New VA Modules: OpenVAS: 28, MSF: 4, Nessus: 15

[New VA Module Alert Service <postmaster () insecure org>]

This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== OpenVAS plugins (28) ==

r14526 gb_wordpress_buddystream_plugin_mult_xss_vuln.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_wordpress_buddystream_plugin_mult_xss_vuln.nasl?root=openvas&view=markup
WordPress Buddystream Plugin Multiple XSS Vulnerabilities

r14526 802493 gb_netoffice_dwins_mult_sql_injection_vuln.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_netoffice_dwins_mult_sql_injection_vuln.nasl?root=openvas&view=markup
netOffice Dwins Multiple SQL Injection Vulnerabilities

r14526 gb_wordpress_related_posts_exit_popup_sql_inj_vuln.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_wordpress_related_posts_exit_popup_sql_inj_vuln.nasl?root=openvas&view=markup
WordPress Related Posts Exit Popup Plugin SQL Injection Vulnerability

r14526 802494 gb_media_player_classic_webserver_mult_vuln.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_media_player_classic_webserver_mult_vuln.nasl?root=openvas&view=markup
Media Player Classic (MPC) Webserver Multiple Vulnerabilities

r14526 gb_wordpress_amazon_associate_plugin_xss_vuln.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_wordpress_amazon_associate_plugin_xss_vuln.nasl?root=openvas&view=markup
WordPress Amazon Associate Plugin 'callback' Parameter XSS Vulnerability

r14527 841215 gb_ubuntu_USN_1629_1.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1629_1.nasl?root=openvas&view=markup
Ubuntu Update for libproxy USN-1629-1

r14527 870864 gb_RHSA-2012_1455-01_gegl.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_RHSA-2012_1455-01_gegl.nasl?root=openvas&view=markup
RedHat Update for gegl RHSA-2012:1455-01

r14527 870860 gb_RHSA-2012_1445-01_kernel.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_RHSA-2012_1445-01_kernel.nasl?root=openvas&view=markup
RedHat Update for kernel RHSA-2012:1445-01

r14527 881540 gb_CESA-2012_1455_gegl_centos6.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_CESA-2012_1455_gegl_centos6.nasl?root=openvas&view=markup
CentOS Update for gegl CESA-2012:1455 centos6

r14527 881539 gb_CESA-2012_1445_kernel_centos5.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_CESA-2012_1445_kernel_centos5.nasl?root=openvas&view=markup
CentOS Update for kernel CESA-2012:1445 centos5

r14527 864861 gb_fedora_2012_17588_catdoc_fc16.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17588_catdoc_fc16.nasl?root=openvas&view=markup
Fedora Update for catdoc FEDORA-2012-17588

r14527 864857 gb_fedora_2012_17762_icedtea-web_fc17.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17762_icedtea-web_fc17.nasl?root=openvas&view=markup
Fedora Update for icedtea-web FEDORA-2012-17762

r14527 864864 gb_fedora_2012_17745_icedtea-web_fc16.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17745_icedtea-web_fc16.nasl?root=openvas&view=markup
Fedora Update for icedtea-web FEDORA-2012-17745

r14527 864865 gb_fedora_2012_17477_openvswitch_fc17.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17477_openvswitch_fc17.nasl?root=openvas&view=markup
Fedora Update for openvswitch FEDORA-2012-17477

r14527 864860 gb_fedora_2012_17204_xen_fc17.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17204_xen_fc17.nasl?root=openvas&view=markup
Fedora Update for xen FEDORA-2012-17204

r14527 870861 gb_RHSA-2012_1462-01_mysql.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_RHSA-2012_1462-01_mysql.nasl?root=openvas&view=markup
RedHat Update for mysql RHSA-2012:1462-01

r14527 864858 gb_fedora_2012_17482_plib_fc16.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17482_plib_fc16.nasl?root=openvas&view=markup
Fedora Update for plib FEDORA-2012-17482

r14527 881538 gb_CESA-2012_1462_mysql_centos6.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_CESA-2012_1462_mysql_centos6.nasl?root=openvas&view=markup
CentOS Update for mysql CESA-2012:1462 centos6

r14527 870863 gb_RHSA-2012_1459-01_nspluginwrapper.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_RHSA-2012_1459-01_nspluginwrapper.nasl?root=openvas&view=markup
RedHat Update for nspluginwrapper RHSA-2012:1459-01

r14527 841213 gb_ubuntu_USN_1630_1.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1630_1.nasl?root=openvas&view=markup
Ubuntu Update for libav USN-1630-1

r14527 881536 gb_CESA-2012_1459_nspluginwrapper_centos6.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_CESA-2012_1459_nspluginwrapper_centos6.nasl?root=openvas&view=markup
CentOS Update for nspluginwrapper CESA-2012:1459 centos6

