Home page logo
/

nmap-dev logo Nmap Development mailing list archives

New VA Modules: MSF: 2, Nessus: 23, OpenVAS: 47
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sat, 30 Nov 2013 10:03:04 +0000 (UTC)

This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Metasploit modules (2) ==

d8700314 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/unix/webapp/kimai_sqli.rb
Kimai v0.9.2 'db_restore.php' SQL Injection

7dee4ffd 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/scada/abb_wserver_exec.rb
ABB MicroSCADA Stack Buffer Overflow

== Nessus plugins (23) ==

71140 smb_kb2914486.nasl
http://nessus.org/plugins/index.php?view=single&id=71140
KB2914486: Vulnerability in Microsoft Windows Kernel Could Allow
Elevation of Privilege

71139 ubuntu_USN-2035-1.nasl
http://nessus.org/plugins/index.php?view=single&id=71139
Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : ruby1.8, ruby1.9.1
vulnerabilities (USN-2035-1)

71138 suse_11_wireshark-131106.nasl
http://nessus.org/plugins/index.php?view=single&id=71138
SuSE 11.2 / 11.3 Security Update : wireshark (SAT Patch Numbers 8503 /
8504)

71137 suse_11_openvpn-131101.nasl
http://nessus.org/plugins/index.php?view=single&id=71137
SuSE 11.3 Security Update : openvpn (SAT Patch Number 8493)

71136 suse_11_openvpn-131031.nasl
http://nessus.org/plugins/index.php?view=single&id=71136
SuSE 11.2 Security Update : openvpn (SAT Patch Number 8496)

71135 solaris10_147143.nasl
http://nessus.org/plugins/index.php?view=single&id=71135
Solaris 10 (sparc) : 147143-17

71134 oraclelinux_ELSA-2013-2585.nasl
http://nessus.org/plugins/index.php?view=single&id=71134
Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2585)

71133 oraclelinux_ELSA-2013-2584.nasl
http://nessus.org/plugins/index.php?view=single&id=71133
Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2013-2584)

71132 oraclelinux_ELSA-2013-2583.nasl
http://nessus.org/plugins/index.php?view=single&id=71132
Oracle Linux 6 : unbreakable enterprise kernel (ELSA-2013-2583)

71131 oraclelinux_ELSA-2013-1764.nasl
http://nessus.org/plugins/index.php?view=single&id=71131
Oracle Linux 6 : ruby (ELSA-2013-1764)

71130 oraclelinux_ELSA-2013-1620.nasl
http://nessus.org/plugins/index.php?view=single&id=71130
Oracle Linux 6 : xorg-x11-server (ELSA-2013-1620)

71129 oraclelinux_ELSA-2013-1591.nasl
http://nessus.org/plugins/index.php?view=single&id=71129
Oracle Linux 6 : openssh (ELSA-2013-1591)

71128 oraclelinux_ELSA-2013-1582.nasl
http://nessus.org/plugins/index.php?view=single&id=71128
Oracle Linux 6 : python (ELSA-2013-1582)

71127 oraclelinux_ELSA-2013-1553.nasl
http://nessus.org/plugins/index.php?view=single&id=71127
Oracle Linux 6 : qemu-kvm (ELSA-2013-1553)

71126 oraclelinux_ELSA-2013-1540.nasl
http://nessus.org/plugins/index.php?view=single&id=71126
Oracle Linux 6 : evolution (ELSA-2013-1540)

71125 oraclelinux_ELSA-2013-1536.nasl
http://nessus.org/plugins/index.php?view=single&id=71125
Oracle Linux 6 : libguestfs (ELSA-2013-1536)

71124 gentoo_GLSA-201311-22.nasl
http://nessus.org/plugins/index.php?view=single&id=71124
GLSA-201311-22 : Namazu: Multiple vulnerabilities

71123 gentoo_GLSA-201311-21.nasl
http://nessus.org/plugins/index.php?view=single&id=71123
GLSA-201311-21 : cpio: Arbitrary code execution

71122 gentoo_GLSA-201311-20.nasl
http://nessus.org/plugins/index.php?view=single&id=71122
GLSA-201311-20 : Okular: Arbitrary code execution

71121 gentoo_GLSA-201311-19.nasl
http://nessus.org/plugins/index.php?view=single&id=71121
GLSA-201311-19 : rssh: Access restriction bypass

71120 gentoo_GLSA-201311-18.nasl
http://nessus.org/plugins/index.php?view=single&id=71120
GLSA-201311-18 : Unbound: Denial of Service

