New VA Modules: NSE: 5, OpenVAS: 30, MSF: 2, Nessus: 4

[New VA Module Alert Service <postmaster () insecure org>]

This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== Nmap Scripting Engine scripts (5) ==

r26797 amqp-info http://nmap.org/nsedoc/scripts/amqp-info.html
Gathers information from an AMQP server. It lists all of its server
properties.

r26802 openlookup-info http://nmap.org/nsedoc/scripts/openlookup-info.html
Connects to openlookup sync service and extracts information from the
handshake.

r26805 tftp-enum http://nmap.org/nsedoc/scripts/tftp-enum.html
Enumerates filenames at tftp server.

r26810 ganglia-info http://nmap.org/nsedoc/scripts/ganglia-info.html
Retrieves system information from a listening Ganglia Monitoring Daemon
or Ganglia Meta Daemon. Ganglia is a scalable distributed monitoring
system for high-performance computing systems such as clusters and
Grids. The information retrieved includes HDD size, available memory, OS
version, architecture (and more) from each of the systems in each of the
clusters in the grid.

r26814 http-cors http://nmap.org/nsedoc/scripts/http-cors.html
Tests an http server for Cross-Origin Resource Sharing.

== OpenVAS plugins (30) ==

r11726 863567 gb_fedora_2011_13467_galeon_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_galeon_fc14.nasl?root=openvas&view=markup
Fedora Update for galeon FEDORA-2011-13467

r11726 863559 gb_fedora_2011_13467_perl-Gtk2-MozEmbed_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_perl-Gtk2-MozEmbed_fc14.nasl?root=openvas&view=markup
Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-13467

r11726 802169 gb_mozilla_prdts_mult_vuln_win_oct11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_mult_vuln_win_oct11.nasl?root=openvas&view=markup
Mozilla Products Multiple Vulnerabilities - Oct 2011 (Windows)

r11726 802175 gb_mozilla_prdts_mult_vuln_win01_oct11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_mult_vuln_win01_oct11.nasl?root=openvas&view=markup
Mozilla Products Multiple Vulnerabilities - Oct 2011 (Windows 01)

r11726 801989 gb_codemeter_webadmin_boxserial_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_codemeter_webadmin_boxserial_xss_vuln.nasl?root=openvas&view=markup
CodeMeter WebAdmin 'Licenses.html' Cross Site Scripting Vulnerability

r11726 902479 secpod_tembria_server_mult_xss_n_info_disc_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_tembria_server_mult_xss_n_info_disc_vuln.nasl?root=openvas&view=markup
Tembria Server Multiple Cross-Site Scripting and Information Disclosure
Vulnerabilities

r11726 831457 gb_mandriva_MDVSA_2011_139.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2011_139.nasl?root=openvas&view=markup
Mandriva Update for firefox MDVSA-2011:139 (firefox)

r11726 863558 gb_fedora_2011_13467_mozvoikko_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_mozvoikko_fc14.nasl?root=openvas&view=markup
Fedora Update for mozvoikko FEDORA-2011-13467

r11726 802248 gb_wireshark_mult_dos_vuln_win_oct11.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wireshark_mult_dos_vuln_win_oct11.nasl?root=openvas&view=markup
Wireshark Multiple Denial of Service Vulnerabilities (Windows)

r11726 802171 gb_mozilla_prdts_browser_engine_mult_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_browser_engine_mult_vuln_win.nasl?root=openvas&view=markup
Mozilla Products Browser Engine Multiple Unspecified Vulnerabilities
(Windows)

r11726 802250 gb_wordpress_mult_themes_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wordpress_mult_themes_xss_vuln.nasl?root=openvas&view=markup
WordPress Multiple Themes 's' Parameter Cross Site Scripting
Vulnerabilities

r11726 802173 gb_mozilla_prdts_yarr_code_exec_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_yarr_code_exec_vuln_win.nasl?root=openvas&view=markup
Mozilla Products 'YARR' Code Execution Vulnerability (Windows)

r11726 802249 gb_wireshark_lua_script_code_exec_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wireshark_lua_script_code_exec_vuln_win.nasl?root=openvas&view=markup
Wireshark Lua Script File Arbitrary Code Execution Vulnerability
(Windows)

r11726 831458 gb_mandriva_MDVA_2011_045.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVA_2011_045.nasl?root=openvas&view=markup
Mandriva Update for nspluginwrapper MDVA-2011:045 (nspluginwrapper)

r11726 863566 gb_fedora_2011_13467_firefox_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_firefox_fc14.nasl?root=openvas&view=markup
Fedora Update for firefox FEDORA-2011-13467

r11726 863561 gb_fedora_2011_13236_perl-FCGI_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13236_perl-FCGI_fc14.nasl?root=openvas&view=markup
Fedora Update for perl-FCGI FEDORA-2011-13236

r11726 863568 gb_fedora_2011_13467_gnome-web-photo_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_gnome-web-photo_fc14.nasl?root=openvas&view=markup
Fedora Update for gnome-web-photo FEDORA-2011-13467

r11726 802176 gb_mozilla_prdts_load_subscript_sec_bypass_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_load_subscript_sec_bypass_vuln_win.nasl?root=openvas&view=markup
Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass
Vulnerability

r11726 802170 gb_mozilla_firefox_mem_corrpt_n_int_underflow_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_firefox_mem_corrpt_n_int_underflow_vuln_win.nasl?root=openvas&view=markup
Mozilla Firefox Memory Corruption and Integer Underflow Vulnerabilities
(Windows)

r11726 863563 gb_fedora_2011_13467_gnome-python2-extras_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_gnome-python2-extras_fc14.nasl?root=openvas&view=markup
Fedora Update for gnome-python2-extras FEDORA-2011-13467

r11726 802172 gb_mozilla_prdts_sec_bypass_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_sec_bypass_vuln_win.nasl?root=openvas&view=markup
Mozilla Products Same Origin Policy Bypass Vulnerability (Windows)

r11726 831456 gb_mandriva_MDVSA_2011_140.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2011_140.nasl?root=openvas&view=markup
Mandriva Update for mozilla-thunderbird MDVSA-2011:140
(mozilla-thunderbird)

r11726 802174 gb_mozilla_prdts_dialog_bypass_n_use_after_free_mem_crptn_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_dialog_bypass_n_use_after_free_mem_crptn_vuln_win.nasl?root=openvas&view=markup
Mozilla Products Enter Key Dialog Bypass and Use-After-Free Memory
Corruption Vulnerabilities (Windows)

r11726 863564 gb_fedora_2011_13235_drupal6-views_bulk_operations_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13235_drupal6-views_bulk_operations_fc14.nasl?root=openvas&view=markup
Fedora Update for drupal6-views_bulk_operations FEDORA-2011-13235

r11726 863565 gb_fedora_2011_13180_drupal6-views_bulk_operations_fc15.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13180_drupal6-views_bulk_operations_fc15.nasl?root=openvas&view=markup
Fedora Update for drupal6-views_bulk_operations FEDORA-2011-13180

r11726 840763 gb_ubuntu_USN_1223_1.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ubuntu_USN_1223_1.nasl?root=openvas&view=markup
Ubuntu Update for puppet USN-1223-1

r11726 863560 gb_fedora_2011_13230_perl-FCGI_fc15.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13230_perl-FCGI_fc15.nasl?root=openvas&view=markup
Fedora Update for perl-FCGI FEDORA-2011-13230

r11726 802251 gb_awstats_awredir_mult_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_awstats_awredir_mult_xss_vuln.nasl?root=openvas&view=markup
AWStats 'awredir.pl' Multiple Cross-Site Scripting Vulnerabilities

r11726 801988 gb_codemeter_webadmin_detect.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_codemeter_webadmin_detect.nasl?root=openvas&view=markup
CodeMeter WebAdmin Version Detection

r11726 863562 gb_fedora_2011_13467_xulrunner_fc14.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_fedora_2011_13467_xulrunner_fc14.nasl?root=openvas&view=markup
Fedora Update for xulrunner FEDORA-2011-13467

== Metasploit modules (2) ==

r13812 http://metasploit.com/redmine/projects/framework/repository/entry/modules/post/windows/gather/enum_domain.rb
Windows Gather Enumerate Domain

r13813 http://metasploit.com/redmine/projects/framework/repository/entry/modules/post/windows/manage/add_user_domain.rb
Windows Manage Add User to the Domain and/or to a Domain Group

== Nessus plugins (4) ==

56379 phpmyadmin_pmasa_2011_14.nasl
http://nessus.org/plugins/index.php?view=single&id=56379
phpMyAdmin 3.4.x < 3.4.5 Cross-site Scripting (PMASA-2011-14)

56378 symantec_im_mgr_8_4_18.nasl
http://nessus.org/plugins/index.php?view=single&id=56378
Symantec IM Manager < 8.4.18 Multiple Vulnerabilities (SYM11-012)

56377 macosx_firefox_7_0.nasl
http://nessus.org/plugins/index.php?view=single&id=56377
Firefox 6.x Multiple Vulnerabilities (Mac OS X)

56376 macosx_firefox_3_6_23.nasl
http://nessus.org/plugins/index.php?view=single&id=56376
Firefox 3.6 < 3.6.23 Multiple Vulnerabilities (Mac OS X)
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/