The version of VMware Workstation installed on the remote host is version 10.x prior to 10.0.2.  It is, therefore, reportedly affected by the following vulnerabilities in the OpenSSL library :

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     could allow nonce disclosure via the 'FLUSH+RELOAD'     cache side-channel attack. (CVE-2014-0076)

  - An out-of-bounds read error, known as the 'Heartbleed     Bug', exists related to handling TLS heartbeat     extensions that could allow an attacker to obtain     sensitive information such as primary key material,     secondary key material and other protected content.
    (CVE-2014-0160)

A version of IBM General Parallel File System (GPFS) prior to 3.5.0.17 is installed on the remote host. It is, therefore, affected by multiple vulnerabilities related to OpenSSL:

  - An information disclosure vulnerability exists due to a     flaw in the OpenSSL library, due to an implementation     error in ECDSA (Elliptic Curve Digital Signature     Algorithm). An attacker could potentially exploit this     vulnerability to recover ECDSA nonces. (CVE-2014-0076)

  - An information disclosure vulnerability exists due to a     flaw in the OpenSSL library, commonly known as the     Heartbleed bug. An attacker could potentially exploit     this vulnerability repeatedly to read up to 64KB of     memory from the device. (CVE-2014-0160)

The remote Cisco ONS device is running a software version known to be affected by multiple OpenSSL related vulnerabilities :

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     could allow nonce disclosure via the 'FLUSH+RELOAD'     cache side-channel attack. (CVE-2014-0076)

  - An unspecified error exists related to anonymous ECDH     ciphersuites that could allow denial of service     attacks. Note this issue only affects OpenSSL TLS     clients. (CVE-2014-3470)

The version of OpenSSL installed on the remote host is prior to 0.9.8za. It is, therefore, affected by multiple vulnerabilities as referenced in the 0.9.8za advisory.

  - The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1     before 1.0.1h frees data structures without considering that application data can arrive between a     ChangeCipherSpec message and a Finished message, which allows remote DTLS peers to cause a denial of     service (memory corruption and application crash) or possibly have unspecified other impact via unexpected     application data. (CVE-2014-8176)

  - Integer underflow in the EVP_DecodeUpdate function in crypto/evp/encode.c in the base64-decoding     implementation in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote     attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via     crafted base64 data that triggers a buffer overflow. (CVE-2015-0292)

  - OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing     of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length     master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain     sensitive information, via a crafted TLS handshake, aka the CCS Injection vulnerability. (CVE-2014-0224)

  - The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and     1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client crash) via     a DTLS hello message in an invalid DTLS handshake. (CVE-2014-0221)

  - The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and     1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows     remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application     crash) via a long non-initial fragment. (CVE-2014-0195)

  - The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m,     and 1.0.1 before 1.0.1h, when an anonymous ECDH cipher suite is used, allows remote attackers to cause a     denial of service (NULL pointer dereference and client crash) by triggering a NULL certificate value.
    (CVE-2014-3470)

  - The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap     operations have a constant-time behavior, which makes it easier for local users to obtain ECDSA nonces via     a FLUSH+RELOAD cache side-channel attack. (CVE-2014-0076)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is running a version of McAfee ePolicy Orchestrator that is affected by multiple vulnerabilities due to flaws in the OpenSSL library :

  - An error exists in the function 'ssl3_read_bytes'     that could allow data to be injected into other     sessions or allow denial of service attacks. Note     this issue is only exploitable if     'SSL_MODE_RELEASE_BUFFERS' is enabled. (CVE-2010-5298)

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     could allow nonce disclosure via the 'FLUSH+RELOAD'     cache side-channel attack. (CVE-2014-0076)

  - A buffer overflow error exists related to invalid DTLS     fragment handling that could lead to execution of     arbitrary code. Note this issue only affects OpenSSL     when used as a DTLS client or server. (CVE-2014-0195)

  - An error exists in the function 'do_ssl3_write' that     could allow a NULL pointer to be dereferenced leading     to denial of service attacks. Note this issue is     exploitable only if 'SSL_MODE_RELEASE_BUFFERS' is     enabled. (CVE-2014-0198)

  - An error exists related to DTLS handshake handling that     could lead to denial of service attacks. Note this     issue only affects OpenSSL when used as a DTLS client.
    (CVE-2014-0221)

  - An unspecified error exists that could allow an     attacker to cause usage of weak keying material     leading to simplified man-in-the-middle attacks.
    (CVE-2014-0224)

  - An unspecified error exists related to anonymous ECDH     ciphersuites that could allow denial of service     attacks. Note this issue only affects OpenSSL TLS     clients. (CVE-2014-3470))

According to the web server's banner, the version of HP System Management Homepage (SMH) hosted on the remote web server has an implementation of the OpenSSL library that is affected by the following vulnerabilities :

