7 Replies Latest reply: Apr 28, 2014 7:09 AM by Kevin RSS

Full list of Heartbleed plugins

Apprentice

I may have missed it but is this the full list of plugins:

 

Active:

73412,73387,73388,73389,73395,73396,73402,73407,73408,73409

 

Passive:

8194

  • Re: Full list of Heartbleed plugins
    CodyDumont Master

    Here is the full list.

     

    Active

    • 73387, CentOS 6 : openssl (CESA-2014:0376)
    • 73388, Debian DSA-2896-1 : openssl - security update
    • 73389, FreeBSD : OpenSSL -- Remote Information Disclosure (5631ae98-be9e-11e3-b5e3-c80aa9043978)
    • 73395, Oracle Linux 6 : openssl (ELSA-2014-0376)
    • 73396, RHEL 6 : openssl (RHSA-2014:0376)
    • 73402, Ubuntu 12.04 LTS / 12.10 / 13.10 : openssl vulnerabilities (USN-2165-1)
    • 73404, OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities
    • 73407, GLSA-201404-07 : OpenSSL: Information Disclosure
    • 73408, Scientific Linux Security Update : openssl on SL6.x i386/x86_64
    • 73409, Slackware 14.0 / 14.1 / current : openssl (SSA:2014-098-01)
    • 73412, OpenSSL Heartbeat Information Disclosure (Heartbleed)

     

    Passive

    • 7108, OpenSSL Heartbeat Information Disclosure (Heartbleed)
    • 8194, OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities
    • 8195, SSL Content-Type Heartbeat Detection

     

    Event

    • 801065, OpenSSL 1.x < 1.0.0e Multiple Vulnerabilities
    • 801617, OpenSSL Heartbeat Information Disclosure (Heartbleed)
    • Re: Full list of Heartbleed plugins
      Apprentice

      Super! Big help!

    • Re: Full list of Heartbleed plugins
      NathanW Apprentice

      What about this one?

       

      73491: OpenVPN Heartbeat Information Disclosure (Heartbleed)

       

       

      Nathan

    • Re: Full list of Heartbleed plugins
      CodyDumont Master

      Here is a revised list, I will update the Heartbleed components in the dashboard, report and asset to account for these.

       

      Active

      • 73387, CentOS 6 : openssl (CESA-2014:0376)
      • 73388, Debian DSA-2896-1 : openssl - security update
      • 73389, FreeBSD : OpenSSL -- Remote Information Disclosure (5631ae98-be9e-11e3-b5e3-c80aa9043978)
      • 73395, Oracle Linux 6 : openssl (ELSA-2014-0376)
      • 73396, RHEL 6 : openssl (RHSA-2014:0376)
      • 73402, Ubuntu 12.04 LTS / 12.10 / 13.10 : openssl vulnerabilities (USN-2165-1)
      • 73404, OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities
      • 73407, GLSA-201404-07 : OpenSSL: Information Disclosure
      • 73408, Scientific Linux Security Update : openssl on SL6.x i386/x86_64
      • 73409, Slackware 14.0 / 14.1 / current : openssl (SSA:2014-098-01)
      • 73412, OpenSSL Heartbeat Information Disclosure (Heartbleed)
      • 73491, OpenVPN Heartbeat Information Disclosure (Heartbleed)
      • 73500, stunnel < 5.01 OpenSSL Heartbeat Information Disclosure (Heartbleed)
      • 73515, Blue Coat ProxySG Heartbeat Information Disclosure (Heartbleed)
      • 73575, Splunk 6.x < 6.0.3 Multiple OpenSSL Vulnerabilities (including Heartbleed)
      • 73613, WinSCP Heartbeat Information Disclosure (Heartbleed)
      • 73639, HP System Management Homepage OpenSSL Multiple Vulnerabilities (including Heartbleed)
      • 73640, FileZilla Server < 0.9.44 OpenSSL Heartbeat Information Disclosure (Heartbleed)

       

      Passive

      • 7108, OpenSSL Heartbeat Information Disclosure (Heartbleed)
      • 8194, OpenSSL 1.0.1 < 1.0.1g Multiple Vulnerabilities
      • 8195, SSL Content-Type Heartbeat Detection

       

      Event

      • 801065, OpenSSL 1.x < 1.0.0e Multiple Vulnerabilities
      • 801617, OpenSSL Heartbeat Information Disclosure (Heartbleed)