5 matches found
EUVD-2013-6567
Malware in sbrugna...
CVE-2013-6765
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
Design/Logic Flaw
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
CVE-2013-6765
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
CVE-2013-6765
OpenVAS Manager (and OpenVAS Administrator) vulnerabilities allow remote authentication bypass via crafted OMP/OAP requests. Affected are OpenVAS Manager 3.0.x before 3.0.7 and 4.0.x before 4.0.4; OpenVAS Administrator versions affected per OVSA advisory. Root cause: incorrect state handling in O...