MCAFEE FOUNDSTONE FSL UPDATE

MCAFEE FOUNDSTONE FSL UPDATE 2014-JUL-16 To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release. NEW CHECKS 16812-3S Software CoDeSys Gateway Server Denial of Service Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) A vulnerability in some versions of 3S Software CoDeSys Gateway Server could lead to a denial of service. A vulnerability in some versions of 3S Software CoDeSys Gateway Server could lead to a denial of service. The flaw is due to an unspecified defect. Successful exploitation by a remote attacker could result in a denial of service condition. 16820 - IBM AIX Multiple Java Vulnerabilities (April 2014) Category: SSH Module -> NonIntrusive -> AIX Patches and Hotfixes CVE: CVE-2013-6629, CVE-2013-6954, CVE-2014-0429, CVE-2014-0446, CVE-2014-0448, CVE-2014-0449, CVE-2014-0451, CVE-2014-0452, CVE-2014-0453, CVE-2014-0454, CVE-2014-0455, CVE-2014-0457, CVE-2014-0458, CVE-2014-0459, CVE- 2014-0460, CVE-2014-0461, CVE-2014-0878, CVE-2014-1876, CVE-2014-2398, CVE-2014-2401, CVE-2014-2402, CVE-2014-2409, CVE-2014-2412, CVE-2014-2414, CVE-2014-2420, CVE-2014-2421, CVE-2014-2423, CVE-2014-2427, CVE-2014-2428 Multiple vulnerabilities are present in some versions of IBM Java. IBM Java is used to run java application. Multiple vulnerabilities are present in some versions of IBM Java. The flaws lie in multiple components. Successful exploitation could allow an attacker to disclose sensitive information, manipulate certain data, cause a denial of service or compromise a vulnerable system. 16825 - (SOL15319) F5 BIG-IP Linux kernel TTY Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2014-0196 A denial of service vulnerability is present in some versions of F5 BIG-IP systems.

F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies in drivers/tty/n_tty.c in the Linux kernel. Successful exploitation by a remote attacker could cause a denial of service condition or a privilege escalation. 16827 - Cisco IOS OpenSSL Multiple Vulnerabilities (CSCup22590) Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes CVE: CVE-2014-0195, CVE-2014-0221, CVE-2014-0224 Multiple vulnerabilities are present in some versions of Cisco IOS. Cisco IOS is an operating system used in Cisco devices. Multiple vulnerabilities are present in some versions of Cisco IOS. The flaw lies in OpenSSL. Successful exploitation could allow an attacker to cause denial of service, obtain sensitive information and execute arbitrary code. 16829 - (VMSA-2014-0007) VMware vcenter Operations Manager (vcops) Two Vulnerabilities Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-0050, CVE-2014-0112 DISA IAVA: 2014-B-0090 Multiple vulnerabilities are present in some versions of VMware vcenter Operations Manager. VMware vcenter Operations Manager is a scalable and extensible platform to manage VMware vsphere. Multiple vulnerabilities are present in some versions of VMware vcenter Operations Manager. The flaws lie in the Apache Tomcat component. Successful exploitation could allow an attacker to execute remote code or cause a denial of service condition. 16830 - (SOL15317) F5 BIG-IP Linux Kernel Denial of Service Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2014-0101 A denial of service vulnerability is present in some versions of F5 BIG-IP systems. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies in net/sctp/sm_statefuns.c in the Linux kernel. Successful exploitation by a remote attacker could cause a denial of service condition.

16832-3S Software CoDeSys Webserver Stack Buffer Overflow Remote Code Execution Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) A vulnerability in some versions of 3S Software CoDeSys Webserver could lead to remote code execution. A vulnerability in some versions of 3S Software CoDeSys Webserver could lead to remote code execution. The flaw is due to an unspecified defect. Successful exploitation by a remote attacker could result in the execution of arbitrary code or a denial of service. 16835 - (SOL15304) F5 BIG-IP Linux Kernel tcp_rcv_state_process Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2012-6638 A denial of service vulnerability is present in some versions of F5 BIG-IP products. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP products. The flaw lies in tcp_rcv_state_process function of kernel. Successful exploitation could allow an attacker to cause denial of service. 16837 - (SOL15301) F5 BIG-IP Linux Kernel TCP ISN Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2011-3188 A denial of service vulnerability is present in some versions of F5 BIG-IP products. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP products. The flaw lies in Linux kernel. Successful exploitation could allow an attacker to cause denial of service or hijack network sessions. 16903 - Oracle Java SE Critical Patch Update July 2014 Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-2483, CVE-2014-2490, CVE-2014-4208, CVE-2014-4209, CVE-2014-4216, CVE-2014-4218, CVE-2014-4219,

CVE-2014-4220, CVE-2014-4221, CVE-2014-4223, CVE-2014-4227, CVE-2014-4244, CVE-2014-4247, CVE-2014-4252, CVE- 2014-4262, CVE-2014-4263, CVE-2014-4264, CVE-2014-4265, CVE-2014-4266, CVE-2014-4268 Multiple vulnerabilities are present in some versions of Oracle Java SE. Oracle Java SE is used to run Java applications. Multiple vulnerabilities are present in some versions of Oracle Java SE. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code. 88621 - Slackware Linux 14.0, 14.1 SSA:2014-192-01 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3981, CVE-2014-4049 The scan detected that the host is missing the following update: SSA:2014-192-01 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.413705 Slackware 14.1 php-5.4.30--1 Slackware 14.0 php-5.4.30--1 93347 - Mandriva Linux MBS1 MDVSA-2014-132 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-0209, CVE-2014-0210, CVE-2014-0211 The scan detected that the host is missing the following update: MDVSA-2014-132 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:132/ Mandriva Linux mbs1 lib64xfont1-devel-1.4.5-2.2

lib64xfont1-static-devel-1.4.5-2.2 93350 - Mandriva Linux MBS1 MDVSA-2014-130 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-4049, CVE-2014-4721 The scan detected that the host is missing the following update: MDVSA-2014-130 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:130/ Mandriva Linux mbs1 php-cli-5.5.14-1 php-sybase_ct-5.5.14-1 php-dba-5.5.14-1 php-mcrypt-5.5.14-1 php-json-5.5.14-1 php-imap-5.5.14-1 php-wddx-5.5.14-1 php-mysqlnd-5.5.14-1 php-sysvsem-5.5.14-1 php-sockets-5.5.14-1 php-phar-5.5.14-1 php-sqlite3-5.5.14-1 php-sysvshm-5.5.14-1 php-xmlreader-5.5.14-1 php-mysql-5.5.14-1 php-gd-5.5.14-1 php-xmlwriter-5.5.14-1 php-session-5.5.14-1 php-opcache-5.5.14-1 php-tokenizer-5.5.14-1 php-ftp-5.5.14-1 php-xsl-5.5.14-1 php-zip-5.5.14-1 php-xml-5.5.14-1 php-ldap-5.5.14-1 php-recode-5.5.14-1 php-hash-5.5.14-1 php-iconv-5.5.14-1 php-odbc-5.5.14-1 php-pgsql-5.5.14-1 php-fileinfo-5.5.14-1 php-filter-5.5.14-1 php-timezonedb-2014.5-1 php-xmlrpc-5.5.14-1 php-apc-3.1.15-1.8 php-apc-admin-3.1.15-1.8 php-mbstring-5.5.14-1 php-exif-5.5.14-1

