Nmap Development mailing list archives
New VA Modules: NSE: 5, MSF: 3, Nessus: 22
From: New VA Module Alert Service <postmaster () insecure org>
Date: Mon, 9 Apr 2012 10:00:23 -0700 (PDT)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == Nmap Scripting Engine scripts (5) == r28418 targets-ipv6-mld http://nmap.org/nsedoc/scripts/targets-ipv6-mld.html https://svn.nmap.org/nmap/scripts/targets-ipv6-mld.nse Sends an ICMPv6 packet with an invalid extension header to the all-nodes link-local multicast address ( ff02::1 ) to discover (some) available hosts on the LAN. This works because some hosts will respond to this probe with an ICMPv6 Parameter Problem packet. r28419 http-vlcstreamer-ls http://nmap.org/nsedoc/scripts/http-vlcstreamer-ls.html https://svn.nmap.org/nmap/scripts/http-vlcstreamer-ls.nse Connects to the VLC Streamer helper service and lists directory contents. The VLC Streamer helper service is used by the iOS VLC Streamer application to enable streaming of multimedia content from the remote server to the device. r28421 hostmap-robtex http://nmap.org/nsedoc/scripts/hostmap-robtex.html https://svn.nmap.org/nmap/scripts/hostmap-robtex.nse Tries to find hostnames that resolve to the target's IP address by querying the Robtex service at http://www.robtex.com/dns/. r28423 hostmap-bfk http://nmap.org/nsedoc/scripts/hostmap-bfk.html https://svn.nmap.org/nmap/scripts/hostmap-bfk.nse Tries to find hostnames that resolve to the target's IP address by querying the online database at http://www.bfk.de/bfk_dnslogger.html. r28425 targets-ipv6-multicast-mld http://nmap.org/nsedoc/scripts/targets-ipv6-multicast-mld.html https://svn.nmap.org/nmap/scripts/targets-ipv6-multicast-mld.nse Sends an MLD query with maximum response delay 0 to the to discover available hosts on the LAN. This works because hosts will respond to this probe with an MLD report packet and as maximum response delay is 0 nobody gets time to wait for others` report even in the same multicast group. == Metasploit modules (3) == r15080 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/linux/http/dolibarr_cmd_exec.rb Dolibarr ERP & CRM 3 Post-Auth OS Command Injection r15083 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/ids/snort_dce_rpc.rb Snort 2 DCE/RPC preprocessor Buffer Overflow r15086 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/dolibarr_login.rb Dolibarr ERP & CRM 3 Login Utility == Nessus plugins (22) == 58643 solaris10_147673.nasl http://nessus.org/plugins/index.php?view=single&id=58643 Solaris 10 (sparc) : 147673-02 58642 freebsd_pkg_493143217fd411e19582001b2134ef46.nasl http://nessus.org/plugins/index.php?view=single&id=58642 FreeBSD : mutt-devel -- failure to check SMTP TLS server certificate (49314321-7fd4-11e1-9582-001b2134ef46) 58641 freebsd_pkg_462e2d6c801711e1a571bcaec565249c.nasl http://nessus.org/plugins/index.php?view=single&id=58641 FreeBSD : freetype -- multiple vulnerabilities (462e2d6c-8017-11e1-a571-bcaec565249c) 58640 freebsd_pkg_262b92fe81c811e18899001ec9578670.nasl http://nessus.org/plugins/index.php?view=single&id=58640 FreeBSD : png -- memory corruption/possible remote code execution (262b92fe-81c8-11e1-8899-001ec9578670) 58639 fedora_2012-5432.nasl http://nessus.org/plugins/index.php?view=single&id=58639 Fedora 16 2012-5432 58638 fedora_2012-5094.nasl http://nessus.org/plugins/index.php?view=single&id=58638 Fedora 15 2012-5094 58637 fedora_2012-5080.nasl http://nessus.org/plugins/index.php?view=single&id=58637 Fedora 16 2012-5080 58636 fedora_2012-5079.nasl http://nessus.org/plugins/index.php?view=single&id=58636 Fedora 15 2012-5079 58635 fedora_2012-5078.nasl http://nessus.org/plugins/index.php?view=single&id=58635 Fedora 16 2012-5078 58634 fedora_2012-5068.nasl http://nessus.org/plugins/index.php?view=single&id=58634 Fedora 15 2012-5068 58633 fedora_2012-5035.nasl http://nessus.org/plugins/index.php?view=single&id=58633 Fedora 16 2012-5035 58632 fedora_2012-5026.nasl http://nessus.org/plugins/index.php?view=single&id=58632 Fedora 16 2012-5026 58631 fedora_2012-4997.nasl http://nessus.org/plugins/index.php?view=single&id=58631 Fedora 15 2012-4997 58630 fedora_2012-4988.nasl http://nessus.org/plugins/index.php?view=single&id=58630 Fedora 15 2012-4988 58629 fedora_2012-4963.nasl http://nessus.org/plugins/index.php?view=single&id=58629 Fedora 16 2012-4963 58628 fedora_2012-4960.nasl http://nessus.org/plugins/index.php?view=single&id=58628 Fedora 16 2012-4960 58627 fedora_2012-4342.nasl http://nessus.org/plugins/index.php?view=single&id=58627 Fedora 16 2012-4342 58626 fedora_2012-4308.nasl http://nessus.org/plugins/index.php?view=single&id=58626 Fedora 15 2012-4308 58625 fedora_2012-4291.nasl http://nessus.org/plugins/index.php?view=single&id=58625 Fedora 16 2012-4291 58624 fedora_2012-4268.nasl http://nessus.org/plugins/index.php?view=single&id=58624 Fedora 15 2012-4268 58623 fedora_2012-2418.nasl http://nessus.org/plugins/index.php?view=single&id=58623 Fedora 16 2012-2418 58622 fedora_2012-2413.nasl http://nessus.org/plugins/index.php?view=single&id=58622 Fedora 15 2012-2413 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 5, MSF: 3, Nessus: 22 New VA Module Alert Service (Apr 09)