Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

New VA Modules: NSE: 1, OpenVAS: 18, Nessus: 11

From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 1 Jul 2011 10:01:37 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== Nmap Scripting Engine scripts (1) ==

r24522 ftp-vuln-cve2010-4221 http://nmap.org/nsedoc/scripts/ftp-vuln-cve2010-4221.html
Checks for a stack-based buffer overflow in the ProFTPD server, version
between 1.3.2rc3 and 1.3.3b. By sending a large number of TELNET_IAC
escape sequence, the proftpd process miscalculates the buffer length,
and a remote attacker will be able to corrupt the stack and execute
arbitrary code within the context of the proftpd process
(CVE-2010-4221). Authentication is not required to exploit this
vulnerability.

== OpenVAS plugins (18) ==

r11266 802110 gb_adobe_prdts_mult_bof_vuln_jun11_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_adobe_prdts_mult_bof_vuln_jun11_win.nasl?root=openvas&view=markup
Adobe Reader and Acrobat Multiple BOF Vulnerabilities June-2011
(Windows)

r11266 902602 secpod_cubecart_mult_xss_and_sql_inj_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_cubecart_mult_xss_and_sql_inj_vuln.nasl?root=openvas&view=markup
CubeCart Multiple XSS and SQL Injection Vulnerability

r11266 902453 secpod_smallftpd_mult_requests_dos_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_smallftpd_mult_requests_dos_vuln.nasl?root=openvas&view=markup
Smallftpd FTP Server Multiple Requests Denial of Service Vulnerability

r11266 902531 secpod_hp_data_protector_unspecified_remote_code_exec_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_hp_data_protector_unspecified_remote_code_exec_vuln.nasl?root=openvas&view=markup
HP OpenView Storage Data Protector Unspecified Remote Code Execution
Vulnerability

r11266 902532 secpod_sgx-sp_final_mult_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_sgx-sp_final_mult_xss_vuln.nasl?root=openvas&view=markup
SGX-SP Final 'shop.cgi' Multiple Cross Site Scripting Vulnerabilities

r11266 902452 secpod_sitemagic_cms_dir_traversal_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_sitemagic_cms_dir_traversal_vuln.nasl?root=openvas&view=markup
Sitemagic CMS 'SMTpl' Parameter Directory Traversal Vulnerability

r11266 902393 secpod_google_chrome_mult_vuln_lin_jun11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_google_chrome_mult_vuln_lin_jun11.nasl?root=openvas&view=markup
Google Chrome Multiple Vulnerabilities (Linux) - June 11

r11266 902390 secpod_joomla_mult_xss_vuln_jun11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_joomla_mult_xss_vuln_jun11.nasl?root=openvas&view=markup
Joomla! CMS Multiple Cross Site Scripting Vulnerabilities

r11266 902604 secpod_vlc_media_player_xspf_int_overflow_vuln_lin.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_vlc_media_player_xspf_int_overflow_vuln_lin.nasl?root=openvas&view=markup
VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Linux)

r11266 902605 secpod_foxit_reader_freetype_engine_int_overflow_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_foxit_reader_freetype_engine_int_overflow_vuln.nasl?root=openvas&view=markup
Foxit Reader Freetype Engine Integer Overflow Vulnerability

r11266 902454 secpod_hp_data_protector_mult_code_exec_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_hp_data_protector_mult_code_exec_vuln.nasl?root=openvas&view=markup
HP Data Protector Multiple Remote Code Execution Vulnerabilities

r11266 902392 secpod_google_chrome_mult_vuln_win_jun11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_google_chrome_mult_vuln_win_jun11.nasl?root=openvas&view=markup
Google Chrome Multiple Vulnerabilities (Windows) - June 11

r11266 902530 secpod_activdesk_mult_xss_n_sql_inj_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_activdesk_mult_xss_n_sql_inj_vuln.nasl?root=openvas&view=markup
ActivDesk Multiple Cross Site Scripting and SQL Injection
Vulnerabilities

r11266 902606 secpod_php_sapi_post_handle_security_bypass_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_php_sapi_post_handle_security_bypass_vuln_win.nasl?root=openvas&view=markup
PHP SAPI_POST_HANDLER_FUNC() Security Bypass Vulnerability

r11266 902391 secpod_docmgr_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_docmgr_xss_vuln.nasl?root=openvas&view=markup
DocMGR Cross Site Scripting Vulnerability

r11266 902603 secpod_vlc_media_player_xspf_int_overflow_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_vlc_media_player_xspf_int_overflow_vuln_win.nasl?root=openvas&view=markup
VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Windows)

r11266 902600 secpod_php_nuke_mult_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_php_nuke_mult_vuln.nasl?root=openvas&view=markup
PHP-Nuke Multiple Vulnerabilities

r11266 902387 secpod_adobe_prdts_sec_bypass_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_prdts_sec_bypass_vuln_win.nasl?root=openvas&view=markup
Adobe Reader/Acrobat Security Bypass Vulnerability (Windows)

== Nessus plugins (11) ==

55471 novell_file_reporter_engine_1_0_2_53.nasl
http://nessus.org/plugins/index.php?view=single&id=55471
Novell File Reporter Engine RECORD Element Tag Parsing Overflow

55470 opera_1150.nasl
http://nessus.org/plugins/index.php?view=single&id=55470
Opera < 11.50 Multiple Vulnerabilities

55469 ubuntu_USN-1149-2.nasl
http://nessus.org/plugins/index.php?view=single&id=55469
USN-1149-2 : firefox regression

55468 suse_kernel-7568.nasl
http://nessus.org/plugins/index.php?view=single&id=55468
SuSE Security Update: Security update for Linux kernel (kernel-7568)

55467 suse_11_perl-Config-General-090221.nasl
http://nessus.org/plugins/index.php?view=single&id=55467
SuSE Security Update: perl-Config-General (2009-02-21)

55466 fedora_2011-8494.nasl
http://nessus.org/plugins/index.php?view=single&id=55466
Fedora 15 2011-8494

55465 fedora_2011-8437.nasl
http://nessus.org/plugins/index.php?view=single&id=55465
Fedora 14 2011-8437

55464 fedora_2011-8421.nasl
http://nessus.org/plugins/index.php?view=single&id=55464
Fedora 15 2011-8421

55463 fedora_2011-8415.nasl
http://nessus.org/plugins/index.php?view=single&id=55463
Fedora 15 2011-8415

55462 fedora_2011-8405.nasl
http://nessus.org/plugins/index.php?view=single&id=55462
Fedora 14 2011-8405

55461 fedora_2011-8403.nasl
http://nessus.org/plugins/index.php?view=single&id=55461
Fedora 14 2011-8403
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: