Nmap Development mailing list archives
New VA Modules: OpenVAS: 20, MSF: 1, Nessus: 14
From: New VA Module Alert Service <postmaster () insecure org>
Date: Thu, 8 Dec 2011 10:01:58 -0800 (PST)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == OpenVAS plugins (20) == r12277 103358 gb_wordpress_50921.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wordpress_50921.nasl?root=openvas&view=markup WordPress Pretty Link Plugin 'pretty-bar.php' Cross Site Scripting Vulnerability r12277 103359 gb_traq_50961.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_traq_50961.nasl?root=openvas&view=markup Traq 'authenticate()' Function Remote Code Execution Vulnerability r12278 802532 gb_oracle_appln_server_mult_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_appln_server_mult_unspecified_vuln.nasl?root=openvas&view=markup Oracle Application Server Multiple Unspecified Vulnerabilities r12278 802526 gb_oracle_database_n_appln_server_mult_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_n_appln_server_mult_unspecified_vuln.nasl?root=openvas&view=markup Oracle Database Server and Application Server Multiple Unspecified Vulnerabilities r12278 802405 gb_ipswitch_tftp_server_dir_trav_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ipswitch_tftp_server_dir_trav_vuln.nasl?root=openvas&view=markup Ipswitch TFTP Server Directory Traversal Vulnerability r12278 802535 gb_joomla_com_com_bfquiztrial_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_joomla_com_com_bfquiztrial_sql_inj_vuln.nasl?root=openvas&view=markup Joomla 'BF Quiz' Component 'catid' Parameter SQL Injection Vulnerability r12278 802527 gb_oracle_database_mult_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_mult_unspecified_vuln.nasl?root=openvas&view=markup Oracle Database Server Multiple Unspecified Vulnerabilities r12278 802528 gb_oracle_database_mult_unspecified_vuln_jan08.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_mult_unspecified_vuln_jan08.nasl?root=openvas&view=markup Oracle Database Server Multiple Unspecified Vulnerabilities - Jan 08 r12278 802539 gb_oracle_database_server_rdbms_dos_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_rdbms_dos_vuln.nasl?root=openvas&view=markup Oracle Database Server 'RDBMS' component Denial of Service Vulnerability r12278 802519 gb_oracle_database_server_upgrade_n_downgrade_comp_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_upgrade_n_downgrade_comp_mult_vuln.nasl?root=openvas&view=markup Oracle Database Server Upgrade and Downgrade Component Multiple Vulnerabilities r12278 802524 gb_oracle_database_n_appln_server_ultra_serach_comp_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_n_appln_server_ultra_serach_comp_unspecified_vuln.nasl?root=openvas&view=markup Oracle Database Server and Application Server Ultra Search Component Unspecified Vulnerability r12278 802407 gb_sshd_challenge_resp_authentication_bof_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_sshd_challenge_resp_authentication_bof_vuln.nasl?root=openvas&view=markup OpenSSH 'sshd' Challenge Response Authentication Buffer Overflow Vulnerability r12278 802523 gb_oracle_database_server_mdsys_md_bof_n_dos_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_mdsys_md_bof_n_dos_vuln.nasl?root=openvas&view=markup Oracle Database Server MDSYS.MD Buffer Overflows and Denial of Service Vulnerabilities r12278 802525 gb_oracle_database_n_appln_server_pl_sql_cmd_exec_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_n_appln_server_pl_sql_cmd_exec_vuln.nasl?root=openvas&view=markup Oracle Database Server and Application Server Multiple Unspecified Vulnerabilities r12278 802538 gb_oracle_database_server_mult_vuln_apr06.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_mult_vuln_apr06.nasl?root=openvas&view=markup Oracle Database Server Multiple Unspecified Vulnerabilities - April 06 r12278 802521 gb_oracle_database_server_mult_vuln_july06.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_mult_vuln_july06.nasl?root=openvas&view=markup Oracle Database Server Multiple Vulnerabilities - July 06 r12278 802351 gb_xoops_text_param_mult_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_xoops_text_param_mult_xss_vuln.nasl?root=openvas&view=markup XOOPS 'text' and 'message' Parameter Cross-Site Scripting Vulnerabilities r12278 802520 gb_oracle_database_server_mult_vuln_oct06.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_mult_vuln_oct06.nasl?root=openvas&view=markup Oracle Database Server Multiple Vulnerabilities - Oct 06 r12278 802522 gb_oracle_database_server_mult_comp_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_database_server_mult_comp_mult_vuln.nasl?root=openvas&view=markup Oracle Database Server Multiple Components Multiple Vulnerabilities r12278 802531 gb_oracle_appln_server_unspecified_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_oracle_appln_server_unspecified_vuln.nasl?root=openvas&view=markup Oracle Application Server Unspecified Vulnerability == Metasploit modules (1) == r14374 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/yaws_traversal.rb Yaws Web Server Directory Traversal == Nessus plugins (14) == 57048 ubuntu_USN-1290-1.nasl http://nessus.org/plugins/index.php?view=single&id=57048 USN-1290-1 : krb5 vulnerability 57047 ubuntu_USN-1289-1.nasl http://nessus.org/plugins/index.php?view=single&id=57047 USN-1289-1 : colord vulnerability 57046 mandriva_MDVSA-2011-181.nasl http://nessus.org/plugins/index.php?view=single&id=57046 MDVSA-2011:181 : proftpd 57045 freebsd_pkg_93be487e211f11e189b4001ec9578670.nasl http://nessus.org/plugins/index.php?view=single&id=57045 FreeBSD : isc-dhcp-server -- Remote DoS (93be487e-211f-11e1-89b4-001ec9578670) 57044 macosx_adobe_reader_apsa11-04.nasl http://nessus.org/plugins/index.php?view=single&id=57044 Adobe Reader <= 10.1.1 / 9.4.6 U3D Memory Corruption (APSA11-04) (Mac OS X) 57043 adobe_reader_apsa11-04.nasl http://nessus.org/plugins/index.php?view=single&id=57043 Adobe Reader <= 10.1.1 / 9.4.6 U3D Memory Corruption (APSA11-04) 57042 adobe_acrobat_apsa11-04.nasl http://nessus.org/plugins/index.php?view=single&id=57042 Adobe Acrobat <= 10.1.1 / 9.4.6 U3D Memory Corruption (APSA11-04) 57041 ssl_pfs_supported_ciphers.nasl http://nessus.org/plugins/index.php?view=single&id=57041 SSL Perfect Forward Secrecy Cipher Suites Supported 57040 weblogic_cr380519.nasl http://nessus.org/plugins/index.php?view=single&id=57040 Oracle WebLogic Server Web Services Security Policy not Enforced (CVE-2008-5459) 57039 opera_1160.nasl http://nessus.org/plugins/index.php?view=single&id=57039 Opera < 11.60 Multiple Vulnerabilities 57038 ubuntu_USN-1288-1.nasl http://nessus.org/plugins/index.php?view=single&id=57038 USN-1288-1 : vsftpd vulnerability 57037 redhat-RHSA-2011-1791.nasl http://nessus.org/plugins/index.php?view=single&id=57037 RHSA-2011-1791: squid 57036 redhat-RHSA-2011-1790.nasl http://nessus.org/plugins/index.php?view=single&id=57036 RHSA-2011-1790: krb5-debuginfo daily_badip2.inc _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: OpenVAS: 20, MSF: 1, Nessus: 14 New VA Module Alert Service (Dec 08)