Nmap Development mailing list archives
New VA Modules: NSE: 1, OpenVAS: 15, MSF: 3, Nessus: 45
From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 13 Jan 2012 10:04:03 -0800 (PST)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (1) == r27806 http-generator http://nmap.org/nsedoc/scripts/http-generator.html Displays the contents of the "generator" meta tag if there is one. == OpenVAS plugins (15) == r12488 103390 gb_hp_jet_direct_unauthenticated_access.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_hp_jet_direct_unauthenticated_access.nasl?root=openvas&view=markup HP LaserJet Printers Unauthenticated Access r12488 103388 gb_mailenable_51401.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mailenable_51401.nasl?root=openvas&view=markup MailEnable 'ForgottonPassword.aspx' Cross Site Scripting Vulnerability r12488 103389 gb_wordpress_51402.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wordpress_51402.nasl?root=openvas&view=markup WordPress Count per Day Plugin Arbitrary File Download and Cross Site Scripting Vulnerabilities r12489 802376 gb_google_chrome_mult_dos_vuln_jan12_macosx.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_google_chrome_mult_dos_vuln_jan12_macosx.nasl?root=openvas&view=markup Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Mac OS X) r12489 802291 gb_ibm_informix_dynamic_server_oninit_bof_vuln_lin.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ibm_informix_dynamic_server_oninit_bof_vuln_lin.nasl?root=openvas&view=markup IBM Informix Dynamic Server 'oninit.exe' Buffer Overflow Vulnerability (Linux) r12489 801979 gb_openvas_scanner_prev_escl_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_openvas_scanner_prev_escl_vuln.nasl?root=openvas&view=markup OpenVAS Scanner Symlink Attack Local Privilege Escalation Vulnerability r12489 802374 gb_google_chrome_mult_dos_vuln_jan12_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_google_chrome_mult_dos_vuln_jan12_win.nasl?root=openvas&view=markup Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Windows) r12489 802378 gb_apache_tomcat_hash_collision_dos_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_apache_tomcat_hash_collision_dos_vuln_win.nasl?root=openvas&view=markup Apache Tomcat Hash Collision Denial Of Service Vulnerability r12489 gb_apache_tomcat_detect_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_apache_tomcat_detect_win.nasl?root=openvas&view=markup Apache Tomcat Detection (Windows) r12489 802379 gb_ms_win_kernel_win32k_sys_mem_corruption_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ms_win_kernel_win32k_sys_mem_corruption_vuln.nasl?root=openvas&view=markup Microsoft Windows Kernel 'win32k.sys' Memory Corruption Vulnerability r12489 802290 gb_iptools_remote_bof_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_iptools_remote_bof_vuln.nasl?root=openvas&view=markup IpTools Tiny TCP/IP Servers Remote Buffer Overflow Vulnerability r12489 802560 gb_joomla_simple_file_upload_code_exec_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_joomla_simple_file_upload_code_exec_vuln.nasl?root=openvas&view=markup Joomla Simple File Upload Module Remote Code Execution Vulnerability r12489 802375 gb_google_chrome_mult_dos_vuln_jan12_lin.