Page 1 of 1

OpenVAS - Detecting wrong version of SQL

Posted: Mon Mar 12, 2018 11:12 am
by petegriggs
Hi!

OpenVAS seems to be detecting the wrong version of SQL and reporting vulnerabilities for SQL 2000, a nmap scan from the box shows SQL 2014 as suspected. The CVE is CVE-2002-1123 - it appears the OID was last updated last year and the Regex in there looks for version 8. Any idea how we can exclude this OID or get OpenVAS to tell us what version it thinks it is finding?

Thanks
Pete.