Nmap Development mailing list archives
New VA Modules: NSE: 1, MSF: 7, Nessus: 23, OpenVAS: 4
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sat, 8 Feb 2014 10:00:34 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Nmap Scripting Engine scripts (1) == r32706 http-ntlm-info http://nmap.org/nsedoc/scripts/http-ntlm-info.html https://svn.nmap.org/nmap/scripts/http-ntlm-info.nse Author: Justin Cacak This script enumerates information from remote HTTP services with NTLM authentication enabled. == Metasploit modules (7) == 3814e3ed https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/misc/ibm_sametime_webplayer_dos.rb IBM Lotus Sametime WebPlayer DoS 2d6f41d6 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_version.rb IBM Lotus Sametime Version Enumeration 7ba19504 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_enumerate_users.rb IBM Lotus Notes Sametime User Enumeration 17c07516 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_room_brute.rb IBM Lotus Notes Sametime Room Name Brute-Forcer 51b3d164 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/dos/misc/ibm_sametime_webplayer_dos.rb IBM Lotus Sametime WebPlayer DoS 9a929e75 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/linux/http/pandora_fms_exec.rb Pandora FMS Remote Code Execution 177bd355 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/android/browser/webview_addjavascriptinterface.rb Android < 4.2 WebView addJavascriptInterface MITM Code Execution == Nessus plugins (23) == 72397 artweaver_3_1_5.nasl http://nessus.org/plugins/index.php?view=single&id=72397 Artweaver 3.x < 3.1.5 JPG File Handling Stack-based Buffer Overflow 72395 irfanview_437.nasl http://nessus.org/plugins/index.php?view=single&id=72395 IrfanView < 4.37 Multiple Buffer Overflow Vulnerabilities 72394 irfanview_mrsid_4_37.nasl http://nessus.org/plugins/index.php?view=single&id=72394 IrfanView MrSID Plugin < 4.37 Multiple Buffer Overflows 72393 kerio_connect_810.nasl http://nessus.org/plugins/index.php?view=single&id=72393 Kerio Connect < 8.1.0 SSL/TLS Information Disclosure 72392 dell_kace_k1000_5_5_mult_sqli.nasl http://nessus.org/plugins/index.php?view=single&id=72392 Dell KACE K1000 < 5.5 Multiple SQL Injection Vulnerabilities 72390 redhat-RHSA-2013-1843.nasl http://nessus.org/plugins/index.php?view=single&id=72390 Red Hat JBoss Enterprise Application Platform 6.1.0 Security Update (RHSA-2013-1843) 72389 winscp_5_1_7.nasl http://nessus.org/plugins/index.php?view=single&id=72389 WinSCP < 5.1.7 Multiple Vulnerabilities 72388 winscp_5_1_6.nasl http://nessus.org/plugins/index.php?view=single&id=72388 WinSCP < 5.1.6 RSA Signature Blob Integer Overflow 72386 ubuntu_USN-2100-1.nasl http://nessus.org/plugins/index.php?view=single&id=72386 Ubuntu 12.04 LTS / 12.10 / 13.10 : pidgin vulnerabilities (USN-2100-1) 72385 gentoo_GLSA-201402-08.nasl http://nessus.org/plugins/index.php?view=single&id=72385 GLSA-201402-08 : stunnel: Multiple vulnerabilities 72384 gentoo_GLSA-201402-07.nasl http://nessus.org/plugins/index.php?view=single&id=72384 GLSA-201402-07 : Freeciv: User-assisted execution of arbitrary code 72383 gentoo_GLSA-201402-06.nasl http://nessus.org/plugins/index.php?view=single&id=72383 GLSA-201402-06 : Adobe Flash Player: Multiple vulnerabilities 72382 freebsd_pkg_4dd575b88f8211e3bb110025905a4771.nasl http://nessus.org/plugins/index.php?view=single&id=72382 FreeBSD : phpmyfaq -- multiple vulnerabilities (4dd575b8-8f82-11e3-bb11-0025905a4771) 72381 fedora_2014-2088.nasl http://nessus.org/plugins/index.php?view=single&id=72381 Fedora 20 : icedtea-web-1.4.2-0.fc20 (2014-2088) 72380 fedora_2014-2041.nasl http://nessus.org/plugins/index.php?view=single&id=72380 Fedora 20 : thunderbird-24.3.0-1.fc20 (2014-2041) 72379 fedora_2014-1802.nasl http://nessus.org/plugins/index.php?view=single&id=72379 Fedora 19 : mediawiki-1.21.5-1.fc19 (2014-1802) 72378 fedora_2014-1778.nasl http://nessus.org/plugins/index.php?view=single&id=72378 Fedora 20 : libpng10-1.0.60-6.fc20 (2014-1778) 72377 fedora_2014-1754.nasl http://nessus.org/plugins/index.php?view=single&id=72377 Fedora 19 : libpng10-1.0.60-6.fc19 (2014-1754) 72376 fedora_2014-1745.nasl http://nessus.org/plugins/index.php?view=single&id=72376 Fedora 20 : mediawiki-1.21.5-1.fc20 (2014-1745) 72375 debian_DSA-2852.nasl http://nessus.org/plugins/index.php?view=single&id=72375 Debian DSA-2852-1 : libgadu - heap-based buffer overflow artweaver_installed.nbin dell_kace_k1000_web_detect.nbin winscp_installed.nbin == OpenVAS plugins (4) == r257 secpod_gom_player_detect_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/secpod_gom_player_detect_win.nasl?root=openvas-nvts&view=markup GOM Media Player Version Detection (Windows) r257 2014/gb_php_video_conference_lfi_02_14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_php_video_conference_lfi_02_14.nasl?root=openvas-nvts&view=markup PHP Webcam Video Conference Local File Inclusion / XSS r257 2014/gb_netsynt_default_password.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_netsynt_default_password.nasl?root=openvas-nvts&view=markup Netsynt CRD Voice Router Telnet CLI Default Password r257 gb_google_picasa_detect_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_google_picasa_detect_win.nasl?root=openvas-nvts&view=markup Google Picasa Version Detection (Windows) _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, MSF: 7, Nessus: 23, OpenVAS: 4 New VA Module Alert Service (Feb 08)