CVE-2011-0650

Name of the Vulnerable Software and Affected Versions Greenbone Security Assistant versions prior to 2.0+rc3

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack user authentication for requests that send email via an OMP request to OpenVAS Manager. This can be used to bypass authentication requirements.

Recommendations For versions prior to 2.0+rc3, update to version 2.0+rc3 or later to resolve the issue. As a temporary workaround, consider restricting access to the OMP request functionality to minimize the risk of exploitation.