This report describes any new scripts/modules/exploits added to Nmap,
OpenVAS, Metasploit, and Nessus since yesterday.
== OpenVAS plugins (3) ==
r15549 2013/gb_cometchat_57979.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_cometchat_57979.nasl?root=openvas&view=markup
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
r15549 2013/gb_piwigo_58016.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_piwigo_58016.nasl?root=openvas&view=markup
Piwigo Arbitrary File Disclosure and Arbitrary File Deletion
Vulnerabilities
r15549 2013/gb_phpmygallery_58081.nasl
http://wald.intevation.org/scm/viewvc.php/trunk/openvas-plugins/scripts/2013/gb_phpmygallery_58081.nasl?root=openvas&view=markup
PHPmyGallery Local File Disclosure and Cross Site Scripting
Vulnerabilities
== Metasploit modules (4) ==
r16484
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/glossword_upload_exec.rb
Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerability
r16487
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/kordil_edms_upload_exec.rb
Kordil EDMS v2.2.60rc3 Unauthenticated Arbitrary File Upload
Vulnerability
r16488 http://metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/gather/xbmc_traversal.rb
XBMC Web Server Directory Traversal
r16490
http://metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/multi/http/polarcms_upload_exec.rb
PolarPearCms PHP File Upload Vulnerability
== Nessus plugins (17) ==
64892 ubuntu_USN-1748-1.nasl
http://nessus.org/plugins/index.php?view=single&id=64892
USN-1748-1 : thunderbird vulnerabilities
64891 ubuntu_USN-1747-1.nasl
http://nessus.org/plugins/index.php?view=single&id=64891
USN-1747-1 : transmission vulnerability
64890 ubuntu_USN-1746-1.nasl
http://nessus.org/plugins/index.php?view=single&id=64890
USN-1746-1 : pidgin vulnerabilities
64889 suse_11_squid3-130212.nasl
http://nessus.org/plugins/index.php?view=single&id=64889
SuSE 11.2 Security Update : squid3 (SAT Patch Number 7336)
64888 suse_11_kernel-130219.nasl
http://nessus.org/plugins/index.php?view=single&id=64888
SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 7370 / 7373
/ 7374)
64887 freebsd_pkg_d60199df7fb311e29c5a000d601460a4.nasl
http://nessus.org/plugins/index.php?view=single&id=64887
FreeBSD : otrs -- XSS vulnerability in Firefox and Opera could lead to
remote code execution (d60199df-7fb3-11e2-9c5a-000d601460a4)
64886 freebsd_pkg_b50cbbc07fb211e29c5a000d601460a4.nasl
http://nessus.org/plugins/index.php?view=single&id=64886
FreeBSD : otrs -- XSS vulnerability in Internet Explorer could lead to
remote code execution (b50cbbc0-7fb2-11e2-9c5a-000d601460a4)
64885 freebsd_pkg_840655697fb411e29c5a000d601460a4.nasl
http://nessus.org/plugins/index.php?view=single&id=64885
FreeBSD : otrs -- XSS vulnerability could lead to remote code execution
(84065569-7fb4-11e2-9c5a-000d601460a4)
64884 fedora_2013-2589.nasl
http://nessus.org/plugins/index.php?view=single&id=64884
Fedora 17 : pigz-2.2.5-1.fc17 (2013-2589)
64883 fedora_2013-2206.nasl
http://nessus.org/plugins/index.php?view=single&id=64883
Fedora 17 : openssh-5.9p1-29.fc17 (2013-2206)
64882 fedora_2012-19606.nasl
http://nessus.org/plugins/index.php?view=single&id=64882
Fedora 17 : cups-1.5.4-18.fc17 (2012-19606)
64881 debian_DSA-2632.nasl
http://nessus.org/plugins/index.php?view=single&id=64881
Debian DSA-2632-1 : linux-2.6 - privilege escalation/denial of service
64880 debian_DSA-2629.nasl
http://nessus.org/plugins/index.php?view=single&id=64880
Debian DSA-2629-1 : openjpeg - several issues
64879 Slackware_SSA_2013-056-01.nasl
http://nessus.org/plugins/index.php?view=single&id=64879
SSA-2013-056-01 : seamonkey
64878 bugzilla_3_6_13.nasl
http://nessus.org/plugins/index.php?view=single&id=64878
Bugzilla < 3.6.13 / 4.0.10 / 4.2.5 / 4.4rc2 Multiple Vulnerabilities
64877 bugzilla_show_bug_xss.nasl
http://nessus.org/plugins/index.php?view=single&id=64877
Bugzilla show_bug.cgi id Parameter XSS
64876 twiki_5_1_4.nasl
http://nessus.org/plugins/index.php?view=single&id=64876
TWiki < 5.1.4 MAKETEXT Variable Tilde Character Command Injection
_______________________________________________
Sent through the dev mailing list
↧
new scripts/modules/exploits added to Nmap, OpenVAS, Metasploit, and Nessus since yesterday
↧