Nessus SQLite Multiple RCE
High Nessus Plugin ID 88964
SynopsisAn application running on the remote host is affected by multiple remote code execution vulnerabilities.
DescriptionAccording to its self-reported version number, the version of Nessus running on the remote host is affected by multiple remote code execution vulnerabilities in the bundled version of SQLite due to heap-based buffer overflow conditions in the sqlite3VdbeExec() and resolve_backslashes() functions. A remote attacker can exploit these issues to cause a denial of service condition or the execution of arbitrary code.
SolutionUpgrade to Nessus version 5.2.11 / 6.3.7 or later.