php-enchant-5.5.14-1 php-tidy-5.5.14-1 php-shmop-5.5.14-1 php-mysqli-5.5.14-1 php-gmp-5.5.14-1 php-pdo-5.5.14-1 php-readline-5.5.14-1 php-bcmath-5.5.14-1 php-bz2-5.5.14-1 php-zlib-5.5.14-1 lib64php5_common5-5.5.14-1 php-sysvmsg-5.5.14-1 php-gettext-5.5.14-1 php-pdo_mysql-5.5.14-1 php-intl-5.5.14-1 php-cgi-5.5.14-1 php-soap-5.5.14-1 php-curl-5.5.14-1 php-posix-5.5.14-1 php-pdo_sqlite-5.5.14-1 php-ini-5.5.14-1 php-pcntl-5.5.14-1 php-dom-5.5.14-1 php-calendar-5.5.14-1 php-pdo_dblib-5.5.14-1 php-devel-5.5.14-1 php-fpm-5.5.14-1 php-doc-5.5.14-1 php-openssl-5.5.14-1 php-pdo_odbc-5.5.14-1 php-mssql-5.5.14-1 php-snmp-5.5.14-1 php-pdo_pgsql-5.5.14-1 php-ctype-5.5.14-1 93351 - Mandriva Linux MBS1 MDVSA-2014-129 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2012-2795, CVE-2012-5150, CVE-2014-2098, CVE-2014-2099, CVE-2014-2263, CVE-2014-4609, CVE-2014-4610 The scan detected that the host is missing the following update: MDVSA-2014-129 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:129/ Mandriva Linux mbs1 lib64avcodec53-0.10.14-1 lib64postproc52-0.10.14-1 lib64avutil51-0.10.14-1 lib64ffmpeg-devel-0.10.14-1 lib64avformat53-0.10.14-1 lib64swscaler2-0.10.14-1

lib64ffmpeg-static-devel-0.10.14-1 lib64avfilter2-0.10.14-1 lib64swresample0-0.10.14-1 140480 - Red Hat Enterprise Linux RHSA-2014-0860 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE-2014-0537, CVE-2014-0539, CVE-2014-4671 The scan detected that the host is missing the following update: RHSA-2014-0860 https://rhn.redhat.com/errata/rhsa-2014-0860.html RHEL5D flash-plugin-11.2.202.394-1.el5 i386 flash-plugin-11.2.202.394-1.el5 RHEL5S flash-plugin-11.2.202.394-1.el5 i386 flash-plugin-11.2.202.394-1.el5 RHEL6D flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6 RHEL6S flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6 RHEL6WS flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6 140481 - Red Hat Enterprise Linux RHSA-2014-0877 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes

CVE: CVE-2014-3483 The scan detected that the host is missing the following update: RHSA-2014-0877 https://rhn.redhat.com/errata/rhsa-2014-0877.html RHEL6S noarch ror40-rubygem-activerecord-4.0.2-2.2.el6 ror40-rubygem-activerecord-doc-4.0.2-2.2.el6 RHEL6WS noarch ror40-rubygem-activerecord-4.0.2-2.2.el6 ror40-rubygem-activerecord-doc-4.0.2-2.2.el6 140483 - Red Hat Enterprise Linux RHSA-2014-0876 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE-2014-3482 The scan detected that the host is missing the following update: RHSA-2014-0876 https://rhn.redhat.com/errata/rhsa-2014-0876.html RHEL6S noarch ruby193-rubygem-activerecord-3.2.8-8.2.el6 ruby193-rubygem-activerecord-doc-3.2.8-8.2.el6 RHEL6WS noarch ruby193-rubygem-activerecord-3.2.8-8.2.el6 ruby193-rubygem-activerecord-doc-3.2.8-8.2.el6 177951 - Gentoo Linux GLSA-201407-02 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes CVE: CVE-2014-0537, CVE-2014-0539, CVE-2014-4671

The scan detected that the host is missing the following update: GLSA-201407-02 http://security.gentoo.org/glsa/glsa-201407-02.xml Affected packages: www-plugins/adobe-flash < 11.2.202.394 184476 - Ubuntu Linux 10.04, 12.04, 13.10, 14.04 USN-2276-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721 The scan detected that the host is missing the following update: USN-2276-1 https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-july/002581.html Ubuntu 14.04 libapache2-mod-php5_5.5.9+dfsg-1ubuntu4.3 php5-cli_5.5.9+dfsg-1ubuntu4.3 php5-fpm_5.5.9+dfsg-1ubuntu4.3 php5-cgi_5.5.9+dfsg-1ubuntu4.3 Ubuntu 12.04 php5-cli_5.3.10-1ubuntu3.13 php5-cgi_5.3.10-1ubuntu3.13 php5-fpm_5.3.10-1ubuntu3.13 libapache2-mod-php5_5.3.10-1ubuntu3.13 Ubuntu 13.10 libapache2-mod-php5_5.5.3+dfsg-1ubuntu2.6 php5-cli_5.5.3+dfsg-1ubuntu2.6 php5-fpm_5.5.3+dfsg-1ubuntu2.6 php5-cgi_5.5.3+dfsg-1ubuntu2.6 Ubuntu 10.04 php5-cli_5.3.2-1ubuntu4.26 php5-cgi_5.3.2-1ubuntu4.26 libapache2-mod-php5_5.3.2-1ubuntu4.26 188068 - Fedora Linux 19 FEDORA-2014-8034 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

CVE: CVE-2014-3499 The scan detected that the host is missing the following update: FEDORA-2014-8034 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135366.html Fedora Core 19 docker-io-1.0.0-6.fc19 188071 - Fedora Linux 20 FEDORA-2014-8208 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-0209, CVE-2014-0210, CVE-2014-0211 The scan detected that the host is missing the following update: FEDORA-2014-8208 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135401.html Fedora Core 20 libxfont-1.4.8-1.fc20 188073 - Fedora Linux 20 FEDORA-2014-8021 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-3499 The scan detected that the host is missing the following update: FEDORA-2014-8021 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135378.html Fedora Core 20 docker-io-1.0.0-6.fc20

