Home page logo
/

nmap-dev logo Nmap Development mailing list archives

New VA Modules: NSE: 1, MSF: 7, Nessus: 23, OpenVAS: 4
From: New VA Module Alert Service <postmaster () insecure org>
Date: Sat, 8 Feb 2014 10:00:34 +0000 (UTC)

This report describes any new scripts/modules/exploits added to Nmap,
Metasploit, Nessus, and OpenVAS since yesterday.

== Nmap Scripting Engine scripts (1) ==

r32706 http-ntlm-info http://nmap.org/nsedoc/scripts/http-ntlm-info.html
https://svn.nmap.org/nmap/scripts/http-ntlm-info.nse
Author: Justin Cacak
This script enumerates information from remote HTTP services with NTLM
authentication enabled.

== Metasploit modules (7) ==

3814e3ed 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/misc/ibm_sametime_webplayer_dos.rb
IBM Lotus Sametime WebPlayer DoS

2d6f41d6 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_version.rb
IBM Lotus Sametime Version Enumeration

7ba19504 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_enumerate_users.rb
IBM Lotus Notes Sametime User Enumeration

17c07516 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/ibm_sametime_room_brute.rb
IBM Lotus Notes Sametime Room Name Brute-Forcer

51b3d164 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/dos/misc/ibm_sametime_webplayer_dos.rb
IBM Lotus Sametime WebPlayer DoS

9a929e75 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/linux/http/pandora_fms_exec.rb
Pandora FMS Remote Code Execution

177bd355 
https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/android/browser/webview_addjavascriptinterface.rb
Android < 4.2 WebView addJavascriptInterface MITM Code Execution

== Nessus plugins (23) ==

72397 artweaver_3_1_5.nasl
http://nessus.org/plugins/index.php?view=single&id=72397
Artweaver 3.x < 3.1.5 JPG File Handling Stack-based Buffer Overflow

72395 irfanview_437.nasl
http://nessus.org/plugins/index.php?view=single&id=72395
IrfanView < 4.37 Multiple Buffer Overflow Vulnerabilities

72394 irfanview_mrsid_4_37.nasl
http://nessus.org/plugins/index.php?view=single&id=72394
IrfanView MrSID Plugin < 4.37 Multiple Buffer Overflows

72393 kerio_connect_810.nasl
http://nessus.org/plugins/index.php?view=single&id=72393
Kerio Connect < 8.1.0 SSL/TLS Information Disclosure

72392 dell_kace_k1000_5_5_mult_sqli.nasl
http://nessus.org/plugins/index.php?view=single&id=72392
Dell KACE K1000 < 5.5 Multiple SQL Injection Vulnerabilities

72390 redhat-RHSA-2013-1843.nasl
http://nessus.org/plugins/index.php?view=single&id=72390
Red Hat JBoss Enterprise Application Platform 6.1.0 Security Update
(RHSA-2013-1843)

72389 winscp_5_1_7.nasl
http://nessus.org/plugins/index.php?view=single&id=72389
WinSCP < 5.1.7 Multiple Vulnerabilities

72388 winscp_5_1_6.nasl
http://nessus.org/plugins/index.php?view=single&id=72388
WinSCP < 5.1.6 RSA Signature Blob Integer Overflow

72386 ubuntu_USN-2100-1.nasl
http://nessus.org/plugins/index.php?view=single&id=72386
Ubuntu 12.04 LTS / 12.10 / 13.10 : pidgin vulnerabilities (USN-2100-1)

72385 gentoo_GLSA-201402-08.nasl
http://nessus.org/plugins/index.php?view=single&id=72385
GLSA-201402-08 : stunnel: Multiple vulnerabilities

72384 gentoo_GLSA-201402-07.nasl
http://nessus.org/plugins/index.php?view=single&id=72384
GLSA-201402-07 : Freeciv: User-assisted execution of arbitrary code

72383 gentoo_GLSA-201402-06.nasl
http://nessus.org/plugins/index.php?view=single&id=72383
GLSA-201402-06 : Adobe Flash Player: Multiple vulnerabilities

72382 freebsd_pkg_4dd575b88f8211e3bb110025905a4771.nasl
http://nessus.org/plugins/index.php?view=single&id=72382
FreeBSD : phpmyfaq -- multiple vulnerabilities
(4dd575b8-8f82-11e3-bb11-0025905a4771)

72381 fedora_2014-2088.nasl
http://nessus.org/plugins/index.php?view=single&id=72381
Fedora 20 : icedtea-web-1.4.2-0.fc20 (2014-2088)

72380 fedora_2014-2041.nasl
http://nessus.org/plugins/index.php?view=single&id=72380
Fedora 20 : thunderbird-24.3.0-1.fc20 (2014-2041)

72379 fedora_2014-1802.nasl
http://nessus.org/plugins/index.php?view=single&id=72379
Fedora 19 : mediawiki-1.21.5-1.fc19 (2014-1802)

72378 fedora_2014-1778.nasl
http://nessus.org/plugins/index.php?view=single&id=72378
Fedora 20 : libpng10-1.0.60-6.fc20 (2014-1778)

72377 fedora_2014-1754.nasl
http://nessus.org/plugins/index.php?view=single&id=72377
Fedora 19 : libpng10-1.0.60-6.fc19 (2014-1754)

72376 fedora_2014-1745.nasl
http://nessus.org/plugins/index.php?view=single&id=72376
Fedora 20 : mediawiki-1.21.5-1.fc20 (2014-1745)

72375 debian_DSA-2852.nasl
http://nessus.org/plugins/index.php?view=single&id=72375
Debian DSA-2852-1 : libgadu - heap-based buffer overflow

artweaver_installed.nbin

dell_kace_k1000_web_detect.nbin

winscp_installed.nbin

== OpenVAS plugins (4) ==

r257 secpod_gom_player_detect_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/secpod_gom_player_detect_win.nasl?root=openvas-nvts&view=markup
GOM Media Player Version Detection (Windows)

r257 2014/gb_php_video_conference_lfi_02_14.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_php_video_conference_lfi_02_14.nasl?root=openvas-nvts&view=markup
PHP Webcam Video Conference Local File Inclusion / XSS

r257 2014/gb_netsynt_default_password.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/2014/gb_netsynt_default_password.nasl?root=openvas-nvts&view=markup
Netsynt CRD Voice Router Telnet CLI Default Password

r257 gb_google_picasa_detect_win.nasl
https://wald.intevation.org/scm/viewvco.php/scripts/gb_google_picasa_detect_win.nasl?root=openvas-nvts&view=markup
Google Picasa Version Detection (Windows)
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
  • New VA Modules: NSE: 1, MSF: 7, Nessus: 23, OpenVAS: 4 New VA Module Alert Service (Feb 08)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]