5 - USN-2686-1

Executive Summary

Summary
Title	Apache HTTP Server vulnerabilities

Informations
Name	USN-2686-1	First vendor Publication	2015-07-27
Vendor	Ubuntu	Last vendor Modification	2015-07-27
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.04 - Ubuntu 14.04 LTS - Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in the Apache HTTP server.

Software Description: - apache2: Apache HTTP server

Details:

It was discovered that the Apache HTTP Server incorrectly parsed chunk headers. A remote attacker could possibly use this issue to perform HTTP request smuggling attacks. (CVE-2015-3183)

It was discovered that the Apache HTTP Server incorrectly handled the ap_some_auth_required API. A remote attacker could possibly use this issue to bypass intended access restrictions. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.04. (CVE-2015-3185)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 15.04:
apache2.2-bin 2.4.10-9ubuntu1.1

Ubuntu 14.04 LTS:
apache2.2-bin 2.4.7-1ubuntu4.5

Ubuntu 12.04 LTS:
apache2.2-bin 2.2.22-1ubuntu1.10

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2686-1
CVE-2015-3183, CVE-2015-3185

Package Information:
https://launchpad.net/ubuntu/+source/apache2/2.4.10-9ubuntu1.1
https://launchpad.net/ubuntu/+source/apache2/2.4.7-1ubuntu4.5
https://launchpad.net/ubuntu/+source/apache2/2.2.22-1ubuntu1.10

Original Source

Url : http://www.ubuntu.com/usn/USN-2686-1

CWE : Common Weakness Enumeration

%	Id	Name
33 %	CWE-264	Permissions, Privileges, and Access Controls
33 %	CWE-20	Improper Input Validation
33 %	CWE-17	Code

CPE : Common Platform Enumeration

Type	Description	Count
Application	Apache Http Server cpe:2.3:a:apache:http_server:2.4.9:::::::* cpe:2.3:a:apache:http_server:2.4.8:::::::* cpe:2.3:a:apache:http_server:2.4.7:::::::* cpe:2.3:a:apache:http_server:2.4.6:::::::* cpe:2.3:a:apache:http_server:2.4.4:::::::* cpe:2.3:a:apache:http_server:2.4.3:::::::* cpe:2.3:a:apache:http_server:2.4.2:::::::* cpe:2.3:a:apache:http_server:2.4.14:::::::* cpe:2.3:a:apache:http_server:2.4.13:::::::* cpe:2.3:a:apache:http_server:2.4.12:::::::* cpe:2.3:a:apache:http_server:2.4.10:::::::* cpe:2.3:a:apache:http_server:2.4.1:::::::* cpe:2.3:a:apache:http_server:2.4.0:::::::* cpe:2.3:a:apache:http_server:2.3.9:::::::* cpe:2.3:a:apache:http_server:2.3.8:::::::* cpe:2.3:a:apache:http_server:2.3.7:::::::* cpe:2.3:a:apache:http_server:2.3.6:::::::* cpe:2.3:a:apache:http_server:2.3.5:::::::* cpe:2.3:a:apache:http_server:2.3.5:alpha:::::: cpe:2.3:a:apache:http_server:2.3.4:::::::* cpe:2.3:a:apache:http_server:2.3.4:alpha:::::: cpe:2.3:a:apache:http_server:2.3.3:::::::* cpe:2.3:a:apache:http_server:2.3.2:::::::* cpe:2.3:a:apache:http_server:2.3.16:::::::* cpe:2.3:a:apache:http_server:2.3.15:::::::* cpe:2.3:a:apache:http_server:2.3.14:::::::* cpe:2.3:a:apache:http_server:2.3.13:::::::* cpe:2.3:a:apache:http_server:2.3.12:::::::* cpe:2.3:a:apache:http_server:2.3.11:::::::* cpe:2.3:a:apache:http_server:2.3.10:::::::* cpe:2.3:a:apache:http_server:2.3.1:::::::* cpe:2.3:a:apache:http_server:2.3.0:::::::* cpe:2.3:a:apache:http_server:2.2.9:::::::* cpe:2.3:a:apache:http_server:2.2.8:::::::* cpe:2.3:a:apache:http_server:2.2.7:::::::* cpe:2.3:a:apache:http_server:2.2.6:::::::* cpe:2.3:a:apache:http_server:2.2.5:::::::* cpe:2.3:a:apache:http_server:2.2.4:::::::* cpe:2.3:a:apache:http_server:2.2.32:::::::* cpe:2.3:a:apache:http_server:2.2.31:::::::* cpe:2.3:a:apache:http_server:2.2.30:::::::* cpe:2.3:a:apache:http_server:2.2.3:::::::* cpe:2.3:a:apache:http_server:2.2.3::windows::::: cpe:2.3:a:apache:http_server:2.2.29:::::::* cpe:2.3:a:apache:http_server:2.2.27:::::::* cpe:2.3:a:apache:http_server:2.2.26:::::::* cpe:2.3:a:apache:http_server:2.2.25:::::::* cpe:2.3:a:apache:http_server:2.2.24:::::::* cpe:2.3:a:apache:http_server:2.2.23:::::::* cpe:2.3:a:apache:http_server:2.2.22:::::::* cpe:2.3:a:apache:http_server:2.2.21:::::::* cpe:2.3:a:apache:http_server:2.2.20:::::::* cpe:2.3:a:apache:http_server:2.2.2:::::::* cpe:2.3:a:apache:http_server:2.2.2::windows::::: cpe:2.3:a:apache:http_server:2.2.19:::::::* cpe:2.3:a:apache:http_server:2.2.18:::::::* cpe:2.3:a:apache:http_server:2.2.17:::::::* cpe:2.3:a:apache:http_server:2.2.16:::::::* cpe:2.3:a:apache:http_server:2.2.15-60:::::::* cpe:2.3:a:apache:http_server:2.2.15:::::::* cpe:2.3:a:apache:http_server:2.2.14:::::::* cpe:2.3:a:apache:http_server:2.2.13:::::::* cpe:2.3:a:apache:http_server:2.2.12:::::::* cpe:2.3:a:apache:http_server:2.2.11:::::::* cpe:2.3:a:apache:http_server:2.2.10:::::::* cpe:2.3:a:apache:http_server:2.2.1:::::::* cpe:2.3:a:apache:http_server:2.2.0:::::::* cpe:2.3:a:apache:http_server:2.2:::::::* cpe:2.3:a:apache:http_server:2.1.9:::::::* cpe:2.3:a:apache:http_server:2.1.8:::::::* cpe:2.3:a:apache:http_server:2.1.7:::::::* cpe:2.3:a:apache:http_server:2.1.6:::::::* cpe:2.3:a:apache:http_server:2.1.5:::::::* cpe:2.3:a:apache:http_server:2.1.4:::::::* cpe:2.3:a:apache:http_server:2.1.3:::::::* cpe:2.3:a:apache:http_server:2.1.2:::::::* cpe:2.3:a:apache:http_server:2.1.1:::::::* cpe:2.3:a:apache:http_server:2.1.0