16811 - (VMSA-2014-0006) VMware Update Manager Multiple Vulnerabilities Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2010-5298, CVE-2014-0198, CVE-2014-0224, CVE-2014-3470 DISA IAVA: 2014-B-0091 Multiple vulnerabilities are present in some versions of VMware vsphere Update Manager. VMware vsphere Update Manager automates patch management process of manage VMware vsphere hosts. Multiple vulnerabilities are present in some versions of VMware vsphere Update Manager. The flaws lie in the OpenSSL component. Successful exploitation could allow an attacker to access to private information or cause a denial of service condition. 16821 - (HPSBMU03051) HP System Management Homepage OpenSSL Multiple Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 DISA IAVA: 2014-B-0085 Multiple vulnerabilities are present in some versions of HP System Management Homepage. HP System Management Homepage is a web-based interface that consolidates and simplifies the management of individual ProLiant and Integrity servers. Multiple vulnerabilities are present in some versions of HP System Management Homepage. The flaws lie in OpenSSL library. Successful exploitation could allow an attacker to disclose information, execute remote code or cause a denial of service condition. 16822 - (SOL15329) F5 BIG-IP SSL_MODE_RELEASE_BUFFERS Denial Of Service Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2014-0198 A denial of service vulnerability is present in some versions of F5 BIG-IP systems. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies within the embedded OpenSSL. Successful exploitation could allow an attacker to cause a denial of service condition. 16824 - Cisco Nexus Multiple Products OpenSSL SSL/TLS Handshake and ECDH Ciphersuites

Vulnerabilities Category: SSH Module -> NonIntrusive -> SSH Miscellaneous CVE: CVE-2014-0224, CVE-2014-3470 Multiple vulnerabilities are present in some versions of Cisco NX-OS. Multiple vulnerabilities are present in some versions of Cisco NX-OS. The flaw lies in OpenSSL. Successful exploitation could allow an attacker to disclose certain sensitive information and denial of service condition. 16878 - D-Link DWC-1000 "thispage" Directory Traversal Vulnerability Category: Wireless Assessment -> NonIntrusive -> Wireless CVE: CVE-2014-3226 A directory traversal vulnerability is present in some versions of D-Link DWC-1000 firmware. D-Link DWC-1000 is a wireless router. A directory traversal vulnerability is present in some versions of D-Link DWC-1000 firmware. The flaw lies in platform.cgi. Successful exploitation could allow an attacker to obtain sensitive information. 16882 - (HPSBMU03055) HP Smart Update Manager Multiple Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server CVE: CVE-2010-5298, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 Multiple vulnerabilities are present in some versions of HP Smart Update Manager. HP Smart Update Manager is a installing and updating manager for HP products. Multiple vulnerabilities are present in some versions of HP Smart Update Manager. The flaws lie in the OpenSSL function. Successful exploitation could allow an attacker to unauthorized access, disclose information, execute remote code or cause denial of service. 16885 - (SOL15278) F5 BIG-IP SSL Renegotiation Denial Of Service Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2011-1473

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw occurs when client-initiated renegotiation is not properly restricted within the SSL and TLS protocols. Successful exploitation could allow an attacker to cause a denial of service condition. 58887 - Debian Linux 7.0 DSA-2975-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE-2013-4995, CVE-2013-4996, CVE-2013-5002, CVE-2013-5003, CVE-2014-1879 The scan detected that the host is missing the following update: DSA-2975-1 http://www.debian.org/security/2014/dsa-2975 Debian 7.0 all phpmyadmin_4:3.4.11.1-2+deb7u1 85741 - CentOS 6 CESA-2014-0865 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes CVE: CVE-2014-0075, CVE-2014-0096, CVE-2014-0099 The scan detected that the host is missing the following update: CESA-2014-0865 http://lists.centos.org/pipermail/centos-announce/2014-july/020403.html CentOS 6 noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5

tomcat6-admin-webapps-6.0.24-72.el6_5 85743 - CentOS 7 CESA-2014-0867 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes The scan detected that the host is missing the following update: CESA-2014-0867 http://lists.centos.org/pipermail/centos-announce/2014-july/020407.html CentOS 7 samba-pidl-4.1.1-35.el7_0 samba-devel-4.1.1-35.el7_0 samba-vfs-glusterfs-4.1.1-35.el7_0 samba-winbind-modules-4.1.1-35.el7_0 samba-dc-4.1.1-35.el7_0 samba-common-4.1.1-35.el7_0 samba-python-4.1.1-35.el7_0 libsmbclient-devel-4.1.1-35.el7_0 libwbclient-devel-4.1.1-35.el7_0 samba-test-devel-4.1.1-35.el7_0 samba-4.1.1-35.el7_0 samba-winbind-4.1.1-35.el7_0 libsmbclient-4.1.1-35.el7_0 samba-dc-libs-4.1.1-35.el7_0 samba-test-4.1.1-35.el7_0 samba-winbind-krb5-locator-4.1.1-35.el7_0 libwbclient-4.1.1-35.el7_0 samba-winbind-clients-4.1.1-35.el7_0 samba-client-4.1.1-35.el7_0 samba-libs-4.1.1-35.el7_0 i686 libsmbclient-devel-4.1.1-35.el7_0 libwbclient-4.1.1-35.el7_0 samba-devel-4.1.1-35.el7_0 samba-libs-4.1.1-35.el7_0 samba-winbind-modules-4.1.1-35.el7_0 libwbclient-devel-4.1.1-35.el7_0 libsmbclient-4.1.1-35.el7_0 85744 - CentOS 6, 7 CESA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes CVE: CVE-2014-4607 The scan detected that the host is missing the following update: CESA-2014-0861

http://lists.centos.org/pipermail/centos-announce/2014-july/020401.html http://lists.centos.org/pipermail/centos-announce/2014-july/020406.html CentOS 7 lzo-2.06-6.el7_0.2 lzo-devel-2.06-6.el7_0.2 lzo-minilzo-2.06-6.el7_0.2 i686 lzo-2.06-6.el7_0.2 lzo-devel-2.06-6.el7_0.2 lzo-minilzo-2.06-6.el7_0.2 CentOS 6 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 i686 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 91528 - Oracle Enterprise Linux ELSA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE-2014-4607 The scan detected that the host is missing the following update: ELSA-2014-0861 http://oss.oracle.com/pipermail/el-errata/2014-july/004219.html OEL6 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 91530 - Oracle Enterprise Linux ELSA-2014-0865 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE-2013-4322, CVE-2014-0050, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099 The scan detected that the host is missing the following update: ELSA-2014-0865 http://oss.oracle.com/pipermail/el-errata/2014-july/004220.html OEL6 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 i386 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 93348 - Mandriva Linux MBS1 MDVSA-2014-131 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487 The scan detected that the host is missing the following update: MDVSA-2014-131 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:131/ Mandriva Linux mbs1 lib64magic-devel-5.12-1.3 python-magic-5.12-1.3

lib64magic1-5.12-1.3 lib64magic-static-devel-5.12-1.3 93352 - Mandriva Linux MBS1 MDVSA-2014-127 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-4617 The scan detected that the host is missing the following update: MDVSA-2014-127 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:127/ Mandriva Linux mbs1 gnupg2-2.0.18-3.3 93353 - Mandriva Linux MBS1 MDVSA-2014-128 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-4168 The scan detected that the host is missing the following update: MDVSA-2014-128 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:128/ Mandriva Linux mbs1 iodine-server-0.6.0-0.rc1.3 93354 - Mandriva Linux MBS1 MDVSA-2014-138 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-4046, CVE-2014-4047 The scan detected that the host is missing the following update: MDVSA-2014-138

