Nmap Development mailing list archives
New VA Modules: NSE: 2, MSF: 2, Nessus: 14
From: New VA Module Alert Service <postmaster () insecure org>
Date: Thu, 31 Oct 2013 10:00:16 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Nmap Scripting Engine scripts (2) == r32479 weblogic-t3-info http://nmap.org/nsedoc/scripts/weblogic-t3-info.html https://svn.nmap.org/nmap/scripts/weblogic-t3-info.nse Author: Alessandro ZANNI <alessandro.zanni () bt com> and Daniel Miller Detect the T3 RMI protocol and Weblogic version r32480 http-iis-short-name-brute http://nmap.org/nsedoc/scripts/http-iis-short-name-brute.html https://svn.nmap.org/nmap/scripts/http-iis-short-name-brute.nse Vulnerable IIS servers disclose folder and file names with a Windows 8.3 naming scheme inside the root folder. Shortnames can be used to guess or brute force sensitive filenames. Attackers can exploit this vulnerability to cause a denial of service condition. == Metasploit modules (2) == ea7bba40 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/beetel_netconfig_ini_bof.rb Beetel Connection Manager NetConfig.ini Buffer Overflow 3eed800b https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/processmaker_exec.rb ProcessMaker Open Source Authenticated PHP Code Execution == Nessus plugins (14) == 70698 ubuntu_USN-2009-1.nasl http://nessus.org/plugins/index.php?view=single&id=70698 Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : firefox vulnerabilities (USN-2009-1) 70697 redhat-RHSA-2013-1476.nasl http://nessus.org/plugins/index.php?view=single&id=70697 RHEL 5 / 6 : firefox (RHSA-2013-1476) 70696 redhat-RHSA-2013-1475.nasl http://nessus.org/plugins/index.php?view=single&id=70696 RHEL 5 / 6 : postgresql and postgresql84 (RHSA-2013-1475) 70695 redhat-RHSA-2013-1474.nasl http://nessus.org/plugins/index.php?view=single&id=70695 RHEL 5 : qspice (RHSA-2013-1474) 70694 redhat-RHSA-2013-1473.nasl http://nessus.org/plugins/index.php?view=single&id=70694 RHEL 6 : spice-server (RHSA-2013-1473) 70693 oraclelinux_ELSA-2013-1476.nasl http://nessus.org/plugins/index.php?view=single&id=70693 Oracle Linux 6 : firefox (ELSA-2013-1476) 70692 oraclelinux_ELSA-2013-1475.nasl http://nessus.org/plugins/index.php?view=single&id=70692 Oracle Linux 5 / 6 : postgresql / postgresql84 (ELSA-2013-1475) 70691 oraclelinux_ELSA-2013-1474.nasl http://nessus.org/plugins/index.php?view=single&id=70691 Oracle Linux 5 : qspice (ELSA-2013-1474) 70690 oraclelinux_ELSA-2013-1473.nasl http://nessus.org/plugins/index.php?view=single&id=70690 Oracle Linux 6 : spice-server (ELSA-2013-1473) 70689 mandriva_MDVSA-2013-263.nasl http://nessus.org/plugins/index.php?view=single&id=70689 Mandriva Linux Security Advisory : roundcubemail (MDVSA-2013:263) 70688 centos_RHSA-2013-1476.nasl http://nessus.org/plugins/index.php?view=single&id=70688 CentOS 5 / 6 : firefox (CESA-2013:1476) 70687 centos_RHSA-2013-1475.nasl http://nessus.org/plugins/index.php?view=single&id=70687 CentOS 5 / 6 : postgresql / postgresql84 (CESA-2013:1475) 70686 centos_RHSA-2013-1474.nasl http://nessus.org/plugins/index.php?view=single&id=70686 CentOS 5 : qspice (CESA-2013:1474) 70685 centos_RHSA-2013-1473.nasl http://nessus.org/plugins/index.php?view=single&id=70685 CentOS 6 : spice-server (CESA-2013:1473) _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 2, MSF: 2, Nessus: 14 New VA Module Alert Service (Oct 31)