BMC Server Automation RSCD Agent Weak ACL NSH Arbitrary Command Execution

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The RSCD agent running on the remote host is affected by a remote
command execution vulnerability.

Description :

The BMC Server Automation RSCD agent running on the remote host is
configured in such a manner as to publicly expose an API that can be
used for unrestricted command execution. An unauthenticated, remote
attacker can exploit this, via the NSH protocol, to execute arbitrary
commands.

See also :

http://www.bmc.com/it-solutions/bladelogic-server-automation.html
https://docs.bmc.com/docs/display/bsa88/Home
http://www.nessus.org/u?f9ef38fb

Solution :

Update the exports file to restrict access to the interface.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Misc.

Nessus Plugin ID: 91947 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now