MCAFEE FOUNDSTONE FSL UPDATE

Transcription

1 2015-SEP-03 FSL version MCAFEE FOUNDSTONE FSL UPDATE To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release. NEW CHECKS Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE , CVE ELSA OEL6 firefox el6_7 i386 firefox el6_7 OEL5 firefox el5_11 i386 firefox el5_11 OEL7 firefox el7_ Debian Linux 7.0, 8.0 DSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE , CVE

2 DSA Debian 8.0 all iceweasel_38.2.1esr-1~deb8u1 Debian 7.0 all iceweasel_38.2.1esr-1~deb7u Red Hat Enterprise Linux RHSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE , CVE RHSA RHEL5S firefox-debuginfo el5_11 firefox el5_11 i386 firefox-debuginfo el5_11 firefox el5_11 RHEL5D firefox-debuginfo el5_11 firefox el5_11 i386 firefox-debuginfo el5_11 firefox el5_11 RHEL6S firefox-debuginfo el6_7 firefox el6_7 i386 firefox-debuginfo el6_7

3 firefox el6_7 RHEL7D firefox el7_1 firefox-debuginfo el7_1 RHEL6D firefox-debuginfo el6_7 firefox el6_7 i386 firefox-debuginfo el6_7 firefox el6_7 RHEL7S firefox el7_1 firefox-debuginfo el7_1 RHEL6WS firefox-debuginfo el6_7 firefox el6_7 i386 firefox-debuginfo el6_7 firefox el6_7 RHEL7WS firefox el7_1 firefox-debuginfo el7_ SuSE Linux 13.1 opensuse-su-2015: Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE opensuse-su-2015: SuSE Linux 13.1 MozillaThunderbird-debugsource MozillaThunderbird-translations-other MozillaThunderbird-devel

4 MozillaThunderbird-buildsymbols MozillaThunderbird MozillaThunderbird-translations-common MozillaThunderbird-debuginfo i586 MozillaThunderbird-debugsource MozillaThunderbird-translations-other MozillaThunderbird-devel MozillaThunderbird-buildsymbols MozillaThunderbird MozillaThunderbird-translations-common MozillaThunderbird-debuginfo SuSE Linux 13.2 opensuse-su-2015: Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE opensuse-su-2015: SuSE Linux 13.2 MozillaThunderbird-devel MozillaThunderbird-buildsymbols MozillaThunderbird-debugsource MozillaThunderbird-translations-common MozillaThunderbird MozillaThunderbird-translations-other MozillaThunderbird-debuginfo i586 MozillaThunderbird-devel MozillaThunderbird-buildsymbols MozillaThunderbird-debugsource MozillaThunderbird-translations-common MozillaThunderbird MozillaThunderbird-translations-other MozillaThunderbird-debuginfo FreeBSD mozilla Multiple Vulnerabilities (237a201c-888b-487f-84d3-7d d6) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE , CVE

5 mozilla -- multiple vulnerabilities (237a201c-888b-487f-84d3-7d d6) Affected packages: firefox < ,1 linux-firefox < ,1 firefox-esr < , Ubuntu Linux 12.04, 14.04, USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE USN Ubuntu firefox_ build1-0ubuntu Ubuntu firefox_ build1-0ubuntu Ubuntu firefox_ build1-0ubuntu Fedora Linux 21 FEDORA Update Is Not Installed CVE: CVE , CVE , CVE FEDORA

6 Fedora Core 21 openssh-6.6.1p1-16.fc (HT205046) Apple QuickTime Multiple Vulnerabilities Prior To Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE Multiple vulnerabilities are present in some versions of Apple QuickTime. Apple QuickTime is a media player. Multiple vulnerabilities are present in some versions of Apple QuickTime. The flaws occur due to multiple memory corruption issues. Successful exploitation could allow an attacker to cause application crash or execute arbitrary code (SA-CORE ) Drupal Core Multiple Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE , CVE , CVE , CVE , CVE Multiple vulnerabilities are present in some versions of Drupal. Drupal is a popular open source content management system. Multiple vulnerabilities are present in some versions of Drupal. The flaws lie in multiple components. Successful exploitation by a remote attacker may bypass security measure or execute remote code VideoLAN VLC Media Player 3GP File Arbitrary Pointer Dereference Vulnerability Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE An arbitrary pointer dereference vulnerability is present in some versions of VideoLAN VLC Media Player. VideoLAN VLC Media Player is a popular open source media player.

7 An arbitrary pointer dereference vulnerability is present in some versions of VideoLAN VLC Media Player. The flaw lies in libmp4.c. Successful exploitation could allow an attacker to cause denial of service or execute arbitrary code Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE ELSA OEL6 jakarta-taglibs-standard el6_7 jakarta-taglibs-standard-javadoc el6_7 i386 jakarta-taglibs-standard el6_7 jakarta-taglibs-standard-javadoc el6_7 OEL7 jakarta-taglibs-standard-javadoc el7_1 jakarta-taglibs-standard el7_ Debian Linux 7.0, 8.0 DSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE DSA Debian 8.0 all drupal7_ deb8u5 Debian 7.0 all

8 drupal7_ deb7u Red Hat Enterprise Linux RHSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE RHSA RHEL7WS noarch jakarta-taglibs-standard-javadoc el7_1 jakarta-taglibs-standard el7_1 RHEL7D noarch jakarta-taglibs-standard-javadoc el7_1 jakarta-taglibs-standard el7_1 RHEL6D noarch jakarta-taglibs-standard el6_7 jakarta-taglibs-standard-javadoc el6_7 RHEL6S noarch jakarta-taglibs-standard el6_7 jakarta-taglibs-standard-javadoc el6_7 RHEL7S noarch jakarta-taglibs-standard-javadoc el7_1 jakarta-taglibs-standard el7_ SuSE SLES 12, SLED 12 SUSE-SU-2015: Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE SUSE-SU-2015:1445-1

9 SuSE SLED 12 busybox SuSE SLES 12 busybox Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE USN Ubuntu cups-filters-ippusbxd_ ubuntu Ubuntu Linux 12.04, 14.04, USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE USN Ubuntu qemu-system-misc_2.0.0+dfsg-2ubuntu1.17 qemu-system-aarch64_2.0.0+dfsg-2ubuntu1.17 qemu-system-sparc_2.0.0+dfsg-2ubuntu1.17 qemu-system-arm_2.0.0+dfsg-2ubuntu1.17 qemu-system_2.0.0+dfsg-2ubuntu1.17 qemu-system-mips_2.0.0+dfsg-2ubuntu1.17 qemu-system-x86_2.0.0+dfsg-2ubuntu1.17

10 qemu-system-ppc_2.0.0+dfsg-2ubuntu1.17 Ubuntu qemu-system-mips_2.2+dfsg-5expubuntu9.4 qemu-system-arm_2.2+dfsg-5expubuntu9.4 qemu-system-x86_2.2+dfsg-5expubuntu9.4 qemu-system-misc_2.2+dfsg-5expubuntu9.4 qemu-system_2.2+dfsg-5expubuntu9.4 qemu-system-aarch64_2.2+dfsg-5expubuntu9.4 qemu-system-ppc_2.2+dfsg-5expubuntu9.4 qemu-system-sparc_2.2+dfsg-5expubuntu9.4 Ubuntu qemu-kvm_1.0+noroms-0ubuntu Fedora Linux 23 FEDORA Update Is Not Installed CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE FEDORA Fedora Core 23 mediawiki fc Fedora Linux 23 FEDORA Update Is Not Installed CVE: CVE , CVE FEDORA Fedora Core 23

11 xen fc Fedora Linux 21 FEDORA Update Is Not Installed CVE: CVE , CVE , CVE , CVE , CVE FEDORA Fedora Core 21 qemu fc Fedora Linux 23 FEDORA Update Is Not Installed CVE: CVE , CVE , CVE , CVE , CVE FEDORA Fedora Core 23 drupal fc Slackware Linux 13.37, 14.0, 14.1 SSA: Update Is Not Installed Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes CVE: CVE SSA:

12 Slackware 14.1 gdk-pixbuf Slackware gdk-pixbuf Slackware 14.0 gdk-pixbuf Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE ELSA OEL6 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 i386 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 OEL7 gdk-pixbuf el7_1 gdk-pixbuf2-devel el7_ Red Hat Enterprise Linux RHSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE

13 RHSA RHEL7WS gdk-pixbuf2-debuginfo el7_1 gdk-pixbuf el7_1 gdk-pixbuf2-devel el7_1 RHEL7D gdk-pixbuf2-debuginfo el7_1 gdk-pixbuf el7_1 gdk-pixbuf2-devel el7_1 RHEL6D gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 i386 gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 RHEL6S gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 i386 gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 RHEL7S gdk-pixbuf2-debuginfo el7_1 gdk-pixbuf el7_1 gdk-pixbuf2-devel el7_1 RHEL6WS gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7 i386 gdk-pixbuf2-debuginfo el6_7 gdk-pixbuf el6_7 gdk-pixbuf2-devel el6_7

14 FreeBSD ffmpeg Use After Free (da434a78-e342-4d9a-87e2-7497e5f117ba) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE ffmpeg -- use after free (da434a78-e342-4d9a-87e2-7497e5f117ba) Affected packages: 11.0 <= libav < 11.4 libav < 10.7 gstreamer1-libav < ,1 <= ffmpeg < , ,1 <= ffmpeg < 2.1.7,1 ffmpeg < 2.0.7,1 ffmpeg25 < ffmpeg24 < ffmpeg23 < ffmpeg1 < FreeBSD ffmpeg Out-of-bounds Array Access (80c66af0-d1c5-449e-bd31-63b12525ff88) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE ffmpeg -- out-of-bounds array access (80c66af0-d1c5-449e-bd31-63b12525ff88) Affected packages: 11.0 <= libav < 11.4 libav < 10.7 gstreamer1-libav < ,1 <= ffmpeg < ,1 ffmpeg < 2.0.7,1 ffmpeg26 < ffmpeg25 < ffmpeg24 < kodi < 15.1 mplayer < 1.1.r mencoder < 1.1.r

15 FreeBSD ghostscript Denial Of Service (crash) via crafted Postscript files (fc1f6658-4f53-11e5-934b bf5) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE ghostscript -- denial of service (crash) via crafted Postscript files (fc1f6658-4f53-11e5-934b bf5) Affected packages: ghostscript7 < 7.07_32 ghostscript7-nox11 < 7.07_32 ghostscript7-base < 7.07_32 ghostscript7-x11 < 7.07_32 ghostscript8 < 8.71_19 ghostscript8-nox11 < 8.71_19 ghostscript8-base < 8.71_19 ghostscript8-x11 < 8.71_19 ghostscript9 < 9.06_11 ghostscript9-nox11 < 9.06_11 ghostscript9-base < 9.06_11 ghostscript9-x11 < 9.06_11 ghostscript9-agpl < 9.15_2 ghostscript9-agpl-nox11 < 9.15_2 ghostscript9-agpl-base < 9.16_2 ghostscript9-agpl-x11 < 9.16_ Ubuntu Linux 12.04, 14.04, USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE USN Ubuntu libexpat1_ ubuntu1.1 lib64expat1_ ubuntu1.1

16 Ubuntu lib64expat1_ ubuntu1.1 libexpat1_ ubuntu1.1 Ubuntu libexpat1_ ubuntu1.2 lib64expat1_ ubuntu Ubuntu Linux 12.04, 14.04, USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE USN Ubuntu libgdk-pixbuf2.0-0_ ubuntu1.1 Ubuntu libgdk-pixbuf2.0-0_ ubuntu0.1 Ubuntu libgdk-pixbuf2.0-0_ ubuntu Fedora Linux 21 FEDORA Update Is Not Installed CVE: CVE FEDORA Fedora Core 21

17 php-guzzle-guzzle fc21 php-zendframework fc Fedora Linux 22 FEDORA Update Is Not Installed CVE: CVE FEDORA Fedora Core 22 php-zendframework fc22 php-guzzle-guzzle fc (APSB15-21) Vulnerability In ColdFusion Category: Windows Host Assessment -> Adobe Patches Only (CATEGORY REQUIRES CREDENTIALS) CVE: CVE A vulnerability is present in some versions of Adobe ColdFusion. Adobe ColdFusion is a web application development platform. A vulnerability is present in some versions of Adobe ColdFusion. The flaw lies in BlazeDS. Successful exploitation could allow an attacker to access sensitive information. The update provided by Adobe bulletin APSB15-21 resolves this issue. The target system appears to be missing this update IBM WebSphere Application Server Java Portlet Specification JSR 286 Information Disclosure Vulnerability Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE An information disclosure vulnerability is present in some versions of IBM WebSphere Application Server.

