Detections
Analytics

PCS Daemon (pcsd) Cookie Signing Multiple Vulnerabilities

medium Nessus Plugin ID 84289

Language:

Synopsis

The remote host is affected by multiple vulnerabilities.

Description

The remote host is affected by multiple vulnerabilities due to a failure by the PCS daemon (pcsd) to properly set flags in the 'Set-Cookie' header :

 - A security bypass vulnerability exists due to a failure to set the 'secure' flag. A remote attacker can exploit this to spoof cookies and bypass authorization checks.
 (CVE-2015-1848)

 - An information disclosure vulnerability exists due to a failure to set the 'HttpOnly' flag. A remote attacker can exploit this to obtain sensitive information from a cookie. (CVE-2015-3983)

Solution

Upgrade to PCS Daemon (pcsd) 9.140 or higher. Alternatively, apply the patch per the vendor advisory.

See Also

http://www.nessus.org/u?5b842f5e

Plugin Details

Severity: Medium

ID: 84289

File Name: pcsd_info_disclosure.nasl

Version: 1.5

Type: remote

Family: CGI abuses

Published: 6/19/2015

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:clusterlabs:pacemaker, cpe:/a:fedora:pacemaker_configuration_system

Required KB Items: installed_sw/PCSD

Exploit Ease: No exploit is required

Patch Publication Date: 5/12/2015

Vulnerability Publication Date: 5/12/2015

Reference Information

CVE: CVE-2015-1848, CVE-2015-3983

BID: 74623, 74682