FireEye Operating System Multiple Vulnerabilities (SB001)

medium Nessus Plugin ID 77057

Synopsis

The remote host is missing a vendor-supplied security patch.

Description

The remote host is running a version of FireEye Operating System (FEOS) that is affected by multiple vulnerabilities :

- An error exists in the function ssl3_read_bytes() function that allows data to be injected into other sessions or allow denial of service attacks. Note that this issue is only exploitable if 'SSL_MODE_RELEASE_BUFFERS' is enabled. (CVE-2010-5298)

- An error exists in the do_ssl3_write() function that allows a NULL pointer to be dereferenced, leading to denial of service attacks. Note that this issue is exploitable only if 'SSL_MODE_RELEASE_BUFFERS' is enabled. (CVE-2014-0198)

- An error exists related to DTLS handshake handling that allows denial of service attacks. Note that this issue only affects OpenSSL when used as a DTLS client.
(CVE-2014-0221)

- An unspecified error exists that could allow an attacker to cause usage of weak keying material leading to simplified man-in-the-middle attacks.
(CVE-2014-0224)

- An error exists in the 'dtls1_get_message_fragment' function related to anonymous ECDH cipher suites. This allows denial of service attacks. Note that this issue only affects OpenSSL TLS clients. (CVE-2014-3470)

- An unspecified flaw exists that allows a remote attacker to execute arbitrary commands with root privileges.

Solution

Apply the relevant patch referenced in the vendor advisory.

See Also

http://www.nessus.org/u?62e5edf4

https://www.openssl.org/news/secadv/20140605.txt

Plugin Details

Severity: Medium

ID: 77057

File Name: fireeye_os_SB001.nasl

Version: 1.10

Type: local

Family: Firewalls

Published: 8/7/2014

Updated: 11/25/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.7

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2014-0224

Vulnerability Information

CPE: cpe:/o:fireeye:feos

Required KB Items: Host/FireEye/series, Host/FireEye/version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 6/12/2014

Vulnerability Publication Date: 7/8/2014

Exploitable With

Core Impact

Reference Information

CVE: CVE-2010-5298, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470

BID: 66801, 67193, 67898, 67899, 67901

CERT: 978508