CVE-2012-5520 (GCVE-0-2012-5520)
Vulnerability from cvelistv5 – Published: 2012-11-26 11:00 – Updated: 2024-08-06 21:05
VLAI
Summary
The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
11 references
| URL | Tags |
|---|---|
| http://archives.neohapsis.com/archives/bugtraq/20… | mailing-listx_refsource_BUGTRAQ |
| http://archives.neohapsis.com/archives/bugtraq/20… | mailing-listx_refsource_BUGTRAQ |
| http://openwall.com/lists/oss-security/2012/11/13/9 | mailing-listx_refsource_MLIST |
| http://openwall.com/lists/oss-security/2012/11/14/5 | mailing-listx_refsource_MLIST |
| http://www.openvas.org/OVSA20121112.html | x_refsource_CONFIRM |
| http://secunia.com/advisories/49128 | third-party-advisoryx_refsource_SECUNIA |
| http://wald.intevation.org/scm/viewvc.php?view=re… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/56497 | vdb-entryx_refsource_BID |
| http://openwall.com/lists/oss-security/2012/11/14/11 | mailing-listx_refsource_MLIST |
| http://archives.neohapsis.com/archives/bugtraq/20… | mailing-listx_refsource_BUGTRAQ |
| http://openwall.com/lists/oss-security/2012/11/13/12 | mailing-listx_refsource_MLIST |
Date Public
2012-11-12 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T21:05:47.240Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20121114 Re: Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html"
},
{
"name": "20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html"
},
{
"name": "[oss-security] 20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2012/11/13/9"
},
{
"name": "[oss-security] 20121114 Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2012/11/14/5"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.openvas.org/OVSA20121112.html"
},
{
"name": "49128",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/49128"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437"
},
{
"name": "56497",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/56497"
},
{
"name": "[oss-security] 20121114 Re: Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2012/11/14/11"
},
{
"name": "20121114 Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html"
},
{
"name": "[oss-security] 20121113 Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2012/11/13/12"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-11-12T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-11-23T18:10:04.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "20121114 Re: Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html"
},
{
"name": "20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html"
},
{
"name": "[oss-security] 20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2012/11/13/9"
},
{
"name": "[oss-security] 20121114 Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2012/11/14/5"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.openvas.org/OVSA20121112.html"
},
{
"name": "49128",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/49128"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437"
},
{
"name": "56497",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/56497"
},
{
"name": "[oss-security] 20121114 Re: Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2012/11/14/11"
},
{
"name": "20121114 Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html"
},
{
"name": "[oss-security] 20121113 Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2012/11/13/12"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2012-5520",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20121114 Re: Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "BUGTRAQ",
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html"
},
{
"name": "20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "BUGTRAQ",
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html"
},
{
"name": "[oss-security] 20121113 [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2012/11/13/9"
},
{
"name": "[oss-security] 20121114 Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2012/11/14/5"
},
{
"name": "http://www.openvas.org/OVSA20121112.html",
"refsource": "CONFIRM",
"url": "http://www.openvas.org/OVSA20121112.html"
},
{
"name": "49128",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/49128"
},
{
"name": "http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437",
"refsource": "CONFIRM",
"url": "http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437"
},
{
"name": "56497",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/56497"
},
{
"name": "[oss-security] 20121114 Re: Re: Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2012/11/14/11"
},
{
"name": "20121114 Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "BUGTRAQ",
"url": "http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html"
},
{
"name": "[oss-security] 20121113 Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2012/11/13/12"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2012-5520",
"datePublished": "2012-11-26T11:00:00.000Z",
"dateReserved": "2012-10-24T00:00:00.000Z",
"dateUpdated": "2024-08-06T21:05:47.240Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2012-5520",
"date": "2026-05-28",
"epss": "0.02129",
"percentile": "0.84429"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"8142D6D5-FC73-4A79-A4F0-C39B05EE8BE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E08117C-1648-4650-B914-FEF628CB51B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"849F6AB6-4434-46BD-8589-5602C5FC078E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta4:*:*:*:*:*:*\", \"matchCriteriaId\": \"3AB412D3-6E0A-4C15-BDCE-52220203062F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta5:*:*:*:*:*:*\", \"matchCriteriaId\": \"B282A6CB-3A88-4ECF-9A39-13A8B93A179A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta6:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F4149B6-E7C6-48AA-A124-1402C4BEF2FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta7:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAF15E64-8F53-48D2-9397-C0F1BCEAC19F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:beta8:*:*:*:*:*:*\", \"matchCriteriaId\": \"612ED50A-6EFA-4B9E-AC2F-842E4D4D9669\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"02836C4A-96BC-40EA-805E-2D90F1AC9289\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21F0A552-9230-4BFC-AF49-EF3B219666FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4670CB11-119B-4315-9F98-FD221239936C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3DF6544C-09C5-4FC1-B9CF-6DB093A0EA8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openvas:openvas_manager:3.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E45C0494-80EC-427A-98A3-0820EC91C166\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n send_to_sourcefire en manage_sql.c en OpenVAS Manager v3.x antes de v3.0.4 permite a atacantes remotos ejecutar c\\u00f3digo arbitrario a trav\\u00e9s de la direcci\\u00f3n IP (1) o (2) el campo N\\u00famero de puerto en una solicitud de OMP.\"}]",
"id": "CVE-2012-5520",
"lastModified": "2024-11-21T01:44:48.823",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2012-11-26T12:45:22.220",
"references": "[{\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/13/12\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/13/9\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/14/11\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/14/5\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/49128\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.openvas.org/OVSA20121112.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/56497\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/13/12\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/13/9\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/14/11\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2012/11/14/5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/49128\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openvas.org/OVSA20121112.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/56497\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2012-5520\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2012-11-26T12:45:22.220\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n send_to_sourcefire en manage_sql.c en OpenVAS Manager v3.x antes de v3.0.4 permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de la direcci\u00f3n IP (1) o (2) el campo N\u00famero de puerto en una solicitud de OMP.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"8142D6D5-FC73-4A79-A4F0-C39B05EE8BE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E08117C-1648-4650-B914-FEF628CB51B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"849F6AB6-4434-46BD-8589-5602C5FC078E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"3AB412D3-6E0A-4C15-BDCE-52220203062F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B282A6CB-3A88-4ECF-9A39-13A8B93A179A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta6:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F4149B6-E7C6-48AA-A124-1402C4BEF2FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta7:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF15E64-8F53-48D2-9397-C0F1BCEAC19F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:beta8:*:*:*:*:*:*\",\"matchCriteriaId\":\"612ED50A-6EFA-4B9E-AC2F-842E4D4D9669\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"02836C4A-96BC-40EA-805E-2D90F1AC9289\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21F0A552-9230-4BFC-AF49-EF3B219666FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4670CB11-119B-4315-9F98-FD221239936C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DF6544C-09C5-4FC1-B9CF-6DB093A0EA8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openvas:openvas_manager:3.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E45C0494-80EC-427A-98A3-0820EC91C166\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/13/12\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/13/9\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/14/11\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/14/5\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/49128\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.openvas.org/OVSA20121112.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/56497\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/13/12\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/13/9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/14/11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2012/11/14/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/49128\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://wald.intevation.org/scm/viewvc.php?view=rev\u0026root=openvas\u0026revision=14437\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openvas.org/OVSA20121112.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/56497\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…