Published: 28/01/2011 Updated: 10/10/2018

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

The email function in manage_sql.c in OpenVAS Manager 1.0.x up to and including 1.0.3 and 2.0.x up to and including 2.0rc2 allows remote authenticated users to execute arbitrary commands via the (1) To or (2) From e-mail address in an OMP request to the Greenbone Security Assistant (GSA).

Vulnerable Product	Search on Vulmon	Subscribe to Product
openvas openvas manager 1.0.0
openvas openvas manager 2.0
openvas openvas manager 1.0.1
openvas openvas manager 1.0.3
openvas openvas manager 1.0.2

Source: securityreasoncom/securityalert/8048 Summary It has been identified that OpenVAS Manager is vulnerable to command injection due to insufficient validation of user supplied data when processing OMP requests It has been identified that this vulnerability allows privilege escalation within the OpenVAS Manager but more complex inject ...

CWE-20 http://www.vupen.com/english/advisories/2011/0208 http://www.openvas.org/OVSA20110118.html http://www.securityfocus.com/bid/45987 http://www.exploit-db.com/exploits/16086 http://secunia.com/advisories/43037 http://osvdb.org/70639 https://exchange.xforce.ibmcloud.com/vulnerabilities/65011 http://www.securityfocus.com/archive/1/515971/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/16086/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-0018

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect