Nmap Development mailing list archives
New VA Modules: OpenVAS: 20, Nessus: 23
From: New VA Module Alert Service <postmaster () insecure org>
Date: Fri, 9 Sep 2011 10:01:54 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == OpenVAS plugins (20) == r11593 103247 gb_openssh_49473.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_openssh_49473.nasl?root=openvas&view=markup OpenSSH Ciphersuite Specification Information Disclosure Weakness r11593 103248 gb_tomcat_48667.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_tomcat_48667.nasl?root=openvas&view=markup Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability r11594 801977 gb_ibm_was_admin_console_dir_trav_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ibm_was_admin_console_dir_trav_vuln.nasl?root=openvas&view=markup IBM WebSphere Application Server Administration Directory Traversal Vulnerability r11594 802152 gb_mozilla_prdts_sec_bypass_n_info_disc_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_sec_bypass_n_info_disc_vuln_win.nasl?root=openvas&view=markup Mozilla Products Information Disclosure and Security Bypass Vulnerabilities (Windows) r11594 802333 gb_opera_extented_validation_info_disc_vuln_macosx.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_opera_extented_validation_info_disc_vuln_macosx.nasl?root=openvas&view=markup Opera Extended Validation Information Disclosure Vulnerabilities (Mac OS X) r11594 801981 gb_xadataface_webauction_n_librariandb_mult_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_xadataface_webauction_n_librariandb_mult_vuln.nasl?root=openvas&view=markup Xataface WebAuction and Xataface Librarian DB Multiple Vulnerabilities r11594 802150 gb_mozilla_prdts_mult_vuln_sep11_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_mult_vuln_sep11_win.nasl?root=openvas&view=markup Mozilla Products Multiple Vulnerabilities (Windows) r11594 802332 gb_opera_extented_validation_info_disc_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_opera_extented_validation_info_disc_vuln_win.nasl?root=openvas&view=markup Opera Extended Validation Information Disclosure Vulnerabilities (Windows) r11594 802151 gb_mozilla_prdts_mult_vuln_sep11_win01.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_mult_vuln_sep11_win01.nasl?root=openvas&view=markup Mozilla Products Multiple Vulnerabilities - Sep 11 (Windows) r11594 801974 gb_search_network_xss_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_search_network_xss_vuln.nasl?root=openvas&view=markup Search Network 'search.php' Cross Site Scripting Vulnerability r11594 802153 gb_mozilla_prdts_mult_vuln_sep11_win02.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_mult_vuln_sep11_win02.nasl?root=openvas&view=markup Mozilla Products Multiple Vulnerabilities - Sep 11 (Windows) r11594 902725 secpod_nfs_rpc_statd_mult_format_string_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_nfs_rpc_statd_mult_format_string_vuln.nasl?root=openvas&view=markup Nfs-utils rpc.statd Multiple Remote Format String Vulnerabilities r11594 802147 gb_mozilla_prdts_svg_code_exec_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_prdts_svg_code_exec_vuln_win.nasl?root=openvas&view=markup Mozilla Products 'SVG' Code Execution Vulnerability (Windows) r11594 802157 gb_myre_real_estate_mult_xss_n_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_myre_real_estate_mult_xss_n_sql_inj_vuln.nasl?root=openvas&view=markup MYRE Real Estate Software Multiple XSS and SQL Injection Vulnerabilities r11594 802154 gb_kmplayer_kpl_file_bof_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_kmplayer_kpl_file_bof_vuln.nasl?root=openvas&view=markup KMPlayer '.kpl' File 'Title' Field Remote Buffer Overflow Vulnerability r11594 802149 gb_mozilla_firefox_untrusted_search_path_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_mozilla_firefox_untrusted_search_path_vuln_win.nasl?root=openvas&view=markup Mozilla Firefox Untrusted Search Path Vulnerability (Windows) r11594 802331 gb_pidgin_libpurple_protocol_plugins_dos_vuln_win.