New Vulnerability Test Highlights
Some of the more interesting vulnerability tests we added recently are as follows:
Cisco
- Cisco IOS Internet Key Exchange Version 1 Denial of Service Vulnerability (cisco-sa-20180328-ike-dos and CSCuj73916) ( CVE-2018-0159)
- Cisco IOS Login Enhancements Login Block Denial of Service Vulnerabilities (cisco-sa-20180328-slogin, CSCuy32360 and CSCuz60599) ( CVE-2018-0179, CVE-2018-0180)
- Cisco IOS Bidirectional Forwarding Detection Denial of Service Vulnerability (cisco-sa-20180328-bfd and CSCvc40729) ( CVE-2018-0155)
- Cisco IOS DHCP Version 4 Relay Denial of Service Vulnerability (cisco-sa-20180328-dhcpr3 and CSCuh91645) ( CVE-2018-0174)
- Cisco IOS DHCP Version 4 Relay Heap Overflow Denial of Service Vulnerability (cisco-sa-20180328-dhcpr1 and CSCvg62730) ( CVE-2018-0172)
- Cisco IOS DHCP Version 4 Relay Reply Denial of Service Vulnerability (cisco-sa-20180328-dhcpr2 and CSCvg62754) ( CVE-2018-0173)
- Cisco IOS Integrated Services Module for VPN Denial of Service Vulnerability (cisco-sa-20180328-dos and CSCvd39267) ( CVE-2018-0154)
- Cisco IOS Internet Key Exchange Memory Leak Vulnerability (cisco-sa-20180328-ike and CSCvf22394) ( CVE-2018-0158)
- Cisco IOS Link Layer Discovery Protocol Multiple Vulnerabilities (cisco-sa-20180328-lldp, CSCvd73664 and CSCvd73487) ( CVE-2018-0175, CVE-2018-0167)
- Cisco IOS Quality of Service Remote Code Execution Vulnerability (cisco-sa-20180328-qos and CSCvf73881) ( CVE-2018-0151)
- Cisco IOS Simple Network Management Protocol GET MIB Object ID Denial of Service Vulnerability (cisco-sa-20180328-snmp and CSCvd89541) ( CVE-2018-0161)
- Cisco IOS Smart Install Client Denial of Service Vulnerability (cisco-sa-20180328-smi and CSCvd40673) ( CVE-2018-0156)
Drupal
- Drupal Core CKEditor Cross Site Scripting Vulnerability (SA-CORE-2018-003)
- Drupal Core Remote Code Execution Vulnerability (SA-CORE-2018-004)
SSL
- CA Certificate Contains Nonstandard Basic Constraints and Key Usage Extensions
- SSL-TLS Certificate Information
- Use of Compromised SSL Certificate
Webmin
- Webmin custom/run.cgi Cross-Site Scripting Vulnerability ( CVE-2017-17089)
FreeBSD
- FreeBSD ipsec Denial of Service Vulnerability (FreeBSD-SA-18:05.ipsec) ( CVE-2018-6918)
- FreeBSD kernel Speculative Execution Vulnerabilities (FreeBSD-SA-18:03) ( CVE-2017-5754, CVE-2017-5715)
- FreeBSD vt Console Memory Disclosure Vulnerability (FreeBSD-SA-18:04.vt) ( CVE-2018-6917)
Microsoft
- DNS Service running on Unsupported Microsoft Windows Version
OpenSSL
- OpenSSL RSA Key Generation Cache Timing Vulnerability (SecAdv 20180416) ( CVE-2018-0737)
Oracle
- Oracle Database CPU April 2018 ( CVE-2018-2841)
- Oracle Enterprise Manager CPU April 2018 ( CVE-2017-3736, CVE-2018-2750)
- Oracle MySQL April 2018 CPU Multiple Vulnerabilities ( CVE-2018-2784, CVE-2018-2782, CVE-2018-2805, CVE-2018-2755, CVE-2017-3737, CVE-2018-2780, CVE-2018-2775, CVE-2018-2817, CVE-2018-2758, CVE-2018-2819, CVE-2018-2846, CVE-2018-2816, CVE-2018-2781, CVE-2018-2779, CVE-2018-2778, CVE-2018-2839, CVE-2018-2818, CVE-2018-2810, CVE-2018-2777, CVE-2018-2766, CVE-2018-2759, CVE-2018-2877, CVE-2018-2812, CVE-2018-2787, CVE-2018-2786, CVE-2018-2761, CVE-2016-9878, CVE-2018-2773, CVE-2018-2813, CVE-2018-2771, CVE-2018-2762, CVE-2018-2776, CVE-2018-2769)
- Oracle Solaris OS April 2018 CPU ( CVE-2018-2754, CVE-2018-2764, CVE-2018-2718, CVE-2017-5753, CVE-2018-2808, CVE-2018-2563, CVE-2018-2763)
- Oracle Weblogic Server CPU April 2018 ( CVE-2013-1768, CVE-2018-2628, CVE-2017-7525, CVE-2017-5645)
Samba
- Samba File Access Outside Share Definition Vulnerability ( CVE-2017-2619)
WordPress
- Wordpress Versions prior to 4.9.5 Multiple Vulnerabilities ( CVE-2018-10101)
How to Update?
All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.