71119 gentoo_GLSA-201311-17.nasl
http://nessus.org/plugins/index.php?view=single&id=71119
GLSA-201311-17 : Perl: Multiple vulnerabilities

71118 debian_DSA-2805.nasl
http://nessus.org/plugins/index.php?view=single&id=71118
Debian DSA-2805-1 : sup-mail - command injection

== OpenVAS plugins (47) ==

r89 2013/gb_junos_cve_2013_0149.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_junos_cve_2013_0149.nasl?root=openvas-nvts&view=markup

r90 871087 2013/gb_RHSA-2013_1764-01_ruby.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_RHSA-2013_1764-01_ruby.nasl?root=openvas-nvts&view=markup
RedHat Update for ruby RHSA-2013:1764-01

r90 867081 2013/gb_fedora_2013_20817_ReviewBoard_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20817_ReviewBoard_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for ReviewBoard FEDORA-2013-20817

r90 867078 2013/gb_fedora_2013_21354_moodle_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21354_moodle_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for moodle FEDORA-2013-21354

r90 867082 2013/gb_fedora_2013_21207_samba_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21207_samba_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for samba FEDORA-2013-21207

r90 867091 2013/gb_fedora_2013_20202_mantis_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20202_mantis_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for mantis FEDORA-2013-20202

r90 867089 2013/gb_fedora_2013_21807_kernel_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21807_kernel_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for kernel FEDORA-2013-21807

r90 867083 2013/gb_fedora_2013_21397_moodle_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21397_moodle_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for moodle FEDORA-2013-21397

r90 841637 2013/gb_ubuntu_USN_2032_1.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2032_1.nasl?root=openvas-nvts&view=markup
Ubuntu Update for thunderbird USN-2032-1

r90 841636 2013/gb_ubuntu_USN_2033_1.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2033_1.nasl?root=openvas-nvts&view=markup
Ubuntu Update for openjdk-6 USN-2033-1

r90 867088 2013/gb_fedora_2013_21231_drupal6-context_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21231_drupal6-context_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for drupal6-context FEDORA-2013-21231

r90 841635 2013/gb_ubuntu_USN_2034_1.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ubuntu_USN_2034_1.nasl?root=openvas-nvts&view=markup
Ubuntu Update for keystone USN-2034-1

r90 867084 2013/gb_fedora_2013_20176_mantis_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20176_mantis_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for mantis FEDORA-2013-20176

r90 867086 2013/gb_fedora_2013_21415_python3_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21415_python3_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for python3 FEDORA-2013-21415

r90 867090 2013/gb_fedora_2013_21418_python3_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21418_python3_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for python3 FEDORA-2013-21418

r90 867080 2013/gb_fedora_2013_21298_drupal6-context_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21298_drupal6-context_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for drupal6-context FEDORA-2013-21298

r90 867079 2013/gb_fedora_2013_21998_monitorix_fc19.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_21998_monitorix_fc19.nasl?root=openvas-nvts&view=markup
Fedora Update for monitorix FEDORA-2013-21998

r90 867087 2013/gb_fedora_2013_17912_chicken_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_17912_chicken_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for chicken FEDORA-2013-17912

r90 867085 2013/gb_fedora_2013_20817_python-djblets_fc18.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_fedora_2013_20817_python-djblets_fc18.nasl?root=openvas-nvts&view=markup
Fedora Update for python-djblets FEDORA-2013-20817

r91 2013/gb_google_chrome_mult_vuln02_nov13_macosx.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_macosx.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities-02 Nov2013 (Mac OS X)

r91 2013/gb_google_chrome_mult_vuln02_nov13_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_win.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities-02 Nov2013 (Win)

r91 2013/gb_tomcat_login_constraints_sec_bypass_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_login_constraints_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup
Apache Tomcat Login Constraints Security Bypass Vulnerability

r91 2013/gb_mybb_ajaxfx_plugin_sql_inj_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mybb_ajaxfx_plugin_sql_inj_vuln.nasl?root=openvas-nvts&view=markup
MyBB Ajaxfs Plugin 'usertooltip' Parameter SQL Injection Vulnerability

r91 2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_macosx.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup
Mozilla Firefox Integer Overflow Vulnerability-01 Nov13 (Mac OS X)

r91 2013/secpod_wordpress_amerisalere_plugin_xss_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_wordpress_amerisalere_plugin_xss_vuln.nasl?root=openvas-nvts&view=markup
WordPress Amerisale-Re Plugin Cross Site Scripting Vulnerability