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_pidgin_libpurple_protocol_plugins_dos_vuln_win.nasl?root=openvas&view=markup Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities (Win) r11594 801980 gb_myauth3_gateway_blind_sql_inj_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_myauth3_gateway_blind_sql_inj_vuln.nasl?root=openvas&view=markup MyAuth3 Gateway 'pass' Parameter SQL Injection Vulnerability r11594 801975 gb_ms_win_fraudulent_digital_cert_spoofing_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_ms_win_fraudulent_digital_cert_spoofing_vuln.nasl?root=openvas&view=markup Fraudulent Digital Certificates Spoofing Vulnerability (2607712) r11594 801976 gb_hp_sitescope_xss_n_session_fixation_vuln.nasl http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_hp_sitescope_xss_n_session_fixation_vuln.nasl?root=openvas&view=markup HP SiteScope Cross-Site Scripting and Session Fixation Vulnerabilities == Nessus plugins (23) == 56140 ubuntu_USN-1197-5.nasl http://nessus.org/plugins/index.php?view=single&id=56140 USN-1197-5 : ca-certificates vulnerability 56139 ubuntu_USN-1197-4.nasl http://nessus.org/plugins/index.php?view=single&id=56139 USN-1197-4 : nss vulnerability 56138 fedora_2011-11854.nasl http://nessus.org/plugins/index.php?view=single&id=56138 Fedora 14 2011-11854 56137 fedora_2011-11825.nasl http://nessus.org/plugins/index.php?view=single&id=56137 Fedora 14 2011-11825 56136 fedora_2011-11823.nasl http://nessus.org/plugins/index.php?view=single&id=56136 Fedora 15 2011-11823 56135 fedora_2011-11817.nasl http://nessus.org/plugins/index.php?view=single&id=56135 Fedora 15 2011-11817 56134 fedora_2011-11805.nasl http://nessus.org/plugins/index.php?view=single&id=56134 Fedora 14 2011-11805 56133 fedora_2011-11756.nasl http://nessus.org/plugins/index.php?view=single&id=56133 Fedora 15 2011-11756 56132 fedora_2011-11318.nasl http://nessus.org/plugins/index.php?view=single&id=56132 Fedora 14 2011-11318 56131 fedora_2011-11305.nasl http://nessus.org/plugins/index.php?view=single&id=56131 Fedora 15 2011-11305 56130 debian_DSA-2303.nasl http://nessus.org/plugins/index.php?view=single&id=56130 [DSA2303] DSA-2303-1 linux-2.6 56129 centos_RHSA-2011-1268.nasl http://nessus.org/plugins/index.php?view=single&id=56129 CentOS : RHSA-2011-1268 56128 centos_RHSA-2011-1267.nasl http://nessus.org/plugins/index.php?view=single&id=56128 CentOS : RHSA-2011-1267 56127 centos_RHSA-2011-1266.nasl http://nessus.org/plugins/index.php?view=single&id=56127 CentOS : RHSA-2011-1266 56126 centos_RHSA-2011-1264.nasl http://nessus.org/plugins/index.php?view=single&id=56126 CentOS : RHSA-2011-1264 56125 google_chrome_13_0_782_220.nasl http://nessus.org/plugins/index.php?view=single&id=56125 Google Chrome < 13.0.782.220 Untrusted CA 56124 smb_kb2607712.nasl http://nessus.org/plugins/index.php?view=single&id=56124 MS KB2607712: Fraudulent Digital Certificates Could Allow Spoofing 56123 seamonkey_233.nasl http://nessus.org/plugins/index.php?view=single&id=56123 SeaMonkey 2.x < 2.3.3 Untrusted CA 56122 mozilla_thunderbird_602.nasl http://nessus.org/plugins/index.php?view=single&id=56122 Mozilla Thunderbird 6.x < 6.0.2 Untrusted CA 56121 mozilla_thunderbird_3114.nasl http://nessus.org/plugins/index.php?view=single&id=56121 Mozilla Thunderbird 3.1.x < 3.1.14 Untrusted CA 56120 mozilla_firefox_602.nasl http://nessus.org/plugins/index.php?view=single&id=56120 Firefox 6.x < 6.0.2 Untrusted CA 56119 mozilla_firefox_3622.nasl http://nessus.org/plugins/index.php?view=single&id=56119 Firefox 3.6.x < 3.6.22 Untrusted CA 56049 forticlient_3_0_616.nasl http://nessus.org/plugins/index.php?view=single&id=56049 FortiClient Crafted VPN Connection Name Handling Local Format String _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: OpenVAS: 20, Nessus: 23 New VA Module Alert Service (Sep 09)