Nmap Development mailing list archives
New VA Modules: OpenVAS: 2, MSF: 12, Nessus: 57
From: New VA Module Alert Service <postmaster () insecure org>
Date: Mon, 4 Feb 2013 10:01:00 -0800 (PST)
This report describes any new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday. == OpenVAS plugins (2) == r15356 803222 2013/gb_nginx_sec_bypass_vuln_win.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_nginx_sec_bypass_vuln_win.nasl?root=openvas&view=markup nginx Security Bypass Vulnerability (Windows) r15357 103655 2013/gb_VMSA-2013-0001.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_VMSA-2013-0001.nasl?root=openvas&view=markup VMSA-2013-0001 VMware vSphere security updates for the authentication service and third party libraries == Metasploit modules (12) == r16411 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/admin/http/netgear_sph200d_traversal.rb Netgear SPH200D Directory Traversal Vulnerability r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_python_ssl.rb Unix Command Shell, Reverse TCP SSL (via python) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_ruby_ssl.rb Unix Command Shell, Reverse TCP SSL (via Ruby) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_openssl.rb Unix Command Shell, Double reverse TCP SSL (openssl) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_perl_ssl.rb Unix Command Shell, Reverse TCP SSL (via perl) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_ssl_double_telnet.rb Unix Command Shell, Double reverse TCP SSL (telnet) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_php_ssl.rb Unix Command Shell, Reverse TCP SSL (via php) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_bash_telnet_ssl.rb Unix Command Shell, Reverse TCP SSL (telnet) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/python/shell_reverse_tcp_ssl.rb Unix Command Shell, Reverse TCP SSL (via python) r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/ruby/shell_reverse_tcp_ssl.rb Ruby Command Shell, Reverse TCP SSL r16412 http://metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_openssl_double.rb Unix Command Shell, Double reverse TCP SSL (openssl) r16416 http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/upnp/libupnp_ssdp_overflow.rb Portable UPnP SDK unique_service_name() Remote Code Execution == Nessus plugins (57) == 64450 fedora_2013-1494.nasl http://nessus.org/plugins/index.php?view=single&id=64450 Fedora 16 : OpenImageIO-1.0.11-2.fc16 / gdal-1.7.3-15.fc16 / libwebp-0.2.1-1.fc16 (2013-1494) 64449 fedora_2013-1490.nasl http://nessus.org/plugins/index.php?view=single&id=64449 Fedora 18 : OpenImageIO-1.0.11-2.fc18 / gdal-1.9.1-14.fc18.1 / leptonica-1.69-5.fc18 / etc (2013-1490) 64448 fedora_2013-1473.nasl http://nessus.org/plugins/index.php?view=single&id=64448 Fedora 17 : OpenImageIO-1.0.11-2.fc17 / gdal-1.9.1-14.fc17.1 / leptonica-1.69-5.fc17 / etc (2013-1473) 64447 fedora_2013-1371.nasl http://nessus.org/plugins/index.php?view=single&id=64447 Fedora 18 : tinymce-spellchecker-2.0.5-8.fc18 (2013-1371) 64446 fedora_2013-1341.nasl http://nessus.org/plugins/index.php?view=single&id=64446 Fedora 17 : tinymce-spellchecker-2.0.5-8.fc17 (2013-1341) 64445 fedora_2013-1243.nasl http://nessus.org/plugins/index.php?view=single&id=64445 Fedora 18 : rhncfg-5.10.36-1.fc18 (2013-1243) 64444 fedora_2013-1233.nasl http://nessus.org/plugins/index.php?view=single&id=64444 Fedora 16 : rhncfg-5.10.36-1.fc16 (2013-1233) 64443 fedora_2013-1229.nasl http://nessus.org/plugins/index.php?view=single&id=64443 Fedora 17 : rhncfg-5.10.36-1.fc17 (2013-1229) 64442 fedora_2013-1167.nasl http://nessus.org/plugins/index.php?view=single&id=64442 Fedora 18 : php-symfony2-Yaml-2.1.7-1.fc18 (2013-1167) 64441 fedora_2013-0985.nasl http://nessus.org/plugins/index.php?view=single&id=64441 Fedora 17 : php-symfony2-Yaml-2.1.7-1.fc17 (2013-0985) 64440 fedora_2012-14650.nasl http://nessus.org/plugins/index.php?view=single&id=64440 Fedora 17 : tor-0.2.2.39-1700.fc17 (2012-14650) 64439 debian_DSA-2616.nasl http://nessus.org/plugins/index.php?view=single&id=64439 Debian DSA-2616-1 : nagios3 - buffer overflow in CGI scripts 64438 joomla_257.nasl http://nessus.org/plugins/index.php?view=single&id=64438 Joomla! 2.5.x < 2.5.7 Multiple XSS 64437 cisco_vpn_client_unsupported.nasl http://nessus.org/plugins/index.php?view=single&id=64437 Cisco VPN Client Unsupported 64436 ubuntu_USN-1704-2.nasl http://nessus.org/plugins/index.php?view=single&id=64436 USN-1704-2 : linux-lts-quantal - Linux kernel hardware enablement from Quantal regression 64435 ubuntu_USN-1700-2.nasl http://nessus.org/plugins/index.php?view=single&id=64435 USN-1700-2 : linux-ti-omap4 regression 64434 ubuntu_USN-1699-2.nasl http://nessus.org/plugins/index.php?view=single&id=64434 USN-1699-2 : linux regression 64433 ubuntu_USN-1698-2.nasl http://nessus.org/plugins/index.php?view=single&id=64433 USN-1698-2 : linux-ti-omap4 regression 64432 ubuntu_USN-1696-2.nasl http://nessus.org/plugins/index.php?view=single&id=64432 USN-1696-2 : linux regression 64431 suse_tomcat5-8397.nasl http://nessus.org/plugins/index.php?view=single&id=64431 SuSE 10 Security Update : tomcat5 (ZYPP Patch Number 8397) 64430 suse_11_tomcat6-130107.nasl http://nessus.org/plugins/index.php?view=single&id=64430 SuSE 11.2 Security Update : tomcat6 (SAT Patch Number 7208) 64429 sl_20130131_xorg_x11_drv_qxl_on_SL6_x.nasl http://nessus.org/plugins/index.php?view=single&id=64429 Scientific Linux Security Update : xorg-x11-drv-qxl on SL6.x i386/x86_64 64428 sl_20130131_nss_and_nspr_on_SL5_x.nasl http://nessus.org/plugins/index.php?view=single&id=64428 Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 64427 sl_20130131_nss__nss_util__and_nspr_on_SL6_x.nasl http://nessus.org/plugins/index.php?view=single&id=64427 Scientific Linux Security Update : nss, nss-util, and nspr on SL6.x i386/x86_64 64426 sl_20130131_mysql_on_SL6_x.nasl http://nessus.org/plugins/index.php?view=single&id=64426 Scientific Linux Security Update : mysql on SL6.x i386/x86_64 64425 sl_20130131_mingw32_libxml2_on_SL6_x.nasl http://nessus.org/plugins/index.php?view=single&id=64425 Scientific Linux Security Update : mingw32-libxml2 on SL6.x (x86_64) 64424 sl_20130131_freetype_on_SL5_x.nasl http://nessus.org/plugins/index.php?view=single&id=64424 Scientific Linux Security Update : freetype on SL5.x, SL6.x i386/x86_64 64423 sl_20130131_abrt_and_libreport_on_SL6_x.nasl http://nessus.org/plugins/index.php?view=single&id=64423 Scientific Linux Security Update : abrt and libreport on SL6.x i386/x86_64 64422 freebsd_pkg_ea0f45e26c4b11e298d9003067c2616f.nasl http://nessus.org/plugins/index.php?view=single&id=64422 FreeBSD : opera -- execution of arbitrary code (ea0f45e2-6c4b-11e2-98d9-003067c2616f) 64421 freebsd_pkg_8c773d7f6cbb11e2b242c8600054b392.nasl http://nessus.org/plugins/index.php?view=single&id=64421 FreeBSD : mysql/mariadb/percona server -- multiple vulnerabilities (8c773d7f-6cbb-11e2-b242-c8600054b392) 64420 fedora_2013-1455.nasl http://nessus.org/plugins/index.php?view=single&id=64420 Fedora 18 : coreutils-8.17-8.fc18 (2013-1455) 64419 fedora_2013-1445.nasl http://nessus.org/plugins/index.php?view=single&id=64419 Fedora 18 : freeipa-3.1.2-1.fc18 (2013-1445) 64418 fedora_2013-1434.nasl http://nessus.org/plugins/index.php?view=single&id=64418 Fedora 18 : xen-4.2.1-5.fc18 (2013-1434) 64417 fedora_2013-1432.nasl http://nessus.org/plugins/index.php?view=single&id=64417 Fedora 16 : seamonkey-2.15.1-1.fc16 (2013-1432) 64416 fedora_2013-1422.nasl http://nessus.org/plugins/index.php?view=single&id=64416 Fedora 17 : libssh-0.5.4-1.fc17 (2013-1422) 64415 fedora_2013-1421.nasl http://nessus.org/plugins/index.php?view=single&id=64415 Fedora 17 : ettercap-0.7.5-4.fc17.1.20120906gitc796e5 (2013-1421) 64414 fedora_2013-1407.nasl http://nessus.org/plugins/index.php?view=single&id=64414 Fedora 18 : libssh-0.5.4-1.fc18 (2013-1407) 64413 fedora_2013-1387.nasl http://nessus.org/plugins/index.php?view=single&id=64413 Fedora 17 : couchdb-1.2.1-2.fc17 (2013-1387) 64412 fedora_2013-1382.nasl http://nessus.org/plugins/index.php?view=single&id=64412 Fedora 17 : seamonkey-2.15.1-1.fc17 (2013-1382) 64411 fedora_2013-1375.nasl http://nessus.org/plugins/index.php?view=single&id=64411 Fedora 18 : couchdb-1.2.1-2.fc18 (2013-1375) 64410 fedora_2013-1301.nasl http://nessus.org/plugins/index.php?view=single&id=64410 Fedora 16 : ndjbdns-1.05.6-1.fc16 (2013-1301) 64409 fedora_2013-1289.nasl http://nessus.org/plugins/index.php?view=single&id=64409 Fedora 16 : jakarta-commons-httpclient-3.1-12.fc16 (2013-1289) 64408 fedora_2013-1274.nasl http://nessus.org/plugins/index.php?view=single&id=64408 Fedora 16 : xen-4.1.4-3.fc16 (2013-1274) 64407 fedora_2013-1269.nasl http://nessus.org/plugins/index.php?view=single&id=64407 Fedora 17 : xen-4.1.4-3.fc17 (2013-1269) 64406 fedora_2013-1222.nasl http://nessus.org/plugins/index.php?view=single&id=64406 Fedora 18 : axis-1.4-19.fc18 (2013-1222) 64405 fedora_2013-1204.nasl http://nessus.org/plugins/index.php?view=single&id=64405 Fedora 17 : ndjbdns-1.05.6-1.fc17 (2013-1204) 64404 fedora_2013-1203.nasl http://nessus.org/plugins/index.php?view=single&id=64404 Fedora 18 : jakarta-commons-httpclient-3.1-12.fc18 (2013-1203) 64403 fedora_2013-1194.nasl http://nessus.org/plugins/index.php?view=single&id=64403 Fedora 17 : axis-1.4-19.fc17 (2013-1194) 64402 fedora_2013-1189.nasl http://nessus.org/plugins/index.php?view=single&id=64402 Fedora 17 : jakarta-commons-httpclient-3.1-12.fc17 (2013-1189) 64401 fedora_2013-1176.nasl http://nessus.org/plugins/index.php?view=single&id=64401 Fedora 18 : ndjbdns-1.05.6-1.fc18 (2013-1176) 64400 fedora_2013-0899.nasl http://nessus.org/plugins/index.php?view=single&id=64400 Fedora 18 : ettercap-0.7.5.1-1.fc18 (2013-0899) 64399 fedora_2013-0894.nasl http://nessus.org/plugins/index.php?view=single&id=64399 Fedora 16 : ettercap-0.7.5-3.fc16.1.20120906gitc796e5 (2013-0894) 64398 fedora_2013-0723.nasl http://nessus.org/plugins/index.php?view=single&id=64398 Fedora 16 : thunderbird-17.0.2-1.fc16 (2013-0723) 64397 debian_DSA-2617.nasl http://nessus.org/plugins/index.php?view=single&id=64397 Debian DSA-2617-1 : samba - several issues 64396 debian_DSA-2615.nasl http://nessus.org/plugins/index.php?view=single&id=64396 Debian DSA-2615-1 : libupnp4 - several vulnerabilities 64395 debian_DSA-2614.nasl http://nessus.org/plugins/index.php?view=single&id=64395 Debian DSA-2614-1 : libupnp - several vulnerabilities mdm_sig_error.nbin _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: OpenVAS: 2, MSF: 12, Nessus: 57 New VA Module Alert Service (Feb 04)