The remote OracleVM system is missing necessary patches to address critical security updates :

  - fix CVE-2016-2177 - possible integer overflow

  - fix CVE-2016-2178 - non-constant time DSA operations

  - fix CVE-2016-2179 - further DoS issues in DTLS

  - fix CVE-2016-2180 - OOB read in TS_OBJ_print_bio

  - fix CVE-2016-2181 - DTLS1 replay protection and     unprocessed records issue

  - fix CVE-2016-2182 - possible buffer overflow in     BN_bn2dec

  - fix CVE-2016-6302 - insufficient TLS session ticket HMAC     length check

  - fix CVE-2016-6304 - unbound memory growth with OCSP     status request

  - fix CVE-2016-6306 - certificate message OOB reads

  - mitigate CVE-2016-2183 - degrade all 64bit block ciphers     and RC4 to 112 bit effective strength

  - replace expired testing certificates

  - fix CVE-2016-2105 - possible overflow in base64 encoding

  - fix CVE-2016-2106 - possible overflow in     EVP_EncryptUpdate

  - fix CVE-2016-2107 - padding oracle in stitched AES-NI     CBC-MAC

  - fix CVE-2016-2108 - memory corruption in ASN.1 encoder

  - fix CVE-2016-2109 - possible DoS when reading ASN.1 data     from BIO

  - fix CVE-2016-0799 - memory issues in BIO_printf

The version of IBM BigFix Remote Control running on the remote host is prior to 9.1.3. It is, therefore, affected by the multiple vulnerabilities :

  - Multiple integer overflow conditions exist in the     bundled version of OpenSSL in files s3_srvr.c,     ssl_sess.c, and t1_lib.c due to improper use of pointer     arithmetic for heap-buffer boundary checks. An     unauthenticated, remote attacker can exploit this to     cause a denial of service. (CVE-2016-2177)

  - An information disclosure vulnerability exists in the     bundled version of OpenSSL in the dsa_sign_setup()     function in dsa_ossl.c due to a failure to properly     ensure the use of constant-time operations. An     unauthenticated, remote attacker can exploit this, via a     timing side-channel attack, to disclose DSA key     information. (CVE-2016-2178)

  - A vulnerability exists, known as SWEET32, in the bundled     version of OpenSSL in the 3DES and Blowfish algorithms     due to the use of weak 64-bit block ciphers by default.
    A man-in-the-middle attacker who has sufficient     resources can exploit this vulnerability, via a     'birthday' attack, to detect a collision that leaks the     XOR between the fixed secret and a known plaintext,     allowing the disclosure of the secret text, such as     secure HTTPS cookies, and possibly resulting in the     hijacking of an authenticated session. (CVE-2016-2183)

  - An information disclosure vulnerability exists due to     the inclusion of sensitive information in error logs. An     authenticated, remote attacker can exploit this to     disclose information. (CVE-2016-2928)

  - An information disclosure vulnerability exists due to     the transmission of information in cleartext. A     man-in-the-middle attacker can exploit this to disclose     sensitive information. (CVE-2016-2931)

  - An unspecified flaw exists that allows an     unauthenticated, remote attacker to inject arbitrary XML     content. (CVE-2016-2932)

  - An information disclosure vulnerability exists due to a     flaw that allows traversing outside of a restricted     path. An authenticated, remote attacker can exploit     this, via a specially crafted request, to disclose     arbitrary files. (CVE-2016-2933)

  - A cross-site scripting (XSS) vulnerability exists due to     improper validation of user-supplied input. An     unauthenticated, remote attacker can exploit this, via a     specially crafted request, to execute arbitrary script     code in a user's browser session. (CVE-2016-2934)

  - An unspecified flaw exists that allows an     unauthenticated, remote attacker to submit invalid HTTP     requests, resulting in a denial of service condition for     the broker application. (CVE-2016-2935)

  - An information disclosure vulnerability exists due to     the storage of information in log files in plaintext. A     local attacker can exploit this to disclose sensitive     information. (CVE-2016-2943)

  - A flaw exists in the bundled version of OpenSSL in the     ssl_parse_clienthello_tlsext() function in t1_lib.c due     to improper handling of overly large OCSP Status Request     extensions from clients. An unauthenticated, remote     attacker can exploit this, via large OCSP Status Request     extensions, to exhaust memory resources, resulting in a     denial of service condition. (CVE-2016-6304)

  - An out-of-bounds read error exists the bundled version     of OpenSSL in the certificate parser that allows an     unauthenticated, remote attacker to cause a denial of     service via crafted certificate operations.
    (CVE-2016-6306)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2185 advisory.

  - openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)

  - httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir     (CVE-2016-4975)

  - openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)

  - openssl: certificate message OOB reads (CVE-2016-6306)

  - openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)

  - openssl: Truncated packet could crash via OOB read (CVE-2017-3731)

  - openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)

  - openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)

  - openssl: Read/write after SSL object in error state (CVE-2017-3737)

  - openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to its banner, the version of OpenSSL on the remote host is 1.0.1 prior to 1.0.1u, or 1.0.2 prior to 1.0.2i.  It is therefore affected by the following vulnerabilities :

 - A flaw exists in 'ssl/s3_srvr.c', 'ssl/ssl_sess.c', and 'ssl/t1_lib.c' that may under certain circumstances lead to integer overflows and allow an attacker to have an unspecified impact. (CVE-2016-2177)
 - A flaw exists in 'crypto/dsa/dsa_ossl.c' that is triggered as the DSA signing algorithm does not properly run in constant time.  This may potentially allow a context-dependent attacker to conduct e.g. a side channel attack and gain unauthorized access to DSA key information. (CVE-2016-2178)
 - A flaw exists that is due to the system not handling fragmented DTLS buffered messages correctly.  There are two scenarios where messages could result in the queue not being cleared and memory not being freed.  The first occurs when a full message is received after a fragment of the same message, and the system uses the full message while ignoring the fragmented message without removing it from queue.  The second occurs when a peer sends a 'future' message with extraneous packets containing a sequence number higher than the Finished message, resulting in the packets not being removed from queue.  With a saturation of either type of message, a remote attacker can exhaust up to 1500k of memory per connection, exhausting memory leading to a remote denial of service. (CVE-2016-2179)
 - An out-of-bounds read flaw exists in the 'TS_OBJ_print_bio()' function in 'crypto/ts/ts_lib.c'.  This may allow a context-dependent attacker to have an unspecified impact that may potentially include crashing a process linked against the library or disclosing memory contents. (CVE-2016-2180)
 - A flaw exists in the DTLS implementation that is triggered when handling epoch sequence numbers in records.  This may allow a remote attacker to cause legitimate packets to be dropped. (CVE-2016-2181)
 - An overflow condition exists in the 'BN_bn2dec()' function in 'crypto/bn/bn_print.c'.  The issue is triggered as certain input is not properly validated when handling BIGNUM values. This may allow a context-dependent attacker to cause a buffer overflow, resulting in a denial of service in a process linked against the library. (CVE-2016-2182)
 - A flaw exists in the 'tls_decrypt_ticket()' function in 'ssl/t1_lib.c' that is triggered during the handling of ticket HMAC digest.  This may allow a remote attacker to crash the service. (CVE-2016-6302)
 - An overflow condition exists in the 'MDC2_Update()' function in 'crypto/mdc2/mdc2dgst.c' that is triggered as certain input is not properly validated.  This may allow a context-dependent attacker to cause a heap-based buffer overflow, crashing a process linked against the library or potentially allowing the execution of arbitrary code. (CVE-2016-6303)
 - A flaw exists in the 'ssl_parse_clienthello_tlsext()' function in 'ssl/t1_lib.c' that is triggered when handling overly large OCSP Status Request extensions from clients.  This may allow a remote attacker to exhaust available memory in a process linked against the library. (CVE-2016-6304)
 - An out-of-bounds read flaw exists that is triggered when handling client certificate, client certificate request, and server certificate messages.  This may allow a remote attacker to potentially crash a process linked against the library. (CVE-2016-6306)

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out- of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Published	Updated	Severity
93761	OracleVM 3.3 / 3.4 : openssl (OVMSA-2016-0135)	Nessus	OracleVM Local Security Checks	9/28/2016	1/4/2021	critical
96145	IBM BigFix Remote Control < 9.1.3 Multiple Vulnerabilities (SWEET32)	Nessus	CGI abuses	12/27/2016	11/13/2019	critical
111146	RHEL 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 (RHSA-2018:2185)	Nessus	Red Hat Local Security Checks	7/18/2018	9/4/2024	critical
9625	OpenSSL 1.0.1 < 1.0.1u / 1.0.2 < 1.0.2i Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	10/6/2016	3/6/2019	high
503119	Siemens SCALANCE X-200RNA Switch Devices Out-of-bounds Read (CVE-2016-6306)	Tenable OT Security	Tenable.ot	3/13/2025	3/13/2025	medium

Detections

Analytics

Plugins Search

critical

critical

critical

high

medium