r91 2013/gb_google_chrome_mult_vuln02_nov13_lin.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln02_nov13_lin.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities-02 Nov2013 (Lin)

r91 2013/gb_php_display_errors_xss_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_php_display_errors_xss_vuln.nasl?root=openvas-nvts&view=markup
PHP 'display_errors' Cross Site Scripting Vulnerability

r91 2013/gb_tomcat_http_bio_connector_info_disc_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_http_bio_connector_info_disc_vuln.nasl?root=openvas-nvts&view=markup
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability

r91 2013/gb_tomcat_nioconnector_dos_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_nioconnector_dos_vuln.nasl?root=openvas-nvts&view=markup
Apache Tomcat NIO Connector Denial of Service Vulnerability

r91 2013/gb_google_chrome_mult_vuln01_nov13_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_win.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities Nov2013 (Win)

r91 803970 2013/gb_ajaxplorer_zoho_plugin_dir_trav_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_ajaxplorer_zoho_plugin_dir_trav_vuln.nasl?root=openvas-nvts&view=markup
AjaXplorer zoho plugin Directory Traversal Vulnerability

r91 2013/gb_tomcat_securityconstraints_sec_bypass_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_securityconstraints_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup
Apache Tomcat SecurityConstraints Security Bypass Vulnerability

r91 2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_macosx.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup
Mozilla Seamonkey Integer Overflow Vulnerability-01 Nov13 (Mac OS X)

r91 2013/gb_tomcat_securitymanager_sec_bypass_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_tomcat_securitymanager_sec_bypass_vuln.nasl?root=openvas-nvts&view=markup
Apache Tomcat SecurityManager Security Bypass Vulnerability

r91 2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_seamonkey_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup
Mozilla Seamonkey Integer Overflow Vulnerability-01 Nov13 (Windows)

r91 802065 2013/gb_at_tftp_filename_bof_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_at_tftp_filename_bof_vuln.nasl?root=openvas-nvts&view=markup
AT-TFTP Server Long Filename BoF Vulnerability

r91 903415 2013/secpod_dokeos_sql_inj_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_dokeos_sql_inj_vuln.nasl?root=openvas-nvts&view=markup
Dokeos 'language' Parameter SQL Injection Vulnerability

r91 2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup
Mozilla Firefox Integer Overflow Vulnerability-01 Nov13 (Windows)

r91 2013/secpod_ruby_heap_bof_vuln_win_nov13.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_ruby_heap_bof_vuln_win_nov13.nasl?root=openvas-nvts&view=markup
Ruby Interpreter Heap Overflow Vulnerability Nov13 (Windows)

r91 2013/secpod_wordpress_optinfirex_plugin_xss_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/secpod_wordpress_optinfirex_plugin_xss_vuln.nasl?root=openvas-nvts&view=markup
WordPress Optinfirex Plugin Cross Site Scripting Vulnerability

r91 2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_macosx.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_macosx.nasl?root=openvas-nvts&view=markup
Mozilla Firefox ESR Integer Overflow Vulnerability-01 Nov13 (Mac OS X)

r91 2013/gb_google_chrome_mult_vuln01_nov13_lin.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_lin.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities Nov2013 (Lin)

r91 2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_mozilla_firefox_esr_integer_overflow_vuln_nov13_win.nasl?root=openvas-nvts&view=markup
Mozilla Firefox ESR Integer Overflow Vulnerability-01 Nov13 (Windows)

r91 2013/gb_vbulletin_auth_bypass_vuln.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_vbulletin_auth_bypass_vuln.nasl?root=openvas-nvts&view=markup
Vbulletin Authentication Bypass Vulnerability

r91 2013/gb_rsa_auth_agent_iis_auth_bypass_vuln_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_rsa_auth_agent_iis_auth_bypass_vuln_win.nasl?root=openvas-nvts&view=markup
RSA Authentication Agent for IIS Authentication Bypass Vulnerability

r91 2013/gb_google_chrome_mult_vuln01_nov13_macosx.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2013/gb_google_chrome_mult_vuln01_nov13_macosx.nasl?root=openvas-nvts&view=markup
Google Chrome Multiple Vulnerabilities Nov2013 (Mac OS X)

r92 gb_gsa_detect.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/gb_gsa_detect.nasl?root=openvas-nvts&view=markup
Greenbone Security Assistant Detection
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
  • New VA Modules: MSF: 2, Nessus: 23, OpenVAS: 47 New VA Module Alert Service (Nov 30)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]