New VA Modules: OpenVAS: 13, MSF: 2, Nessus: 9

[New VA Module Alert Service <postmaster () insecure org>]

This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== OpenVAS plugins (13) ==

r12844 gb_snmp_os_detection.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_snmp_os_detection.nasl?root=openvas&view=markup
SNMP OS Identification

r12873 802592 gb_mozilla_prdts_xbl_bind_mem_crptn_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_xbl_bind_mem_crptn_vuln_win.nasl?root=openvas&view=markup
Mozilla Products XBL Binding Memory Corruption Vulnerability - (Windows)

r12873 802395 gb_opera_large_int_arg_dos_vuln_win.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_opera_large_int_arg_dos_vuln_win.nasl?root=openvas&view=markup
Opera Large Integer Argument Denial of Service Vulnerability (Windows)

r12873 802424 gb_manageengine_applications_manager_mult_xss_n_sql_inj_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_manageengine_applications_manager_mult_xss_n_sql_inj_vuln.nasl?root=openvas&view=markup
Zoho ManageEngine Applications Manager Multiple XSS and SQL Injection
Vulnerabilities

r12873 802393 gb_final_draft_file_parsing_mult_bof_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_final_draft_file_parsing_mult_bof_vuln.nasl?root=openvas&view=markup
Final Draft Script File Parsing Multiple Buffer Overflow Vulnerabilities

r12873 802586 gb_phux_download_manager_sql_inj_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_phux_download_manager_sql_inj_vuln.nasl?root=openvas&view=markup
phux Download Manager 'file' Parameter SQL Injection Vulnerability

r12873 802576 gb_irfanview_jpeg2000_bof_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_irfanview_jpeg2000_bof_vuln.nasl?root=openvas&view=markup
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow
Vulnerability

r12873 802399 gb_adobe_shockwave_player_mult_vuln_macosx_feb12.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_adobe_shockwave_player_mult_vuln_macosx_feb12.nasl?root=openvas&view=markup
Adobe Shockwave Player Multiple Vulnerabilities - Feb 2012 (MAC OS X)

r12873 802394 gb_brainkeeper_enterprise_wiki_search_xss_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_brainkeeper_enterprise_wiki_search_xss_vuln.nasl?root=openvas&view=markup
Brainkeeper Enterprise Wiki 'search.php' Cross-Site Scripting
Vulnerability

r12873 802398 gb_adobe_shockwave_player_mult_vuln_win_feb12.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_adobe_shockwave_player_mult_vuln_win_feb12.nasl?root=openvas&view=markup
Adobe Shockwave Player Multiple Vulnerabilities - Feb 2012 (Windows)

r12873 802392 gb_macosx_su12-001.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_macosx_su12-001.nasl?root=openvas&view=markup
Mac OS X Multiple Vulnerabilities (2012-001)

r12873 802593 gb_mozilla_prdts_xbl_bind_mem_crptn_vuln_macosx.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_xbl_bind_mem_crptn_vuln_macosx.nasl?root=openvas&view=markup
Mozilla Products XBL Binding Memory Corruption Vulnerability - (MAC OS
X)

r12873 802396 gb_opera_large_int_arg_dos_vuln_macosx.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_opera_large_int_arg_dos_vuln_macosx.nasl?root=openvas&view=markup
Opera Large Integer Argument Denial of Service Vulnerability (Mac OS X)

== Metasploit modules (2) ==

r14732 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/horde_href_backdoor.rb
Horde 3.3.12 Backdoor Arbitrary PHP Code Execution

r14734 http://metasploit.com/redmine/projects/framework/repository/entry/modules/post/windows/escalate/droplnk.rb
SMB Icon LNK dropper

== Nessus plugins (9) ==

57981 oracle_webcenter_content_idcplg_xss.nasl
http://nessus.org/plugins/index.php?view=single&id=57981
Oracle WebCenter Content idc/idcplg Multiple Parameter XSS

57980 oracle_webcenter_content_idcplg_sql_injection.nasl
http://nessus.org/plugins/index.php?view=single&id=57980
Oracle WebCenter Content 'GET_SEARCH_RESULTS' SQL Injection

57979 oracle_webcenter_content_help_xss.nasl
http://nessus.org/plugins/index.php?view=single&id=57979
Oracle WebCenter Content Help Component Cross-Site Scripting

57978 oracle_webcenter_content_default_credentials.nasl
http://nessus.org/plugins/index.php?view=single&id=57978
Oracle WebCenter Content Default Administration Credentials

57977 oracle_webcenter_content_detect.nasl
http://nessus.org/plugins/index.php?view=single&id=57977
Oracle WebCenter Content Detection

57976 kayako_3_multiple_vulns.nasl
http://nessus.org/plugins/index.php?view=single&id=57976
Kayako SupportSuite 3.x <= 3.70.02 Multiple Vulnerabilities

57975 kayako_supportsuite_detect.nasl
http://nessus.org/plugins/index.php?view=single&id=57975
Kayako SupportSuite Detection

57974 google_chrome_17_0_963_56.nasl
http://nessus.org/plugins/index.php?view=single&id=57974
Google Chrome < 17.0.963.56 Multiple Vulnerabilities

56824 smb_kb2506014.nasl
http://nessus.org/plugins/index.php?view=single&id=56824
MS KB2506014: Update for the Windows Operating System Loader
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/