Nmap Development mailing list archives
New VA Modules: NSE: 3, OpenVAS: 9, MSF: 1, Nessus: 33
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 11 Jan 2012 10:01:02 -0800 (PST)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (3) == r27797 membase-http-info http://nmap.org/nsedoc/scripts/membase-http-info.html Retrieves information from the CouchBase Web Administration port. The information retrieved by this script does not require any credentials. r27797 membase-brute http://nmap.org/nsedoc/scripts/membase-brute.html Performs brute force password guessing against Couchbase Membase servers. r27798 broadcast-pppoe-discover http://nmap.org/nsedoc/scripts/broadcast-pppoe-discover.html Discovers PPPoE servers using the PPPoE Discovery protocol (PPPoED) The PPPoE is an ethernet based protocol so the script has to know what ethernet interface to use for discovery. If no interface is specified, requests are sent out on all available interfaces. == OpenVAS plugins (9) == r12457 103384 gb_w_cms_51359.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_w_cms_51359.nasl?root=openvas&view=markup w-CMS HTML Injection and Local File Include Vulnerabilities r12457 103383 gb_powerdns_51355.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_powerdns_51355.nasl?root=openvas&view=markup PowerDNS Authoritative Server Remote Denial of Service Vulnerability r12458 902807 secpod_ms12-004.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-004.nasl?root=openvas&view=markup Microsoft Windows Media Could Allow Remote Code Execution Vulnerabilities (2636391) r12458 902657 secpod_ms12-005.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-005.nasl?root=openvas&view=markup Windows ClickOnce Application Installer Remote Code Execution Vulnerability (2584146) r12458 902900 secpod_ms12-006.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-006.nasl?root=openvas&view=markup Microsoft Windows SSL/TLS Information Disclosure Vulnerability (2643584) r12458 902785 secpod_ms12-007.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-007.nasl?root=openvas&view=markup Microsoft AntiXSS Library Information Disclosure Vulnerability (2607664) r12458 902783 secpod_ms12-001.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-001.nasl?root=openvas&view=markup Microsoft Windows Kernel Security Feature Bypass Vulnerability (2644615) r12458 902784 secpod_ms12-002.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-002.nasl?root=openvas&view=markup Microsoft Windows Object Packager Remote Code Execution Vulnerability (2603381) r12458 902499 secpod_ms12-003.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms12-003.nasl?root=openvas&view=markup MS Windows Client/Server Run-time Subsystem Privilege Escalation Vulnerability (2646524) == Metasploit modules (1) == r14537 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/mssql/mssql_schemadump.rb MSSQL Schema Dump == Nessus plugins (33) == 57475 smb_nt_ms12-007.nasl http://nessus.org/plugins/index.php?view=single&id=57475 MS12-007: Vulnerability in AntiXSS Library Could Allow Information Disclosure (2607664) 57474 smb_nt_ms12-006.nasl http://nessus.org/plugins/index.php?view=single&id=57474 MS12-006: Vulnerability in SSL/TLS Could Allow Information Disclosure (2643584) 57473 smb_nt_ms12-005.nasl http://nessus.org/plugins/index.php?view=single&id=57473 MS12-005: Vulnerability in Microsoft Windows Could Allow Remote Code Execution (2584146) 57472 smb_nt_ms12-004.nasl http://nessus.org/plugins/index.php?view=single&id=57472 MS12-004: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2636391) 57471 smb_nt_ms12-003.nasl http://nessus.org/plugins/index.php?view=single&id=57471 MS12-003: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2646524) 57470 smb_nt_ms12-002.nasl http://nessus.org/plugins/index.php?view=single&id=57470 Vulnerability in Windows Object Packager Could Allow Remote Code Execution (2603381) 57469 smb_nt_ms12-001.nasl http://nessus.org/plugins/index.php?view=single&id=57469 Vulnerability in Windows Kernel Could Allow Security Feature Bypass (2644615) 57468 google_chrome_16_0_912_75.nasl http://nessus.org/plugins/index.php?view=single&id=57468 Google Chrome < 16.0.912.75 Multiple Vulnerabilities 17794 cisco_ios_icmp_redirect_dos.nasl http://nessus.org/plugins/index.php?view=single&id=17794 Cisco IOS ICMP Redirect Denial of Service 17793 cisco_cdp_neighbor_announcement_dos.nasl http://nessus.org/plugins/index.php?view=single&id=17793 Cisco IOS CDP Neighbor Announcement DoS 17792 cisco-sr-20081105-vtp.nasl http://nessus.org/plugins/index.php?view=single&id=17792 Cisco VLAN Trunking Protocol Vulnerability 17791 cisco-sr-20071010-lpd.nasl http://nessus.org/plugins/index.php?view=single&id=17791 Cisco IOS Line Printer Daemon (LPD) Stack Overflow 17790 cisco-sr-20070912-regexp.nasl http://nessus.org/plugins/index.php?view=single&id=17790 Cisco Regular Expression Processing Denial of Service 17789 cisco-sr-20060906-gre.nasl http://nessus.org/plugins/index.php?view=single&id=17789 Cisco IOS GRE Decapsulation Vulnerability 17788 cisco-sr-20051220-eigrp.nasl http://nessus.org/plugins/index.php?view=single&id=17788 Cisco EIGRP Multiple Vulnerabilities 17787 cisco-sn-20030730-ios-2gb-get.nasl http://nessus.org/plugins/index.php?view=single&id=17787 Cisco IOS Software Overly Long GET Request Causes Buffer Overflow in HTTP Server 17786 cisco-sn-20030724-ios-enum.nasl http://nessus.org/plugins/index.php?view=single&id=17786 Cisco IOS Locally Defined User Enumeration 17785 cisco-sa-20100922-sslvpn.nasl http://nessus.org/plugins/index.php?view=single&id=17785 Cisco IOS SSL VPN Vulnerability (cisco-sa-20100922-sslvpn) 17784 cisco-sa-20100922-nat.nasl http://nessus.org/plugins/index.php?view=single&id=17784 Cisco IOS Software Network Address Translation Multiple Vulnerabilities (cisco-sa-20100922-nat) 17783 cisco-sa-20100922-igmp.nasl http://nessus.org/plugins/index.php?view=single&id=17783 Cisco IOS Software Internet Group Management Protocol Denial of Service 17782 cisco-sa-20060920-docsis.nasl http://nessus.org/plugins/index.php?view=single&id=17782 DOCSIS Read-Write Community String Enabled in Non-DOCSIS Platforms 17781 cisco-sa-20040420-tcp-ios.nasl http://nessus.org/plugins/index.php?view=single&id=17781 TCP Vulnerabilities in Multiple IOS-Based Cisco Products 17780 cisco-sa-20030728-ap1x00.nasl http://nessus.org/plugins/index.php?view=single&id=17780 HTTP GET Vulnerability in AP1x00 17779 cisco-sa-20021211-osm-lc-ios.nasl http://nessus.org/plugins/index.php?view=single&id=17779 Cisco IOS OSM Line Card Header Corruption 17778 cisco-sa-19980513-wccp-auth.nasl http://nessus.org/plugins/index.php?view=single&id=17778 Cisco Web Cache Control Protocol Router Vulenrability 17777 cisco-20075550-version-info-leak.nasl http://nessus.org/plugins/index.php?view=single&id=17777 Cisco IOS Common Network Service Remote Version Disclosure 17776 cisco-20071016-multiple-vulns.nasl http://nessus.org/plugins/index.php?view=single&id=17776 Cisco IOS Multiple Vulnerabilities 17775 cisco-20071016-cmd-exec.nasl http://nessus.org/plugins/index.php?view=single&id=17775 Cisco IOS Command EXEC Unspecified Vulnerability 17774 cisco-20020606-portscan-dos.nasl http://nessus.org/plugins/index.php?view=single&id=17774 Cisco IOS Portscan Remote Denial of Service 17773 cisco-20020606-irpas.nasl http://nessus.org/plugins/index.php?view=single&id=17773 Cisco IOS Hot Standby Routing Protocol IP Collision Denial of Service 17772 cisco-20020606-hsrp.nasl http://nessus.org/plugins/index.php?view=single&id=17772 Cisco IOS Hot Standby Routing Protocol Crafted UDP Packets Denial of Service 17771 weblogic_portal_elevation_privilege.nasl http://nessus.org/plugins/index.php?view=single&id=17771 Oracle WebLogic Portal Elevation of Privilege (CVE-2008-5462) cisco_ios.inc _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 3, OpenVAS: 9, MSF: 1, Nessus: 33 New VA Module Alert Service (Jan 11)