Nmap Development mailing list archives
New VA Modules: MSF: 2, Nessus: 23, OpenVAS: 47
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sat, 30 Nov 2013 10:03:04 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Metasploit modules (2) == d8700314 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/unix/webapp/kimai_sqli.rb Kimai v0.9.2 'db_restore.php' SQL Injection 7dee4ffd https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/scada/abb_wserver_exec.rb ABB MicroSCADA Stack Buffer Overflow == Nessus plugins (23) == 71140 smb_kb2914486.nasl http://nessus.org/plugins/index.php?view=single&id=71140 KB2914486: Vulnerability in Microsoft Windows Kernel Could Allow Elevation of Privilege 71139 ubuntu_USN-2035-1.nasl http://nessus.org/plugins/index.php?view=single&id=71139 Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : ruby1.8, ruby1.9.1 vulnerabilities (USN-2035-1) 71138 suse_11_wireshark-131106.nasl http://nessus.org/plugins/index.php?view=single&id=71138 SuSE 11.2 / 11.3 Security Update : wireshark (SAT Patch Numbers 8503 / 8504) 71137 suse_11_openvpn-131101.nasl http://nessus.org/plugins/index.php?view=single&id=71137 SuSE 11.3 Security Update : openvpn (SAT Patch Number 8493) 71136 suse_11_openvpn-131031.nasl http://nessus.org/plugins/index.php?view=single&id=71136 SuSE 11.2 Security Update : openvpn (SAT Patch Number 8496) 71135 solaris10_147143.nasl http://nessus.org/plugins/index.php?view=single&id=71135 Solaris 10 (sparc) : 147143-17 71134 oraclelinux_ELSA-2013-2585.nasl http://nessus.org/plugins/index.php?view=single&id=71134 Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2585) 71133 oraclelinux_ELSA-2013-2584.nasl http://nessus.org/plugins/index.php?view=single&id=71133 Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2584) 71132 oraclelinux_ELSA-2013-2583.nasl http://nessus.org/plugins/index.php?view=single&id=71132 Oracle Linux 6 : unbreakable enterprise kernel (ELSA-2013-2583) 71131 oraclelinux_ELSA-2013-1764.nasl http://nessus.org/plugins/index.php?view=single&id=71131 Oracle Linux 6 : ruby (ELSA-2013-1764) 71130 oraclelinux_ELSA-2013-1620.nasl http://nessus.org/plugins/index.php?view=single&id=71130 Oracle Linux 6 : xorg-x11-server (ELSA-2013-1620) 71129 oraclelinux_ELSA-2013-1591.nasl http://nessus.org/plugins/index.php?view=single&id=71129 Oracle Linux 6 : openssh (ELSA-2013-1591) 71128 oraclelinux_ELSA-2013-1582.nasl http://nessus.org/plugins/index.php?view=single&id=71128 Oracle Linux 6 : python (ELSA-2013-1582) 71127 oraclelinux_ELSA-2013-1553.nasl http://nessus.org/plugins/index.php?view=single&id=71127 Oracle Linux 6 : qemu-kvm (ELSA-2013-1553) 71126 oraclelinux_ELSA-2013-1540.nasl http://nessus.org/plugins/index.php?view=single&id=71126 Oracle Linux 6 : evolution (ELSA-2013-1540) 71125 oraclelinux_ELSA-2013-1536.nasl http://nessus.org/plugins/index.php?view=single&id=71125 Oracle Linux 6 : libguestfs (ELSA-2013-1536) 71124 gentoo_GLSA-201311-22.nasl http://nessus.org/plugins/index.php?view=single&id=71124 GLSA-201311-22 : Namazu: Multiple vulnerabilities 71123 gentoo_GLSA-201311-21.nasl http://nessus.org/plugins/index.php?view=single&id=71123 GLSA-201311-21 : cpio: Arbitrary code execution 71122 gentoo_GLSA-201311-20.nasl http://nessus.org/plugins/index.php?view=single&id=71122 GLSA-201311-20 : Okular: Arbitrary code execution 71121 gentoo_GLSA-201311-19.nasl http://nessus.org/plugins/index.php?view=single&id=71121 GLSA-201311-19 : rssh: Access restriction bypass 71120 gentoo_GLSA-201311-18.nasl http://nessus.org/plugins/index.php?view=single&id=71120 GLSA-201311-18 : Unbound: Denial of Service 71119 gentoo_GLSA-201311-17.nasl http://nessus.org/plugins/index.php?view=single&id=71119 GLSA-201311-17 : Perl: Multiple vulnerabilities 71118 debian_DSA-2805.nasl http://nessus.org/plugins/index.php?view=single&id=71118 Debian DSA-2805-1 : sup-mail - command injection == OpenVAS plugins (47) == r89 2013/gb_junos_cve_2013_0149.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_junos_cve_2013_0149.nasl?root=openvas-nvts&view=markup r90 871087 2013/gb_RHSA-2013_1764-01_ruby.