F5 Networks BIG-IP : cURL and libcurl vulnerability (K35453761)
critical Nessus Plugin ID 146611
Language:
Synopsis
The remote device is missing a vendor-supplied security patch.Description
cURL, as shipped in Red Hat Enterprise Linux 6 before version 7.19.7-53, did not correctly backport the fix for CVE-2015-3148 because it did not reflect the fact that the HAVE_GSSAPI define was meanwhile substituted by USE_HTTP_NEGOTIATE. This issue was introduced in RHEL 6.7 and affects RHEL 6 cURLonly. (CVE-2017-2628)Impact
An application using libcurl with HTTP Negotiate authentication can incorrectly re-use credentials for subsequent requests to the same server.
Solution
Upgrade to one of the non-vulnerable versions listed in the F5 Solution K35453761.See Also
Plugin Details
Severity: Critical
ID: 146611
File Name: f5_bigip_SOL35453761.nasl
Version: 1.3
Type: local
Published: 2/19/2021
Updated: 3/10/2021
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.5
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Temporal Vector: E:U/RL:OF/RC:C
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:f5:big-ip_access_policy_manager, cpe:/a:f5:big-ip_advanced_firewall_manager, cpe:/a:f5:big-ip_application_acceleration_manager, cpe:/a:f5:big-ip_application_security_manager, cpe:/a:f5:big-ip_application_visibility_and_reporting, cpe:/a:f5:big-ip_global_traffic_manager, cpe:/a:f5:big-ip_link_controller, cpe:/a:f5:big-ip_local_traffic_manager, cpe:/a:f5:big-ip_policy_enforcement_manager, cpe:/a:f5:big-ip_webaccelerator, cpe:/h:f5:big-ip
Required KB Items: Host/local_checks_enabled, Host/BIG-IP/hotfix, Host/BIG-IP/modules, Host/BIG-IP/version
Exploit Ease: No known exploits are available
Patch Publication Date: 3/28/2018
Vulnerability Publication Date: 4/24/2015
Reference Information
CVE: CVE-2015-3148, CVE-2017-2628
BID: 74301