Detections
Analytics

FreeBSD : bro -- invalid memory access or heap buffer over-read (55571619-454e-4769-b1e5-28354659e152)

high Nessus Plugin ID 128979

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Jon Siwek of Corelight reports :

This is a security patch release to address a potential Denial of Service vulnerability :

- The NTLM analyzer did not properly handle AV Pair sequences that were either empty or unterminated, resulting in invalid memory access or heap buffer over-read. The NTLM analyzer is enabled by default and used in the analysis of SMB, DCE/RPC, and GSSAPI protocols.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?2ecc6d7f

http://www.nessus.org/u?9657d726

Plugin Details

Severity: High

ID: 128979

File Name: freebsd_pkg_55571619454e4769b1e528354659e152.nasl

Version: 1.1

Type: local

Published: 9/18/2019

Updated: 9/18/2019

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:bro, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 9/17/2019

Vulnerability Publication Date: 8/28/2019