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_RHSA-2013_1764-01_ruby.nasl?root=openvas-nvts&view=markup RedHat Update for ruby RHSA-2013:1764-01 r90 867081 2013/gb_fedora_2013_20817_ReviewBoard_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20817_ReviewBoard_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for ReviewBoard FEDORA-2013-20817 r90 867078 2013/gb_fedora_2013_21354_moodle_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21354_moodle_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for moodle FEDORA-2013-21354 r90 867082 2013/gb_fedora_2013_21207_samba_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21207_samba_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for samba FEDORA-2013-21207 r90 867091 2013/gb_fedora_2013_20202_mantis_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20202_mantis_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for mantis FEDORA-2013-20202 r90 867089 2013/gb_fedora_2013_21807_kernel_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21807_kernel_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for kernel FEDORA-2013-21807 r90 867083 2013/gb_fedora_2013_21397_moodle_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21397_moodle_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for moodle FEDORA-2013-21397 r90 841637 2013/gb_ubuntu_USN_2032_1.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2032_1.nasl?root=openvas-nvts&view=markup Ubuntu Update for thunderbird USN-2032-1 r90 841636 2013/gb_ubuntu_USN_2033_1.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2033_1.nasl?root=openvas-nvts&view=markup Ubuntu Update for openjdk-6 USN-2033-1 r90 867088 2013/gb_fedora_2013_21231_drupal6-context_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21231_drupal6-context_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for drupal6-context FEDORA-2013-21231 r90 841635 2013/gb_ubuntu_USN_2034_1.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2034_1.nasl?root=openvas-nvts&view=markup Ubuntu Update for keystone USN-2034-1 r90 867084 2013/gb_fedora_2013_20176_mantis_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20176_mantis_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for mantis FEDORA-2013-20176 r90 867086 2013/gb_fedora_2013_21415_python3_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21415_python3_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for python3 FEDORA-2013-21415 r90 867090 2013/gb_fedora_2013_21418_python3_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21418_python3_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for python3 FEDORA-2013-21418 r90 867080 2013/gb_fedora_2013_21298_drupal6-context_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21298_drupal6-context_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for drupal6-context FEDORA-2013-21298 r90 867079 2013/gb_fedora_2013_21998_monitorix_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21998_monitorix_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for monitorix FEDORA-2013-21998 r90 867087 2013/gb_fedora_2013_17912_chicken_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_17912_chicken_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for chicken FEDORA-2013-17912 r90 867085 2013/gb_fedora_2013_20817_python-djblets_fc18.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20817_python-djblets_fc18.nasl?root=openvas-nvts&view=markup Fedora Update for python-djblets FEDORA-2013-20817 r91 2013/gb_google_chrome_mult_vuln02_nov13_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_macosx.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities-02 Nov2013 (Mac OS X) r91 2013/gb_google_chrome_mult_vuln02_nov13_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_win.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities-02 Nov2013 (Win) r91 2013/gb_tomcat_login_constraints_sec_bypass_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_login_constraints_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup Apache Tomcat Login Constraints Security Bypass Vulnerability r91 2013/gb_mybb_ajaxfx_plugin_sql_inj_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mybb_ajaxfx_plugin_sql_inj_vuln.nasl?root=openvas-nvts&view=markup MyBB Ajaxfs Plugin 'usertooltip' Parameter SQL Injection Vulnerability r91 2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup Mozilla Firefox Integer Overflow Vulnerability-01 Nov13 (Mac OS X) r91 2013/secpod_wordpress_amerisalere_plugin_xss_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_wordpress_amerisalere_plugin_xss_vuln.nasl?root=openvas-nvts&view=markup WordPress Amerisale-Re Plugin Cross Site Scripting Vulnerability r91 2013/gb_google_chrome_mult_vuln02_nov13_lin.