  - An error exists in the ssl3_read_bytes() function that     allows data to be injected into other sessions. Note     that this issue is only exploitable if     'SSL_MODE_RELEASE_BUFFERS' is enabled. (CVE-2010-5298)

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     allows nonce disclosure via the 'FLUSH+RELOAD' cache     side-channel attack. (CVE-2014-0076)

  - A buffer overflow condition exists related to invalid     DTLS fragment handling that could lead to execution of     arbitrary code. Note this issue only affects OpenSSL     when used as a DTLS client or server. (CVE-2014-0195)

  - An error exists in the do_ssl3_write() function that     allows a NULL pointer to be dereferenced, resulting in a     denial of service condition. Note that this issue is     exploitable only if 'SSL_MODE_RELEASE_BUFFERS' is     enabled. (CVE-2014-0198)

  - An error exists related to DTLS handshake handling that     could lead to denial of service attacks. Note that this     issue only affects OpenSSL when used as a DTLS client.
    (CVE-2014-0221)

  - An unspecified error exists that allows an attacker to     cause usage of weak keying material leading to     simplified man-in-the-middle attacks. (CVE-2014-0224)

  - An unspecified error exists related to anonymous ECDH     ciphersuites that allows denial of service attacks. Note     that this issue only affects OpenSSL TLS clients.
    (CVE-2014-3470)

The remote host has a version of Cisco AnyConnect prior to 3.1(5170).
It is, therefore, potentially affected by the following vulnerabilities :

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     could allow nonce disclosure via the 'FLUSH+RELOAD'     cache side-channel attack. (CVE-2014-0076)

  - A buffer overflow error exists related to invalid DTLS     fragment handling that could lead to execution of     arbitrary code. Note this issue only affects OpenSSL     when used as a DTLS client or server. (CVE-2014-0195)

  - An error exists related to DTLS handshake handling that     could lead to denial of service attacks. Note this     issue only affects OpenSSL when used as a DTLS client.
    (CVE-2014-0221)

  - An unspecified error exists that could allow an     attacker to cause usage of weak keying material     leading to simplified man-in-the-middle attacks.
    (CVE-2014-0224)

The remote host is running a version of McAfee VirusScan Enterprise for Linux (VSEL) that is affected by multiple vulnerabilities due to flaws in the included OpenSSL library :

  - An error exists in the function 'ssl3_read_bytes'     that could allow data to be injected into other     sessions or allow denial of service attacks. Note     this issue is only exploitable if     'SSL_MODE_RELEASE_BUFFERS' is enabled. (CVE-2010-5298)

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     could allow nonce disclosure via the 'FLUSH+RELOAD'     cache side-channel attack. (CVE-2014-0076)

  - A buffer overflow error exists related to invalid DTLS     fragment handling that could lead to execution of     arbitrary code. Note this issue only affects OpenSSL     when used as a DTLS client or server. (CVE-2014-0195)

  - An error exists in the function 'do_ssl3_write' that     could allow a NULL pointer to be dereferenced leading     to denial of service attacks. Note this issue is     exploitable only if 'SSL_MODE_RELEASE_BUFFERS' is     enabled. (CVE-2014-0198)

  - An error exists related to DTLS handshake handling that     could lead to denial of service attacks. Note this     issue only affects OpenSSL when used as a DTLS client.
    (CVE-2014-0221)

  - An unspecified error exists that could allow an     attacker to cause usage of weak keying material     leading to simplified man-in-the-middle attacks.
    (CVE-2014-0224)

  - An unspecified error exists related to anonymous ECDH     cipher suites that could allow denial of service     attacks. Note this issue only affects OpenSSL TLS     clients. (CVE-2014-3470)

The OpenSSL service on the remote host is vulnerable to a man-in-the-middle (MiTM) attack, based on its acceptance of a specially crafted handshake.

This flaw could allow a MiTM attacker to decrypt or forge SSL messages by telling the service to begin encrypted communications before key material has been exchanged, which causes predictable keys to be used to secure future traffic.

Note that Nessus has only tested for an SSL/TLS MiTM vulnerability (CVE-2014-0224). However, Nessus has inferred that the OpenSSL service on the remote host is also affected by six additional vulnerabilities that were disclosed in OpenSSL's June 5th, 2014 security advisory :

  - An error exists in the 'ssl3_read_bytes' function     that permits data to be injected into other sessions     or allows denial of service attacks. Note that this     issue is exploitable only if SSL_MODE_RELEASE_BUFFERS     is enabled. (CVE-2010-5298)

  - An error exists related to the implementation of the     Elliptic Curve Digital Signature Algorithm (ECDSA) that     allows nonce disclosure via the 'FLUSH+RELOAD' cache     side-channel attack. (CVE-2014-0076)

  - A buffer overflow error exists related to invalid DTLS     fragment handling that permits the execution of     arbitrary code or allows denial of service attacks.
    Note that this issue only affects OpenSSL when used     as a DTLS client or server. (CVE-2014-0195)

