On Sonntag, 7. April 2013, Geoff Galitz wrote:
> While doing some integration work with MSF I noticed that recent scans I
> have run are not reporting CVE identifiers as I expect.
>
> As a specific example, I can see in xst_http_trace.nasl that the following
> is defined:
>
> script_cve_id("CVE-2004-2320","CVE-2003-1567");
>
> Yet if I download it in various formats (NBE/XML) the CVE field is empty.
> This seems to have been working at some earlier point according to
> metasploit docs, but it seems non-functional now.
I quickly checked in my OpenVAS trunk installation and the two
CVEs are visible for this NVT (11213) in the SecInfo Management.
So, its parsed and transferred to OpenVAS Manager at least.
Can you check in your installation whether it is OK in the SecInfo?
--
Dr. Jan-Oliver Wagner | ++49-541-335083-724 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-devel mailing list
Openvas-devel@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-devel
