Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2014-3570 CVE-2014-3571 CVE-2015-0205 CVE-2015-0206

Nessus, SecurityCenter, and the Tenable Appliance use OpenSSL, which recently disclosed several vulnerabilities. OpenSSL contains a flaw in the dtls1_buffer_record() function that is triggered when handling a saturation of DTLS records that contain the same sequence number, but for the next epoch. This may allow a remote attacker to cause a memory leak and exhaust memory resources. OpenSSL contains a NULL pointer dereference flaw in dtls1_get_record that is triggered when handling DTLS messages. This may allow a remote attacker to cause a segmentation fault. OpenSSL contains a flaw that is due to it accepting DH certificates for client authentication when they are missing certificate verify messages. This may allow a remote attacker to authenticate without the use of a private key. OpenSSL contains a flaw in bignum squaring (BN_sqr) that can cause incorrect results to be produced on certain platforms, including x86_64. This may allow attackers to have an unspecified impact. Note that the associated CVSSv2 score represents the highest scored of the four issues. Further, Tenable strongly recommends that Nessus be installed on a subnet that is not Internet addressable.

Source

Nessus, SecurityCenter, and the Tenable Appliance use OpenSSL, which recently disclosed several vulnerabilities.

OpenSSL contains a flaw in the dtls1_buffer_record() function that is triggered when handling a saturation of DTLS records that contain the same sequence number, but for the next epoch. This may allow a remote attacker to cause a memory leak and exhaust memory resources.
OpenSSL contains a NULL pointer dereference flaw in dtls1_get_record that is triggered when handling DTLS messages. This may allow a remote attacker to cause a segmentation fault.
OpenSSL contains a flaw that is due to it accepting DH certificates for client authentication when they are missing certificate verify messages. This may allow a remote attacker to authenticate without the use of a private key.
OpenSSL contains a flaw in bignum squaring (BN_sqr) that can cause incorrect results to be produced on certain platforms, including x86_64. This may allow attackers to have an unspecified impact.

Note that the associated CVSSv2 score represents the highest scored of the four issues. Further, Tenable strongly recommends that Nessus be installed on a subnet that is not Internet addressable.

Nessus Nessus 6.2 has been released to address the outlined issues in OpenSSL. SecurityCenter Tenable has released a patch for all supported versions of SecurityCenter that addresses this vulnerability. This patch applies OpenSSL 1.0.1l, which is not affected. The patch can be obtained from: https://support.tenable.com/support-center/index.php?x=&mod_id=160

File                         md5sum        
SC-201502.1-rh5-32.tgz       0f74a1ec428cfc004433b7197f047f80
SC-201502.1-rh5-64.tgz       931db94496fc97f23683c5c1f81b3a32
SC-201502.1-rh6-32.tgz       5aa830cb73707a5a4fde03eea3f735a6
SC-201502.1-rh6-64.tgz       16078238a15789e3bc1006108fe81107

Tenable Appliance Tenable has released a patch to update the Tenable Appliance to remediate the OpenSSL issues listed above. The patch can be obtained from: https://support.tenable.com/support-center/index.php?x=&mod_id=230

File                                  md5sum        
SC-TNS-2015-03_3.0.0-3.2.0.tar.gz     b6c5b943d1ce3173dd2485478963cf5b

In addition, Tenable has released version 3.3.1 of the Appliance on March 2, 2015, that addresses these issues.

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

[R7] OpenSSL '20150108' Advisory Affects Tenable Products

Synopsis

Solution

Vulmon Search

About

Products

Connect