New VA Modules: NSE: 1, OpenVAS: 18, MSF: 1, Nessus: 8

[New VA Module Alert Service <postmaster () insecure org>]

This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.

== Nmap Scripting Engine scripts (1) ==

r26662 quake3-info http://nmap.org/nsedoc/scripts/quake3-info.html
Extracts information from a Quake3-like game server.

== OpenVAS plugins (18) ==

r11653 902728 secpod_atutor_mult_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_atutor_mult_vuln.nasl?root=openvas&view=markup
Atutor Multiple Vulnerabilities

r11653 902568 secpod_pentaho_bi_server_mult_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_pentaho_bi_server_mult_vuln.nasl?root=openvas&view=markup
Pentaho BI Server Multiple Vulnerabilities

r11653 802164 gb_libcloud_ssl_cert_sec_bypass_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_libcloud_ssl_cert_sec_bypass_vuln.nasl?root=openvas&view=markup
Libcloud SSL Certificates Security Bypass Vulnerability

r11653 802247 gb_cogent_datahub_integer_overflow_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_cogent_datahub_integer_overflow_vuln.nasl?root=openvas&view=markup
Cogent DataHub Integer Overflow Vulnerability

r11653 902569 secpod_metaserver_rt_multiple_dos_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_metaserver_rt_multiple_dos_vuln.nasl?root=openvas&view=markup
MetaServer RT Multiple Remote Denial of Service Vulnerabilities

r11653 902626 secpod_ms10-072.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_ms10-072.nasl?root=openvas&view=markup
Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities
(2412048)

r11653 802163 gb_cde_rpc_cmsd_service_detect.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_cde_rpc_cmsd_service_detect.nasl?root=openvas&view=markup
Calendar Manager Service rpc.cmsd Service Detection

r11653 902729 secpod_wordpress_zingiri_web_shop_rfi_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/secpod_wordpress_zingiri_web_shop_rfi_vuln.nasl?root=openvas&view=markup
WordPress Zingiri Web Shop Plugin Remote File Inclusion Vulnerability

r11653 802036 gb_beckhoff_twincat_datagram_pkt_dos_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_beckhoff_twincat_datagram_pkt_dos_vuln.nasl?root=openvas&view=markup
Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service
Vulnerability

r11653 802246 gb_cogent_datahub_unicode_bof_vuln.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_cogent_datahub_unicode_bof_vuln.nasl?root=openvas&view=markup
Cogent DataHub Unicode Buffer Overflow Vulnerability

r11658 103263 gb_igallery_49712.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_igallery_49712.nasl?root=openvas&view=markup
i-Gallery 'd' Parameter Cross Site Scripting Vulnerability

r11658 103268 gb_papoo_49587.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_papoo_49587.nasl?root=openvas&view=markup
Papoo CMS Light Multiple Cross Site Scripting Vulnerabilities

r11658 103269 gb_skadate_49502.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_skadate_49502.nasl?root=openvas&view=markup
SkaDate 'blogs.php' Cross Site Scripting Vulnerability

r11658 103264 gb_wordpress_49713.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wordpress_49713.nasl?root=openvas&view=markup
WordPress Adsense Extreme Plugin 'adsensextreme[lang]' Parameter Remote
File Include Vulnerability

r11658 103270 gb_GeoClassifieds_49475.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_GeoClassifieds_49475.nasl?root=openvas&view=markup
GeoClassifieds Lite Multiple Cross Site Scripting and SQL Injection
Vulnerabilities

r11658 103271 gb_playsms_49474.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_playsms_49474.nasl?root=openvas&view=markup
PlaySMS 'apps_path[themes]' Parameter Multiple Remote File Include
Vulnerabilities

r11658 103267 gb_wordpress_49691.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_wordpress_49691.nasl?root=openvas&view=markup
WordPress Mailing List Plugin 'wpabspath' Parameter Remote File Include
Vulnerability

r11658 103272 gb_yabsoft_image_hosting_script_49457.nasl
http://wald.intevation.org/plugins/scmsvn/viewcvs.php/trunk/openvas-plugins/scripts/gb_yabsoft_image_hosting_script_49457.nasl?root=openvas&view=markup
YABSoft Advanced Image Hosting Script 'report.php' Cross Site Scripting
Vulnerability

== Metasploit modules (1) ==

r13772 
http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/admin/http/trendmicro_dlp_traversal.rb
TrendMicro Data Loss Prevention 5.5 Directory Traversal

== Nessus plugins (8) ==

56246 vmware_VMSA-2010-0007.nasl
http://nessus.org/plugins/index.php?view=single&id=56246
VMSA-2010-0007 : VMware hosted products, vCenter Server and ESX patches
resolve multiple security issues

56245 torture_cgi_xpath_injection2.nasl
http://nessus.org/plugins/index.php?view=single&id=56245
CGI Generic XPath Injection Vulnerability (2nd pass)

56244 torture_cgi_load_estimation3.nasl
http://nessus.org/plugins/index.php?view=single&id=56244
CGI Generic Tests Load Estimation (quick tests, HTML injection)

56243 torture_cgi_load_estimation2.nasl
http://nessus.org/plugins/index.php?view=single&id=56243
CGI Generic Tests Load Estimation (quick tests, text injection)

56242 torture_cgi_load_estimation1.nasl
http://nessus.org/plugins/index.php?view=single&id=56242
CGI Generic Tests Load Estimation (full tests)

56241 google_chrome_14_0_835_186.nasl
http://nessus.org/plugins/index.php?view=single&id=56241
Google Chrome < 14.0.835.186 Multiple Adobe Flash Player Vulnerabilities

torture_cgi_load_estimation.inc

torture_cgi_xpath_msg.inc
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/