Nmap Development mailing list archives
New VA Modules: NSE: 1, OpenVAS: 38, Nessus: 6
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 29 Sep 2010 10:02:31 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (1) == r20394 nat-pmp-info.nse http://nmap.org/nsedoc/scripts/nat-pmp-info.nse Queries the NAT-PMP service for the external address == OpenVAS plugins (38) == r9102 94037 GSHB/EL11/GSHB_M4_037.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_037.nasl?root=openvas&view=markup IT-Grundschutz M4.037: Sperren bestimmter Absender-Faxnummern r9102 894093 GSHB/EL11/GSHB_M4_093.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_093.nasl?root=openvas&view=markup IT-Grundschutz M4.093: Regelmäßige Integritätsprüfung r9102 96072 GSHB/GSHB_SSH_iptables.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/GSHB_SSH_iptables.nasl?root=openvas&view=markup List iptables ruleset r9102 94288 GSHB/EL10/GSHB_M4_288.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_288.nasl?root=openvas&view=markup IT-Grundschutz M4.288: Sichere Administration von VoIP-Endgeräten r9102 96107 GSHB/GSHB_TELNET_Cisco_Voice.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/GSHB_TELNET_Cisco_Voice.nasl?root=openvas&view=markup IT-Grundschutz: List reject Rule on Cisco Voip Devices over Telnet r9102 894288 GSHB/EL11/GSHB_M4_288.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_288.nasl?root=openvas&view=markup IT-Grundschutz M4.288: Sichere Administration von VoIP-Endgeräten r9102 94036 GSHB/EL10/GSHB_M4_036.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_036.nasl?root=openvas&view=markup IT-Grundschutz M4.036: Sperren bestimmter Faxempfänger-Rufnummerne r9102 96103 GSHB/GSHB_SSH_dns.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/GSHB_SSH_dns.nasl?root=openvas&view=markup Check if DNS client is active and working r9102 94036 GSHB/EL11/GSHB_M4_036.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_036.nasl?root=openvas&view=markup IT-Grundschutz M4.036: Sperren bestimmter Faxempfänger-Rufnummerne r9102 96104 GSHB/GSHB_SSH_TELNET_BruteForce.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/GSHB_SSH_TELNET_BruteForce.nasl?root=openvas&view=markup SSH and Telnet BruteForce attack r9102 94026 GSHB/EL10/GSHB_M4_026.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_026.nasl?root=openvas&view=markup IT-Grundschutz M4.026: Regelmäßiger Sicherheitscheck des Unix-Systems r9102 94007 GSHB/EL10/GSHB_M4_007.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_007.nasl?root=openvas&view=markup IT-Grundschutz M4.007: Änderung voreingestellter Passwörter r9102 894026 GSHB/EL11/GSHB_M4_026.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_026.nasl?root=openvas&view=markup IT-Grundschutz M4.026: Regelmäßiger Sicherheitscheck des Unix-Systems r9102 894007 GSHB/EL11/GSHB_M4_007.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_007.nasl?root=openvas&view=markup IT-Grundschutz M4.007: Änderung voreingestellter Passwörter r9102 94096 GSHB/EL10/GSHB_M4_096.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_096.nasl?root=openvas&view=markup IT-Grundschutz M4.096: Abschaltung von DNS r9102 94037 GSHB/EL10/GSHB_M4_037.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_037.nasl?root=openvas&view=markup IT-Grundschutz M4.037: Sperren bestimmter Absender-Faxnummern r9102 94093 GSHB/EL10/GSHB_M4_093.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL10/GSHB_M4_093.nasl?root=openvas&view=markup IT-Grundschutz M4.093: Regelmäßige Integritätsprüfung r9102 894096 GSHB/EL11/GSHB_M4_096.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/GSHB/EL11/GSHB_M4_096.nasl?root=openvas&view=markup IT-Grundschutz M4.096: Abschaltung von DNS r9104 100828 gb_passman_43466.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_passman_43466.nasl?root=openvas&view=markup Collaborative Passwords Manager (cPassMan) Multiple Local File Include Vulnerabilities r9104 100827 gb_passman_detect.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_passman_detect.nasl?root=openvas&view=markup Passman Detection r9104 100825 gb_tiki_43507.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_tiki_43507.nasl?root=openvas&view=markup Tiki Wiki CMS Groupware Local File Include and Cross Site Scripting Vulnerabilities r9104 100826 gb_horde_imp_43515.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_horde_imp_43515.nasl?root=openvas&view=markup Horde IMP Webmail 'fetchmailprefs.php' HTML Injection Vulnerability r9108 902257 secpod_hp_smh_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_hp_smh_mult_vuln.nasl?root=openvas&view=markup HP System Management Homepage Multiple Vulnerabilities r9108 902315 secpod_wpquiz_mult_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_wpquiz_mult_sql_inj_vuln.nasl?root=openvas&view=markup wpQuiz Multiple SQL Injection Vulnerabilities r9108 902251 secpod_ibm_was_timestamp_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ibm_was_timestamp_unspecified_vuln.nasl?root=openvas&view=markup IBM WebSphere Application Server WS-Security Policy Unspecified vulnerability r9108 902256 secpod_ms_win_kernel_win32k_sys_bof_dos_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms_win_kernel_win32k_sys_bof_dos_vuln.nasl?root=openvas&view=markup Microsoft Windows win32k.sys Driver 'CreateDIBPalette()' BOF Vulnerability r9108 901159 secpod_e_xoopport_samsara_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_e_xoopport_samsara_sql_inj_vuln.nasl?root=openvas&view=markup E-Xoopport - Samsara SQL Injection Vulnerability r9108 902254 secpod_ms_office_prdts_insecure_lib_load_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms_office_prdts_insecure_lib_load_vuln.nasl?root=openvas&view=markup Microsoft Office Products Insecure Library Loading Vulnerability r9108 902252 secpod_ibm_was_admin_console_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ibm_was_admin_console_unspecified_vuln.nasl?root=openvas&view=markup IBM WebSphere Application Server Administration Console DoS vulnerability r9108 902253 secpod_yellosoft_pinky_dir_trav_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_yellosoft_pinky_dir_trav_vuln_win.nasl?root=openvas&view=markup YelloSoft Pinky Directory Traversal Vulnerability r9108 902313 secpod_flock_xss_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_flock_xss_win.nasl?root=openvas&view=markup Flock Browser Malformed Bookmark Cross site scripting Vulnerability r9108 902314 secpod_flock_xss_win01.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_flock_xss_win01.nasl?root=openvas&view=markup Flock Browser RSS Feed Cross site scripting Vulnerability r9108 901157 secpod_ibm_lotus_domino_stack_bof.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ibm_lotus_domino_stack_bof.nasl?root=openvas&view=markup IBM Lotus Domino iCalendar Remote Stack Buffer Overflow Vulnerability r9108 901158 secpod_santafox_xss_n_csrf_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_santafox_xss_n_csrf_vuln.nasl?root=openvas&view=markup Santafox Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities r9108 902255 secpod_ms_visual_studio_insecure_lib_load_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms_visual_studio_insecure_lib_load_vuln.nasl?root=openvas&view=markup Microsoft Visual Studio Insecure Library Loading Vulnerability r9111 100830 gb_clamav_43555.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_clamav_43555.nasl?root=openvas&view=markup ClamAV 'find_stream_bounds()' PDF File Processing Denial Of Service Vulnerability r9111 100829 gb_phpmyfaq_43560.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_phpmyfaq_43560.nasl?root=openvas&view=markup phpMyFAQ 'index.php' Cross Site Scripting Vulnerability r9112 901161 secpod_ms10-070_remote.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms10-070_remote.nasl?root=openvas&view=markup Microsoft ASP.NET Information Disclosure Vulnerability (2418042) == Nessus plugins (6) == 49695 smb_nt_ms10-070.nasl http://nessus.org/plugins/index.php?view=single&id=49695 MS10-070: Vulnerability in ASP.NET Could Allow Information Disclosure (2418042) 49693 squid_3_1_8.nasl http://nessus.org/plugins/index.php?view=single&id=49693 Squid < 3.1.8 / 3.2.0.2 NULL Pointer Dereference Denial of Service 49692 squid_version.nasl http://nessus.org/plugins/index.php?view=single&id=49692 Squid Proxy Version Detection 49691 websphere_6_1_0_33.nasl http://nessus.org/plugins/index.php?view=single&id=49691 IBM WebSphere Application Server 6.1 < 6.1.0.33 Multiple Vulnerabilities 49690 websphere_6_0_2_43.nasl http://nessus.org/plugins/index.php?view=single&id=49690 IBM WebSphere Application Server 6.0 < 6.0.2.43 Multiple Vulnerabilities torture_cgi_err_msg.inc _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, OpenVAS: 38, Nessus: 6 New VA Module Alert Service (Sep 29)