1ibm45redhatcve1threatpost2thn1amazon1talos1seebug1freebsd2freebsd_advisory2suse6archlinux1huawei1kaspersky1symantec1slackware1cert1ics1cisco1fedora3oraclelinux1centos1altlinux3cloudfoundry1