http://www.tenablesecurity.com/tenable_plugins.pdf All the newest security checks for the Tenable Passive Vulnerability Scanner (PVS) http://www.tenablesecurity.com/images/RssLogo.jpg http://www.tenablesecurity.com/ Synopsis :

The remote web server contains a PHP application affected by several vulnerabilities.

The remote host is running Kayako SupportSuite, a web-based electronic support portal written in PHP. According to its banner, the version of Kayako installed on the remote host is earlier than 3.30.01 and, as such, affected by several issues:

- There is a blind SQL injection issue in the staff panel that enables a staff user to gain administrative access.
- A user may be able to inject arbitrary script into a user's browser by opening a ticket or requesting a chat if they include the script in the 'Full Name' field associated with their account.
- There are numerous cross-site scripting issues. For your information, the reported version of SupportSuite is:
%L



CVSS Base Score : 4.3
CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

See also :

http://www.gulftech.org/?node=research&article_id=00123-08092008

Solution :

Upgrade to Kayako SupportSuite 3.30.01 or later.

Risk factor :

MEDIUM

References:
http://www.nessus.org/plugins/index.php?view=single&id=34029


Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4637.html The remote host is running Kayako SupportSuite version: %L

Solution :



Risk factor :

INFO

Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4636.html Synopsis :

The remote host has been compromised and is running a 'Backdoor' program

The remote host appears to be infected with a SQL worm. The worm is attempting to spread via other web servers. The observed network traffic from this machine was:
%L


CVSS Base Score : 10.0
CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution :

Manually examine and clean the host.

Risk factor :

HIGH

Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4635.html Synopsis :

The remote host contains a web browser that is affected by several issues.

The version of Opera installed on the remote host is earlier than 9.52 and thus reportedly affected by several issues :

- Specially-crafted URLs could start Opera in a way that would allow execution of arbitrary code.
- Invalid checking of what frames a site can change, allowing a website to open pages from other sites.
- An unspecified cross-site scripting issue.
- Custom shortcuts and menu commands may pass parameters created from uninitialized memory.
- Secure sites loading insecure content in a frame will cause Opera to incorrectly display the padlock icon.
- Feed sources can link to a user's local disk, and appropriate javascript can detect if these files exist or not.
- The page address may be changed when a user subscribes to a newsfeed subscription using the feed subscription button.


CVSS Base Score : 9.3
CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

See also :

http://www.opera.com/docs/changelogs/windows/952

Solution :

Upgrade to Opera version 9.52 or later.

Risk factor :

HIGH

References:
http://www.nessus.org/plugins/index.php?view=single&id=33949


Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4634.html Synopsis :

The remote web server is part of an access policy control platform.

The remote host appears to be running Cisco Secure Access Control Server, an access policy control platform, on this port. It is used to centrally manage access to network resources.

See also :

http://www.cisco.com/en/US/products/sw/secursw/ps2086/index.html

Solution :

Limit incoming traffic to this port if desired.

Risk factor :

INFO

References:
http://www.nessus.org/plugins/index.php?view=single&id=33942


Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4633.html Synopsis :

The remote SSH service is affected by multiple vulnerabilities.

The version of Attachmate Reflection for Secure IT UNIX server installed on the remote host is less than 7.0 SP1 and thus reportedly affected by several issues :

- There is an inherited vulnerability in OpenSSL when parsing malformed ASN.1 structures leading to a denial-of-service vulnerability (CVE-2006-2937).
- There is an inherited vulnerability in OpenSSL when parsing parasitic public keys leading to a denial-of-service vulnerability (CVE-2006-2940).
- There is an inherited vulnerability in OpenSSL when performing Montgomery multiplication, leading to a side-channel attack vulnerability (CVE-2007-3108).
- There is an inherited vulnerability in OpenSSH with the execution of the ~/.ssh2/rc session file (CVE-2008-1657).
- There is an issue with the security of forwarded X11 connections, leading to possible hijacking. (CVE-2008-1483)
- There are multiple unspecified other vulnerabilities.
For your information, the reported version of SSH is:
%L



CVSS Base Score : 10.0
CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

See also :

http://support.attachmate.com/techdocs/2374.html#Security_Updates_in_7.0_SP1

Solution :

Upgrade to Attachmate Reflection for Secure IT UNIX server 7.0 SP1.

Risk factor :

HIGH

References:
http://www.nessus.org/plugins/index.php?view=single&id=33948
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2937
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2940
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483


Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4632.html The remote host is running the RhinoSoft Serv-U web server. Serv-U web server is typically installed as part of a suite of products which enables file sharing on a remote server. The installed version number is:
%L

Solution :



Risk factor :

INFO

Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4631.html Synopsis :

The remote FTP server is affected by a denial of service vulnerability.

The remote host is running Serv-U File Server, an FTP server for Windows. The installed version of Serv-U is earlier than 7.2.0.1 and thus reportedly contains an SFTP bug in which directory creation and logging SFTP commands could lead to an application crash. For your information, the reported version number is:
%L



CVSS Base Score : 5.0
CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

See also :

http://www.serv-u.com/releasenotes

Solution :

Upgrade to Serv-U version 7.2.0.1 or later.

Risk factor :

MEDIUM

References:
http://www.nessus.org/plugins/index.php?view=single&id=33937


Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4630.html The remote host is running the RhinoSoft Serv-U FTP server. Serv-U is typically installed as part of a suite of products which enables file sharing on a remote server. The installed version number is:
%L

Solution :



Risk factor :

INFO

Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4629.html The remote host is running a Reflections for Secure IT SSH server version:
%L

Solution :



Risk factor :

INFO

Copyright Tenable Network Security Inc. 2007]]> 2008-08-28T06:10:00-05:00 http://www.tenablesecurity.com/4628.html