58 matches found
CVE-2017-2227
Untrusted search path vulnerability in The installer of Charamin OMP Version 1.1.7.4 and earlier, Version 1.2.0.0 Beta and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-2227
The CVE-2017-2227 entry concerns the Charamin OMP installer: an untrusted search path (DLL search order) vulnerability that allows arbitrary code execution with the privileges of the user invoking the installer. A Trojan horse DLL in an unspecified directory can be loaded during installation. Aff...
JVN#09293613: Installer of Charamin OMP may insecurely load Dynamic Link Libraries
The installer of Charamin OMP provided by Charamin steering committee contains an issue with the DLL search path, which may lead to insecurely load Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege of the user invoking the installer. Solution Use the latest...
GSM Community Edition and lagging OpenVAS Plugin Feed
As I already wrote in "Installing OpenVAS 9 from the sources", since May 2017 OpenVAS 9 is available in a form of free virtual appliance. It is called GSM Community Edition GCE and is based on Greenbone commercial product GSM ONE. What's the difference between GSM ONE and free GCE? GSM Community...
[SECURITY] Fedora 23 Update: openvas-manager-6.0.9-1.fc23
The OpenVAS Manager is the central service that consolidates plain vulnerab ility scanning into a full vulnerability management solution. The Manager control s the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Manageme nt Protocol OMP. All intelligence is implemented in the...
[SECURITY] Fedora 24 Update: openvas-manager-6.0.9-1.fc24
The OpenVAS Manager is the central service that consolidates plain vulnerab ility scanning into a full vulnerability management solution. The Manager control s the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Manageme nt Protocol OMP. All intelligence is implemented in the...
Cross site scripting
Cross-site scripting XSS vulnerability in the charts module in Greenbone Security Assistant GSA 6.x before 6.0.8 allows remote attackers to inject arbitrary web script or HTML via the aggregatetype parameter in a getaggregate command to omp...
[SECURITY] Fedora 22 Update: openvas-manager-6.0.3-4.fc22
The OpenVAS Manager is the central service that consolidates plain vulnerab ility scanning into a full vulnerability management solution. The Manager control s the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Manageme nt Protocol OMP. All intelligence is implemented in the...
[SECURITY] Fedora 21 Update: openvas-cli-1.4.1-2.fc21
OpenVAS CLI contains the command line tool "omp" which allows to create bat ch processes to drive OpenVAS Manager...
OpenVAS - The World's Most Advanced Open Source Vulnerability Scanner and Manager
The Open Vulnerability Assessment System OpenVAS is a framework of several services and tools. The core of this SSL-secured service-oriented architecture is the OpenVAS Scanner. The scanner very efficiently executes the actual Network Vulnerability Tests NVTs which are served with daily updates v...
[SECURITY] Fedora 21 Update: openvas-manager-5.0.7-1.fc21
The OpenVAS Manager is the central service that consolidates plain vulnerab ility scanning into a full vulnerability management solution. The Manager control s the Scanner via OTP and itself offers the XML-based, stateless OpenVAS Manageme nt Protocol OMP. All intelligence is implemented in the...
Sql injection
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modifyschedule OMP command...
OpenVAS Manager 4.0 - Authentication Bypass Vulnerability PoC
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
OpenVAS Manager 4.0 - Authentication Bypass
!/usr/bin/python Exploit Title: OpenVAS Manager 4.0 Authentication Bypass Vulnerability PoC Date: 09/07/2014 Exploit Author: EccE Vendor Homepage: http://www.openvas.org/ Software Link: http://wald.intevation.org/frs/?groupid=29 Version: OpenVAS Manager 4.0 Tested on: Debian GNU/Linux testing...
OpenVAS Manager 4.0 - Authentication Bypass
OpenVAS Manager 4.0 - Authentication Bypass !/usr/bin/python Exploit Title: OpenVAS Manager 4.0 Authentication Bypass Vulnerability PoC Date: 09/07/2014 Exploit Author: EccE Vendor Homepage: http://www.openvas.org/ Software Link: http://wald.intevation.org/frs/?groupid=29 Version: OpenVAS Manager...
OpenVAS Manager Command Injection Vulnerability
No description provided by source. Source: http://securityreason.com/securityalert/8048 Summary It has been identified that OpenVAS Manager is vulnerable to command injection due to insufficient validation of user supplied data when processing OMP requests. It has been identified that this...
CVE-2013-6765
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
CVE-2013-6765
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
Design/Logic Flaw
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
CVE-2013-6765
OpenVAS Manager (and OpenVAS Administrator) vulnerabilities allow remote authentication bypass via crafted OMP/OAP requests. Affected are OpenVAS Manager 3.0.x before 3.0.7 and 4.0.x before 4.0.4; OpenVAS Administrator versions affected per OVSA advisory. Root cause: incorrect state handling in O...