Nmap Development mailing list archives
New VA Modules: NSE: 1, Nessus: 17, OpenVAS: 6
From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 18 Oct 2013 10:00:50 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Nmap Scripting Engine scripts (1) == r32437 http-dlink-backdoor http://nmap.org/nsedoc/scripts/http-dlink-backdoor.html https://svn.nmap.org/nmap/scripts/http-dlink-backdoor.nse Author: Patrik Karlsson <patrik () cqure net> Detects a firmware backdoor on some D-Link routers by changing the User-Agent to a "secret" value. Using the "secret" User-Agent bypasses authentication and allows admin access to the router. == Nessus plugins (17) == 70482 glassfish_cpu_oct_2013.nasl http://nessus.org/plugins/index.php?view=single&id=70482 Oracle GlassFish Server Multiple Vulnerabilities (October 2013 CPU) 70481 juniper_jsa10598.nasl http://nessus.org/plugins/index.php?view=single&id=70481 Juniper Junos GNU libc glob Remote Denial of Service (JSA10598) 70480 juniper_jsa10595.nasl http://nessus.org/plugins/index.php?view=single&id=70480 Juniper Junos Unnumbered Interface Cache Poisoning Remote DoS and Information Disclosure (JSA10595) 70479 juniper_jsa10594.nasl http://nessus.org/plugins/index.php?view=single&id=70479 Juniper Junos flowd Remote Code Execution (JSA10594) 70478 juniper_jsa10593.nasl http://nessus.org/plugins/index.php?view=single&id=70478 Juniper Junos Unauthenticated Access (JSA10593) 70477 juniper_jsa10548.nasl http://nessus.org/plugins/index.php?view=single&id=70477 Juniper Junos PIM Remote Denial of Service (JSA10548) 70476 juniper_jsa10596.nasl http://nessus.org/plugins/index.php?view=single&id=70476 Juniper Junos Remote Denial of Service (JSA10596) 70475 juniper_jsa10597.nasl http://nessus.org/plugins/index.php?view=single&id=70475 Juniper Junos CSRF Protection Bypass Vulnerability in J-Web (JSA10597) 70474 cisco-sa-20131009-asa.nasl http://nessus.org/plugins/index.php?view=single&id=70474 Multiple Vulnerabilities in Cisco ASA Software (cisco-sa-20131009-asa) 70473 oracle_java_cpu_oct_2013_unix.nasl http://nessus.org/plugins/index.php?view=single&id=70473 Oracle Java SE Multiple Vulnerabilities (October 2013 CPU) (Unix) 70472 oracle_java_cpu_oct_2013.nasl http://nessus.org/plugins/index.php?view=single&id=70472 Oracle Java SE Multiple Vulnerabilities (October 2013 CPU) 70471 oracle_e-business_cpu_oct_2013.nasl http://nessus.org/plugins/index.php?view=single&id=70471 Oracle E-Business October 2013 Critical Patch Updates 70468 sl_20131015_xorg_x11_server_on_SL5_x.nasl http://nessus.org/plugins/index.php?view=single&id=70468 Scientific Linux Security Update : xorg-x11-server on SL5.x, SL6.x i386/x86_64 70467 sl_20130930_Red_Hat_Enterprise_Linux_5_kernel_update_on_SL5_x.nasl http://nessus.org/plugins/index.php?view=single&id=70467 Scientific Linux Security Update : Red Hat Enterprise Linux 5 kernel update on SL5.x i386/x86_64 70466 redhat-RHSA-2013-1436.nasl http://nessus.org/plugins/index.php?view=single&id=70466 RHEL 6 : kernel (RHSA-2013-1436) 70465 oraclelinux_ELSA-2013-1436.nasl http://nessus.org/plugins/index.php?view=single&id=70465 Oracle Linux 6 : kernel (ELSA-2013-1436) 70464 centos_RHSA-2013-1426.nasl http://nessus.org/plugins/index.php?view=single&id=70464 CentOS 6 : xorg-x11-server (CESA-2013:1426) == OpenVAS plugins (6) == r18077 2013/gb_opera_xss_utf-8_vuln_macosx.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_opera_xss_utf-8_vuln_macosx.nasl?root=openvas&view=markup Opera Cross-Site Scripting (XSS) Vulnerability (Mac OS X) r18077 2013/gb_wordpress_simple_flash_video_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_wordpress_simple_flash_video_xss_vuln.nasl?root=openvas&view=markup WordPress Simple Flash Video Plugin Cross Site Scripting Vulnerability r18077 gb_freeswitch_detect.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_freeswitch_detect.nasl?root=openvas&view=markup FreeSWITCH Version Detection r18077 2013/gb_opera_xss_utf-8_vuln_win.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_opera_xss_utf-8_vuln_win.nasl?root=openvas&view=markup Opera Cross-Site Scripting (XSS) Vulnerability (Win) r18077 2013/gb_web_tester_mult_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_web_tester_mult_vuln.nasl?root=openvas&view=markup WebTester Multiple Vulnerabilities r18077 2013/gb_freeswitch_mult_bof_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_freeswitch_mult_bof_vuln.nasl?root=openvas&view=markup FreeSWITCH 'switch_regex.c' Multiple Buffer Overflow Vulnerabilities _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, Nessus: 17, OpenVAS: 6 New VA Module Alert Service (Oct 18)