AIX NAS Advisory : nas_advisory2.asc

This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.


Synopsis :

The remote AIX host has a version of NAS installed that is affected by
an information disclosure vulnerability.

Description :

The version of the Network Authentication Service (NAS) installed on
the remote AIX host is affected by a vulnerability related to
Kerberos 5 which allows authenticated users to retrieve current keys,
which can be used to forge tickets.

See also :

http://aix.software.ibm.com/aix/efixes/security/nas_advisory2.asc
http://www.nessus.org/u?6b39d08f

Solution :

A fix is available and can be downloaded from the AIX website.

If the NAS fileset level is below 1.5.0.7, then install version
1.5.0.7.

If the NAS fileset level is at 1.6.0.0 through 1.6.0.1, then install
version 1.6.0.2. The 1.6.0.X branch is a separate release branch for
NAS SPNEGO feature.

To extract the fixes from the tar file, use the command :
zcat NAS_1.X.0.X_aix_image.tar.Z | tar xvf -

IMPORTANT : If possible, it is recommended that a mksysb backup of the
system be created. Verify that it is both bootable and readable before
proceeding.

To preview the fix installation, use the command :

installp -a - fix_name -p all

To install the fix package, use the command :

installp -a - fix_name -X all

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:N/AC:H/Au:S/C:P/I:N/A:N)
CVSS Temporal Score : 1.8
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: AIX Local Security Checks

Nessus Plugin ID: 81022 ()

Bugtraq ID: 70380

CVE ID: CVE-2014-5351

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now