• Support
  • Forums
  • Blogs

Security Advisory - AlienVault v5.0.3 addresses 27 vulnerabilities

LBarracoLBarraco

AlienVault Employee
+19
Notice Date: June 2, 2015

Several vulnerabilities were discovered in the underlying OS packages in AlienVault v5.0.2 and lower, including a vulnerability with our asset discovery scanner. All of the vulnerabilities below have been confirmed and fixed in the AlienVault v5.0.3. AlienVault encourages customers to upgrade to eliminate the vulnerabilities.

See the v5.0.3 patch release notice for details on the release.



Debian Security Update

AlienVault ID: ENG-100371
Description: Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
CVE ID: CVE-2014-9705
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C/I/A/E:F/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100371
Description: The exif_process_unicode function in ext/exif/exif.c in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized pointer free and application crash) via crafted EXIF data in a JPEG image.
CVE ID: CVE-2015-0232
CVSS v2 Base Score: 6.8
CVSS v2 Vector: (AV:N/AC:M/Au:N/C/I/A/E:F/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100371
Description: Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.
CVE ID: CVE-2015-2301
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C/I/A/E:F/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100371
Description: This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2015-2783
CVSS v2 Base Score: 5.8


Debian Security Update

AlienVault ID: ENG-100371
Description: Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages use of the unset function within an __wakeup function, a related issue to CVE-2015-0231.
CVE ID: CVE-2015-2787
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C/I/A/E:U/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100371
Description: This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2015-3329
CVSS v2 Base Score: 5.8


Debian Security Update

AlienVault ID: ENG-100371
Description: This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2015-3330
CVSS v2 Base Score: 6.8


Debian Security Update

AlienVault ID: ENG-100372
Description: cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015.
CVE ID: CVE-2015-3143
CVSS v2 Base Score: 5.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:N/I/A:N/E:F/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100372
Description: cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request.
CVE ID: CVE-2015-3148
CVSS v2 Base Score: 5.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:N/I/A:N/E:U/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100373
Description: The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML data to the (1) new or (2) load_xml function.
CVE ID: CVE-2015-3451
CVSS v2 Base Score: 5.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C/I:N/A:N/E:F/RL:OF/RC:C)


Debian Security Update

AlienVault ID: ENG-100374
Description: tzdata new upstream version
DLA ID: DLA-208-1


Security Update

AlienVault ID: ENG-99407
Description: Nexpose reports several files and directories world writable in the system
CVSS v2 Base Score: 3.6
CVSS v2 Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:N)


Security Update

AlienVault ID: ENG-100255
Description: It is possible to include some java script in the plugin header comments which will then be executed when a user is navigating to the Sensor configuration within the Web UI.
CVSS v2 Base Score: 3.5
CVSS v2 Vector: (AV:L/AC:H/Au:S/C:P/I:P/A:P/E:POC/RL:U/RC:UR)


Debian Security Update

AlienVault ID: ENG-98552
Description: A router or firewall allows source routed packets from arbitrary hosts.
CVE ID: CVE-1999-0510
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P)


Debian Security Update

AlienVault ID: ENG-100584
Description: This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2015-1781


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.
CVE ID: CVE-2013-1569
CVSS v2 Base Score: 10.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420.
CVE ID: CVE-2013-2383
CVSS v2 Base Score: 10.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420.
CVE ID: CVE-2013-2384
CVSS v2 Base Score: 10.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D.
CVE ID: CVE-2013-2419
CVSS v2 Base Score: 5.0
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors reelated to 2D, a different vulnerability than CVE-2014-6591.
CVE ID: CVE-2014-6585
CVSS v2 Base Score: 2.6
CVSS v2 Vector: (AV:N/AC:H/Au:N/C:P/I:N/A:N)


Debian Security Update

AlienVault ID: ENG-100504
Description: Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585.
CVE ID: CVE-2014-6591
CVSS v2 Base Score: 2.6
CVSS v2 Vector: (AV:N/AC:H/Au:N/C:P/I:N/A:N)


Debian Security Update

AlienVault ID: ENG-100504
Description: The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a (1) zero-length quantifier or (2) look-behind expression, a different vulnerability than CVE-2014-7926.
CVE ID: CVE-2014-7923
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P)


Debian Security Update

AlienVault ID: ENG-100504
Description: The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a (1) zero-length quantifier or (2) look-behind expression, a different vulnerability than CVE-2014-7923.
CVE ID: CVE-2014-7926
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P)


Debian Security Update

AlienVault ID: ENG-100504
Description: The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted character sequence.
CVE ID: CVE-2014-7940
CVSS v2 Base Score: 7.5
CVSS v2 Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P)


Debian Security Update

AlienVault ID: ENG-100504
Description: This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2014-9654


Security Update

AlienVault ID: ENG-100470
Description: This has been identified as a false-positive. AlienVault v5.0.3 is not vulnerable.
CVE ID: CVE-2000-0219


Security Update

AlienVault ID: ENG-98552
Description: This has been identified as a false-positive. AlienVault v5.0.3 is not vulnerable.
CVE ID: CVE-1999-0909

Share post:

This discussion has been closed.