Nmap Development mailing list archives
New VA Modules: MSF: 2, Nessus: 26, OpenVAS: 41
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sat, 19 Apr 2014 10:02:43 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Metasploit modules (2) == 766c408d https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/adobe_flash_regex_value.rb Adobe Flash Player 11.5 Remote Memory Corruption fc018eb3 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/post/windows/manage/change_password.rb Windows Manage Change Password == Nessus plugins (26) == 73624 atmail_webmail_7_2_0.nasl http://nessus.org/plugins/index.php?view=single&id=73624 Atmail Webmail 6.x / 7.x < 7.2.0 Multiple Vulnerabilities 73623 atmail_webmail_7_1_2.nasl http://nessus.org/plugins/index.php?view=single&id=73623 Atmail Webmail 6.x < 6.6.4 / 7.x < 7.1.2 Multiple Vulnerabilities 73622 atmail_webmail_7_0_3.nasl http://nessus.org/plugins/index.php?view=single&id=73622 Atmail Webmail 6.6.x < 6.6.3 / 7.x < 7.0.3 File Name Parameter XSS 73621 atmail_webmail_6_6_2.nasl http://nessus.org/plugins/index.php?view=single&id=73621 Atmail Webmail < 6.6.2 Exim Buffer Overflow 73620 atmail_webmail_6_5_0.nasl http://nessus.org/plugins/index.php?view=single&id=73620 Atmail Webmail < 6.5.0 'DOM processor' Cross-Site Scripting 73619 atmail_webmail_6_3_5.nasl http://nessus.org/plugins/index.php?view=single&id=73619 Atmail Webmail < 6.3.5 Multiple Cross-Site Scripting Vulnerabilities 73618 atmail_webmail_5_42.nasl http://nessus.org/plugins/index.php?view=single&id=73618 Atmail Webmail < 5.4.2 (5.42) Multiple Information Disclosure Vulnerabilities 73617 atmail_webmail_5_03.nasl http://nessus.org/plugins/index.php?view=single&id=73617 Atmail Webmail 4.5.1 (4.51) / 5.x < 5.0.3 (5.03) util.pl Cross-Site Request Forgery 73616 atmail_webmail_4_61.nasl http://nessus.org/plugins/index.php?view=single&id=73616 Atmail Webmail 4.x < 4.6.1 (4.61) 'Global.pm' Cross-site Scripting 73615 atmail_webmail_3_64.nasl http://nessus.org/plugins/index.php?view=single&id=73615 Atmail Webmail 3.x < 3.6.4 (3.64) Multiple Vulnerabilities 73613 winscp_5_5_3.nasl http://nessus.org/plugins/index.php?view=single&id=73613 WinSCP Heartbeat Information Disclosure (Heartbleed) 73612 oracle_jrockit_cpu_apr_2014.nasl http://nessus.org/plugins/index.php?view=single&id=73612 Oracle JRockit R27 < R27.8.2 / R28 < R28.3.2 Multiple Vulnerabilities (April 2014 CPU) 73611 commonspot_7_0_2.nasl http://nessus.org/plugins/index.php?view=single&id=73611 CommonSpot < 7.0.2 / 8.0.3 / 9.0.0 Multiple Vulnerabilities 73609 suse_11_jakarta-commons-fileupload-140403.nasl http://nessus.org/plugins/index.php?view=single&id=73609 SuSE 11.3 Security Update : jakarta-commons-fileupload (SAT Patch Number 9087) 73608 redhat-RHSA-2014-0412.nasl http://nessus.org/plugins/index.php?view=single&id=73608 RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0412) 73607 oraclelinux_ELSA-2014-3019.nasl http://nessus.org/plugins/index.php?view=single&id=73607 Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3019) 73606 oraclelinux_ELSA-2014-3018.nasl http://nessus.org/plugins/index.php?view=single&id=73606 Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2014-3018) 73605 oraclelinux_ELSA-2014-0407.nasl http://nessus.org/plugins/index.php?view=single&id=73605 Oracle Linux 5 : java-1.7.0-openjdk (ELSA-2014-0407) 73604 mandriva_MDVSA-2014-079.nasl http://nessus.org/plugins/index.php?view=single&id=73604 Mandriva Linux Security Advisory : json-c (MDVSA-2014:079) 73603 fedora_2014-5006.nasl http://nessus.org/plugins/index.php?view=single&id=73603 Fedora 20 : json-c-0.11-6.fc20 (2014-5006) 73602 fedora_2014-4928.nasl http://nessus.org/plugins/index.php?view=single&id=73602 Fedora 19 : cacti-0.8.8b-5.fc19 (2014-4928) 73601 fedora_2014-4903.nasl http://nessus.org/plugins/index.php?view=single&id=73601 Fedora 20 : openstack-keystone-2013.2.3-2.fc20 (2014-4903) 73600 fedora_2014-4892.nasl http://nessus.org/plugins/index.php?view=single&id=73600 Fedora 20 : cacti-0.8.8b-5.fc20 (2014-4892) 73599 debian_DSA-2908.nasl http://nessus.org/plugins/index.php?view=single&id=73599 Debian DSA-2908-1 : openssl - security update commonspot_web_detect.nbin oracle_access_manager_webgate_cve_2014_2452.nbin == OpenVAS plugins (41) == r383 867686 2014/gb_fedora_2014_4636_php-ZendFramework2_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4636_php-ZendFramework2_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for php-ZendFramework2 FEDORA-2014-4636 r383 867684 2014/gb_fedora_2014_4651_php-ZendFramework_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4651_php-ZendFramework_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for php-ZendFramework FEDORA-2014-4651 r383 867699 2014/gb_fedora_2014_4749_mingw-openjpeg_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4749_mingw-openjpeg_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for mingw-openjpeg FEDORA-2014-4749 r383 867691 2014/gb_fedora_2014_4633_mod_security_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4633_mod_security_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for mod_security FEDORA-2014-4633 r383 867685 2014/gb_fedora_2014_4603_php-ZendFramework_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4603_php-ZendFramework_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for php-ZendFramework FEDORA-2014-4603 r383 867688 2014/gb_fedora_2014_4982_mingw-openssl_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4982_mingw-openssl_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for mingw-openssl FEDORA-2014-4982 r383 867698 2014/gb_fedora_2014_4969_ImageMagick_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4969_ImageMagick_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for ImageMagick FEDORA-2014-4969 r383 867687 2014/gb_fedora_2014_4720_mod_security_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4720_mod_security_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for mod_security FEDORA-2014-4720 r383 867689 2014/gb_fedora_2014_4612_php-ZendFramework2_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4612_php-ZendFramework2_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for php-ZendFramework2 FEDORA-2014-4612 r383 867700 2014/gb_fedora_2014_4708_cups-filters_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4708_cups-filters_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for cups-filters FEDORA-2014-4708 r383 867696 2014/gb_fedora_2014_2875_oath-toolkit_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_2875_oath-toolkit_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for oath-toolkit FEDORA-2014-2875 r383 881920 2014/gb_CESA-2014_0383_samba4_centos6.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_CESA-2014_0383_samba4_centos6.nasl?root=openvas-nvts&view=markup CentOS Update for samba4 CESA-2014:0383 centos6 r383 841776 2014/gb_ubuntu_USN_2166_1.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_ubuntu_USN_2166_1.nasl?root=openvas-nvts&view=markup Ubuntu Update for net-snmp USN-2166-1 r383 841775 2014/gb_ubuntu_USN_2167_1.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_ubuntu_USN_2167_1.nasl?root=openvas-nvts&view=markup Ubuntu Update for curl USN-2167-1 r383 867693 2014/gb_fedora_2014_5029_wordpress_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_5029_wordpress_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for wordpress FEDORA-2014-5029 r383 867694 2014/gb_fedora_2014_4800_squid_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4800_squid_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for squid FEDORA-2014-4800 r383 867701 2014/gb_fedora_2014_4999_mingw-openssl_fc19.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4999_mingw-openssl_fc19.nasl?root=openvas-nvts&view=markup Fedora Update for mingw-openssl FEDORA-2014-4999 r383 867695 2014/gb_fedora_2014_4782_mingw-openjpeg_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4782_mingw-openjpeg_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for mingw-openjpeg FEDORA-2014-4782 r383 867697 2014/gb_fedora_2014_4948_jbigkit_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4948_jbigkit_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for jbigkit FEDORA-2014-4948 r383 867690 2014/gb_fedora_2014_4962_systemd_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4962_systemd_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for systemd FEDORA-2014-4962 r383 867702 2014/gb_fedora_2014_4625_v8_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4625_v8_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for v8 FEDORA-2014-4625 r383 867692 2014/gb_fedora_2014_4767_php_fc20.