Eyes Of Network Privilege Escalation Vulnerability (CVE-2020-8655)

high Nessus Plugin ID 176053

Version 1.56

Nov 6, 2024, 2:41 PM

  • Detection (adding support for Forescout CounterACT)

Plugin Feed: 202411061441

Version 1.55

Oct 23, 2024, 3:47 PM

  • Plugin metadata (update thorough_tests attribute)

Plugin Feed: 202410231547

Version 1.54

Oct 10, 2024, 4:58 AM

  • Detection (Change dir to $HOME before find commands to handle weird find behavior with escalation.)

Plugin Feed: 202410100458

Version 1.52

Sep 11, 2024, 5:35 PM

  • New (Detects QUIC servers running on the target. Implement a NASL QUIC library to support detection of HTTP/3 and possibly more)

Plugin Feed: 202409111735

Version 1.51

Sep 3, 2024, 11:47 PM

  • Logic Changes (additional data collection for runtime scanning. fixed logic bug causing potential false negatives. fixed logic bug causing potential false positives. fixed logic bug with potential to break cyberark logins)

Plugin Feed: 202409032347

Version 1.50

Sep 3, 2024, 5:26 PM

  • Detection (Support for Aruba CPPM SSH based local checks)

Plugin Feed: 202409031726

Version 1.49

Aug 14, 2024, 8:33 PM

  • Logic Changes (Endianness fix in Kerberos authentication for SCAP scanning)

Plugin Feed: 202408142033

Version 1.48

Aug 8, 2024, 4:43 PM

  • Logic Changes (Support OpenSSH private key formats for authentication.)

Plugin Feed: 202408081643

Version 1.47

Jul 24, 2024, 6:31 PM

  • Logic Changes (Modernize SSH usage to optimize behavior on Nessus Agents.. adding AI family)

Plugin Feed: 202407241831

Version 1.46

Jul 17, 2024, 11:02 PM

  • Logic Changes

Plugin Feed: 202407172302

Version 1.45

Jul 6, 2024, 12:22 AM

  • Detection (Changes to support Juniper Session Smart Router)

Plugin Feed: 202407060022

Version 1.44

Jul 5, 2024, 9:04 PM

  • Detection (Adding detection of Juniper SSR devices)

Plugin Feed: 202407052104

Version 1.43

Jun 27, 2024, 9:09 PM

  • New (Deploy nessus_utils binaries on the Nessus Agent)

Plugin Feed: 202406272109

Version 1.42

Jun 21, 2024, 6:31 PM

  • Detection (updated detection for SonicOS devices)

Plugin Feed: 202406211831

Version 1.41

Jun 21, 2024, 2:16 PM

  • Logic Changes

Plugin Feed: 202406211416

Version 1.40

May 20, 2024, 10:13 AM

  • Logic Changes

Plugin Feed: 202405201013

Version 1.39

Mar 19, 2024, 6:40 PM

  • Logic Changes (Improving logging to reduce disk space usage)

Plugin Feed: 202403191840

Version 1.34

Jan 16, 2024, 8:55 PM

  • Logic Changes (Improving debug logging)

Plugin Feed: 202401162055

Version 1.32

Jan 16, 2024, 5:39 PM

  • Detection (Add carrier grade NAT IPs to the IPv4 private address ranges.. Support privacy mode DCOM over Kerberos)
  • Logic Changes (Improving debug logging)

Plugin Feed: 202401161739

Version 1.29

Dec 6, 2023, 12:08 AM

  • Logic Changes (Fixes bug in special case shell handling logic.)

Plugin Feed: 202312060008

Version 1.28

Dec 5, 2023, 9:49 PM

  • Logic Changes (Fixes bug in special case shell handling logic.)

Plugin Feed: 202312052149

Version 1.27

Nov 28, 2023, 11:17 AM

  • Detection (Fixing detection of Cisco Firepower devices)

Plugin Feed: 202311281117

Version 1.26

Nov 27, 2023, 6:11 PM

  • Detection (No longer fall back to the legacy SSH library. Only use the old library explicitly.)

Plugin Feed: 202311271811

Version 1.25

Nov 14, 2023, 4:21 PM

  • Detection (Support SHA2 based encryption for Kerberos)

Plugin Feed: 202311141621

Version 1.25

Nov 27, 2023, 4:16 PM

  • Detection (No longer fall back to the legacy SSH library. Only use the old library explicitly.)

Plugin Feed: 202311271616

Version 1.24

Oct 30, 2023, 1:08 PM

  • Detection (Fixed detection of JUNOS)

Plugin Feed: 202310301308

Version 1.23

Oct 25, 2023, 5:17 PM

  • Detection (Handle SSH exec hang and pagination ctrl codes for PanOS)

Plugin Feed: 202310251717

Version 1.18

Oct 4, 2023, 11:07 PM

  • Detection (Fixed Cisco Firepower detection)

Plugin Feed: 202310042307

Version 1.17

Sep 26, 2023, 8:16 PM

  • Logic Changes

Plugin Feed: 202309262016

Version 1.14

Jul 24, 2023, 7:10 PM

  • Logic Changes (added debugging)

Plugin Feed: 202307241910

Version 1.12

Jul 17, 2023, 5:15 PM

  • Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii(). Permit CIDR entries in target priority list)

Plugin Feed: 202307171715

Version 1.10

Jul 10, 2023, 7:11 PM

  • Logic Changes (Restrict ClientHello ciphersuites by encapsulation)

Plugin Feed: 202307101911

Version 1.9

Jul 5, 2023, 9:03 PM

  • Logic Changes (added ingestion and ability of target priority lists for SSH credentials)

Plugin Feed: 202307052103

Version 1.8

Jun 20, 2023, 9:07 PM

  • Logic Changes (Temporarily limit debug logging)

Plugin Feed: 202306202107

Version 1.3

Jun 1, 2023, 5:27 AM

  • Logic Changes (Better logging)

Plugin Feed: 202306010527

Version 1.2

May 20, 2023, 6:03 PM

  • CISA reference

Plugin Feed: 202305201803

Version 1.1

May 19, 2023, 2:02 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True". "Exploit framework metasploit" set to "True". "Exploitability ease" set to "Exploits are available")

Plugin Feed: 202305191402

Version 1.0

May 18, 2023, 1:02 PM

  • New

Plugin Feed: 202305181302

* Changelogs are generally available for changes made after Nov 1, 2022