Enhanced Java Distribution Detection on Unix-based OSes

Background

Nessus plugin 147817 detects Java Runtime Environments (JREs) and other Java executable files on Unix-based platforms through several methods. Several of these detection methods issue commands that use logic in the detection plugin to determine which shell to use and is not always compatible with the Attempt least privilege option.

Change

The logic in 147817 to determine which shell to use is being removed in favor of the standard logic used in the SSH libraries which is more compatible with the Attempt least privilege option.

Impact

Customers using the Attempt least privilege preference should expect less errors in authentication reporting especially from the plugin output from 102094.

Also, customers may observe additional detections of Java distributions, potentially resulting in an increase in vulnerability detections for Sun/Oracle Java.

Plugin

147817 - Java Detection and Identification (Linux / Unix)

Target Release Date

7 May 2021

---------------------------------------------------------------------------------------------------

Tenable Research Release Highlights are posted in advance of significant new releases or updates to existing plugins or audit files that are important for early customer notification.