:::::::* cpe:2.3:a:apache:http_server:2.1:::::::* cpe:2.3:a:apache:http_server:2.0.9:::::::* cpe:2.3:a:apache:http_server:2.0.65:::::::* cpe:2.3:a:apache:http_server:2.0.64:::::::* cpe:2.3:a:apache:http_server:2.0.63:::::::* cpe:2.3:a:apache:http_server:2.0.61:::::::* cpe:2.3:a:apache:http_server:2.0.60:::::::* cpe:2.3:a:apache:http_server:2.0.59:::::::* cpe:2.3:a:apache:http_server:2.0.58:::::::* cpe:2.3:a:apache:http_server:2.0.58::win32::::: cpe:2.3:a:apache:http_server:2.0.57:::::::* cpe:2.3:a:apache:http_server:2.0.56:::::::* cpe:2.3:a:apache:http_server:2.0.55:::::::* cpe:2.3:a:apache:http_server:2.0.54:::::::* cpe:2.3:a:apache:http_server:2.0.53:::::::* cpe:2.3:a:apache:http_server:2.0.52:::::::* cpe:2.3:a:apache:http_server:2.0.51:::::::* cpe:2.3:a:apache:http_server:2.0.50:::::::* cpe:2.3:a:apache:http_server:2.0.49:::::::* cpe:2.3:a:apache:http_server:2.0.48:::::::* cpe:2.3:a:apache:http_server:2.0.47:::::::* cpe:2.3:a:apache:http_server:2.0.46:::::::* cpe:2.3:a:apache:http_server:2.0.46::win32::::: cpe:2.3:a:apache:http_server:2.0.45:::::::* cpe:2.3:a:apache:http_server:2.0.44:::::::* cpe:2.3:a:apache:http_server:2.0.43:::::::* cpe:2.3:a:apache:http_server:2.0.42:::::::* cpe:2.3:a:apache:http_server:2.0.41:::::::* cpe:2.3:a:apache:http_server:2.0.40:::::::* cpe:2.3:a:apache:http_server:2.0.39:::::::* cpe:2.3:a:apache:http_server:2.0.38:::::::* cpe:2.3:a:apache:http_server:2.0.37:::::::* cpe:2.3:a:apache:http_server:2.0.36:::::::* cpe:2.3:a:apache:http_server:2.0.35:::::::* cpe:2.3:a:apache:http_server:2.0.34:beta:::::: cpe:2.3:a:apache:http_server:2.0.34:beta:win32:::::* cpe:2.3:a:apache:http_server:2.0.34:::::::* cpe:2.3:a:apache:http_server:2.0.33:::::::* cpe:2.3:a:apache:http_server:2.0.32:beta:::::: cpe:2.3:a:apache:http_server:2.0.32:::::::* cpe:2.3:a:apache:http_server:2.0.32:beta:win32:::::* cpe:2.3:a:apache:http_server:2.0.31:::::::* cpe:2.3:a:apache:http_server:2.0.30:::::::* cpe:2.3:a:apache:http_server:2.0.29:::::::* cpe:2.3:a:apache:http_server:2.0.28:beta:::::: cpe:2.3:a:apache:http_server:2.0.28:::::::* cpe:2.3:a:apache:http_server:2.0.28:beta:win32:::::* cpe:2.3:a:apache:http_server:2.0.27:::::::* cpe:2.3:a:apache:http_server:2.0.26:::::::* cpe:2.3:a:apache:http_server:2.0.25:::::::* cpe:2.3:a:apache:http_server:2.0.24:::::::* cpe:2.3:a:apache:http_server:2.0.23:::::::* cpe:2.3:a:apache:http_server:2.0.22:::::::* cpe:2.3:a:apache:http_server:2.0.21:::::::* cpe:2.3:a:apache:http_server:2.0.20:::::::* cpe:2.3:a:apache:http_server:2.0.19:::::::* cpe:2.3:a:apache:http_server:2.0.18:::::::* cpe:2.3:a:apache:http_server:2.0.17:::::::* cpe:2.3:a:apache:http_server:2.0.16:::::::* cpe:2.3:a:apache:http_server:2.0.15:::::::* cpe:2.3:a:apache:http_server:2.0.14:::::::* cpe:2.3:a:apache:http_server:2.0.13:::::::* cpe:2.3:a:apache:http_server:2.0.12:::::::* cpe:2.3:a:apache:http_server:2.0.11:::::::* cpe:2.3:a:apache:http_server:2.0.0:::::::* cpe:2.3:a:apache:http_server:2.0:::::::* cpe:2.3:a:apache:http_server:2.0:alpha9:::::: cpe:2.3:a:apache:http_server:1.99:::::::* cpe:2.3:a:apache:http_server:1.4.0:::::::* cpe:2.3:a:apache:http_server:1.3.9:::::::* cpe:2.3:a:apache:http_server:1.3.9::win32::::: cpe:2.3:a:apache:http_server:1.3.8:::::::* cpe:2.3:a:apache:http_server:1.3.7:::::::* cpe:2.3:a:apache:http_server:1.3.7::dev::::: cpe:2.3:a:apache:http_server:1.3.68:::::::* cpe:2.3:a:apache:http_server:1.3.65:::::::* cpe:2.3:a:apache:http_server:1.3.6:::::::* cpe:2.3:a:apache:http_server:1.3.6::win32::::: cpe:2.3:a:apache:http_server:1.3.5:::::::* cpe:2.3:a:apache:http_server:1.3.42:::::::* cpe:2.3:a:apache:http_server:1.3.41:::::::* cpe:2.3:a:apache:http_server:1.3.40:::::::* cpe:2.3:a:apache:http_server:1.3.4:::::::* cpe:2.3:a:apache:http_server:1.3.39:::::::* cpe:2.3:a:apache:http_server:1.3.38:::::::* cpe:2.3:a:apache:http_server:1.3.37:::::::* cpe:2.3:a:apache:http_server:1.3.36:::::::* cpe:2.3:a:apache:http_server:1.3.35:::::::* cpe:2.3:a:apache:http_server:1.3.34:::::::* cpe:2.3:a:apache:http_server:1.3.33:::::::* cpe:2.3:a:apache:http_server:1.3.32:::::::* cpe:2.3:a:apache:http_server:1.3.31:::::::* cpe:2.3:a:apache:http_server:1.3.30:::::::* cpe:2.3:a:apache:http_server:1.3.3:::::::* cpe:2.3:a:apache:http_server:1.3.29:::::::* cpe:2.3:a:apache:http_server:1.3.28:::::::* cpe:2.3:a:apache:http_server:1.3.27:::::::* cpe:2.3:a:apache:http_server:1.3.26:::::::* cpe:2.3:a:apache:http_server:1.3.26::win32::::: cpe:2.3:a:apache:http_server:1.3.25:::::::* cpe:2.3:a:apache:http_server:1.3.25::win32::::: cpe:2.3:a:apache:http_server:1.3.24:::::::* cpe:2.3:a:apache:http_server:1.3.24::win32::::: cpe:2.3:a:apache:http_server:1.3.23:::::::* cpe:2.3:a:apache:http_server:1.3.23::win32::::: cpe:2.3:a:apache:http_server:1.3.22:::::::* cpe:2.3:a:apache:http_server:1.3.22::win32::::: cpe:2.3:a:apache:http_server:1.3.20:::::::* cpe:2.3:a:apache:http_server:1.3.20::win32::::: cpe:2.3:a:apache:http_server:1.3.2:::::::* cpe:2.3:a:apache:http_server:1.3.19:::::::* cpe:2.3:a:apache:http_server:1.3.19::win32::::: cpe:2.3:a:apache:http_server:1.3.18:::::::* cpe:2.3:a:apache:http_server:1.3.18::win32::::: cpe:2.3:a:apache:http_server:1.3.17:::::::* cpe:2.3:a:apache:http_server:1.3.17::win32::::: cpe:2.3:a:apache:http_server:1.3.16:::::::* cpe:2.3:a:apache:http_server:1.3.16::win32::::: cpe:2.3:a:apache:http_server:1.3.15:::::::* cpe:2.3:a:apache:http_server:1.3.15::win32::::: cpe:2.3:a:apache:http_server:1.3.14:::::::* cpe:2.3:a:apache:http_server:1.3.14::win32::::: cpe:2.3:a:apache:http_server:1.3.14::mac_os::::: cpe:2.3:a:apache:http_server:1.3.13:::::::* cpe:2.3:a:apache:http_server:1.3.13::win32::::: cpe:2.3:a:apache:http_server:1.3.12:::::::* cpe:2.3:a:apache:http_server:1.3.12::win32::::: cpe:2.3:a:apache:http_server:1.3.11:::::::* cpe:2.3:a:apache:http_server:1.3.11::win32::::: cpe:2.3:a:apache:http_server:1.3.10:::::::* cpe:2.3:a:apache:http_server:1.3.1.1:::::::* cpe:2.3:a:apache:http_server:1.3.1:::::::* cpe:2.3:a:apache:http_server:1.3.0:::::::* cpe:2.3:a:apache:http_server:1.3:::::::* cpe:2.3:a:apache:http_server:1.2.9:::::::* cpe:2.3:a:apache:http_server:1.2.6:::::::* cpe:2.3:a:apache:http_server:1.2.5:::::::* cpe:2.3:a:apache:http_server:1.2.4:::::::* cpe:2.3:a:apache:http_server:1.2.0:::::::* cpe:2.3:a:apache:http_server:1.15.17:::::::* cpe:2.3:a:apache:http_server:1.1.1:::::::* cpe:2.3:a:apache:http_server:1.1:::::::* cpe:2.3:a:apache:http_server:1.0.5:::::::* cpe:2.3:a:apache:http_server:1.0.3:::::::* cpe:2.3:a:apache:http_server:1.0.2:::::::* cpe:2.3:a:apache:http_server:1.0:::::::* cpe:2.3:a:apache:http_server:0.8.14:::::::* cpe:2.3:a:apache:http_server:0.8.11:::::::* cpe:2.3:a:apache:http_server:::::::: cpe:2.3:a:apache:http_server:::win32:::::* cpe:2.3:a:apache:http_server:-:::::::*	229
Application	Apple Xcode cpe:2.3:a:apple:xcode:7.0:::::::*	1
Os	Apple Mac Os X cpe:2.3:o:apple:mac_os_x:10.10.4:::::::*	1
Os	Apple Mac Os X Server cpe:2.3:o:apple:mac_os_x_server:5.0.3:::::::*	1
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::	3

