BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Re: [oss-security] Re: [OVSA20121112] OpenVAS Manager Vulnerable To Command Injection Nov 14 2012 05:09PM
Michal Ambroz (rebus seznam cz)
Hello Jan,

in version 2.0.5 the discussed vulnerable like looks like this:
command = g_strdup_printf ("/bin/sh %s %s > %s"
" 2> /dev/null",
script,
xml_file,
outp...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus