CVE-2011-0018
The email function in manage_sql.c in OpenVAS Manager 1.0.x through 1.0.3 and 2.0.x through 2.0rc2 allows remote authenticated users to execute arbitrary commands via the (1) To or (2) From e-mail address in an OMP request to the Greenbone Security Assistant (GSA).
| Software | From | Fixed in |
|---|---|---|
| openvas / openvas_manager | 1.0.0-beta2 | 1.0.0-beta2.x |
| openvas / openvas_manager | 2.0-rc1 | 2.0-rc1.x |
| openvas / openvas_manager | 1.0.0-beta5 | 1.0.0-beta5.x |
| openvas / openvas_manager | 1.0.0 | 1.0.0.x |
| openvas / openvas_manager | 1.0.2 | 1.0.2.x |
| openvas / openvas_manager | 2.0-beta2 | 2.0-beta2.x |
| openvas / openvas_manager | 1.0.1 | 1.0.1.x |
| openvas / openvas_manager | 2.0-rc2 | 2.0-rc2.x |
| openvas / openvas_manager | 1.0.0-beta4 | 1.0.0-beta4.x |
| openvas / openvas_manager | 2.0-beta1 | 2.0-beta1.x |
| openvas / openvas_manager | 1.0.0-rc1 | 1.0.0-rc1.x |
| openvas / openvas_manager | 1.0.0-beta7 | 1.0.0-beta7.x |
| openvas / openvas_manager | 2.0-beta3 | 2.0-beta3.x |
| openvas / openvas_manager | 1.0.0-beta3 | 1.0.0-beta3.x |
| openvas / openvas_manager | 1.0.0-beta6 | 1.0.0-beta6.x |
| openvas / openvas_manager | 1.0.0-beta1 | 1.0.0-beta1.x |
| openvas / openvas_manager | 1.0.3 | 1.0.3.x |
- http://osvdb.org/70639
- http://secunia.com/advisories/43037
- http://www.exploit-db.com/exploits/16086
- http://www.openvas.org/OVSA20110118.html
- http://www.securityfocus.com/archive/1/515971/100/0/threaded
- http://www.securityfocus.com/bid/45987
- http://www.vupen.com/english/advisories/2011/0208
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65011
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime