Nmap Development mailing list archives
New VA Modules: MSF: 4, Nessus: 3, OpenVAS: 40
From: New VA Module Alert Service <postmaster () insecure org>
Date: Tue, 22 Oct 2013 10:02:48 +0000 (UTC)
This report describes any new scripts/modules/exploits added to Nmap, Metasploit, Nessus, and OpenVAS since yesterday. == Metasploit modules (4) == 79e08c15 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/bind_lua.rb Unix Command Shell, Bind TCP (via LUA) 79e08c15 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/unix/reverse_lua.rb Unix Command Shell, Reverse TCP (via LUA) 79e08c15 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/windows/bind_lua.rb Windows Command Shell, Bind TCP (via LUA) 79e08c15 https://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/payloads/singles/cmd/windows/reverse_lua.rb Windows Command Shell, Reverse TCP (via LUA) == Nessus plugins (3) == 70532 opera_1700.nasl http://nessus.org/plugins/index.php?view=single&id=70532 Opera < 17 Multiple Vulnerabilities 70529 fedora_2013-18808.nasl http://nessus.org/plugins/index.php?view=single&id=70529 Fedora 19 : libtar-1.2.11-26.fc19 (2013-18808) 70528 fedora_2013-18401.nasl http://nessus.org/plugins/index.php?view=single&id=70528 Fedora 18 : fping-3.5-3.fc18 (2013-18401) == OpenVAS plugins (40) == r18100 gb_wmi_get-dns_name.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_wmi_get-dns_name.nasl?root=openvas&view=markup r18100 103816 2013/gb_VMSA-2013-0012.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_VMSA-2013-0012.nasl?root=openvas&view=markup VMSA-2013-0012 VMware vSphere updates address multiple vulnerabilities r18100 2013/gb_cisco_nx_os_62858.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_cisco_nx_os_62858.nasl?root=openvas&view=markup Cisco NX-OS Border Gateway Protocol Component Denial of Service Vulnerability r18105 Policy/policy_file_checksums_win_violation.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/Policy/policy_file_checksums_win_violation.nasl?root=openvas&view=markup Windows file Checksums: Violations r18105 Policy/policy_file_checksums_win_ok.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/Policy/policy_file_checksums_win_ok.nasl?root=openvas&view=markup Windows file Checksums: Matches r18105 Policy/policy_file_checksums_win_errors.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/Policy/policy_file_checksums_win_errors.nasl?root=openvas&view=markup Windows file Checksums: Errors r18105 Policy/policy_file_checksums_win.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/Policy/policy_file_checksums_win.nasl?root=openvas&view=markup Windows file Checksums r18109 gb_cisco_nx_os_detect_ssh.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/gb_cisco_nx_os_detect_ssh.nasl?root=openvas&view=markup r18120 2013/gb_otrs_itsm_mul_input_val_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_itsm_mul_input_val_vuln.nasl?root=openvas&view=markup OTRS ITSM Multiple Input Validation Vulnerability r18120 2013/gb_otrs_cust_interface_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_cust_interface_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS CustomerInterface Restriction Bypass Vulnerability r18120 2013/gb_otrs_tmp_dir_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_tmp_dir_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS /tmp/ Directory Restriction Bypass Vulnerability r18120 2013/gb_otrs_soap_sec_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_soap_sec_bypass_vuln.nasl?root=openvas&view=markup OTRS SOAP Security Bypass Vulnerability r18120 2013/gb_otrs_acl_cust_status_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_acl_cust_status_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS ACL-customer-status Ticket Restriction Bypass Vulnerability r18120 2013/gb_otrs_mailbox_html_inj_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_mailbox_html_inj_vuln.nasl?root=openvas&view=markup OTRS Mailbox HTML Injection Vulnerability r18120 2013/gb_otrs_merge_operations_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_merge_operations_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS Merge Operations Restriction Bypass Vulnerability r18120 2013/gb_otrs_itsm_body_field_html_inj_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_itsm_body_field_html_inj_vuln.nasl?root=openvas&view=markup OTRS ITSM 'Body' Field HTML Injection Vulnerability r18120 2013/gb_otrs_ticket_watch_security_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_ticket_watch_security_bypass_vuln.nasl?root=openvas&view=markup OTRS Ticket Watch Security Bypass Vulnerability r18120 2013/gb_otrs_queue_access_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_queue_access_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS Queue Access Restriction Bypass Vulnerability r18120 2013/gb_otrs_randfile_crypto_weakness_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_randfile_crypto_weakness_vuln.nasl?root=openvas&view=markup OTRS RANDFILE Cryptographic Entropy Weakness Vulnerability r18120 2013/gb_otrs_email_from_line_dos_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_email_from_line_dos_vuln.nasl?root=openvas&view=markup OTRS Email From Line Denial of Service Vulnerability r18120 2013/gb_otrs_key_revocation_spoof_weakness_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_key_revocation_spoof_weakness_vuln.nasl?root=openvas&view=markup OTRS Key Revocation Spoofing Weakness Vulnerability r18120 2013/gb_otrs_rich_text_editor_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_rich_text_editor_xss_vuln.nasl?root=openvas&view=markup OTRS Rich-text-editor XSS Vulnerability r18120 2013/gb_otrs_race_condition_data_corruption_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_race_condition_data_corruption_vuln.nasl?root=openvas&view=markup OTRS Race Condition Data Corruption Vulnerability r18120 2013/gb_otrs_agentticketforward_info_disclosure_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_agentticketforward_info_disclosure_vuln.nasl?root=openvas&view=markup OTRS AgentTicketForward Information Disclosure Vulnerability r18120 2013/gb_otrs_event_notification_info_disclosure_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_event_notification_info_disclosure_vuln.nasl?root=openvas&view=markup OTRS Event Notification Information Disclosure Vulnerability r18120 2013/gb_otrs_ticket_cust_id_value_rest_bypass.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_ticket_cust_id_value_rest_bypass.nasl?root=openvas&view=markup OTRS Ticket CustomerID Value Restriction Bypass Vulnerability r18120 2013/gb_otrs_ticket_age_dos_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_ticket_age_dos_vuln.nasl?root=openvas&view=markup OTRS Ticket Age Remote Denial of Service Vulnerability r18120 2013/gb_otrs_smime_openssl_crypto_weakness.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_smime_openssl_crypto_weakness.nasl?root=openvas&view=markup OTRS S/MIME OpenSSL Cryptographic Entropy Weakness r18120 2013/gb_otrs_installer_pl_pass_disclosure_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_installer_pl_pass_disclosure_vuln.nasl?root=openvas&view=markup OTRS installer.pl Password Disclosure Vulnerability r18120 2013/gb_otrs_move_into_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_move_into_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS move_into Restriction Bypass Vulnerability r18120 2013/gb_otrs_mul_input_val_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_mul_input_val_vuln.nasl?root=openvas&view=markup OTRS Multiple Input Validation Vulnerabilities r18120 2013/gb_otrs_subaction_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_subaction_xss_vuln.nasl?root=openvas&view=markup OTRS Subaction XSS Vulnerability r18120 2013/gb_otrs_email_msg_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_email_msg_xss_vuln.nasl?root=openvas&view=markup OTRS Email Message XSS Vulnerability r18120 2013/gb_otrs_itsm_faq_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_itsm_faq_xss_vuln.nasl?root=openvas&view=markup OTRS ITSM FAQ XSS Vulnerability r18120 2013/gb_otrs_login_page_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_login_page_xss_vuln.nasl?root=openvas&view=markup OTRS Login Page Multiple XSS Vulnerability r18120 2013/gb_otrs_email_body_xss_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_email_body_xss_vuln.nasl?root=openvas&view=markup OTRS Email Body XSS Vulnerability r18120 2013/gb_otrs_itsm_ticket_split_info_disclosure_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_itsm_ticket_split_info_disclosure_vuln.nasl?root=openvas&view=markup OTRS ITSM Ticket Split Information Disclosure Vulnerability r18120 2013/gb_otrs_email_multiple_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_email_multiple_vuln.nasl?root=openvas&view=markup OTRS Email Multiple Vulnerability r18120 2013/gb_otrs_obj_link_rest_bypass_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_obj_link_rest_bypass_vuln.nasl?root=openvas&view=markup OTRS Object Link Restriction Bypass Vulnerability r18120 2013/gb_otrs_ticket_print_info_disclosure_vuln.nasl http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_otrs_ticket_print_info_disclosure_vuln.nasl?root=openvas&view=markup OTRS Ticket-print Information Disclosure Vulnerability _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- New VA Modules: MSF: 4, Nessus: 3, OpenVAS: 40 New VA Module Alert Service (Oct 22)