Windows SeriousSAM HiveNightmare Registry Read Vulnerability

high Nessus Plugin ID 152100

Version 1.152

Dec 16, 2024, 8:47 PM

  • Logic Changes (Handle Alibaba Linux rpm lists the same as other RPM based distros)

Plugin Feed: 202412162047

Version 1.150

Dec 3, 2024, 3:59 PM

  • Detection (Support Azure Linux for generated package plugins.)

Plugin Feed: 202412031559

Version 1.149

Nov 22, 2024, 6:54 PM

  • Logic Changes (Fixed installation reporting)

Plugin Feed: 202411221854

Version 1.148

Nov 20, 2024, 5:30 PM

  • Detection (Reports vulnerable dpkg based packages as structured data.)

Plugin Feed: 202411201730

Version 1.147

Nov 18, 2024, 8:22 PM

  • Detection (Reports vulnerable rpm based packages as structured data.)

Plugin Feed: 202411182022

Version 1.145

Nov 12, 2024, 8:29 PM

  • Logic Changes (Adding installs report)

Plugin Feed: 202411122029

Version 1.143

Nov 4, 2024, 6:02 PM

  • Plugin requirements

Plugin Feed: 202411041802

Version 1.142

Oct 29, 2024, 8:44 PM

  • Logic Changes (Extend structured reporting to vcf_extras)

Plugin Feed: 202410292044

Version 1.137

Oct 10, 2024, 11:57 PM

  • New

Plugin Feed: 202410102357

Version 1.136

Oct 9, 2024, 5:56 PM

  • Logic Changes (Corrects vulnerability-finding structured data tags to include the port.)

Plugin Feed: 202410091756

Version 1.132

Oct 3, 2024, 6:29 PM

  • Detection (Adding hardware constraint support to VCF and UCF)

Plugin Feed: 202410031829

Version 1.131

Oct 2, 2024, 4:10 PM

  • Logic Changes (Adds structured data reports to a subset of manual plugins.)

Plugin Feed: 202410021610

Version 1.130

Sep 23, 2024, 4:07 PM

  • Logic Changes (Consolidate all calls to "rpm -qa")

Plugin Feed: 202409231607

Version 1.128

Sep 3, 2024, 11:47 PM

  • Logic Changes (additional data collection for runtime scanning. fixed logic bug causing potential false negatives. fixed logic bug causing potential false positives. fixed logic bug with potential to break cyberark logins)

Plugin Feed: 202409032347

Version 1.124

Aug 14, 2024, 8:33 PM

  • Logic Changes (Endianness fix in Kerberos authentication for SCAP scanning)

Plugin Feed: 202408142033

Version 1.123

Aug 6, 2024, 4:43 PM

  • Detection (Fix to allow Nessus Agent audits to query security settings registry key default values.)

Plugin Feed: 202408061643

Version 1.118

Jul 17, 2024, 11:02 PM

  • Logic Changes

Plugin Feed: 202407172302

Version 1.117

Jun 27, 2024, 9:09 PM

  • New (Deploy nessus_utils binaries on the Nessus Agent)

Plugin Feed: 202406272109

Version 1.115

Jun 21, 2024, 9:43 PM

  • New

Plugin Feed: 202406212143

Version 1.113

Jun 12, 2024, 4:30 PM

  • Logic Changes (Prefer replace_kb_item in debug KBs to prevent unintentional duplication/forking)

Plugin Feed: 202406121630

Version 1.111

May 20, 2024, 10:13 AM

  • Logic Changes

Plugin Feed: 202405201013

Version 1.110

May 7, 2024, 10:55 AM

  • Logic Changes (Streamling reporting for unpatched rpm based vuln checks.)

Plugin Feed: 202405071055

Version 1.105

Apr 16, 2024, 4:33 PM

  • Logic Changes (Structured reporting for unpatched rpm based vuln checks.)

Plugin Feed: 202404161633

Version 1.102

Mar 27, 2024, 7:16 PM

  • Detection (Debian kernel vulns will now be evaluated against the running kernel version instead of the highest installed version)

Plugin Feed: 202403271916

Version 1.100

Mar 19, 2024, 6:40 PM

  • Logic Changes (Improving logging to reduce disk space usage)

Plugin Feed: 202403191840

Version 1.97

Mar 5, 2024, 2:40 PM

  • Detection (improved file verification for Windows Agents)

Plugin Feed: 202403051440

Version 1.96

Mar 5, 2024, 1:15 AM

  • Logic Changes (Report structured data for Microsoft Exchange checks.. Report structured data for RPM version checks.)

Plugin Feed: 202403050115

Version 1.94

Mar 4, 2024, 5:08 PM

  • Logic Changes (Add support functions for unpatched debian/ubuntu vuln checks.)

Plugin Feed: 202403041708

Version 1.93

Feb 27, 2024, 8:49 PM

  • Logic Changes (Report structured data for DPKG version checks.)

Plugin Feed: 202402272049

Version 1.87

Feb 9, 2024, 11:22 AM

  • New

Plugin Feed: 202402091122

Version 1.86

Jan 20, 2024, 7:10 PM

  • Logic Changes (Updated parse_rpm_name() to handle package names that have no release information.)

Plugin Feed: 202401201910

Version 1.85

Jan 16, 2024, 8:55 PM

  • Logic Changes (Improving debug logging)

Plugin Feed: 202401162055

Version 1.84

Jan 16, 2024, 5:39 PM

  • Detection (Support privacy mode DCOM over Kerberos)
  • Logic Changes (Improving debug logging)

Plugin Feed: 202401161739

Version 1.81

Nov 14, 2023, 4:21 PM

  • Detection (Support SHA2 based encryption for Kerberos)

Plugin Feed: 202311141621

Version 1.74

Oct 3, 2023, 6:16 PM

  • New

Plugin Feed: 202310031816

Version 1.73

Sep 26, 2023, 8:16 PM

  • Logic Changes

Plugin Feed: 202309262016

Version 1.72

Jul 17, 2023, 5:15 PM

  • Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii())

Plugin Feed: 202307171715

Version 1.71

Jul 10, 2023, 7:11 PM

  • Logic Changes (Restrict ClientHello ciphersuites by encapsulation)

Plugin Feed: 202307101911

Version 1.70

Jun 20, 2023, 9:07 PM

  • Logic Changes (Temporarily limit debug logging)

Plugin Feed: 202306202107

Version 1.69

Jun 9, 2023, 12:10 AM

  • Logic Changes (Fix two function returns)

Plugin Feed: 202306090010

Version 1.68

Jun 1, 2023, 5:27 AM

  • Logic Changes (Better logging)

Plugin Feed: 202306010527

Version 1.67

May 16, 2023, 7:02 PM

  • Detection (Authenticate WMI/DCOM using Kerberos credentials.)

Plugin Feed: 202305161902

Version 1.65

May 1, 2023, 9:07 PM

  • Detection (Make and use compatibility wrapper for running commands on scanner localhost to handle deprecation of pread().)

Plugin Feed: 202305012107

Version 1.62

Apr 6, 2023, 6:58 PM

  • Detection (Add Kerberos debug logging)

Plugin Feed: 202304061858

Version 1.61

Mar 23, 2023, 8:46 PM

  • Plugin requirements

Plugin Feed: 202303232046

Version 1.59

Mar 8, 2023, 1:05 AM

  • Logic Changes

Plugin Feed: 202303080105

* Changelogs are generally available for changes made after Nov 1, 2022