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_google_chrome_mult_dos_vuln_jan12_lin.nasl?root=openvas&view=markup Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Linux) r12489 802555 gb_open_tftp_server_read_request_bof_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_open_tftp_server_read_request_bof_vuln.nasl?root=openvas&view=markup OpenTFTP Server Read Request Buffer Overflow Vulnerability r12489 802292 gb_ibm_informix_dynamic_server_oninit_bof_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ibm_informix_dynamic_server_oninit_bof_vuln_win.nasl?root=openvas&view=markup IBM Informix Dynamic Server 'oninit.exe' Buffer Overflow Vulnerability (Windows) == Metasploit modules (3) == r14543 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/postgres/postgres_schemadump.rb Postgres Schema Dump r14544 http://metasploit.com/redmine/projects/framework/repository/entry/modules/post/windows/gather/enum_artifacts.rb Windows File and Registry Artifacts Enumeration r14545 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms05_054_onload.rb Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability == Nessus plugins (45) == 57528 debian_DSA-773.nasl http://nessus.org/plugins/index.php?view=single&id=57528 Debian DSA-773-1 : amd64 - several vulnerabilities 57527 debian_DSA-2387.nasl http://nessus.org/plugins/index.php?view=single&id=57527 Debian DSA-2387-1 : simplesamlphp - insufficient input sanitation 57526 debian_DSA-2386.nasl http://nessus.org/plugins/index.php?view=single&id=57526 Debian DSA-2386-1 : openttd - several vulnerabilities 57525 debian_DSA-2385.nasl http://nessus.org/plugins/index.php?view=single&id=57525 Debian DSA-2385-1 : pdns - packet loop 57524 debian_DSA-2384.nasl http://nessus.org/plugins/index.php?view=single&id=57524 Debian DSA-2384-1 : cacti - several vulnerabilities 57523 debian_DSA-2383.nasl http://nessus.org/plugins/index.php?view=single&id=57523 Debian DSA-2383-1 : super - buffer overflow 57522 debian_DSA-2382.nasl http://nessus.org/plugins/index.php?view=single&id=57522 Debian DSA-2382-1 : ecryptfs-utils - multiple vulnerabilities 57521 debian_DSA-2381.nasl http://nessus.org/plugins/index.php?view=single&id=57521 Debian DSA-2381-1 : squid3 - invalid memory deallocation 57520 debian_DSA-2380.nasl http://nessus.org/plugins/index.php?view=single&id=57520 Debian DSA-2380-1 : foomatic-filters - shell command injection 57519 debian_DSA-2379.nasl http://nessus.org/plugins/index.php?view=single&id=57519 Debian DSA-2379-1 : krb5 - several vulnerabilities 57518 debian_DSA-2378.nasl http://nessus.org/plugins/index.php?view=single&id=57518 Debian DSA-2378-1 : ffmpeg - several vulnerabilities 57517 debian_DSA-2377.nasl http://nessus.org/plugins/index.php?view=single&id=57517 Debian DSA-2377-1 : cyrus-imapd-2.2 - NULL pointer dereference 57516 debian_DSA-2376.nasl http://nessus.org/plugins/index.php?view=single&id=57516 Debian DSA-2376-2 : ipmitool - insecure PID file 57515 debian_DSA-2375.nasl http://nessus.org/plugins/index.php?view=single&id=57515 Debian DSA-2375-1 : krb5, krb5-appl - buffer overflow 57514 debian_DSA-2374.nasl http://nessus.org/plugins/index.php?view=single&id=57514 Debian DSA-2374-1 : openswan - implementation error 57513 debian_DSA-2373.nasl http://nessus.org/plugins/index.php?view=single&id=57513 Debian DSA-2373-1 : inetutils - buffer overflow 57512 debian_DSA-2372.nasl http://nessus.org/plugins/index.php?view=single&id=57512 Debian DSA-2372-1 : heimdal - buffer overflow 57511 debian_DSA-2371.nasl http://nessus.org/plugins/index.php?view=single&id=57511 Debian DSA-2371-1 : jasper - buffer overflows 57510 debian_DSA-2370.nasl http://nessus.org/plugins/index.php?view=single&id=57510 Debian DSA-2370-1 : unbound - several vulnerabilities 57509 debian_DSA-2369.nasl http://nessus.org/plugins/index.php?view=single&id=57509 Debian DSA-2369-1 : libsoup2.4 - insufficient input sanitization 57508 debian_DSA-2368.nasl http://nessus.org/plugins/index.php?view=single&id=57508 Debian DSA-2368-1 : lighttpd - multiple vulnerabilities 57507 debian_DSA-2367.nasl http://nessus.org/plugins/index.php?view=single&id=57507 Debian DSA-2367-1 : asterisk - several vulnerabilities 57506 debian_DSA-2366.nasl http://nessus.org/plugins/index.php?view=single&id=57506 Debian DSA-2366-1 : mediawiki - multiple vulnerabilities 57505 debian_DSA-2365.nasl http://nessus.org/plugins/index.php?view=single&id=57505 Debian DSA-2365-1 : dtc - several vulnerabilities 57504 debian_DSA-2364.nasl http://nessus.org/plugins/index.php?view=single&id=57504 Debian DSA-2364-1 : xorg - incorrect permission check 57503 debian_DSA-2363.nasl http://nessus.org/plugins/index.php?view=single&id=57503 Debian DSA-2363-1 : tor - buffer overflow 57502 debian_DSA-2362.nasl http://nessus.org/plugins/index.php?view=single&id=57502 Debian DSA-2362-1 : acpid - several vulnerabilities 57501 debian_DSA-2361.nasl http://nessus.org/plugins/index.php?view=single&id=57501 Debian DSA-2361-1 : chasen - buffer overflow 57500 debian_DSA-2359.nasl http://nessus.org/plugins/index.php?view=single&id=57500 Debian DSA-2359-1 : mojarra - EL injection 57499 debian_DSA-2358.nasl http://nessus.org/plugins/index.php?view=single&id=57499 Debian DSA-2358-1 : openjdk-6 - several vulnerabilities 57498 ubuntu_USN-1326-1.nasl http://nessus.org/plugins/index.php?view=single&id=57498 USN-1326-1 : nova vulnerability 57497 ubuntu_USN-1325-1.nasl http://nessus.org/plugins/index.php?view=single&id=57497 USN-1325-1 : linux-ti-omap4 vulnerabilities 57496 ubuntu_USN-1324-1.nasl http://nessus.org/plugins/index.php?view=single&id=57496 USN-1324-1 : linux-ec2 vulnerabilities 57495 ubuntu_USN-1323-1.nasl http://nessus.org/plugins/index.php?view=single&id=57495 USN-1323-1 : linux vulnerabilities 57494 redhat-RHSA-2012-0019.nasl http://nessus.org/plugins/index.php?view=single&id=57494 RHSA-2012-0019: php53 57493 redhat-RHSA-2012-0018.nasl http://nessus.org/plugins/index.php?view=single&id=57493 RHSA-2012-0018: libxml2 57492 redhat-RHSA-2012-0017.nasl http://nessus.org/plugins/index.php?view=single&id=57492 RHSA-2012-0017: libxml2 57491 redhat-RHSA-2012-0016.nasl http://nessus.org/plugins/index.php?view=single&id=57491 RHSA-2012-0016: libxml2 57490 mandriva_MDVA-2012-002.nasl http://nessus.org/plugins/index.php?view=single&id=57490 MDVA-2012:002 : util-linux 57489 freebsd_pkg_d39218103c8011e197e800215c6a37bb.nasl http://nessus.org/plugins/index.php?view=single&id=57489 FreeBSD : php -- multiple vulnerabilities (d3921810-3c80-11e1-97e8-00215c6a37bb) 57488 centos_RHSA-2012-0019.nasl http://nessus.org/plugins/index.php?view=single&id=57488 CentOS : RHSA-2012-0019 57487 centos_RHSA-2012-0017.nasl http://nessus.org/plugins/index.php?view=single&id=57487 CentOS : RHSA-2012-0017 57486 centos_RHSA-2012-0016.nasl http://nessus.org/plugins/index.php?view=single&id=57486 CentOS : RHSA-2012-0016 57485 centos_RHSA-2012-0007.nasl http://nessus.org/plugins/index.php?view=single&id=57485 CentOS : RHSA-2012-0007 17798 openssl_0_9_2b.nasl http://nessus.org/plugins/index.php?view=single&id=17798 OpenSSL < 0.9.2b Session Reuse _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, OpenVAS: 15, MSF: 3, Nessus: 45 New VA Module Alert Service (Jan 13)