Home page logo
/

nmap-dev logo Nmap Development mailing list archives

New VA Modules: NSE: 1, OpenVAS: 7, MSF: 2, Nessus: 9
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 13 Jun 2012 10:00:55 -0700 (PDT)

This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== Nmap Scripting Engine scripts (1) ==

r28928 mysql-vuln-cve2012-2122 http://nmap.org/nsedoc/scripts/mysql-vuln-cve2012-2122.html
https://svn.nmap.org/nmap/scripts/mysql-vuln-cve2012-2122.nse
Attempts to bypass authentication in MySQL and MariaDB servers by
exploiting CVE2012-2122. If its vulnerable, it will also attempt to dump
the MySQL usernames and password hashes. All MariaDB and MySQL versions
up to 5.1.61, 5.2.11, 5.3.5, 5.5.22 are vulnerable but depending if
memcmp() returns an arbitrary integer outside of -128..127 range.

== OpenVAS plugins (7) ==

r13582 902917 secpod_ms12-041.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-041.nasl?root=openvas&view=markup
Windows Kernel-Mode Drivers Privilege Elevation Vulnerabilities
(2709162)

r13582 902916 secpod_ms12-042.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-042.nasl?root=openvas&view=markup
Microsoft Windows Kernel Privilege Elevation Vulnerabilities (2711167)

r13582 902683 secpod_ms12-036.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-036.nasl?root=openvas&view=markup
Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
(2685939)

r13582 902682 secpod_ms12-037.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-037.nasl?root=openvas&view=markup
Microsoft Internet Explorer Multiple Vulnerabilities (2699988)

r13582 secpod_ms_lync_detect_win.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms_lync_detect_win.nasl?root=openvas&view=markup
Microsoft Lync Version Detection

r13582 902841 secpod_ms12-038.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-038.nasl?root=openvas&view=markup
Microsoft .NET Framework Remote Code Execution Vulnerability (2706726)

r13582 902842 secpod_ms12-039.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/secpod_ms12-039.nasl?root=openvas&view=markup
Microsoft Lync Remote Code Execution Vulnerabilities (2707956)

== Metasploit modules (2) ==

r15425 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/linux/ssh/f5_bigip_known_privkey.rb
F5 BIG-IP SSH Private Key Exposure

r15434 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms12_037_same_id.rb
MS12-037 Internet Explorer Same ID Property Deleted Object Handling
Memory Corruption

== Nessus plugins (9) ==

59461 smb_kb2719615.nasl
http://nessus.org/plugins/index.php?view=single&id=59461
MS KB2719615: Vulnerability in Microsoft XML Core Services Could Allow
Remote Code Execution

59460 smb_nt_ms12-042.nasl
http://nessus.org/plugins/index.php?view=single&id=59460
MS12-042: Vulnerabilities in Windows Kernel Could Allow Elevation of
Privilege (2711167)

59459 smb_nt_ms12-041.nasl
http://nessus.org/plugins/index.php?view=single&id=59459
MS12-041: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow
Elevation of Privilege (2709162)

59458 smb_nt_ms12-040.nasl
http://nessus.org/plugins/index.php?view=single&id=59458
MS12-040: Vulnerability in Microsoft Dynamics AX Enterprise Portal Could
Allow Elevation of Privilege (2709100)

59457 smb_nt_ms12-039.nasl
http://nessus.org/plugins/index.php?view=single&id=59457
MS12-039: Vulnerabilities in Lync Could Allow Remote Code Execution
(2707956)

59456 smb_nt_ms12-038.nasl
http://nessus.org/plugins/index.php?view=single&id=59456
MS12-038: Vulnerability in .NET Framework Could Allow Remote Code
Execution (2706726)

59455 smb_nt_ms12-037.nasl
http://nessus.org/plugins/index.php?view=single&id=59455
MS12-037: Cumulative Security Update for Internet Explorer (2699988)

59454 smb_nt_ms12-036.nasl
http://nessus.org/plugins/index.php?view=single&id=59454
MS12-036: Vulnerability in Remote Desktop Could Allow Remote Code
Execution (2685939)

59453 microsoft_dynamics_ax_installed.nasl
http://nessus.org/plugins/index.php?view=single&id=59453
Microsoft Dynamics AX Installed
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
  • New VA Modules: NSE: 1, OpenVAS: 7, MSF: 2, Nessus: 9 New VA Module Alert Service (Jun 13)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]