https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:138/ Mandriva Linux mbs1 asterisk-devel-11.11.0-1 asterisk-plugins-speex-11.11.0-1 asterisk-plugins-mobile-11.11.0-1 asterisk-plugins-cel-11.11.0-1 asterisk-plugins-minivm-11.11.0-1 asterisk-plugins-sqlite-11.11.0-1 asterisk-plugins-pktccops-11.11.0-1 asterisk-plugins-jabber-11.11.0-1 asterisk-plugins-voicemail-plain-11.11.0-1 asterisk-plugins-oss-11.11.0-1 asterisk-plugins-curl-11.11.0-1 asterisk-plugins-pgsql-11.11.0-1 lib64asteriskssl1-11.11.0-1 asterisk-plugins-snmp-11.11.0-1 asterisk-plugins-unistim-11.11.0-1 asterisk-firmware-11.11.0-1 asterisk-plugins-radius-11.11.0-1 asterisk-plugins-saycountpl-11.11.0-1 asterisk-plugins-festival-11.11.0-1 asterisk-plugins-alsa-11.11.0-1 asterisk-plugins-calendar-11.11.0-1 asterisk-plugins-jack-11.11.0-1 asterisk-plugins-skinny-11.11.0-1 asterisk-plugins-voicemail-imap-11.11.0-1 asterisk-plugins-mysql-11.11.0-1 asterisk-plugins-mp3-11.11.0-1 asterisk-plugins-ooh323-11.11.0-1 asterisk-plugins-fax-11.11.0-1 asterisk-plugins-voicemail-11.11.0-1 asterisk-plugins-ldap-11.11.0-1 asterisk-plugins-lua-11.11.0-1 asterisk-gui-11.11.0-1 asterisk-plugins-osp-11.11.0-1 asterisk-addons-11.11.0-1 asterisk-plugins-corosync-11.11.0-1 asterisk-plugins-ices-11.11.0-1 asterisk-plugins-dahdi-11.11.0-1 asterisk-plugins-tds-11.11.0-1 asterisk-plugins-portaudio-11.11.0-1 93355 - Mandriva Linux MBS1 MDVSA-2014-133 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-2497 The scan detected that the host is missing the following update: MDVSA-2014-133

https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:133/ Mandriva Linux mbs1 lib64gd-devel-2.0.35-19.1 lib64gd2-2.0.35-19.1 lib64gd-static-devel-2.0.35-19.1 135064 - Oracle Solaris 11.1.17.5.0 Update Is Not Installed (CVE-2014-4215) CVE: CVE-2014-4215 The scan detected that the host is missing the following update: SRU 11.1.17.5.0 https://support.oracle.com/epmos/faces/documentdisplay?id=1900373.1&_adf.ctrl-state=6alvr2j37_4&_afrloop=344238817435057 135065 - Oracle Solaris 11.1.18.5.0 Update Is Not Installed (CVE-2014-4224) CVE: CVE-2014-4224 The scan detected that the host is missing the following update: SRU 11.1.18.5.0 https://support.oracle.com/epmos/faces/documentdisplay?id=1900373.1&_adf.ctrl-state=6alvr2j37_4&_afrloop=344238817435057 135066 - Oracle Solaris 11.1.19.6.0 Update Is Not Installed (CVE-2014-4239) CVE: CVE-2014-4239 The scan detected that the host is missing the following update: SRU 11.1.19.6.0 https://support.oracle.com/epmos/faces/documentdisplay?id=1900373.1&_adf.ctrl-state=6alvr2j37_4&_afrloop=344238817435057

140484 - Red Hat Enterprise Linux RHSA-2014-0865 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE-2013-4322, CVE-2014-0050, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099 The scan detected that the host is missing the following update: RHSA-2014-0865 https://rhn.redhat.com/errata/rhsa-2014-0865.html RHEL6D noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 RHEL6S noarch tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 RHEL6WS noarch tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 140485 - Red Hat Enterprise Linux RHSA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE-2014-4607 The scan detected that the host is missing the following update: RHSA-2014-0861

https://rhn.redhat.com/errata/rhsa-2014-0861.html RHEL6D lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 RHEL6S lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 RHEL6WS lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 142304 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 gpg2-9433 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2014-4617 The scan detected that the host is missing the following update: gpg2-9433 http://download.novell.com/download?buildid=1-fh-y2ujwk~ http://download.novell.com/download?buildid=_agoxhphp5c~ http://download.novell.com/download?buildid=2lyat4zodga~ http://download.novell.com/download?buildid=0ggkmqjgu50~ http://download.novell.com/download?buildid=x1weeepylbc~ http://download.novell.com/download?buildid=8spqu5cphn8~ http://download.novell.com/download?buildid=wxv39z86i-u~ http://download.novell.com/download?buildid=chwufgghpem~ http://download.novell.com/download?buildid=bfvwmsvgvq0~ SuSE SLED 11 SP3 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1

i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLES 11 SP3 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLED 11 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLES 11 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 142305 - SuSE SLES 10, 10 SP3 quagga-8893 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2013-0149, CVE-2013-2236 The scan detected that the host is missing the following update: quagga-8893 http://download.novell.com/download?buildid=npwk-h5vkm4~ http://download.novell.com/download?buildid=pvn03b2bjre~ http://download.novell.com/download?buildid=psfa_dlxyqm~ http://download.novell.com/download?buildid=arnuipwt8hs~ http://download.novell.com/download?buildid=rondgxhvcka~ http://download.novell.com/download?buildid=luzhyvyi97w~ SuSE SLES 10 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 i586

quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 SuSE SLES 10 SP3 quagga-debuginfo-0.99.9-14.17.12 i586 quagga-debuginfo-0.99.9-14.17.12 142306 - SuSE SLES 10, 10 SP4 quagga-8894 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2013-0149, CVE-2013-2236 The scan detected that the host is missing the following update: quagga-8894 http://download.novell.com/download?buildid=q6aw8em-dr0~ http://download.novell.com/download?buildid=iqfr2uvfyey~ http://download.novell.com/download?buildid=68wxr_hm2o8~ http://download.novell.com/download?buildid=no8z5eidyxq~ http://download.novell.com/download?buildid=5eylk1x3fng~ http://download.novell.com/download?buildid=8thwviux8gg~ SuSE SLES 10 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 i586 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 SuSE SLES 10 SP4 quagga-debuginfo-0.99.9-14.17.12 i586 quagga-debuginfo-0.99.9-14.17.12 142307 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 kde4-kdm-9467 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2013-4132, CVE-2013-4133 The scan detected that the host is missing the following update: kde4-kdm-9467

http://download.novell.com/download?buildid=j8sb6qgiewu~ http://download.novell.com/download?buildid=zovy7rxfhho~ http://download.novell.com/download?buildid=7pscic9gvks~ http://download.novell.com/download?buildid=n7jexkutx7w~ http://download.novell.com/download?buildid=jilsjchayk4~ http://download.novell.com/download?buildid=rou5j9m3ddw~ http://download.novell.com/download?buildid=36fbb187kza~ http://download.novell.com/download?buildid=ttsx2yy3vx8~ http://download.novell.com/download?buildid=hr3xp1ri9p4~ SuSE SLED 11 SP3 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLES 11 SP3 kdm-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLED 11 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1

i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLES 11 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 142308 - SuSE SLED 11 SP3 cabextract-9437 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2010-2800, CVE-2010-2801 The scan detected that the host is missing the following update: cabextract-9437 http://download.novell.com/download?buildid=njhhhghrcpg~ http://download.novell.com/download?buildid=jiqlhguva3m~ SuSE SLED 11 SP3 cabextract-1.2-2.10.1 i586 cabextract-1.2-2.10.1 174518 - Scientific Linux Security ERRATA Moderate: lzo on SL6.x i386/srpm/ (1407-702) Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes CVE: CVE-2014-4607 The scan detected that the host is missing the following update: Security ERRATA Moderate: lzo on SL6.x i386/srpm/

