Tenable SecurityCenter PHP Character Handling (TNS-2015-09)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote application is affected by a character handling
vulnerability in the bundled version of PHP.

Description :

The SecurityCenter application installed on the remote host contains a
bundled version of PHP that is prior to 5.4.43. It is, therefore,
affected by an exclamation mark character handling issue in the
escapeshellcmd() and escapeshellarg() PHP functions. A remote attacker
can exploit this to substitute environment variables.

See also :

https://www.tenable.com/security/tns-2015-09
https://bugs.php.net/bug.php?id=69768
http://php.net/ChangeLog-5.php#5.4.43
http://php.net/ChangeLog-5.php#5.5.27
http://php.net/ChangeLog-5.php#5.6.11

Solution :

Apply the relevant patch as referenced in the vendor advisory.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: Misc.

Nessus Plugin ID: 89027 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now