Nmap Development mailing list archives
New VA Modules: NSE: 3, MSF: 1, Nessus: 13
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sun, 11 Aug 2013 10:00:18 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Nmap Scripting Engine scripts (3) == r31727 http-dombased-xss http://nmap.org/nsedoc/scripts/http-dombased-xss.html https://svn.nmap.org/nmap/scripts/http-dombased-xss.nse Author: George Chatzisofroniou It looks for places where attacker-controlled information in the DOM may be used to affect JavaScript execution in certain ways. The attack is explained here: http://www.webappsec.org/projects/articles/071105.shtml r31728 http-mobileversion-checker http://nmap.org/nsedoc/scripts/http-mobileversion-checker.html https://svn.nmap.org/nmap/scripts/http-mobileversion-checker.nse Author: George Chatzisofroniou Checks if the website holds a mobile version. r31730 http-useragent-tester http://nmap.org/nsedoc/scripts/http-useragent-tester.html https://svn.nmap.org/nmap/scripts/http-useragent-tester.nse Author: George Chatzisofroniou Checks if various crawling ultities are allowed by the host. == Metasploit modules (1) == 7f3eccd6 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/rails_secret_deserialization.rb Ruby on Rails Session Cookie Remote Code Execution == Nessus plugins (13) == 69297 suse_11_xen-201307-130714.nasl http://nessus.org/plugins/index.php?view=single&id=69297 SuSE 11.3 Security Update : Xen (SAT Patch Number 8063) 69296 suse_11_apache2-mod_php53-130718.nasl http://nessus.org/plugins/index.php?view=single&id=69296 SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8087 / 8088) 69295 suse_11_apache2-mod_php53-130717.nasl http://nessus.org/plugins/index.php?view=single&id=69295 SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8087 / 8088) 69294 suse_11_apache2-mod_php5-130718.nasl http://nessus.org/plugins/index.php?view=single&id=69294 SuSE 11.2 Security Update : PHP5 (SAT Patch Number 8086) 69293 freebsd_pkg_e21c7c7a011611e39e833c970e169bc2.nasl http://nessus.org/plugins/index.php?view=single&id=69293 FreeBSD : samba -- denial of service vulnerability (e21c7c7a-0116-11e3-9e83-3c970e169bc2) 69292 fedora_2013-14412.nasl http://nessus.org/plugins/index.php?view=single&id=69292 Fedora 19 : firefox-23.0-1.fc19 / thunderbird-17.0.8-1.fc19 / xulrunner-23.0-2.fc19 (2013-14412) 69291 fedora_2013-14312.nasl http://nessus.org/plugins/index.php?view=single&id=69291 Fedora 19 : samba-4.0.8-1.fc19 (2013-14312) 69290 fedora_2013-13994.nasl http://nessus.org/plugins/index.php?view=single&id=69290 Fedora 19 : httpd-2.4.6-2.fc19 (2013-13994) 69289 fedora_2013-13975.nasl http://nessus.org/plugins/index.php?view=single&id=69289 Fedora 19 : gnupg-1.4.14-1.fc19 (2013-13975) 69288 fedora_2013-10713.nasl http://nessus.org/plugins/index.php?view=single&id=69288 Fedora 18 : openstack-keystone-2012.2.4-5.fc18 (2013-10713) 69287 aix_U857552.nasl http://nessus.org/plugins/index.php?view=single&id=69287 AIX 7.1 TL 2 : devices.common.IBM.ib.rte (U857552) 69286 aix_U855978.nasl http://nessus.org/plugins/index.php?view=single&id=69286 AIX 6.1 TL 8 : devices.common.IBM.ib.rte (U855978) 69285 aix_U855964.nasl http://nessus.org/plugins/index.php?view=single&id=69285 AIX 6.1 TL 8 : bos.net.tcp.client (U855964) _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: NSE: 3, MSF: 1, Nessus: 13 New VA Module Alert Service (Aug 11)