18 IBM WebSphere Application Server is a Java application server. An information disclosure vulnerability is present in some versions of IBM WebSphere Application Server. The flaw lies in Java Portlet Specification JSR 286 API. Successful exploitation could allow an attacker to obtain obtain configuration data and other sensitive information Oracle Solaris Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE SunOS 5.10: Oracle Snap Management Utility for Oracle Databases patch SOLARIS_10 ORCLsmu:1.2.0,REV= Oracle Solaris Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE SunOS 5.10(x86): Oracle Snap Management Utility for Oracle Databases patch SOLARIS_10_x86 ORCLsmu:1.2.0,REV= SuSE SLES 12, SLED 12 SUSE-SU-2015: Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

19 CVE: CVE SUSE-SU-2015: SuSE SLED 12 perl-xml-libxml-debuginfo perl-xml-libxml perl-xml-libxml-debugsource SuSE SLES 12 perl-xml-libxml-debuginfo perl-xml-libxml perl-xml-libxml-debugsource Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE USN Ubuntu libgnutls-deb0-28_ ubuntu Fedora Linux 23 FEDORA Update Is Not Installed CVE: CVE FEDORA

20 Fedora Core 23 gnutls fc Fedora Linux 21 FEDORA Update Is Not Installed CVE: CVE FEDORA Fedora Core 21 rubygem-rack fc SolarWinds N-Able N-Central Administrator Account Password Disclosure Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE An information disclosure vulnerability is present in some versions of SolarWinds N-Able N-Central. SolarWinds N-Able N-Central is a popular enterprise and management support solution. An information disclosure vulnerability is present in some versions of SolarWinds N-Able N-Central. The flaw is due to the encrypted password is accessible by any authenticated local or remote user from within from the RSM web page source. Successful exploitation could allow an attacker to decrypt and obtain the domain administrator password used by the software Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE

21 ELSA OEL6 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-devel el6_7 nss-softokn el6_7 i386 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-devel el6_7 nss-softokn el6_7 OEL7 nss-softokn-freebl el7_1 nss-softokn-freebl-devel el7_1 nss-softokn el7_1 nss-softokn-devel el7_ Oracle VM OVMSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes CVE: CVE OVMSA OVM3.3 nss-softokn-freebl el6_7 nss-softokn el6_ Red Hat Enterprise Linux RHSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE

22 RHSA RHEL7WS nss-softokn-freebl-devel el7_1 nss-softokn-freebl el7_1 nss-softokn-debuginfo el7_1 nss-softokn el7_1 nss-softokn-devel el7_1 RHEL7D nss-softokn-freebl-devel el7_1 nss-softokn-freebl el7_1 nss-softokn-debuginfo el7_1 nss-softokn el7_1 nss-softokn-devel el7_1 RHEL6D nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_7 i386 nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_7 RHEL6S nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_7 i386 nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_7 RHEL7S nss-softokn-freebl-devel el7_1

23 nss-softokn-freebl el7_1 nss-softokn-debuginfo el7_1 nss-softokn el7_1 nss-softokn-devel el7_1 RHEL6WS nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_7 i386 nss-softokn-devel el6_7 nss-softokn-freebl-devel el6_7 nss-softokn-freebl el6_7 nss-softokn-debuginfo el6_7 nss-softokn el6_ SuSE Linux 13.2 opensuse-su-2015: Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE opensuse-su-2015: SuSE Linux 13.2 noarch ansible Fedora Linux 22 FEDORA Update Is Not Installed CVE: CVE , CVE FEDORA

24 Fedora Core 22 rt fc Fedora Linux 21 FEDORA Update Is Not Installed CVE: CVE , CVE FEDORA Fedora Core 21 rt fc Slackware Linux 14.1 SSA: Update Is Not Installed Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low SSA: Slackware 14.1 mozilla-firefox esr Debian Linux 8.0 DSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low DSA

