TrustKeeper Scan Engine Update for September 04, 2020

Summary

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Along with coverage for the vulnerabilities listed below, this update also gives us the capability to fingerprint Apple products and OSX versions.

New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Adobe Magento

• Adobe Magento Flash Files Cross-Site Scripting (CVE-2014-9758)
• Adobe Magento Insecure Direct Object Reference (CVE-2019-8235)

Apache

• Apache HTTP Server Cache-Digest Header Denial of Service (CVE-2020-9490)
• Apache HTTP Server mod_remoteip IP Address Spoofing (CVE-2020-11985)
• Apache HTTP Server mod_uwsgi Buffer Overflow (CVE-2020-11984)
• Apache HTTP Server trace/debug Request Smuggling Vulnerability (CVE-2020-11993)

ISC BIND

• Adobe Magento Flash Files Cross-Site Scripting (CVE-2014-9758)
• Adobe Magento Insecure Direct Object Reference (CVE-2019-8235)
• ISC BIND pk11.c Denial of Service (CVE-2020-8623)
• ISC BIND resolver.c Denial of Service (CVE-2020-8621)
• ISC BIND tcpdns.c Denial of Service (CVE-2020-8620)
• ISC BIND TSIG-Signed Request Denial of Service (CVE-2020-8622)
• ISC BIND Update-Policy Improper Privilege Management Vulnerability (CVE-2020-8624)
• Missing VMware ESXi Patches (VMSA-2020-0018) (CVE-2020-3976)
• Squid Proxy Cache Digest Response Denial of Service (SQUID-2020:9)
• Squid Proxy HTTP(S) Request Smuggling Vulnerability (SQUID-2020:10) (CVE-2020-15810)
• Squid Proxy HTTP(S) Request Splitting Vulnerability (SQUID-2020:8) (CVE-2020-15811)

Microsoft

• Microsoft Internet Explorer April 2019 Security Updates Missing (CVE-2019-0764, CVE-2019-0752, CVE-2019-0753, CVE-2019-0835, CVE-2019-0862)
• Microsoft Internet Explorer April 2020 Security Updates Missing (CVE-2020-0895, CVE-2020-0966, CVE-2020-0967, CVE-2020-0968)
• Microsoft Internet Explorer August 2019 Security Updates Missing (CVE-2019-1192)
• Microsoft Internet Explorer August 2020 Security Updates Missing (CVE-2020-1380, CVE-2020-1567, CVE-2020-1570)
• Microsoft Internet Explorer December 2019 Security Updates Missing (CVE-2019-1485)
• Microsoft Internet Explorer February 2019 Security Updates Missing (CVE-2019-0606, CVE-2019-0654, CVE-2019-0676)
• Microsoft Internet Explorer February 2020 Security Updates Missing (CVE-2020-0673, CVE-2020-0674, CVE-2020-0706)
• Microsoft Internet Explorer January 2019 Security Updates Missing (CVE-2019-0541)
• Microsoft Internet Explorer January 2020 Security Updates Missing (CVE-2020-0640)
• Microsoft Internet Explorer July 2019 Security Updates Missing (CVE-2019-1056, CVE-2019-1059, CVE-2019-1063, CVE-2019-1104, CVE-2019-1001, CVE-2019-1004)
• Microsoft Internet Explorer July 2020 Security Updates Missing (CVE-2020-1403, CVE-2020-1432)
• Microsoft Internet Explorer June 2019 Security Updates Missing (CVE-2019-0988, CVE-2019-1055, CVE-2019-0920, CVE-2019-1005, CVE-2019-1038, CVE-2019-1080, CVE-2019-1081)
• Microsoft Internet Explorer June 2020 Security Updates Missing (CVE-2020-1213, CVE-2020-1214, CVE-2020-1215, CVE-2020-1216, CVE-2020-1219, CVE-2020-1220, CVE-2020-1230, CVE-2020-1260, CVE-2020-1315)
• Microsoft Internet Explorer March 2019 Security Updates Missing (CVE-2019-0609, CVE-2019-0746, CVE-2019-0761, CVE-2019-0762, CVE-2019-0763, CVE-2019-0780, CVE-2019-0783, CVE-2019-0665, CVE-2019-0666, CVE-2019-0667, CVE-2019-0680)
• Microsoft Internet Explorer March 2020 Security Updates Missing (CVE-2020-0768, CVE-2020-0824, CVE-2020-0830, CVE-2020-0832, CVE-2020-0833, CVE-2020-0847)
• Microsoft Internet Explorer May 2019 Security Updates Missing (CVE-2019-0884, CVE-2019-0911, CVE-2019-0918, CVE-2019-0921, CVE-2019-0930, CVE-2019-0940)
• Microsoft Internet Explorer May 2020 Security Updates Missing (CVE-2020-1035, CVE-2020-1058, CVE-2020-1060, CVE-2020-1062, CVE-2020-1064, CVE-2020-1093, CVE-2020-1092)
• Microsoft Internet Explorer November 2019 Security Updates Missing (CVE-2019-1429, CVE-2019-1390)
• Microsoft Internet Explorer October 2019 Security Updates Missing (CVE-2019-0608, CVE-2019-1371, CVE-2019-1238, CVE-2019-1357)
• Microsoft Internet Explorer September 2019 Security Updates Missing (CVE-2019-1367)
• Microsoft Windows End of Life Operating System Detected - Credentialed Scan

Oracle

• Oracle Solaris OS July 2020 CPU (CVE-2020-14542, CVE-2019-5489, CVE-2020-14545, CVE-2020-14537, CVE-2018-12207, CVE-2020-14724)
• Oracle WebLogic Server July 2020 CPU (CVE-2020-14622, CVE-2020-2966, CVE-2020-14640, CVE-2020-14638, CVE-2020-14637, CVE-2020-14636, CVE-2020-14572, CVE-2020-14652, CVE-2020-14557, CVE-2020-14589, CVE-2020-5398, CVE-2020-14639, CVE-2020-14588, CVE-2017-5645, CVE-2020-14687, CVE-2020-14645, CVE-2020-14644, CVE-2020-14625, CVE-2018-11058, CVE-2020-9546)

PostgreSQL

• PostgreSQL search_path in CREATE EXTENSION Arbitrary Code Execution (CVE-2020-14350)
• PostgreSQL search_path in Logical Replication Arbitrary Code Execution (CVE-2020-14349)

Red Hat (Credentialed Checks)

• Red Hat Enterprise Linux .NET Core 3.1 security and bugfix update (RHSA-2020:3422) (CVE-2020-1597)
• Red Hat Enterprise Linux Red Hat Ceph Storage 3.3 security and bug fix update (RHSA-2020:3504) (CVE-2020-10753)

Squid

• Squid Proxy Cache Digest Response Denial of Service (SQUID-2020:9)
• Squid Proxy HTTP(S) Request Smuggling Vulnerability (SQUID-2020:10) (CVE-2020-15810)
• Squid Proxy HTTP(S) Request Splitting Vulnerability (SQUID-2020:8) (CVE-2020-15811)

Ubuntu (Credentialed Checks)

• Ubuntu Apache HTTP Server vulnerabilities (USN-4458-1) (CVE-2020-9490, CVE-2020-11993, CVE-2020-11984, CVE-2020-1927, CVE-2020-1934)
• Ubuntu Apport vulnerabilities (USN-4449-1) (CVE-2020-11936, CVE-2020-15701, CVE-2020-15702)
• Ubuntu Dovecot vulnerabilities (USN-4456-1) (CVE-2020-12100, CVE-2020-12674, CVE-2020-12673)
• Ubuntu GRUB2 regression (USN-4432-2) (CVE-2020-14309, CVE-2020-15707, CVE-2020-10713, CVE-2020-15706, CVE-2020-14311, CVE-2020-14310, CVE-2020-15705, CVE-2020-14308)
• Ubuntu libvirt vulnerability (USN-4452-1) (CVE-2020-15708)
• Ubuntu MySQL regression (USN-4441-2) (CVE-2020-14633, CVE-2020-14654, CVE-2020-14550, CVE-2020-14623, CVE-2020-14576, CVE-2020-14591, CVE-2020-14559, CVE-2020-14568, CVE-2020-14540, CVE-2020-14643, CVE-2020-14656, CVE-2020-14553, CVE-2020-14547, CVE-2020-14680, CVE-2020-14539, CVE-2020-14586, CVE-2020-14620, CVE-2020-14624, CVE-2020-14663, CVE-2020-14631, CVE-2020-14697, CVE-2020-14702, CVE-2020-14641, CVE-2020-14619, CVE-2020-14634, CVE-2020-14678, CVE-2020-14597, CVE-2020-14632, CVE-2020-14651, CVE-2020-14575)
• Ubuntu NSS vulnerabilities (USN-4455-1) (CVE-2020-12400, CVE-2020-12401, CVE-2020-6829)
• Ubuntu OpenJDK 8 vulnerabilities (USN-4453-1) (CVE-2020-14556, CVE-2020-14577, CVE-2020-14578, CVE-2020-14579, CVE-2020-14581, CVE-2020-14583, CVE-2020-14593, CVE-2020-14621)
• Ubuntu ppp vulnerability (USN-4451-1) (CVE-2020-15704)
• Ubuntu Salt vulnerabilities (USN-4459-1) (CVE-2018-15750, CVE-2018-15751, CVE-2019-17361, CVE-2020-11651, CVE-2020-11652)
• Ubuntu Samba vulnerability (USN-4454-1) (CVE-2020-14303)
• Ubuntu Software Properties vulnerability (USN-4457-1) (CVE-2020-15709)
• Ubuntu Tomcat vulnerabilities (USN-4448-1) (CVE-2020-13935, CVE-2020-1935, CVE-2020-9484)
• Ubuntu Whoopsie vulnerabilities (USN-4450-1) (CVE-2020-11937, CVE-2020-12135, CVE-2020-15570)

VMware

• Missing VMware ESXi Patches (VMSA-2020-0018) (CVE-2020-3976)

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.