Detections
Analytics
Palo Alto Networks PAN-OS GlobalProtect Web Portal RCE (PAN-SA-2016-0005)
critical Nessus Plugin ID 90246
Language:
Synopsis
The remote host is affected by a remote code execution vulnerability.Description
The Palo Alto Networks PAN-OS running on the remote host is affected by a remote code execution vulnerability in the GlobalProtect web portal due to improper validation of user-supplied input when handling SSL VPN requests. An unauthenticated, remote attacker can exploit this, via a crafted request, to cause an overflow condition, resulting in a denial of service or the execution of arbitrary code.Note that the remote PAN-OS is reportedly affected by other vulnerabilities as well; however, Nessus has not tested for these.
Solution
Upgrade to Palo Alto Networks PAN-OS version 5.0.18 / 6.0.13 / 6.1.10 / 7.0.5 or later.See Also
https://securityadvisories.paloaltonetworks.com/Home/Detail/38
Plugin Details
Severity: Critical
ID: 90246
File Name: palo_alto_PAN-SA-2016-0005_remote.nasl
Version: 1.7
Type: remote
Family: General
Published: 3/28/2016
Updated: 11/20/2019
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2016-3657
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:paloaltonetworks:pan-os
Required KB Items: www/panweb
Exploit Ease: No known exploits are available
Patch Publication Date: 2/25/2016
Vulnerability Publication Date: 2/25/2016
Reference Information
CVE: CVE-2016-3657