(1407-702) http://listserv.fnal.gov/scripts/wa.exe?a2=ind1407&l=scientific-linux-errata&t=0&p=702 SL6 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 noarch lzo-debuginfo-2.03-3.1.el6_5.1 174519 - Scientific Linux Security ERRATA Moderate: tomcat6 on SL6.x i386/srpm/ (1407-424) Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes CVE: CVE-2013-4322, CVE-2014-0050, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099 The scan detected that the host is missing the following update: Security ERRATA Moderate: tomcat6 on SL6.x i386/srpm/ (1407-424) http://listserv.fnal.gov/scripts/wa.exe?a2=ind1407&l=scientific-linux-errata&t=0&p=424 SL6 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 i386 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5

tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 181224 - FreeBSD postfixadmin SQL Injection Vulnerability (ff98087f-0a8f-11e4-b00b-5453ed2e2b49) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes CVE: CVE-2014-2655 The scan detected that the host is missing the following update: postfixadmin -- SQL injection vulnerability (ff98087f-0a8f-11e4- b00b-5453ed2e2b49) http://www.vuxml.org/freebsd/ff98087f-0a8f-11e4-b00b-5453ed2e2b49.html Affected packages: postfixadmin < 2.3.7 184474 - Ubuntu Linux 10.04, 12.04, 13.10, 14.04 USN-2278-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes CVE: CVE-2013-7345, CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3538 The scan detected that the host is missing the following update: USN-2278-1 https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-july/002584.html Ubuntu 14.04 libmagic1_5.14-2ubuntu3.1 file_5.14-2ubuntu3.1

Ubuntu 12.04 file_5.09-2ubuntu0.4 libmagic1_5.09-2ubuntu0.4 Ubuntu 13.10 file_5.11-2ubuntu4.3 libmagic1_5.11-2ubuntu4.3 Ubuntu 10.04 libmagic1_5.03-5ubuntu1.3 file_5.03-5ubuntu1.3 188067 - Fedora Linux 19 FEDORA-2014-8107 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-4907, CVE-2014-4908 The scan detected that the host is missing the following update: FEDORA-2014-8107 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135362.html Fedora Core 19 pnp4nagios-0.6.22-2.fc19 188069 - Fedora Linux 20 FEDORA-2014-7954 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-0167 The scan detected that the host is missing the following update: FEDORA-2014-7954 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135320.html Fedora Core 20 openstack-nova-2013.2.3-2.fc20

188070 - Fedora Linux 20 FEDORA-2014-8171 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-4699, CVE-2014-4715 The scan detected that the host is missing the following update: FEDORA-2014-8171 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135290.html Fedora Core 20 kernel-3.15.4-200.fc20 188072 - Fedora Linux 20 FEDORA-2014-8098 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2014-4907, CVE-2014-4908 The scan detected that the host is missing the following update: FEDORA-2014-8098 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135371.html Fedora Core 20 pnp4nagios-0.6.22-2.fc20 16888 - (SOL15348) F5 BIG-IP OpenSSL DTLS Denial of Service Vulnerability Category: SSH Module -> NonIntrusive -> F5 CVE: CVE-2009-1387 A denial of service vulnerability is present in some versions of F5 BIG-IP systems. F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System. A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw occurs when it receives an out-ofsequence DTLS handshake message. Successful exploitation could allow an attacker to cause a denial of service condition.

33270 - Oracle Solaris 151009-11 Update Is Not Installed The scan detected that the host is missing the following update: 151009-11 https://getupdates.oracle.com/readme/151009-11 JavaSE 8: update 11 patch (equivalent to JDK 8u11), 64bit SOLARIS_10 SOLARIS_8 SOLARIS_9 SUNWj8man:1.8.0,REV=2014.03.18.08.02 SUNWj8rt:1.8.0,REV=2014.03.18.08.02 SUNWj8jmp:1.8.0,REV=2014.03.18.08.02 SUNWj8cfg:1.8.0,REV=2014.03.18.08.02 SUNWj8dmo:1.8.0,REV=2014.03.18.08.02 SUNWj8dev:1.8.0,REV=2014.03.18.08.02 33271 - Oracle Solaris 151010-11 Update Is Not Installed The scan detected that the host is missing the following update: 151010-11 https://getupdates.oracle.com/readme/151010-11 JavaSE 8(x86): update 11 patch (equivalent to JDK 8u11), 64bit SOLARIS_10_x86 SOLARIS_8_x86 SOLARIS_9_x86 SUNWj8jmp:1.8.0,REV=2014.03.18.07.33 SUNWj8dev:1.8.0,REV=2014.03.18.07.33 SUNWj8dmo:1.8.0,REV=2014.03.18.07.33 SUNWj8rt:1.8.0,REV=2014.03.18.07.33 SUNWj8cfg:1.8.0,REV=2014.03.18.07.33 SUNWj8man:1.8.0,REV=2014.03.18.07.33 55227 - Top Weekly Malware Env - Trojan-urpxedtk (urpxedtk.exe)

Category: Windows Host Assessment -> Top Weekly Malware (CATEGORY REQUIRES CREDENTIALS) The scan detected that the host is infected by the malware: Env - Trojan-urpxedtk (urpxedtk.exe) This malware shows the following behavior: The files and directories below were created: %temp%\\urpxedtk.exe For more information on this malware, visit http://vil.nai.com/vil/default.aspx 58885 - Debian Linux 7.0 DSA-2977-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE-2014-4609 The scan detected that the host is missing the following update: DSA-2977-1 http://www.debian.org/security/2014/dsa-2977 Debian 7.0 all libavfilter-dev_6:0.8.13-1 libavformat53_6:0.8.13-1 libavdevice53_6:0.8.13-1 libavcodec53_6:0.8.13-1 ffmpeg-doc_6:0.8.13-1 libavutil51_6:0.8.13-1 libavcodec-extra-53_6:0.8.13-1 libswscale2_6:0.8.13-1 libav-dbg_6:0.8.13-1 libav-tools_6:0.8.13-1 libavdevice-extra-53_6:0.8.13-1 libavcodec-dev_6:0.8.13-1 libavfilter2_6:0.8.13-1 ffmpeg_6:0.8.13-1 libavfilter-extra-2_6:0.8.13-1 libavformat-extra-53_6:0.8.13-1 libswscale-extra-2_6:0.8.13-1 libswscale-dev_6:0.8.13-1 libavformat-dev_6:0.8.13-1 libav-doc_6:0.8.13-1 libavutil-extra-51_6:0.8.13-1 libpostproc-extra-52_6:0.8.13-1 libpostproc-dev_6:0.8.13-1 libavutil-dev_6:0.8.13-1