  - An error exists in the 'do_ssl3_write' function that     permits a NULL pointer to be dereferenced, which could     allow denial of service attacks. Note that this issue     is exploitable only if SSL_MODE_RELEASE_BUFFERS is     enabled. (CVE-2014-0198)

  - An error exists related to DTLS handshake handling that     could allow denial of service attacks. Note that this     issue only affects OpenSSL when used as a DTLS client.
    (CVE-2014-0221)

  - An error exists in the 'dtls1_get_message_fragment'     function related to anonymous ECDH cipher suites. This     could allow denial of service attacks. Note that this     issue only affects OpenSSL TLS clients. (CVE-2014-3470)

OpenSSL did not release individual patches for these vulnerabilities, instead they were all patched under a single version release. Note that the service will remain vulnerable after patching until the service or host is restarted.

The remote host is running a version of Mac OS X 10.9.x that is prior to version 10.9.5. This update contains several security-related fixes for the following components :

  - apache_mod_php
  - Bluetooth
  - CoreGraphics
  - Foundation
  - Intel Graphics Driver
  - IOAcceleratorFamily
  - IOHIDFamily
  - IOKit
  - Kernel
  - Libnotify
  - OpenSSL
  - QT Media Foundation
  - ruby

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

OpenSSL versions 1.0.1 earlier than 1.0.1g contain the following vulnerabilities:

  - Out-of-bounds read flaw that can be triggered through TLS heartbeat extension packets to disclose up to 64kB of memory containing sensitive information, possibly including secret keys. (CVE-2014-0160)

  - Improperly implemented Elliptic Curve Digital Signature Algorithm (ECDSA) could allow nonce disclosure via the 'FLUSH+RELOAD' cache side-channel attack. (CVE-2014-0076)

The remote host is running a version of Mac OS X that is older than 10.9.5, and is thus missing security-related fixes for the following components:

  - Bluetooth
  - CoreGraphics
  - Foundation
  - IOAcceleratorFamily
  - IOHIDFamily
  - IOKit
  - Intel Graphics Driver
  - Kernel
  - Libnotify
  - OpenSSL
  - QT Media Foundation
  - apache_mod_php
  - ruby

Note that successful exploitation of the most serious issues could result in arbitrary code execution.

Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to execute arbitrary code, create a denial of service (DoS) condition, or perform a man-in-the-middle attack. 

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Published	Updated	Severity
73674	VMware Workstation 10.x < 10.0.2 OpenSSL Library Multiple Vulnerabilities (VMSA-2014-0004) (Heartbleed)	Nessus	Windows	4/21/2014	3/27/2024	high
74104	IBM General Parallel File System 3.5 < 3.5.0.17 Multiple OpenSSL Vulnerabilities (Heartbleed)	Nessus	Windows	5/20/2014	4/25/2023	high
76130	Cisco ONS 15400 Series Devices Multiple Vulnerabilities in OpenSSL	Nessus	CISCO	6/18/2014	11/26/2019	low
74363	OpenSSL 0.9.8 < 0.9.8za Multiple Vulnerabilities	Nessus	Web Servers	6/6/2014	10/23/2024	high
76145	McAfee ePolicy Orchestrator Multiple OpenSSL Vulnerabilities (SB10075)	Nessus	Misc.	6/19/2014	7/22/2020	medium
76345	HP System Management Homepage < 7.2.4.1 / 7.3.3.1 OpenSSL Multiple Vulnerabilities	Nessus	Web Servers	7/2/2014	4/11/2022	medium
76492	Mac OS X : Cisco AnyConnect Secure Mobility Client 2.x / 3.x < 3.1(5170) Multiple OpenSSL Vulnerabilities	Nessus	MacOS X Local Security Checks	7/14/2014	11/26/2019	medium
76580	McAfee VirusScan Enterprise for Linux Multiple OpenSSL Vulnerabilities (SB10075)	Nessus	Misc.	7/17/2014	4/11/2022	medium
77200	OpenSSL 'ChangeCipherSpec' MiTM Vulnerability	Nessus	Misc.	8/14/2014	3/11/2021	medium
77748	Mac OS X 10.9.x < 10.9.5 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	9/18/2014	5/28/2024	critical
8194	OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities (Heartbleed)	Nessus Network Monitor	Web Servers	4/8/2014	3/6/2019	medium
8394	Mac OS X < 10.9.5 Multiple Vulnerabilities (Security Update 2014-004)	Nessus Network Monitor	Web Clients	9/19/2014	3/6/2019	critical
501797	Rockwell Automation Stratix ECDSA NONCE Side-Channel Recovery Attack (CVE-2014-0076)	Tenable OT Security	Tenable.ot	11/15/2023	12/18/2024	medium

Detections

Analytics

Plugins Search

high

high

low

high

medium

medium

medium

medium

medium

critical

medium

critical

medium