← back
CVE-2013-6765

CVE-2013-6765

EPSS 7.3%
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENT_AUTHENTIC, as demonstrated by the omp_xml_handle_end_element function in omp.c.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/34026unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.htmlhttp://www.openvas.org/OVSA20131108.htmlhttp://www.openwall.com/lists/oss-security/2013/11/10/2