Nmap Development mailing list archives
New VA Modules: NSE: 1, OpenVAS: 7, MSF: 2, Nessus: 9
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 13 Jun 2012 10:00:55 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (1) == r28928 mysql-vuln-cve2012-2122 http://nmap.org/nsedoc/scripts/mysql-vuln-cve2012-2122.html https://svn.nmap.org/nmap/scripts/mysql-vuln-cve2012-2122.nse Attempts to bypass authentication in MySQL and MariaDB servers by exploiting CVE2012-2122. If its vulnerable, it will also attempt to dump the MySQL usernames and password hashes. All MariaDB and MySQL versions up to 5.1.61, 5.2.11, 5.3.5, 5.5.22 are vulnerable but depending if memcmp() returns an arbitrary integer outside of -128..127 range. == OpenVAS plugins (7) == r13582 902917 secpod_ms12-041.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-041.nasl?root=openvas&view=markup Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities (2709162) r13582 902916 secpod_ms12-042.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-042.nasl?root=openvas&view=markup Microsoft Windows Kernel Privilege Elevation Vulnerabilities (2711167) r13582 902683 secpod_ms12-036.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-036.nasl?root=openvas&view=markup Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability (2685939) r13582 902682 secpod_ms12-037.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-037.nasl?root=openvas&view=markup Microsoft Internet Explorer Multiple Vulnerabilities (2699988) r13582 secpod_ms_lync_detect_win.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms_lync_detect_win.nasl?root=openvas&view=markup Microsoft Lync Version Detection r13582 902841 secpod_ms12-038.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-038.nasl?root=openvas&view=markup Microsoft .NET Framework Remote Code Execution Vulnerability (2706726) r13582 902842 secpod_ms12-039.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-039.nasl?root=openvas&view=markup Microsoft Lync Remote Code Execution Vulnerabilities (2707956) == Metasploit modules (2) == r15425 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb F5 BIG-IP SSH Private Key Exposure r15434 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms12_037_same_id.rb MS12-037 Internet Explorer Same ID Property Deleted Object Handling Memory Corruption == Nessus plugins (9) == 59461 smb_kb2719615.nasl http://nessus.org/plugins/index.php?view=single&id=59461 MS KB2719615: Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution 59460 smb_nt_ms12-042.nasl http://nessus.org/plugins/index.php?view=single&id=59460 MS12-042: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2711167) 59459 smb_nt_ms12-041.nasl http://nessus.org/plugins/index.php?view=single&id=59459 MS12-041: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2709162) 59458 smb_nt_ms12-040.nasl http://nessus.org/plugins/index.php?view=single&id=59458 MS12-040: Vulnerability in Microsoft Dynamics AX Enterprise Portal Could Allow Elevation of Privilege (2709100) 59457 smb_nt_ms12-039.nasl http://nessus.org/plugins/index.php?view=single&id=59457 MS12-039: Vulnerabilities in Lync Could Allow Remote Code Execution (2707956) 59456 smb_nt_ms12-038.nasl http://nessus.org/plugins/index.php?view=single&id=59456 MS12-038: Vulnerability in .NET Framework Could Allow Remote Code Execution (2706726) 59455 smb_nt_ms12-037.nasl http://nessus.org/plugins/index.php?view=single&id=59455 MS12-037: Cumulative Security Update for Internet Explorer (2699988) 59454 smb_nt_ms12-036.nasl http://nessus.org/plugins/index.php?view=single&id=59454 MS12-036: Vulnerability in Remote Desktop Could Allow Remote Code Execution (2685939) 59453 microsoft_dynamics_ax_installed.nasl http://nessus.org/plugins/index.php?view=single&id=59453 Microsoft Dynamics AX Installed _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, OpenVAS: 7, MSF: 2, Nessus: 9 New VA Module Alert Service (Jun 13)