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_lin.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities-02 Nov2013 (Lin) r91 2013/gb_php_display_errors_xss_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_php_display_errors_xss_vuln.nasl?root=openvas-nvts&view=markup PHP 'display_errors' Cross Site Scripting Vulnerability r91 2013/gb_tomcat_http_bio_connector_info_disc_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_http_bio_connector_info_disc_vuln.nasl?root=openvas-nvts&view=markup Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability r91 2013/gb_tomcat_nioconnector_dos_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_nioconnector_dos_vuln.nasl?root=openvas-nvts&view=markup Apache Tomcat NIO Connector Denial of Service Vulnerability r91 2013/gb_google_chrome_mult_vuln01_nov13_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_win.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities Nov2013 (Win) r91 803970 2013/gb_ajaxplorer_zoho_plugin_dir_trav_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ajaxplorer_zoho_plugin_dir_trav_vuln.nasl?root=openvas-nvts&view=markup AjaXplorer zoho plugin Directory Traversal Vulnerability r91 2013/gb_tomcat_securityconstraints_sec_bypass_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_securityconstraints_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup Apache Tomcat SecurityConstraints Security Bypass Vulnerability r91 2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup Mozilla Seamonkey Integer Overflow Vulnerability-01 Nov13 (Mac OS X) r91 2013/gb_tomcat_securitymanager_sec_bypass_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_securitymanager_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup Apache Tomcat SecurityManager Security Bypass Vulnerability r91 2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup Mozilla Seamonkey Integer Overflow Vulnerability-01 Nov13 (Windows) r91 802065 2013/gb_at_tftp_filename_bof_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_at_tftp_filename_bof_vuln.nasl?root=openvas-nvts&view=markup AT-TFTP Server Long Filename BoF Vulnerability r91 903415 2013/secpod_dokeos_sql_inj_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_dokeos_sql_inj_vuln.nasl?root=openvas-nvts&view=markup Dokeos 'language' Parameter SQL Injection Vulnerability r91 2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup Mozilla Firefox Integer Overflow Vulnerability-01 Nov13 (Windows) r91 2013/secpod_ruby_heap_bof_vuln_win_nov13.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_ruby_heap_bof_vuln_win_nov13.nasl?root=openvas-nvts&view=markup Ruby Interpreter Heap Overflow Vulnerability Nov13 (Windows) r91 2013/secpod_wordpress_optinfirex_plugin_xss_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_wordpress_optinfirex_plugin_xss_vuln.nasl?root=openvas-nvts&view=markup WordPress Optinfirex Plugin Cross Site Scripting Vulnerability r91 2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup Mozilla Firefox ESR Integer Overflow Vulnerability-01 Nov13 (Mac OS X) r91 2013/gb_google_chrome_mult_vuln01_nov13_lin.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_lin.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities Nov2013 (Lin) r91 2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup Mozilla Firefox ESR Integer Overflow Vulnerability-01 Nov13 (Windows) r91 2013/gb_vbulletin_auth_bypass_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_vbulletin_auth_bypass_vuln.nasl?root=openvas-nvts&view=markup Vbulletin Authentication Bypass Vulnerability r91 2013/gb_rsa_auth_agent_iis_auth_bypass_vuln_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_rsa_auth_agent_iis_auth_bypass_vuln_win.nasl?root=openvas-nvts&view=markup RSA Authentication Agent for IIS Authentication Bypass Vulnerability r91 2013/gb_google_chrome_mult_vuln01_nov13_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_macosx.nasl?root=openvas-nvts&view=markup Google Chrome Multiple Vulnerabilities Nov2013 (Mac OS X) r92 gb_gsa_detect.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_gsa_detect.nasl?root=openvas-nvts&view=markup Greenbone Security Assistant Detection _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: MSF: 2, Nessus: 23, OpenVAS: 47 New VA Module Alert Service (Nov 30)