Nmap Development mailing list archives
New VA Modules: NSE: 2, OpenVAS: 52, Nessus: 27
From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 30 Sep 2011 10:03:46 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (2) == r26760 http-wordpress-plugins http://nmap.org/nsedoc/scripts/http-wordpress-plugins.html Tries to obtain a list of installed WordPress plugins by brute force testing for known plugins. r26760 http-wordpress-enum http://nmap.org/nsedoc/scripts/http-wordpress-enum.html Enumerates usernames in Wordpress blog/CMS installations by exploiting an information disclosure vulnerability existing in versions 2.6, 3.1, 3.1.1, 3.1.3 and 3.2-beta2 and possibly others. == OpenVAS plugins (52) == r11722 902739 secpod_adobe_flash_player_mult_vuln_lin_sep11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_flash_player_mult_vuln_lin_sep11.nasl?root=openvas&view=markup Adobe Flash Player Multiple Vulnerabilities September-2011 (Linux) r11722 902735 secpod_dolphin_php_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_dolphin_php_info_disc_vuln.nasl?root=openvas&view=markup Dolphin '.php' Files Information Disclosure Vulnerability r11722 902575 secpod_e107_mult_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_e107_mult_php_files_info_disc_vuln.nasl?root=openvas&view=markup e107 Multiple PHP Files Information Disclosure Vulnerability r11722 902743 secpod_wsn_software_dir_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_wsn_software_dir_php_files_info_disc_vuln.nasl?root=openvas&view=markup WSN Software Directory '.php' Files Information Disclosure Vulnerability r11722 902737 secpod_freeway_php_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_freeway_php_info_disc_vuln.nasl?root=openvas&view=markup Freeway '.php' Files Information Disclosure Vulnerability r11722 902740 secpod_adobe_flash_player_mult_vuln_macosx_sep11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_flash_player_mult_vuln_macosx_sep11.nasl?root=openvas&view=markup Adobe Flash Player Multiple Vulnerabilities September-2011 (Mac OS X) r11722 902733 secpod_dotproject_php_file_install_path_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_dotproject_php_file_install_path_disc_vuln.nasl?root=openvas&view=markup dotProject '.php' Files Installation Path Disclosure Vulnerability r11722 902481 secpod_timelive_time_and_expense_tracking_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_timelive_time_and_expense_tracking_mult_vuln.nasl?root=openvas&view=markup TimeLive Time and Expense Tracking Multiple Vulnerabilities r11722 902578 secpod_apc_pcns_applet_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_apc_pcns_applet_xss_vuln.nasl?root=openvas&view=markup APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability r11722 902738 secpod_adobe_flash_player_mult_vuln_win_sep11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_flash_player_mult_vuln_win_sep11.nasl?root=openvas&view=markup Adobe Flash Player Multiple Vulnerabilities September-2011 (Windows) r11722 902744 secpod_eyeos_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_eyeos_php_files_info_disc_vuln.nasl?root=openvas&view=markup eyeOS '.php' Files Information Disclosure Vulnerability r11722 902741 secpod_wordpress_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_wordpress_php_files_info_disc_vuln.nasl?root=openvas&view=markup WordPress '.php' Files Information Disclosure Vulnerability r11722 902573 secpod_mantis_mult_lfi_n_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_mantis_mult_lfi_n_xss_vuln.nasl?root=openvas&view=markup MantisBT Multiple Local File Include and Cross Site Scripting Vulnerabilities r11722 902579 secpod_apc_pcns_http_response_splitting_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_apc_pcns_http_response_splitting_vuln.nasl?root=openvas&view=markup APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability r11722 902745 secpod_feng_office_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_feng_office_php_files_info_disc_vuln.nasl?root=openvas&view=markup Feng Office '.php' Files Information Disclosure Vulnerability r11722 902577 secpod_adobe_coldfusion_multiple_fpd_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_coldfusion_multiple_fpd_vuln.nasl?root=openvas&view=markup Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities r11722 902574 secpod_drupal_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_drupal_info_disc_vuln.nasl?root=openvas&view=markup Drupal Information Disclosure Vulnerability r11722 902480 secpod_timelive_time_n_expense_tracking_detect.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_timelive_time_n_expense_tracking_detect.nasl?root=openvas&view=markup TimeLive Time And Expense Tracking Version Detection r11722 902576 secpod_adobe_coldfusion_multiple_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_coldfusion_multiple_xss_vuln.nasl?root=openvas&view=markup Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities r11722 902734 secpod_dokuwiki_php_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_dokuwiki_php_info_disc_vuln.nasl?root=openvas&view=markup DokuWiki '.php' Files Information Disclosure Vulnerability r11722 902736 secpod_exo_php_desk_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_exo_php_desk_php_files_info_disc_vuln.nasl?root=openvas&view=markup ExoPHPDesk '.php' Files Information Disclosure Vulnerability r11722 902742 secpod_xoops_php_files_info_disc_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_xoops_php_files_info_disc_vuln.nasl?root=openvas&view=markup XOOPS '.php' Files Information Disclosure Vulnerability r11723 881016 gb_CESA-2011_1343_thunderbird_centos4_i386.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_CESA-2011_1343_thunderbird_centos4_i386.nasl?root=openvas&view=markup CentOS Update for thunderbird CESA-2011:1343 centos4 i386 r11723 881012 gb_CESA-2011_1343_thunderbird_centos5_i386.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_CESA-2011_1343_thunderbird_centos5_i386.nasl?root=openvas&view=markup CentOS Update for thunderbird CESA-2011:1343 centos5 i386 r11723 863552 gb_fedora_2011_13465_perl-Gtk2-MozEmbed_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13465_perl-Gtk2-MozEmbed_fc15.nasl?root=openvas&view=markup Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-13465 r11723 863556 gb_fedora_2011_12918_phpMyAdmin_fc14.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_12918_phpMyAdmin_fc14.nasl?root=openvas&view=markup Fedora Update for phpMyAdmin FEDORA-2011-12918 r11723 863547 gb_fedora_2011_12928_phpMyAdmin_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_12928_phpMyAdmin_fc15.nasl?root=openvas&view=markup Fedora Update for phpMyAdmin FEDORA-2011-12928 r11723 863557 gb_fedora_2011_13465_gnome-python2-extras_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13465_gnome-python2-extras_fc15.nasl?root=openvas&view=markup Fedora Update for gnome-python2-extras FEDORA-2011-13465 r11723 870495 gb_RHSA-2011_1344-01_seamonkey.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_RHSA-2011_1344-01_seamonkey.nasl?root=openvas&view=markup RedHat Update for seamonkey RHSA-2011:1344-01 r11723 863553 gb_fedora_2011_12890_opensaml_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_12890_opensaml_fc15.nasl?root=openvas&view=markup Fedora Update for opensaml FEDORA-2011-12890 r11723 863554 gb_fedora_2011_12193_qt_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_12193_qt_fc15.nasl?root=openvas&view=markup Fedora Update for qt FEDORA-2011-12193 r11723 870494 gb_RHSA-2011_1341-01_firefox.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_RHSA-2011_1341-01_firefox.nasl?root=openvas&view=markup RedHat Update for firefox RHSA-2011:1341-01 r11723 831455 gb_mandriva_MDVSA_2011_136.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2011_136.nasl?root=openvas&view=markup Mandriva Update for openssl MDVSA-2011:136 (openssl) r11723 831454 gb_mandriva_MDVSA_2011_137.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2011_137.nasl?root=openvas&view=markup Mandriva Update for openssl MDVSA-2011:137 (openssl) r11723 840756 gb_ubuntu_USN_1210_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1210_1.nasl?root=openvas&view=markup Ubuntu Update for firefox USN-1210-1 r11723 881013 gb_CESA-2011_1344_seamonkey_centos4_i386.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_CESA-2011_1344_seamonkey_centos4_i386.nasl?root=openvas&view=markup CentOS Update for seamonkey CESA-2011:1344 centos4 i386 r11723 863550 gb_fedora_2011_13465_mozvoikko_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13465_mozvoikko_fc15.nasl?root=openvas&view=markup Fedora Update for mozvoikko FEDORA-2011-13465 r11723 863548 gb_fedora_2011_13388_NetworkManager_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13388_NetworkManager_fc15.nasl?root=openvas&view=markup Fedora Update for NetworkManager FEDORA-2011-13388 r11723 840758 gb_ubuntu_USN_1220_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1220_1.nasl?root=openvas&view=markup Ubuntu Update for linux-ti-omap4 USN-1220-1 r11723 840755 gb_ubuntu_USN_1221_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1221_1.nasl?root=openvas&view=markup Ubuntu Update for mutt USN-1221-1 r11723 840754 gb_ubuntu_USN_1213_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1213_1.nasl?root=openvas&view=markup Ubuntu Update for thunderbird USN-1213-1 r11723 840759 gb_ubuntu_USN_1222_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1222_1.nasl?root=openvas&view=markup Ubuntu Update for firefox USN-1222-1 r11723 881014 gb_CESA-2011_1341_firefox_centos4_i386.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_CESA-2011_1341_firefox_centos4_i386.nasl?root=openvas&view=markup CentOS Update for firefox CESA-2011:1341 centos4 i386 r11723 881015 gb_CESA-2011_1341_firefox_centos5_i386.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_CESA-2011_1341_firefox_centos5_i386.nasl?root=openvas&view=markup CentOS Update for firefox CESA-2011:1341 centos5 i386 r11723 870496 gb_RHSA-2011_1343-01_thunderbird.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_RHSA-2011_1343-01_thunderbird.nasl?root=openvas&view=markup RedHat Update for thunderbird RHSA-2011:1343-01 r11723 840761 gb_ubuntu_USN_1216_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1216_1.nasl?root=openvas&view=markup Ubuntu Update for linux-ec2 USN-1216-1 r11723 863551 gb_fedora_2011_12481_Django_fc14.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_12481_Django_fc14.nasl?root=openvas&view=markup Fedora Update for Django FEDORA-2011-12481 r11723 840757 gb_ubuntu_USN_1217_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1217_1.nasl?root=openvas&view=markup Ubuntu Update for puppet USN-1217-1 r11723 840760 gb_ubuntu_USN_1218_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1218_1.nasl?root=openvas&view=markup Ubuntu Update for linux USN-1218-1 r11723 840762 gb_ubuntu_USN_1219_1.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1219_1.nasl?root=openvas&view=markup Ubuntu Update for linux-lts-backport-maverick USN-1219-1 r11723 863549 gb_fedora_2011_13465_firefox_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13465_firefox_fc15.nasl?root=openvas&view=markup Fedora Update for firefox FEDORA-2011-13465 r11723 863555 gb_fedora_2011_13465_xulrunner_fc15.