Information Assurance Vulnerability Management (IAVM)

Date	Description
2015-08-20	IAVM : 2015-A-0199 - Multiple Vulnerabilities in Apple Mac OS X Severity : Category I - VMSKEY : V0061337
2015-07-23	IAVM : 2015-A-0174 - Multiple Vulnerabilities in Apache HTTP Server Severity : Category I - VMSKEY : V0061135

Snort® IPS/IDS

Date	Description
2018-06-05	HTTP request smuggling attempt RuleID : 46495 - Revision : 4 - Type : SERVER-OTHER

Nessus® Vulnerability Scanner

Date	Description
2017-09-15	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2710.nasl - Type : ACT_GATHER_INFO
2017-09-15	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2709.nasl - Type : ACT_GATHER_INFO
2016-10-14	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2016-2055.nasl - Type : ACT_GATHER_INFO
2016-10-07	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201610-02.nasl - Type : ACT_GATHER_INFO
2016-05-26	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL17251.nasl - Type : ACT_GATHER_INFO
2016-01-22	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2016-0061.nasl - Type : ACT_GATHER_INFO
2016-01-21	Name : The application installed on the remote host is affected by multiple vulnerab... File : oracle_secure_global_desktop_jan_2016_cpu.nasl - Type : ACT_GATHER_INFO
2015-12-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-2660.nasl - Type : ACT_GATHER_INFO
2015-12-17	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-2659.nasl - Type : ACT_GATHER_INFO
2015-11-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1885-2.nasl - Type : ACT_GATHER_INFO
2015-11-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1851-1.nasl - Type : ACT_GATHER_INFO
2015-10-06	Name : The remote openSUSE host is missing a security update. File : openSUSE-2015-635.nasl - Type : ACT_GATHER_INFO
2015-10-02	Name : The remote Mac OS X host has an application installed that is affected by mul... File : macosx_xcode_7_0.nasl - Type : ACT_GATHER_INFO
2015-09-22	Name : The remote host is missing a security update for OS X Server. File : macosx_server_5_0_3.nasl - Type : ACT_GATHER_INFO
2015-09-18	Name : The remote IBM HTTP Server is affected by multiple vulnerabilities. File : websphere_8_5_5_7.nasl - Type : ACT_GATHER_INFO
2015-08-26	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-1667.nasl - Type : ACT_GATHER_INFO
2015-08-26	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-1668.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1668.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150824_httpd_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150824_httpd_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote application is affected by multiple vulnerabilities. File : securitycenter_apache_2_4_16.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1667.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-1668.nasl - Type : ACT_GATHER_INFO
2015-08-25	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-1667.nasl - Type : ACT_GATHER_INFO
2015-08-18	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2015-579.nasl - Type : ACT_GATHER_INFO
2015-08-18	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2015-578.nasl - Type : ACT_GATHER_INFO
2015-08-17	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2015-006.nasl - Type : ACT_GATHER_INFO
2015-08-17	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_10_10_5.nasl - Type : ACT_GATHER_INFO
2015-08-03	Name : The remote Debian host is missing a security-related update. File : debian_DSA-3325.nasl - Type : ACT_GATHER_INFO
2015-07-30	Name : The remote Fedora host is missing a security update. File : fedora_2015-11792.nasl - Type : ACT_GATHER_INFO
2015-07-29	Name : The remote Debian host is missing a security update. File : debian_DLA-284.nasl - Type : ACT_GATHER_INFO
2015-07-28	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2686-1.nasl - Type : ACT_GATHER_INFO
2015-07-23	Name : The remote web server is affected by multiple vulnerabilities. File : apache_2_4_16.nasl - Type : ACT_GATHER_INFO
2015-07-22	Name : The remote Fedora host is missing a security update. File : fedora_2015-11689.nasl - Type : ACT_GATHER_INFO
2015-07-20	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2015-198-01.nasl - Type : ACT_GATHER_INFO
2015-07-20	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_29083f8e2ca811e586ff14dae9d210b8.nasl - Type : ACT_GATHER_INFO
2015-07-16	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_a12494c12af411e586ff14dae9d210b8.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2016-01-22 09:26:56	Multiple Updates
2015-07-31 13:29:14	Multiple Updates
2015-07-27 21:26:40	First insertion

Global Informations

Type	Count
CWE ID(s)	3
CPE ID(s)	235
IAVM(s)	2
Snort® Rule(s)	1
Nessus® Exploit(s)	37

	Related
5	CVE-2015-3183
4.3	CVE-2015-3185
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)

5 - USN-2686-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Information Assurance Vulnerability Management (IAVM)

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU