Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2017 CPU)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

An enterprise management application installed on the remote host is
affected by multiple vulnerabilities.

Description :

The version of Oracle Enterprise Manager Cloud Control installed on
the remote host is affected by multiple vulnerabilities in the
Enterprise Manager Base Platform component :

- A flaw exists in the Bouncy Castle Java library due to
improper validation of a point within the elliptic
curve. An unauthenticated, remote attacker can exploit
this to obtain private keys by using a series of
specially crafted elliptic curve Diffie-Hellman (ECDH)
key exchanges, also known as an 'invalid curve attack.'
(CVE-2015-7940)

- A flaw exists in Apache MyFaces Trinidad, specifically
in the CoreResponseStateManager component, due to the
ObjectInputStream and ObjectOutputStream strings being
used directly without securely deserializing Java input.
An unauthenticated, remote attacker can exploit this,
via a deserialization attack using a crafted serialized
view state string, to have an unspecified impact that
may include the execution of arbitrary code.
(CVE-2016-5019)

Note that the product was formerly known as Enterprise Manager Grid
Control.

See also :

http://www.nessus.org/u?b0d463a2

Solution :

Apply the appropriate patch according to the January 2017 Oracle
Critical Patch Update advisory.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 96777 ()

Bugtraq ID: 79091
93236

CVE ID: CVE-2015-7940
CVE-2016-5019

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now