r14527 870862 gb_RHSA-2012_1461-01_libproxy.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_RHSA-2012_1461-01_libproxy.nasl?root=openvas&view=markup
RedHat Update for libproxy RHSA-2012:1461-01

r14527 864862 gb_fedora_2012_17408_xen_fc16.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17408_xen_fc16.nasl?root=openvas&view=markup
Fedora Update for xen FEDORA-2012-17408

r14527 864863 gb_fedora_2012_17465_plib_fc17.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17465_plib_fc17.nasl?root=openvas&view=markup
Fedora Update for plib FEDORA-2012-17465

r14527 881537 gb_CESA-2012_1461_libproxy_centos6.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_CESA-2012_1461_libproxy_centos6.nasl?root=openvas&view=markup
CentOS Update for libproxy CESA-2012:1461 centos6

r14527 864859 gb_fedora_2012_17554_catdoc_fc17.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_fedora_2012_17554_catdoc_fc17.nasl?root=openvas&view=markup
Fedora Update for catdoc FEDORA-2012-17554

r14527 841214 gb_ubuntu_USN_1626_2.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1626_2.nasl?root=openvas&view=markup
Ubuntu Update for glance USN-1626-2

r14528 103609 gb_VMSA-2012-0016.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_VMSA-2012-0016.nasl?root=openvas&view=markup
VMSA-2012-0016: VMware security updates for vSphere API and ESX Service
Console

== Metasploit modules (4) ==

r16071 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/novell_file_reporter_srs_fileaccess.rb
NFR Agent SRS Record Arbitrary Remote File Access

r16071 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/novell_file_reporter_fsfui_fileaccess.rb
NFR Agent FSFUI Record Arbitrary Remote File Access

r16071 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/dos/http/novell_file_reporter_heap_bof.rb
NFR Agent Heap Overflow Vulnerability

r16071 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/novell/file_reporter_fsfui_upload.rb
NFR Agent FSFUI Record File Upload RCE

== Nessus plugins (15) ==

62939 joomla_freestyle_testimonials_sql_injection.nasl
http://nessus.org/plugins/index.php?view=single&id=62939
Freestyle Testimonials Component for Joomla! Unspecified SQL Injection

62938 joomla_freestyle_support_portal_sql_injection.nasl
http://nessus.org/plugins/index.php?view=single&id=62938
Freestyle Support Portal Component for Joomla! prodid Parameter SQL
Injection

62937 ubuntu_USN-1632-1.nasl
http://nessus.org/plugins/index.php?view=single&id=62937
USN-1632-1 : python-django vulnerability

62936 ubuntu_USN-1631-1.nasl
http://nessus.org/plugins/index.php?view=single&id=62936
USN-1631-1 : tiff vulnerabilities

62935 suse_flash-player-8360.nasl
http://nessus.org/plugins/index.php?view=single&id=62935
SuSE 10 Security Update : flash-player (ZYPP Patch Number 8360)

62934 sl_20121114_mysql_on_SL6_x.nasl
http://nessus.org/plugins/index.php?view=single&id=62934
Scientific Linux Security Update : mysql on SL6.x i386/x86_64

62933 sl_20121114_libproxy_on_SL6_x.nasl
http://nessus.org/plugins/index.php?view=single&id=62933
Scientific Linux Security Update : libproxy on SL6.x i386/x86_64

62932 redhat-RHSA-2012-1467.nasl
http://nessus.org/plugins/index.php?view=single&id=62932
RHSA-2012-1467: java

62931 redhat-RHSA-2012-1466.nasl
http://nessus.org/plugins/index.php?view=single&id=62931
RHSA-2012-1466: java

62930 redhat-RHSA-2012-1465.nasl
http://nessus.org/plugins/index.php?view=single&id=62930
RHSA-2012-1465: java

62929 debian_DSA-2574.nasl
http://nessus.org/plugins/index.php?view=single&id=62929
Debian DSA-2574-1 : typo3-src - several vulnerabilities

62928 centos_RHSA-2012-1461.nasl
http://nessus.org/plugins/index.php?view=single&id=62928
CentOS : RHSA-2012-1461

62927 mysql_5_0_95_create_table_bypass.nasl
http://nessus.org/plugins/index.php?view=single&id=62927
MySQL 5.0.95 MyISAM Table Symbolic Link Local Restriction Bypass

62926 liferay_lps28934_file_deletion.nasl
http://nessus.org/plugins/index.php?view=single&id=62926
Liferay Portal 6.1.0 / 6.1.10 Arbitrary File Deletion

62925 symantec_decomposer_sym12-017.nasl
http://nessus.org/plugins/index.php?view=single&id=62925
Symantec Legacy Decomposer Code Execution (SYM12-017)
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/