ffmpeg-dbg_6:0.8.13-1 libpostproc52_6:0.8.13-1 libav-extra-dbg_6:0.8.13-1 libavdevice-dev_6:0.8.13-1 58886 - Debian Linux 7.0 DSA-2978-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE-2014-0191 The scan detected that the host is missing the following update: DSA-2978-1 http://www.debian.org/security/2014/dsa-2978 Debian 7.0 all python-libxml2-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-utils-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-doc_2.8.0+dfsg1-7+wheezy1 python-libxml2_2.8.0+dfsg1-7+wheezy1 libxml2_2.8.0+dfsg1-7+wheezy1 libxml2-dev_2.8.0+dfsg1-7+wheezy1 libxml2-utils_2.8.0+dfsg1-7+wheezy1 58888 - Debian Linux 7.0 DSA-2976-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes CVE: CVE-2014-0475 The scan detected that the host is missing the following update: DSA-2976-1 http://www.debian.org/security/2014/dsa-2976 Debian 7.0 all libc0.1-i686_2.13-38+deb7u3 libc6-pic_2.13-38+deb7u3 libc0.1-dev-i386_2.13-38+deb7u3 libc6-prof_2.13-38+deb7u3 libnss-files-udeb_2.13-38+deb7u3 glibc-doc_2.13-38+deb7u3 libc6-dev-amd64_2.13-38+deb7u3

nscd_2.13-38+deb7u3 libc6-loongson2f_2.13-38+deb7u3 libc6.1-udeb_2.13-38+deb7u3 libc6-dbg_2.13-38+deb7u3 libc6-dev-i386_2.13-38+deb7u3 libc6.1_2.13-38+deb7u3 libc6-dev-mips64_2.13-38+deb7u3 libc0.1-i386_2.13-38+deb7u3 libc6_2.13-38+deb7u3 multiarch-support_2.13-38+deb7u3 libc0.1-pic_2.13-38+deb7u3 libc6-dev-mipsn32_2.13-38+deb7u3 libc6.1-prof_2.13-38+deb7u3 libc6-mipsn32_2.13-38+deb7u3 libc6-i386_2.13-38+deb7u3 libc6-s390x_2.13-38+deb7u3 libc6-sparc64_2.13-38+deb7u3 libc6-udeb_2.13-38+deb7u3 libc6-ppc64_2.13-38+deb7u3 libc6-dev-s390x_2.13-38+deb7u3 libc6.1-dbg_2.13-38+deb7u3 eglibc-source_2.13-38+deb7u3 libc6.1-pic_2.13-38+deb7u3 libc6-mips64_2.13-38+deb7u3 libc6-i686_2.13-38+deb7u3 libc0.1-dbg_2.13-38+deb7u3 libc-bin_2.13-38+deb7u3 libc6-dev-sparc64_2.13-38+deb7u3 libc0.1_2.13-38+deb7u3 libc0.1-prof_2.13-38+deb7u3 libc6.1-dev_2.13-38+deb7u3 libc6-dev-ppc64_2.13-38+deb7u3 libc6-amd64_2.13-38+deb7u3 libc6-dev-s390_2.13-38+deb7u3 libc-dev-bin_2.13-38+deb7u3 libc6-s390_2.13-38+deb7u3 libnss-dns-udeb_2.13-38+deb7u3 locales-all_2.13-38+deb7u3 locales_2.13-38+deb7u3 libc6-xen_2.13-38+deb7u3 libc6-dev_2.13-38+deb7u3 libc0.1-udeb_2.13-38+deb7u3 libc0.1-dev_2.13-38+deb7u3 85742 - CentOS 5, 6 CESA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes CVE: CVE-2014-0244, CVE-2014-3493 The scan detected that the host is missing the following update: CESA-2014-0866 http://lists.centos.org/pipermail/centos-announce/2014-july/020404.html

http://lists.centos.org/pipermail/centos-announce/2014-july/020405.html CentOS 5 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 CentOS 6 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 i686 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 91529 - Oracle Enterprise Linux ELSA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes CVE: CVE-2014-0244, CVE-2014-3493

The scan detected that the host is missing the following update: ELSA-2014-0866 http://oss.oracle.com/pipermail/el-errata/2014-july/004221.html http://oss.oracle.com/pipermail/el-errata/2014-july/004222.html OEL6 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 i386 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 OEL5 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10

93345 - Mandriva Linux MBS1 MDVSA-2014-136 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-0178, CVE-2014-0244, CVE-2014-3493 The scan detected that the host is missing the following update: MDVSA-2014-136 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:136/ Mandriva Linux mbs1 samba-winbind-3.6.24-1 lib64smbsharemodes0-3.6.24-1 samba-server-3.6.24-1 lib64wbclient-devel-3.6.24-1 samba-virusfilter-clamav-3.6.24-1 samba-virusfilter-fsecure-3.6.24-1 lib64smbclient0-devel-3.6.24-1 lib64smbclient0-3.6.24-1 samba-common-3.6.24-1 nss_wins-3.6.24-1 samba-domainjoin-gui-3.6.24-1 lib64smbclient0-static-devel-3.6.24-1 lib64netapi-devel-3.6.24-1 samba-swat-3.6.24-1 samba-client-3.6.24-1 lib64smbsharemodes-devel-3.6.24-1 samba-doc-3.6.24-1 lib64wbclient0-3.6.24-1 samba-virusfilter-sophos-3.6.24-1 93346 - Mandriva Linux MBS1 MDVSA-2014-135 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-4616 The scan detected that the host is missing the following update: MDVSA-2014-135 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:135/ Mandriva Linux mbs1 python-2.7.3-4.7 python-docs-2.7.3-4.7

lib64python-devel-2.7.3-4.7 python-simplejson-2.3.3-2.1 tkinter-2.7.3-4.7 tkinter-apps-2.7.3-4.7 93349 - Mandriva Linux MBS1 MDVSA-2014-134 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes CVE: CVE-2014-4607 The scan detected that the host is missing the following update: MDVSA-2014-134 https://www.mandriva.com/en/support/security/advisories/mbs1/mdvsa-2014:134/ Mandriva Linux mbs1 lib64lzo-devel-2.08-1 140482 - Red Hat Enterprise Linux RHSA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes CVE: CVE-2014-0244, CVE-2014-3493 The scan detected that the host is missing the following update: RHSA-2014-0866 https://rhn.redhat.com/errata/rhsa-2014-0866.html RHEL5D samba3x-swat-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10

samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 RHEL5S samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 RHEL6D samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 RHEL6S samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5

samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 RHEL6WS samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 142302 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 puppet-9472 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2013-4969, CVE-2014-3248, CVE-2014-3250 The scan detected that the host is missing the following update: puppet-9472 http://download.novell.com/download?buildid=1j7pptmk8s8~ http://download.novell.com/download?buildid=myx70i-zjyc~ http://download.novell.com/download?buildid=ugnlxwuqhom~ http://download.novell.com/download?buildid=fe2dtgah2ag~ http://download.novell.com/download?buildid=br67zzfwbd4~ http://download.novell.com/download?buildid=vltqtyid4p8~ http://download.novell.com/download?buildid=fxddli1nkfc~ http://download.novell.com/download?buildid=popu0r3yk4g~ http://download.novell.com/download?buildid=jtd58zwdtkq~ SuSE SLED 11 SP3 puppet-2.6.18-0.16.1 i586 puppet-2.6.18-0.16.1 SuSE SLES 11 SP3 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1

i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 SuSE SLED 11 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 SuSE SLES 11 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 142303 - SuSE Linux 12.3, 13.1 opensuse-su-2014:0890-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes CVE: CVE-2014-4616 The scan detected that the host is missing the following update: opensuse-su-2014:0890-1 http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html SuSE Linux 13.1 libpython3_3m1_0-debuginfo-32bit-3.3.5-5.12.1 python-doc-2.7.6-8.10.1 python3-base-32bit-3.3.5-5.12.1 python-doc-pdf-2.7.6-8.10.1 python3-doc-3.3.5-5.12.1 python3-doc-pdf-3.3.5-5.12.1 python3-32bit-3.3.5-5.12.1 libpython3_3m1_0-32bit-3.3.5-5.12.1 python3-base-debuginfo-32bit-3.3.5-5.12.1 python3-debuginfo-32bit-3.3.5-5.12.1 python-base-debuginfo-32bit-2.7.6-8.10.1 libpython2_7-1_0-debuginfo-32bit-2.7.6-8.10.1 python-base-32bit-2.7.6-8.10.1 libpython2_7-1_0-32bit-2.7.6-8.10.1 python-debuginfo-32bit-2.7.6-8.10.1 python-32bit-2.7.6-8.10.1 i586 python3-debugsource-3.3.5-5.12.1

python3-base-3.3.5-5.12.1 python3-curses-debuginfo-3.3.5-5.12.1 python-base-debuginfo-2.7.6-8.10.1 python3-debuginfo-3.3.5-5.12.1 python-2.7.6-8.10.1 python-debugsource-2.7.6-8.10.1 python3-base-debuginfo-3.3.5-5.12.1 python-base-2.7.6-8.10.1 libpython2_7-1_0-debuginfo-2.7.6-8.10.1 python3-devel-3.3.5-5.12.1 python-xml-debuginfo-2.7.6-8.10.1 libpython3_3m1_0-debuginfo-3.3.5-5.12.1 python-curses-2.7.6-8.10.1 python3-3.3.5-5.12.1 python-curses-debuginfo-2.7.6-8.10.1 python3-testsuite-3.3.5-5.12.1 libpython3_3m1_0-3.3.5-5.12.1 python-gdbm-2.7.6-8.10.1 python-tk-2.7.6-8.10.1 python-devel-2.7.6-8.10.1 python3-tk-3.3.5-5.12.1 python3-base-debugsource-3.3.5-5.12.1 python-debuginfo-2.7.6-8.10.1 python3-curses-3.3.5-5.12.1 libpython2_7-1_0-2.7.6-8.10.1 python3-tools-3.3.5-5.12.1 python3-testsuite-debuginfo-3.3.5-5.12.1 python3-tk-debuginfo-3.3.5-5.12.1 python-gdbm-debuginfo-2.7.6-8.10.1 python-base-debugsource-2.7.6-8.10.1 python3-dbm-3.3.5-5.12.1 python-idle-2.7.6-8.10.1 python3-devel-debuginfo-3.3.5-5.12.1 python-demo-2.7.6-8.10.1 python3-dbm-debuginfo-3.3.5-5.12.1 python-tk-debuginfo-2.7.6-8.10.1 python3-idle-3.3.5-5.12.1 python-xml-2.7.6-8.10.1 SuSE Linux 12.3 python-32bit-2.7.3-10.16.1 python3-32bit-3.3.0-6.19.1 python-debuginfo-32bit-2.7.3-10.16.1 python-doc-2.7-10.16.1 libpython3_3m1_0-32bit-3.3.0-6.19.1 python3-base-32bit-3.3.0-6.19.1 python-base-debuginfo-32bit-2.7.3-10.16.1 libpython3_3m1_0-debuginfo-32bit-3.3.0-6.19.1 libpython2_7-1_0-debuginfo-32bit-2.7.3-10.16.1 libpython2_7-1_0-32bit-2.7.3-10.16.1 python3-debuginfo-32bit-3.3.0-6.19.1 python-doc-pdf-2.7-10.16.1 python3-base-debuginfo-32bit-3.3.0-6.19.1 python3-doc-pdf-3.3.0-6.19.1 python-base-32bit-2.7.3-10.16.1 python3-doc-3.3.0-6.19.1 i586 libpython2_7-1_0-2.7.3-10.16.1

python3-tools-3.3.0-6.19.1 python-curses-debuginfo-2.7.3-10.16.1 python3-base-debugsource-3.3.0-6.19.1 python-debugsource-2.7.3-10.16.1 python3-tk-3.3.0-6.19.1 python-gdbm-debuginfo-2.7.3-10.16.1 python3-curses-debuginfo-3.3.0-6.19.1 python3-testsuite-3.3.0-6.19.1 python-idle-2.7.3-10.16.1 python-curses-2.7.3-10.16.1 libpython3_3m1_0-3.3.0-6.19.1 python3-3.3.0-6.19.1 python3-base-3.3.0-6.19.1 libpython3_3m1_0-debuginfo-3.3.0-6.19.1 python-2.7.3-10.16.1 python3-debugsource-3.3.0-6.19.1 python3-dbm-3.3.0-6.19.1 python-base-2.7.3-10.16.1 python-base-debuginfo-2.7.3-10.16.1 python-tk-debuginfo-2.7.3-10.16.1 python-xml-2.7.3-10.16.1 libpython2_7-1_0-debuginfo-2.7.3-10.16.1 python3-base-debuginfo-3.3.0-6.19.1 python-tk-2.7.3-10.16.1 python3-curses-3.3.0-6.19.1 python-devel-2.7.3-10.16.1 python3-devel-debuginfo-3.3.0-6.19.1 python3-debuginfo-3.3.0-6.19.1 python-gdbm-2.7.3-10.16.1 python3-testsuite-debuginfo-3.3.0-6.19.1 python-xml-debuginfo-2.7.3-10.16.1 python-base-debugsource-2.7.3-10.16.1 python-demo-2.7.3-10.16.1 python3-idle-3.3.0-6.19.1 python3-dbm-debuginfo-3.3.0-6.19.1 python3-devel-3.3.0-6.19.1 python3-tk-debuginfo-3.3.0-6.19.1 python-debuginfo-2.7.3-10.16.1 174517 - Scientific Linux Security ERRATA Moderate: samba and samba3x on SL5.x, SL6.x i386/srpm/ (1407-554) Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes CVE: CVE-2014-0244, CVE-2014-3493 The scan detected that the host is missing the following update: Security ERRATA Moderate: samba and samba3x on SL5.x, SL6.x i386/srpm/ (1407-554) http://listserv.fnal.gov/scripts/wa.exe?a2=ind1407&l=scientific-linux-errata&t=0&p=554 SL6

