Test ID:	1.3.6.1.4.1.25623.1.0.106399
Category:	Web application abuses
Title:	Splunk Enterprise Multiple Vulnerabilities (Nov 2016)
Summary:	Splunk Enterprise is prone to multiple vulnerabilities.
Description:	Summary: Splunk Enterprise is prone to multiple vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - CVE-2016-5636, CVE-2016-5699, CVE-2016-0772: Multiple vulnerabilities in Python - HTTP Request Injection in Splunk Web: Splunk Enterprise versions is affected by an HTTP request injection vulnerability that permits leakage of authentication tokens. The authorization tokens permit an attacker to use the Splunk REST API with the same rights as the user. Vulnerability Impact: An attacker may obtain an authentication token which might give complete access depending on the attacked user. Affected Software/OS: Splunk Enterprise 5.0.x through 6.4.x. Solution: Update to version 5.0.17, 6.0.13, 6.1.12, 6.2.12, 6.3.8, 6.4.4 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-5636 BugTraq ID: 91247 http://www.securityfocus.com/bid/91247 https://security.gentoo.org/glsa/201701-18 https://lists.debian.org/debian-lts-announce/2019/02/msg00011.html http://www.openwall.com/lists/oss-security/2016/06/15/15 http://www.openwall.com/lists/oss-security/2016/06/16/1 RedHat Security Advisories: RHSA-2016:2586 http://rhn.redhat.com/errata/RHSA-2016-2586.html http://www.securitytracker.com/id/1038138 SuSE Security Announcement: openSUSE-SU-2020:0086 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html Common Vulnerability Exposure (CVE) ID: CVE-2016-5699 91226 http://www.securityfocus.com/bid/91226 RHSA-2016:1626 http://rhn.redhat.com/errata/RHSA-2016-1626.html RHSA-2016:1627 http://rhn.redhat.com/errata/RHSA-2016-1627.html RHSA-2016:1628 http://rhn.redhat.com/errata/RHSA-2016-1628.html RHSA-2016:1629 http://rhn.redhat.com/errata/RHSA-2016-1629.html RHSA-2016:1630 http://rhn.redhat.com/errata/RHSA-2016-1630.html [debian-lts-announce] 20190207 [SECURITY] [DLA 1663-1] python3.4 security update [oss-security] 20160614 CVE request: Python HTTP header injection in urrlib2/urllib/httplib/http.client http://www.openwall.com/lists/oss-security/2016/06/14/7 [oss-security] 20160615 Re: CVE request: Python HTTP header injection in urrlib2/urllib/httplib/http.client http://www.openwall.com/lists/oss-security/2016/06/15/12 [oss-security] 20160616 Re: CVE request: Python HTTP header injection in urrlib2/urllib/httplib/http.client http://www.openwall.com/lists/oss-security/2016/06/16/2 http://blog.blindspotsecurity.com/2016/06/advisory-http-header-injection-in.html http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html http://www.splunk.com/view/SP-CAAAPSV http://www.splunk.com/view/SP-CAAAPUE https://docs.python.org/3.4/whatsnew/changelog.html#python-3-4-4 https://hg.python.org/cpython/raw-file/v2.7.10/Misc/NEWS https://hg.python.org/cpython/rev/1c45047c5102 https://hg.python.org/cpython/rev/bf3e1c9b80e9 openSUSE-SU-2020:0086 Common Vulnerability Exposure (CVE) ID: CVE-2016-0772 91225 http://www.securityfocus.com/bid/91225 GLSA-201701-18 [oss-security] 20160614 Python CVE-2016-0772: smtplib StartTLS stripping attack http://www.openwall.com/lists/oss-security/2016/06/14/9 https://bugzilla.redhat.com/show_bug.cgi?id=1303647 https://docs.python.org/3.4/whatsnew/changelog.html#python-3-4-5 https://docs.python.org/3.5/whatsnew/changelog.html#python-3-5-2 https://hg.python.org/cpython/raw-file/v2.7.12/Misc/NEWS https://hg.python.org/cpython/rev/b3ce713fb9be https://hg.python.org/cpython/rev/d590114c2394
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.