CVE-2012-5520
OpenVAS Command Injection
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the (1) IP address or (2) port number field in an OMP request.
La función send_to_sourcefire en manage_sql.c en OpenVAS Manager v3.x antes de v3.0.4 permite a atacantes remotos ejecutar código arbitrario a través de la dirección IP (1) o (2) el campo Número de puerto en una solicitud de OMP.
It has been identified that OpenVAS Manager is vulnerable to command injection due to insufficient validation of user supplied data when processing OMP requests. It has been identified that this vulnerability may allow arbitrary code to be executed with the privileges of the OpenVAS Manager on vulnerable systems.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-10-24 CVE Reserved
- 2012-11-13 CVE Published
- 2024-06-26 EPSS Updated
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2012-11/0047.html | Mailing List | |
| http://archives.neohapsis.com/archives/bugtraq/2012-11/0055.html | Mailing List | |
| http://archives.neohapsis.com/archives/bugtraq/2012-11/0059.html | Mailing List | |
| http://openwall.com/lists/oss-security/2012/11/13/12 | Mailing List | |
| http://openwall.com/lists/oss-security/2012/11/13/9 | Mailing List | |
| http://openwall.com/lists/oss-security/2012/11/14/11 | Mailing List | |
| http://openwall.com/lists/oss-security/2012/11/14/5 | Mailing List | |
| http://secunia.com/advisories/49128 | Third Party Advisory | |
| http://wald.intevation.org/scm/viewvc.php?view=rev&root=openvas&revision=14437 | X_refsource_confirm | |
| http://www.securityfocus.com/bid/56497 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| http://www.openvas.org/OVSA20121112.html | 2024-08-06 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta1 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta2 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta3 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta4 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta5 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta6 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta7 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | beta8 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0" | rc1 |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0.0 Search vendor "Openvas" for product "Openvas Manager" and version "3.0.0" | - |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0.1 Search vendor "Openvas" for product "Openvas Manager" and version "3.0.1" | - |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0.2 Search vendor "Openvas" for product "Openvas Manager" and version "3.0.2" | - |
Affected
| ||||||
| Openvas Search vendor "Openvas" | Openvas Manager Search vendor "Openvas" for product "Openvas Manager" | 3.0.3 Search vendor "Openvas" for product "Openvas Manager" and version "3.0.3" | - |
Affected
| ||||||