Nmap Development mailing list archives
New VA Modules: MSF: 6, Nessus: 19, OpenVAS: 5
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 27 Nov 2013 10:00:37 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Metasploit modules (6) == cbb7eb19 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb MS13-090 CardSpaceClaimCollection ActiveX Integer Underflow 14c6ab4c https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/apache_roller_ognl_injection.rb Apache Roller OGNL Injection 94e13a0b https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/mswin_tiff_overflow.rb Microsoft Tagged Image File Format (TIFF) Integer Overflow 266de2d2 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/openmind_messageos_login.rb OpenMind Message-OS Portal Login Utility a7ad107e https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access 6a28aa29 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/dos/http/rails_json_float_dos.rb Ruby on Rails JSON Processor Floating Point Heap Overflow DoS == Nessus plugins (19) == 71096 blackboard_lc3000_default_telnet_password.nasl http://nessus.org/plugins/index.php?view=single&id=71096 Blackboard LC3000 Laundry Reader Default Telnet Password 71095 asus_rtn13u_admin_account.nasl http://nessus.org/plugins/index.php?view=single&id=71095 ASUS RT-N13U Router Built-in Admin Telnet Account with Unchangeable Password 71094 ubuntu_USN-2034-1.nasl http://nessus.org/plugins/index.php?view=single&id=71094 Ubuntu 12.10 / 13.04 / 13.10 : keystone vulnerability (USN-2034-1) 71093 redhat-RHSA-2013-1764.nasl http://nessus.org/plugins/index.php?view=single&id=71093 RHEL 6 : ruby (RHSA-2013-1764) 71092 mandriva_MDVSA-2013-283.nasl http://nessus.org/plugins/index.php?view=single&id=71092 Mandriva Linux Security Advisory : glibc (MDVSA-2013:283) 71091 mandriva_MDVSA-2013-282.nasl http://nessus.org/plugins/index.php?view=single&id=71091 Mandriva Linux Security Advisory : perl-HTTP-Body (MDVSA-2013:282) 71090 gentoo_GLSA-201311-16.nasl http://nessus.org/plugins/index.php?view=single&id=71090 GLSA-201311-16 : fcron: Information disclosure 71089 gentoo_GLSA-201311-15.nasl http://nessus.org/plugins/index.php?view=single&id=71089 GLSA-201311-15 : Zabbix: Multiple vulnerabilities 71088 freebsd_pkg_e3244a7b560311e3878d20cf30e32f6d.nasl http://nessus.org/plugins/index.php?view=single&id=71088 FreeBSD : subversion -- multiple vulnerabilities (e3244a7b-5603-11e3-878d-20cf30e32f6d) 71087 fedora_2013-22139.nasl http://nessus.org/plugins/index.php?view=single&id=71087 Fedora 20 : 389-ds-base-1.3.2.7-1.fc20 (2013-22139) 71086 fedora_2013-21524.nasl http://nessus.org/plugins/index.php?view=single&id=71086 Fedora 20 : owncloud-5.0.13-1.fc20 (2013-21524) 71085 fedora_2013-21418.nasl http://nessus.org/plugins/index.php?view=single&id=71085 Fedora 19 : python3-3.3.2-8.fc19 (2013-21418) 71084 fedora_2013-21415.nasl http://nessus.org/plugins/index.php?view=single&id=71084 Fedora 18 : python3-3.3.0-5.fc18 (2013-21415) 71083 fedora_2013-21088.nasl http://nessus.org/plugins/index.php?view=single&id=71083 Fedora 20 : samba-4.1.1-1.fc20 (2013-21088) 71082 fedora_2013-20817.nasl http://nessus.org/plugins/index.php?view=single&id=71082 Fedora 18 : ReviewBoard-1.7.18-1.fc18 / python-djblets-0.7.23-1.fc18 (2013-20817) 71081 fedora_2013-17912.nasl http://nessus.org/plugins/index.php?view=single&id=71081 Fedora 18 : chicken-4.8.0.4-4.fc18 (2013-17912) 71080 debian_DSA-2800.nasl http://nessus.org/plugins/index.php?view=single&id=71080 Debian DSA-2800-1 : nss - buffer overflow 71079 ala_ALAS-2013-248.nasl http://nessus.org/plugins/index.php?view=single&id=71079 Amazon Linux AMI : ruby Heap Overflow Vulnerability (ALAS-2013-248) 71078 ala_ALAS-2013-247.nasl http://nessus.org/plugins/index.php?view=single&id=71078 Amazon Linux AMI : ruby19 Heap Overflow Vulnerability (ALAS-2013-247) == OpenVAS plugins (5) == r79 2013/gb_ipmi_null_usernames_allowed.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_null_usernames_allowed.nasl?root=openvas-nvts&view=markup IPMI Null Usernames Allowed r79 gb_ipmi_detect.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_ipmi_detect.nasl?root=openvas-nvts&view=markup IPMI Detection r79 2013/gb_ipmi_no_auth_enabled.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_no_auth_enabled.nasl?root=openvas-nvts&view=markup IPMI No Auth Access Mode Enabled r79 2013/gb_ipmi_md2_enabled.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_md2_enabled.nasl?root=openvas-nvts&view=markup IPMI MD2 Auth Type Support Enabled r79 2013/gb_ipmi_anonymous_login.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_anonymous_login.nasl?root=openvas-nvts&view=markup IPMI Anonymous Login Enabled _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: MSF: 6, Nessus: 19, OpenVAS: 5 New VA Module Alert Service (Nov 27)