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_fedora_2014_4767_php_fc20.nasl?root=openvas-nvts&view=markup Fedora Update for php FEDORA-2014-4767 r384 2014/gb_advantech_webaccess_mult_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_advantech_webaccess_mult_vuln.nasl?root=openvas-nvts&view=markup Advantech WebAccess Multiple Vulnerabilities r384 2014/gb_oracle_virtualbox_wddm_unspecified_vuln_lin.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_oracle_virtualbox_wddm_unspecified_vuln_lin.nasl?root=openvas-nvts&view=markup Oracle VM VirtualBox Graphics Driver(WDDM) Unspecified Vulnerability (Linux) r384 2014/gb_wordpress_uploader_mult_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_wordpress_uploader_mult_vuln.nasl?root=openvas-nvts&view=markup WordPress Uploader Plugin Multiple Vulnerabilities r384 2014/gb_oracle_virtualbox_wddm_unspecified_vuln_macosx.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_oracle_virtualbox_wddm_unspecified_vuln_macosx.nasl?root=openvas-nvts&view=markup Oracle VM VirtualBox Graphics Driver(WDDM) Unspecified Vulnerability (Mac OS X) r384 2014/gb_vtiger_crm_mult_sql_inj_vuln_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_vtiger_crm_mult_sql_inj_vuln_apr14.nasl?root=openvas-nvts&view=markup Vtiger CRM Multiple SQL Injection Vulnerabilities April-14 r384 2014/gb_oracle_virtualbox_wddm_unspecified_vuln_win.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_oracle_virtualbox_wddm_unspecified_vuln_win.nasl?root=openvas-nvts&view=markup Oracle VM VirtualBox Graphics Driver(WDDM) Unspecified Vulnerability (Win) r384 2014/gb_java_mult_vuln01_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_java_mult_vuln01_apr14.nasl?root=openvas-nvts&view=markup Oracle Java SE Multiple Vulnerabilities-01 Apr 2014 (Windows) r384 2014/gb_java_mult_vuln02_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_java_mult_vuln02_apr14.nasl?root=openvas-nvts&view=markup Oracle Java SE Multiple Vulnerabilities-02 Apr 2014 (Windows) r384 2014/gb_java_mult_vuln03_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_java_mult_vuln03_apr14.nasl?root=openvas-nvts&view=markup Oracle Java SE Multiple Vulnerabilities-03 Apr 2014 (Windows) r384 2014/gb_java_mult_vuln04_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_java_mult_vuln04_apr14.nasl?root=openvas-nvts&view=markup Oracle Java SE Multiple Vulnerabilities-04 Apr 2014 (Windows) r384 2014/gb_otrs_xss_n_clickjack_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_otrs_xss_n_clickjack_vuln.nasl?root=openvas-nvts&view=markup OTRS Help Desk Cross-Site Scripting and Clickjacking Vulnerabilities r384 2014/gb_horde_webmail_open_redirect_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_horde_webmail_open_redirect_vuln.nasl?root=openvas-nvts&view=markup Horde Webmail 'url' Parameter Open Redirect Vulnerability r384 gb_symantec_liveupdate_administrator_detect.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_symantec_liveupdate_administrator_detect.nasl?root=openvas-nvts&view=markup Symantec LiveUpdate Administrator Version Detection r384 2014/gb_symantec_liveupdate_administrator_mult_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_symantec_liveupdate_administrator_mult_vuln.nasl?root=openvas-nvts&view=markup Symantec LiveUpdate Administrator Multiple Vulnerabilities r384 2014/gb_vtiger_crm_mult_xss_vuln_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_vtiger_crm_mult_xss_vuln_apr14.nasl?root=openvas-nvts&view=markup Vtiger 'return_url' Parameter Multiple Cross Site Scripting Vulnerabilities r384 gb_mcafee_asset_manager_detect.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_mcafee_asset_manager_detect.nasl?root=openvas-nvts&view=markup McAfee Asset Manager Version Detection r384 2014/gb_vtiger_crm_mult_vuln_apr14.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_vtiger_crm_mult_vuln_apr14.nasl?root=openvas-nvts&view=markup Vtiger CRM Multiple Vulnerabilities April-14 r384 2014/gb_mcafee_asset_manager_mult_vuln.nasl https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_mcafee_asset_manager_mult_vuln.nasl?root=openvas-nvts&view=markup McAfee Asset Manager Multiple Vulnerabilities r384 gb_advantech_webaccess_detect.nasl https://wald.intevation.org/scm/viewvco.php/scripts/gb_advantech_webaccess_detect.nasl?root=openvas-nvts&view=markup Advantech WebAccess Version Detection _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: MSF: 2, Nessus: 26, OpenVAS: 41 New VA Module Alert Service (Apr 19)