Language:
Severity: Critical
ID: 57576
File Name: op5_portal_command_execution.nasl
Version: 1.25
Type: remote
Family: CGI abuses
Published: 1/17/2012
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Factor: High
Score: 7.4
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CPE: cpe:/a:op5:system-portal
Required KB Items: www/op5_portal
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Ease: No exploit is required
Exploited by Nessus: true
Patch Publication Date: 12/29/2011
Vulnerability Publication Date: 12/29/2011
CANVAS (D2ExploitPack)
Core Impact
Metasploit (OP5 license.php Remote Command Execution)
Elliot (OP5 Monitor 5.5 RCE)
CVE: CVE-2012-0261
BID: 51212