Nmap Development mailing list archives
New VA Modules: NSE: 1, OpenVAS: 18, Nessus: 11
From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 1 Jul 2011 10:01:37 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (1) == r24522 ftp-vuln-cve2010-4221 http://nmap.org/nsedoc/scripts/ftp-vuln-cve2010-4221.html Checks for a stack-based buffer overflow in the ProFTPD server, version between 1.3.2rc3 and 1.3.3b. By sending a large number of TELNET_IAC escape sequence, the proftpd process miscalculates the buffer length, and a remote attacker will be able to corrupt the stack and execute arbitrary code within the context of the proftpd process (CVE-2010-4221). Authentication is not required to exploit this vulnerability. == OpenVAS plugins (18) == r11266 802110 gb_adobe_prdts_mult_bof_vuln_jun11_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_adobe_prdts_mult_bof_vuln_jun11_win.nasl?root=openvas&view=markup Adobe Reader and Acrobat Multiple BOF Vulnerabilities June-2011 (Windows) r11266 902602 secpod_cubecart_mult_xss_and_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_cubecart_mult_xss_and_sql_inj_vuln.nasl?root=openvas&view=markup CubeCart Multiple XSS and SQL Injection Vulnerability r11266 902453 secpod_smallftpd_mult_requests_dos_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_smallftpd_mult_requests_dos_vuln.nasl?root=openvas&view=markup Smallftpd FTP Server Multiple Requests Denial of Service Vulnerability r11266 902531 secpod_hp_data_protector_unspecified_remote_code_exec_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_hp_data_protector_unspecified_remote_code_exec_vuln.nasl?root=openvas&view=markup HP OpenView Storage Data Protector Unspecified Remote Code Execution Vulnerability r11266 902532 secpod_sgx-sp_final_mult_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_sgx-sp_final_mult_xss_vuln.nasl?root=openvas&view=markup SGX-SP Final 'shop.cgi' Multiple Cross Site Scripting Vulnerabilities r11266 902452 secpod_sitemagic_cms_dir_traversal_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_sitemagic_cms_dir_traversal_vuln.nasl?root=openvas&view=markup Sitemagic CMS 'SMTpl' Parameter Directory Traversal Vulnerability r11266 902393 secpod_google_chrome_mult_vuln_lin_jun11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_google_chrome_mult_vuln_lin_jun11.nasl?root=openvas&view=markup Google Chrome Multiple Vulnerabilities (Linux) - June 11 r11266 902390 secpod_joomla_mult_xss_vuln_jun11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_joomla_mult_xss_vuln_jun11.nasl?root=openvas&view=markup Joomla! CMS Multiple Cross Site Scripting Vulnerabilities r11266 902604 secpod_vlc_media_player_xspf_int_overflow_vuln_lin.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_vlc_media_player_xspf_int_overflow_vuln_lin.nasl?root=openvas&view=markup VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Linux) r11266 902605 secpod_foxit_reader_freetype_engine_int_overflow_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_foxit_reader_freetype_engine_int_overflow_vuln.nasl?root=openvas&view=markup Foxit Reader Freetype Engine Integer Overflow Vulnerability r11266 902454 secpod_hp_data_protector_mult_code_exec_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_hp_data_protector_mult_code_exec_vuln.nasl?root=openvas&view=markup HP Data Protector Multiple Remote Code Execution Vulnerabilities r11266 902392 secpod_google_chrome_mult_vuln_win_jun11.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_google_chrome_mult_vuln_win_jun11.nasl?root=openvas&view=markup Google Chrome Multiple Vulnerabilities (Windows) - June 11 r11266 902530 secpod_activdesk_mult_xss_n_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_activdesk_mult_xss_n_sql_inj_vuln.nasl?root=openvas&view=markup ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities r11266 902606 secpod_php_sapi_post_handle_security_bypass_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_php_sapi_post_handle_security_bypass_vuln_win.nasl?root=openvas&view=markup PHP SAPI_POST_HANDLER_FUNC() Security Bypass Vulnerability r11266 902391 secpod_docmgr_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_docmgr_xss_vuln.nasl?root=openvas&view=markup DocMGR Cross Site Scripting Vulnerability r11266 902603 secpod_vlc_media_player_xspf_int_overflow_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_vlc_media_player_xspf_int_overflow_vuln_win.nasl?root=openvas&view=markup VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Windows) r11266 902600 secpod_php_nuke_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_php_nuke_mult_vuln.nasl?root=openvas&view=markup PHP-Nuke Multiple Vulnerabilities r11266 902387 secpod_adobe_prdts_sec_bypass_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_adobe_prdts_sec_bypass_vuln_win.nasl?root=openvas&view=markup Adobe Reader/Acrobat Security Bypass Vulnerability (Windows) == Nessus plugins (11) == 55471 novell_file_reporter_engine_1_0_2_53.nasl http://nessus.org/plugins/index.php?view=single&id=55471 Novell File Reporter Engine RECORD Element Tag Parsing Overflow 55470 opera_1150.nasl http://nessus.org/plugins/index.php?view=single&id=55470 Opera < 11.50 Multiple Vulnerabilities 55469 ubuntu_USN-1149-2.nasl http://nessus.org/plugins/index.php?view=single&id=55469 USN-1149-2 : firefox regression 55468 suse_kernel-7568.nasl http://nessus.org/plugins/index.php?view=single&id=55468 SuSE Security Update: Security update for Linux kernel (kernel-7568) 55467 suse_11_perl-Config-General-090221.nasl http://nessus.org/plugins/index.php?view=single&id=55467 SuSE Security Update: perl-Config-General (2009-02-21) 55466 fedora_2011-8494.nasl http://nessus.org/plugins/index.php?view=single&id=55466 Fedora 15 2011-8494 55465 fedora_2011-8437.nasl http://nessus.org/plugins/index.php?view=single&id=55465 Fedora 14 2011-8437 55464 fedora_2011-8421.nasl http://nessus.org/plugins/index.php?view=single&id=55464 Fedora 15 2011-8421 55463 fedora_2011-8415.nasl http://nessus.org/plugins/index.php?view=single&id=55463 Fedora 15 2011-8415 55462 fedora_2011-8405.nasl http://nessus.org/plugins/index.php?view=single&id=55462 Fedora 14 2011-8405 55461 fedora_2011-8403.nasl http://nessus.org/plugins/index.php?view=single&id=55461 Fedora 14 2011-8403 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 1, OpenVAS: 18, Nessus: 11 New VA Module Alert Service (Jul 01)