25 Debian 8.0 all php-twig-doc_ deb8u1 php-twig_ deb8u1 php5-twig_ deb8u Debian Linux 7.0, 8.0 DSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE , CVE , CVE , CVE , CVE DSA Debian 8.0 all php5_ dfsg-0+deb8u1 Debian 7.0 all php5_ deb7u FreeBSD graphviz Format String Vulnerability ( b-4e61-11e5-9ad8-14dae9d210b8) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low graphviz -- format string vulnerability ( b-4e61-11e5-9ad8-14dae9d210b8) Affected packages: graphviz < _7

26 Fedora Linux 23 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 23 pcre fc Fedora Linux 22 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 22 php-twig fc Fedora Linux 21 FEDORA Update Is Not Installed Risk Level: Low FEDORA

27 Fedora Core 21 mariadb fc Fedora Linux 21 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 21 maradns fc Fedora Linux 22 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 22 maradns fc Fedora Linux 23 FEDORA Update Is Not Installed Risk Level: Low

28 FEDORA Fedora Core 23 maradns fc Fedora Linux 23 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 23 php-twig fc Fedora Linux 23 FEDORA Update Is Not Installed Risk Level: Low FEDORA Fedora Core 23 drupal6-views_bulk_operations fc Endress+Hauser HART Device DTM Vulnerability Category: Windows Host Assessment -> SCADA

29 (CATEGORY REQUIRES CREDENTIALS) Risk Level: Low CVE: CVE A denial of service vulnerability is present in some versions of Endress+Hauser HART DTM Library. Endress+Hauser HART DTM Library is used in Endress+Hauser HART Device DTM. A denial of service vulnerability is present in some versions of Endress+Hauser HART DTM Library. The flaw occurs due to a buffer overflow issue. Successful exploitation could allow an attacker to crash the Field Device Tool (FDT) Frame Application (SOL17189) F5 BIG-IP Apache HTTP Server Vulnerability Category: SSH Module -> NonIntrusive -> F5 Risk Level: Low CVE: CVE A vulnerability is present in some versions of F5 BIG-IP products. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A vulnerability is present in some versions of F5 BIG-IP products. The flaw lies in the mod_negotiation module in the Apache HTTP Server. Successful exploitation could allow an attacker to affect integrity of other users. ENHANCED CHECKS The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check GIGABYTE Dldrv2 ActiveX Control Multiple Vulnerabilities Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE , CVE FreeBSD mozilla Multiple Vulnerabilities (d9b43004-f5fd-4807-b1d7-dbf66455b244) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE CVE is updated

30 662 - Finger Backdoor Category: General Vulnerability Assessment -> NonIntrusive -> UNIX CVE: CVE Documentation is updated Finger Command Execution Category: General Vulnerability Assessment -> NonIntrusive -> UNIX CVE: CVE Documentation is updated Creative Software AutoUpdate Engine ActiveX Control Stack Overflow Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE FutureSoft TFTP Server 2000 Remote Denial Of Service Vulnerability Category: General Vulnerability Assessment -> Instrusive -> Miscellaneous EATON VURemote Denial of Service Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) FirebirdSQL Firebird Null Pointer Denial of Service I Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

31 Eaton Network Shutdown Module Pi3Web WebServer Denial of Service Category: General Vulnerability Assessment -> NonIntrusive -> SCADA Delta Electronics WPLSoft DVPSimulator.exe Buffer Overflow Remote Code Execution Category: General Vulnerability Assessment -> Instrusive -> SCADA FrameFlow Server Monitor Unspecified Defect Denial Of Service Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Emerson ROCLINK 800 arpro2.dll ActiveX Control Remote Code Execution Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Cogent DataHub Web Server Gamma Injection Remote Code Execution Category: General Vulnerability Assessment -> Instrusive -> SCADA

32 Cogent DataHub Web Server Gamma Injection Remote Code Execution Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Oracle Database Server Critical Patch Update April 2015 Category: SSH Module -> NonIntrusive -> SSH Miscellaneous CVE: CVE , CVE , CVE , CVE FASLScript is updated Oracle Database Server Critical Patch Update July 2015 Category: SSH Module -> NonIntrusive -> SSH Miscellaneous CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE FASLScript is updated (MS15-093) Microsoft Internet Explorer Memory Corruption Remote Code Execution ( ) Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS) CVE: CVE Name is updated csmailto.cgi Command Execution Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE RSYNC heap overflow and remote code execution Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous

33 CVE: CVE is updated FASLScript is updated GAMSoft TelSrv Long Username Denial of Service Category: General Vulnerability Assessment -> Instrusive -> UNIX CVE: CVE , CVE , CVE , CVE , CVE Sendmail SSLV2 Disable Option Not Allowed Category: General Vulnerability Assessment -> NonIntrusive -> UNIX CVE: CVE FASLScript is updated EMC AutoStart Remote Code Execution Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) EMC AlphaStor Remote Code Execution Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous CYME Power Engineering ChartFX Client Server ActiveX Control Array Indexing Remote Code Execution Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

34 Oracle Database Server Critical Patch Update January 2015 Category: SSH Module -> NonIntrusive -> SSH Miscellaneous CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE , CVE FASLScript is updated Compaq Web-Based Management default page Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE FactoSystem Weblog Multiple SQL Injection Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE glftpd Default Credentials Unauthorized Access Vulnerability Category: General Vulnerability Assessment -> Instrusive -> UNIX CVE: CVE CoCSoft Stream Down Response Buffer Overflow Remote Code Execution Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE DotNetNuke DNNArticle Module "categoryid" SQL Injection Vulnerability Category: General Vulnerability Assessment -> Instrusive -> Web Server

35 CVE: CVE Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE , CVE , CVE , CVE , CVE , CVE , CVE FreeBSD chicken Buffer Overrun In Substring-index[-ci] (e7b7f2b5-177a-11e5-ad33-f8d111029e6a) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE

36 Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE , CVE , CVE

37 Fedora Linux 22 FEDORA Update Is Not Installed CVE: CVE Compaq Survey Utility Anonymous Login Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE FormMail.pl Detected Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE FTP Brute Force Category: General Vulnerability Assessment -> Instrusive -> BruteForce CVE: CVE Documentation is updated Efficient Networks 5861 Router NMap Denial-of-Service Category: General Vulnerability Assessment -> NonIntrusive -> Network CVE: CVE Cisco TFTP Server Denial of Service Vulnerability Category: Windows Host Assessment -> Miscellaneous

38 (CATEGORY REQUIRES CREDENTIALS) glftpd ZIP Plugins Multiple Directory Traversal Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> UNIX CVE: CVE Citrix MetaFrame Client Specified Published Applications Enumeration Information Disclosure Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous D-Link DIR-635 "data" Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities Category: Wireless Assessment -> NonIntrusive -> Wireless Cisco Video Surveillance Operations Manager Help Page Redirection Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE DotNetNuke Multiple Modules Arbitrary File Disclosure Vulnerability Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

39 FESTO Robotino View Unspecified Defect Remote Denial of Service Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Google Android Bluetooth Forced Pairing Vulnerability Category: Wireless Assessment -> NonIntrusive -> Android CVE: CVE Documentation is updated Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes

40 CVE: CVE Ubuntu Linux USN Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE FTP Anonymous User Account ftp Accessible Category: General Vulnerability Assessment -> NonIntrusive -> Miscellaneous Risk Level: Low CVE: CVE Documentation is updated FreeBSD libpgf Use After Free (9a71953a-474a-11e5-adde-14dae9d210b8) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE CVE is updated Oracle Enterprise Linux ELSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Low CVE: CVE Oracle VM OVMSA Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Low CVE: CVE Fedora Linux 22 FEDORA Update Is Not Installed

41 Risk Level: Low CVE: CVE Fedora Linux 21 FEDORA Update Is Not Installed Risk Level: Low CVE: CVE HOW TO UPDATE FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we strongly urge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download any critical updates but will wait for your explicit authorization before installing. FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability category and checking the "Run New Checks" checkbox. MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts will be automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on. MCAFEE TECHNICAL SUPPORT ServicePortal: Multi-National Phone Support available here: Non-US customers - Select your country from the list of Worldwide Offices. This may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies. Copyright 2015 McAfee, Inc. McAfee is a registered trademark of McAfee, Inc. and/or its affiliates