Home page logo
/

nmap-dev logo Nmap Development mailing list archives

New VA Modules: MSF: 6, Nessus: 19, OpenVAS: 5
From: New VA Module Alert Service <postmaster () insecure org>
Date: Wed, 27 Nov 2013 10:00:37 +0000 (UTC)

This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Metasploit modules (6) ==

cbb7eb19 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms13_090_cardspacesigninhelper.rb
MS13-090 CardSpaceClaimCollection ActiveX Integer Underflow

14c6ab4c 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/apache_roller_ognl_injection.rb
Apache Roller OGNL Injection

94e13a0b 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/fileformat/mswin_tiff_overflow.rb
Microsoft Tagged Image File Format (TIFF) Integer Overflow

266de2d2 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/scanner/http/openmind_messageos_login.rb
OpenMind Message-OS Portal Login Utility

a7ad107e 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/ms13_022_silverlight_script_object.rb
MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory
Access

6a28aa29 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/dos/http/rails_json_float_dos.rb
Ruby on Rails JSON Processor Floating Point Heap Overflow DoS

== Nessus plugins (19) ==

71096 blackboard_lc3000_default_telnet_password.nasl
http://nessus.org/plugins/index.php?view=single&id=71096
Blackboard LC3000 Laundry Reader Default Telnet Password

71095 asus_rtn13u_admin_account.nasl
http://nessus.org/plugins/index.php?view=single&id=71095
ASUS RT-N13U Router Built-in Admin Telnet Account with Unchangeable
Password

71094 ubuntu_USN-2034-1.nasl
http://nessus.org/plugins/index.php?view=single&id=71094
Ubuntu 12.10 / 13.04 / 13.10 : keystone vulnerability (USN-2034-1)

71093 redhat-RHSA-2013-1764.nasl
http://nessus.org/plugins/index.php?view=single&id=71093
RHEL 6 : ruby (RHSA-2013-1764)

71092 mandriva_MDVSA-2013-283.nasl
http://nessus.org/plugins/index.php?view=single&id=71092
Mandriva Linux Security Advisory : glibc (MDVSA-2013:283)

71091 mandriva_MDVSA-2013-282.nasl
http://nessus.org/plugins/index.php?view=single&id=71091
Mandriva Linux Security Advisory : perl-HTTP-Body (MDVSA-2013:282)

71090 gentoo_GLSA-201311-16.nasl
http://nessus.org/plugins/index.php?view=single&id=71090
GLSA-201311-16 : fcron: Information disclosure

71089 gentoo_GLSA-201311-15.nasl
http://nessus.org/plugins/index.php?view=single&id=71089
GLSA-201311-15 : Zabbix: Multiple vulnerabilities

71088 freebsd_pkg_e3244a7b560311e3878d20cf30e32f6d.nasl
http://nessus.org/plugins/index.php?view=single&id=71088
FreeBSD : subversion -- multiple vulnerabilities
(e3244a7b-5603-11e3-878d-20cf30e32f6d)

71087 fedora_2013-22139.nasl
http://nessus.org/plugins/index.php?view=single&id=71087
Fedora 20 : 389-ds-base-1.3.2.7-1.fc20 (2013-22139)

71086 fedora_2013-21524.nasl
http://nessus.org/plugins/index.php?view=single&id=71086
Fedora 20 : owncloud-5.0.13-1.fc20 (2013-21524)

71085 fedora_2013-21418.nasl
http://nessus.org/plugins/index.php?view=single&id=71085
Fedora 19 : python3-3.3.2-8.fc19 (2013-21418)

71084 fedora_2013-21415.nasl
http://nessus.org/plugins/index.php?view=single&id=71084
Fedora 18 : python3-3.3.0-5.fc18 (2013-21415)

71083 fedora_2013-21088.nasl
http://nessus.org/plugins/index.php?view=single&id=71083
Fedora 20 : samba-4.1.1-1.fc20 (2013-21088)

71082 fedora_2013-20817.nasl
http://nessus.org/plugins/index.php?view=single&id=71082
Fedora 18 : ReviewBoard-1.7.18-1.fc18 / python-djblets-0.7.23-1.fc18
(2013-20817)

71081 fedora_2013-17912.nasl
http://nessus.org/plugins/index.php?view=single&id=71081
Fedora 18 : chicken-4.8.0.4-4.fc18 (2013-17912)

71080 debian_DSA-2800.nasl
http://nessus.org/plugins/index.php?view=single&id=71080
Debian DSA-2800-1 : nss - buffer overflow

71079 ala_ALAS-2013-248.nasl
http://nessus.org/plugins/index.php?view=single&id=71079
Amazon Linux AMI : ruby Heap Overflow Vulnerability (ALAS-2013-248)

71078 ala_ALAS-2013-247.nasl
http://nessus.org/plugins/index.php?view=single&id=71078
Amazon Linux AMI : ruby19 Heap Overflow Vulnerability (ALAS-2013-247)

== OpenVAS plugins (5) ==

r79 2013/gb_ipmi_null_usernames_allowed.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_null_usernames_allowed.nasl?root=openvas-nvts&view=markup
IPMI Null Usernames Allowed

r79 gb_ipmi_detect.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/gb_ipmi_detect.nasl?root=openvas-nvts&view=markup
IPMI Detection

r79 2013/gb_ipmi_no_auth_enabled.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_no_auth_enabled.nasl?root=openvas-nvts&view=markup
IPMI No Auth Access Mode Enabled

r79 2013/gb_ipmi_md2_enabled.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_md2_enabled.nasl?root=openvas-nvts&view=markup
IPMI MD2 Auth Type Support Enabled

r79 2013/gb_ipmi_anonymous_login.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ipmi_anonymous_login.nasl?root=openvas-nvts&view=markup
IPMI Anonymous Login Enabled
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
  • New VA Modules: MSF: 6, Nessus: 19, OpenVAS: 5 New VA Module Alert Service (Nov 27)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]