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13465_xulrunner_fc15.nasl?root=openvas&view=markup Fedora Update for xulrunner FEDORA-2011-13465 == Nessus plugins (27) == 56337 seamonkey_24.nasl http://nessus.org/plugins/index.php?view=single&id=56337 SeaMonkey 2.x < 2.4.0 Multiple Vulnerabilities 56336 mozilla_thunderbird_70.nasl http://nessus.org/plugins/index.php?view=single&id=56336 Mozilla Thunderbird 6 Multiple Vulnerabilities 56335 mozilla_firefox_70.nasl http://nessus.org/plugins/index.php?view=single&id=56335 Firefox 6 Multiple Vulnerabilities 56334 mozilla_firefox_3623.nasl http://nessus.org/plugins/index.php?view=single&id=56334 Firefox 3.6.x < 3.6.23 Multiple Vulnerabilities 56333 smb_kb2588513.nasl http://nessus.org/plugins/index.php?view=single&id=56333 MS KB2588513: Vulnerability in SSL/TLS Could Allow Information Disclosure 56332 ubuntu_USN-1217-1.nasl http://nessus.org/plugins/index.php?view=single&id=56332 USN-1217-1 : puppet vulnerability 56331 ubuntu_USN-1213-1.nasl http://nessus.org/plugins/index.php?view=single&id=56331 USN-1213-1 : thunderbird vulnerabilities 56330 ubuntu_USN-1210-1.nasl http://nessus.org/plugins/index.php?view=single&id=56330 USN-1210-1 : firefox, xulrunner-1.9.2 vulnerabilities 56329 redhat-RHSA-2011-1344.nasl http://nessus.org/plugins/index.php?view=single&id=56329 RHSA-2011-1344: seamonkey 56328 redhat-RHSA-2011-1343.nasl http://nessus.org/plugins/index.php?view=single&id=56328 RHSA-2011-1343: thunderbird 56327 redhat-RHSA-2011-1342.nasl http://nessus.org/plugins/index.php?view=single&id=56327 RHSA-2011-1342: thunderbird 56326 redhat-RHSA-2011-1341.nasl http://nessus.org/plugins/index.php?view=single&id=56326 RHSA-2011-1341: firefox 56325 mandriva_MDVSA-2011-137.nasl http://nessus.org/plugins/index.php?view=single&id=56325 MDVSA-2011:137 : openssl 56324 mandriva_MDVSA-2011-136.nasl http://nessus.org/plugins/index.php?view=single&id=56324 MDVSA-2011:136 : openssl 56323 freebsd_pkg_1fade8a3e9e811e095804061862b8c22.nasl http://nessus.org/plugins/index.php?view=single&id=56323 FreeBSD : mozilla -- multiple vulnerabilities (5487) 56322 fedora_2011-12481.nasl http://nessus.org/plugins/index.php?view=single&id=56322 Fedora 14 2011-12481 56321 cisco-sa-20110928-zbfwhttp.nasl http://nessus.org/plugins/index.php?view=single&id=56321 Cisco IOS Software IPS and Zone-Based Firewall Vulnerabilities - Cisco Systems 56320 cisco-sa-20110928-smart-installhttp.nasl http://nessus.org/plugins/index.php?view=single&id=56320 Cisco IOS Software Smart Install Remote Code Execution Vulnerability - Cisco Systems 56319 cisco-sa-20110928-siphttp.nasl http://nessus.org/plugins/index.php?view=single&id=56319 Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities - Cisco Systems 56318 cisco-sa-20110928-nathttp.nasl http://nessus.org/plugins/index.php?view=single&id=56318 Cisco IOS Software Network Address Translation Vulnerabilities - Cisco Systems 56317 cisco-sa-20110928-ipv6mplshttp.nasl http://nessus.org/plugins/index.php?view=single&id=56317 Cisco IOS Software IPv6 over MPLS Vulnerabilities - Cisco Systems 56316 cisco-sa-20110928-ipv6http.nasl http://nessus.org/plugins/index.php?view=single&id=56316 Cisco IOS Software IPv6 Denial of Service Vulnerability - Cisco Systems 56315 cisco-sa-20110928-ipslahttp.nasl http://nessus.org/plugins/index.php?view=single&id=56315 Cisco IOS Software IP Service Level Agreement Vulnerability - Cisco Systems 56314 cisco-sa-20110928-dlswhttp.nasl http://nessus.org/plugins/index.php?view=single&id=56314 Cisco IOS Software Data-Link Switching Vulnerability - Cisco Systems 56313 cisco-sa-20110928-c10khttp.nasl http://nessus.org/plugins/index.php?view=single&id=56313 Cisco 10000 Series Denial of Service Vulnerability - Cisco Systems 56312 centos_RHSA-2011-1343.nasl http://nessus.org/plugins/index.php?view=single&id=56312 CentOS : RHSA-2011-1343 56311 centos_RHSA-2011-1341.nasl http://nessus.org/plugins/index.php?view=single&id=56311 CentOS : RHSA-2011-1341 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 2, OpenVAS: 52, Nessus: 27 New VA Module Alert Service (Sep 30)