samba-domainjoin-gui-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 i386 samba-domainjoin-gui-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 noarch samba-debuginfo-3.6.9-169.el6_5 SL5 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-swat-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 noarch samba3x-debuginfo-3.6.6-0.140.el5_10 184475 - Ubuntu Linux 12.04, 13.10 USN-2277-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes The scan detected that the host is missing the following update: USN-2277-1 https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-july/002583.html Ubuntu 13.10 libavformat53_0.8.13-0ubuntu0.13.10.1 libavcodec53_0.8.13-0ubuntu0.13.10.1 Ubuntu 12.04 libavformat53_0.8.13-0ubuntu0.12.04.1 libavcodec53_0.8.13-0ubuntu0.12.04.1 188074 - Fedora Linux 19 FEDORA-2014-7997 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes CVE: CVE-2013-2233, CVE-2013-4259, CVE-2013-4260 The scan detected that the host is missing the following update: FEDORA-2014-7997 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135299.html Fedora Core 19 ansible-1.6.6-1.fc19 188075 - Fedora Linux 20 FEDORA-2014-7577 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes The scan detected that the host is missing the following update: FEDORA-2014-7577 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135346.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135345.html Fedora Core 20 claws-mail-3.10.1-1.fc20 claws-mail-plugins-3.10.1-1.fc20 188076 - Fedora Linux 20 FEDORA-2014-8032 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes The scan detected that the host is missing the following update: FEDORA-2014-8032 http://lists.fedoraproject.org/pipermail/package-announce/2014-july/135284.html Fedora Core 20 ansible-1.6.6-1.fc20 ENHANCED CHECKS The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check. 16584 - McAfee Email And Web Security Appliance Multiple Unspecified Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Recommendation is updated. 16676 - IBM Informix Multiple Vulnerabilities In 12.10 Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Recommendation is updated. 33156 - Oracle Solaris 125139-81 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910

Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33157 - Oracle Solaris 125136-81 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33158 - Oracle Solaris 125138-81 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33185 - Oracle Solaris 118667-71 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33191 - Oracle Solaris 125137-81 Update Is Not Installed

CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33201 - Oracle Solaris 118666-71 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33217 - Oracle Solaris 118668-71 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33219 - Oracle Solaris 118669-71 Update Is Not Installed CVE: CVE-2008-2086, CVE-2009-3910 Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated.

16555 - Oracle MySQL Multiple Vulnerabilities Prior To 5.6.16 Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-0384, CVE-2014-2419, CVE-2014-2432, CVE-2014-2434, CVE-2014-2438, CVE-2014-2442, CVE-2014-2444, CVE-2014-2450, CVE-2014-2451, CVE-2014-4243 DISA IAVA: 2014-A-0057 CVE is updated. 16561 - Oracle MySQL Multiple Vulnerabilities Prior To 5.5.36 Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-0384, CVE-2014-2419, CVE-2014-2432, CVE-2014-2438, CVE-2014-4243 DISA IAVA: 2014-A-0057 CVE is updated. 16670 - Microsoft Windows Two Denial of Service Vulnerabilities Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Recommendation is updated. 32194 - Oracle Solaris 126206-11 Update Is Not Installed CVE: CVE-2007-1995, CVE-2007-4826, CVE-2013-0149 Name is updated. is updated. is updated. Recommendation is updated. CVE is updated. FASLScript is updated. 32195 - Oracle Solaris 126207-11 Update Is Not Installed

CVE: CVE-2007-1995, CVE-2007-4826, CVE-2013-0149 Name is updated. is updated. is updated. Recommendation is updated. CVE is updated. FASLScript is updated. 32922 - Oracle Solaris 121972-06 Update Is Not Installed CVE: CVE-2012-1681, CVE-2014-4224 CVE is updated. 32924 - Oracle Solaris 121973-06 Update Is Not Installed CVE: CVE-2012-1681, CVE-2014-4224 CVE is updated. 32931 - Oracle Solaris 118335-10 Update Is Not Installed CVE: CVE-2012-1681, CVE-2014-4224 CVE is updated. 32932 - Oracle Solaris 120463-07 Update Is Not Installed CVE: CVE-2012-1681, CVE-2014-4224 CVE is updated.

33145 - Oracle Solaris 150401-13 Update Is Not Installed CVE: CVE-2013-0399, CVE-2013-3799, CVE-2013-5862, CVE-2013-5876, CVE-2014-4215 DISA IAVA: 2014-A-0012,2013-A-0014 CVE is updated. 32884 - Oracle Solaris 147694-65 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 32885 - Oracle Solaris 147692-65 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 32886 - Oracle Solaris 147695-65 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33058 - Oracle Solaris 148076-13 Update Is Not Installed

Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33117 - Oracle Solaris 144222-13 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33118 - Oracle Solaris 144221-14 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33190 - Oracle Solaris 147693-65 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33234 - Oracle Solaris 146697-05 Update Is Not Installed

Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33235 - Oracle Solaris 146696-05 Update Is Not Installed Name is updated. is updated. is updated. Recommendation is updated. FASLScript is updated. 33264 - Oracle Solaris 150113-02 Update Is Not Installed CVE: CVE-2014-4224 CVE is updated. 33266 - Oracle Solaris 150114-02 Update Is Not Installed CVE: CVE-2014-4224 CVE is updated. 33268 - Oracle Solaris 151355-01 Update Is Not Installed CVE: CVE-2014-4215 CVE is updated.

70131 - f5.fasl3.inc Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational FASLScript is updated. DELETED CHECKS 16558 - Microsoft Windows Unspecified Flaw Kernel Local Privilege Escalation Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-1766 DISA IAVA: 2014-A-0079 16559 - Microsoft Internet Explorer Multiple Sandbox Bypass and Use-After-Free Vulnerabilities Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS) CVE: CVE-2014-1763, CVE-2014-1765 DISA IAVA: 2014-A-0079 16673 - Microsoft Internet Explorer WeakMap Integer Divide-by-Zero Denial of Service Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS) HOW TO UPDATE FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we strongly urge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download any critical updates but will wait for your explicit authorization before installing. FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability category and checking the "Run New Checks" checkbox. MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts will be automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on. MCAFEE TECHNICAL SUPPORT ServicePortal: https://mysupport.mcafee.com/ Multi-National Phone Support available here: http://www.mcafee.com/us/about/contact/index.html Non-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies. Copyright 2012 McAfee, Inc. McAfee is a registered trademark of McAfee, Inc. and/or its affiliates