GHOST Vulnerable Assets

Document created by dwheelwright on Jan 28, 2015
Version 1Show Document
  • View in full screen mode

With the recent publicity about the GHOST vulnerability, we have developed two new report templates so you can easily report on the assets that are affected and assess your surface area of exposure to the issue.  These report templates require version 5.12.0 or later of Nexpose. These reports rely on authenticated scans to have the vulnerability results and installed software information.


Affected Systems Only

The affected systems template shows only systems that have been confirmed as being vulnerable to the GHOST vulnerability.

Here is an example of the report template:


GhostAffectedOnly.png


Affected Systems and Vulnerable Versions

This report includes two sections.  The first section shows all assets known to be vulnerable to the GHOST vulnerability (same as the template above). The second section shows any assets that reported a vulnerable version of glibc.  This will include all assets that reported instances of "glibc", "libc5", and "libc6" packages with versions less than 2.18. The primary difference between the two sections is that the first section will include vulnerabilities confirmed using checks, while the second includes potential vulnerabilities based on software version.

Here is an example of the report template:

 

GhostAffectedVersion.png

 

Download either of the attached files and upload into your Nexpose system to start analyzing your assets. To upload the report templates, navigate to the Reports page and then Manage Report Templates. Create a new template and set the file type as Upload.


Attachments

Outcomes