From 3c32f23c62f67c40a370adb391ce3587d7cf86c3 Mon Sep 17 00:00:00 2001 From: frueauf Date: Sun, 13 Oct 2002 09:11:51 +0000 Subject: Update nessus{-libraries,-core,-plugins} and libnasl to 1.2.6. Changes since 1.2.0: 1.2.6 : . changes by Michael Slifcak (Michael.Slifcak@guardent.com) - Added Bugtraq cross reference in the plugins - Added support for BID in nessusd (this has yet to be done on the client side) . changes by Axel Nennker (Axel.Nennker@t-systems.com) - fixed the xml and html outputs - fixed array issues in a couple of plugins . changes by Michel Arboi (arboi@bigfoot.com) - find_service now detects services protected by TCP wrappers or ACL - find_service detects gnuserv - ptyexecvp() replaced by nessus_popen() (*) . changes by Renaud Deraison (deraison@cvs.nessus.org) - Fixed a bug which may make nasl interpret backquoted strings (\n and \r) received from the network (problem noted by Pavel Kankovsky) - nmap_wrapper.nes calls _exit() instead of exit() (*) - Solved the lack of bpf's on Free/Open/NetBSD and MacOSX by sharing _one_ among all the Nessus processes. As a result, Nessus's ping is much more effective on these platforms - bugfix in plug_set_key() which would eventually make some scripts take too long when writing in the KB - Plugins of family ACT_SETTINGS are run *after* plugins of family ACT_SCANNERS - replaced the implementation of md5 which was used when OpenSSL is disabled by the one from RSA (the old one would not work on a big-endian host) - Fixed plugins build issues on MacOS X - The nessus client compiles and links against GTK+-2.0. Of course, it will be horrible and instable, as the GTK team does not care about backward compatibility (*) These two modifications solve the problems of nmap hanging under FreeBSD 1.2.5 : . changes by Michel Arboi (arboi@bigfoot.com) - find_service now displays unknown services that run on assigned ports - read_stream_connection smarter (smaller timeout) - find_service sometimes declared IDENT as "unknown" . changes by Renaud Deraison (deraison@cvs.nessus.org) - Fixed a deadlock that would prevent some plugins from completing - Fixed a possible (although rare) corruption issue in the reports (the script IDs could under some circumstances be random) - Fixed a potential segfault in the execution of nasl scripts 1.2.4 : . changes by Renaud Deraison (deraison@cvs.nessus.org) - Reverted back to autoconf 2.13. - Bug fix in nessus-core/nessusd/pluginlaunch.c - under some circumstances, data might have be lost in the reports - Fixed a bug in several plugins for web checks (under some circumstances, a plugin would do N x N checks against the remote web servers (where N equals to the number of web servers running on the remote host) 1.2.3 : . changes by Isaac Dawson (idawson@securitymanagementpartners.com) - New html output layout. . changes by Pasi Eronen (pasi.eronen@nixu.com) - fix in nmap_wrapper . changes by Renaud Deraison (deraison@cvs.nessus.org) - Fixed a bug which could make, under some circumstances, make nessusd crash the host it is running on. - If the option log_whole_attack is set to "no", then only the begining and the end of the attack is logged (and not the time each plugin takes) - Improved no404.nasl to further reduce false positives - Bug fix in nessusd - under some rare circumstances, report data could be lost (if many many plugins were enabled at the same time and were sending data at the same time). - UDP packets are resent while we wait for a reply (avoids to loose packets en route) - Fixed the option "auto_enable_dependencies" which would not always work - Sending a SIGTERM to the nessus client during a command line scan forces it to save its result to the current test file - Non-printables characters are not shown in the report any more 1.2.2 : . changes by Renaud Deraison (deraison@cvs.nessus.org) - In the GUI, while running a scan, plugins names are only updated once in a while (saves CPU) - Bugfix in the client : some host names would make the client crash - Repaired the '-P' switch in the client 1.2.1 : . changes by Simon Law (sfllaw@engmail.uwaterloo.ca) - Made a manpage for nessus-mkcert-client(1) and have it installed by the Makefile - Revised most other manpages for missing information and to increase clarity --- security/nessus-plugins/PLIST | 206 ++++++++++++++++++++++++++++++++++++++- security/nessus-plugins/distinfo | 6 +- 2 files changed, 208 insertions(+), 4 deletions(-) (limited to 'security/nessus-plugins') diff --git a/security/nessus-plugins/PLIST b/security/nessus-plugins/PLIST index 03ccb2f5f55..22222b33f2b 100644 --- a/security/nessus-plugins/PLIST +++ b/security/nessus-plugins/PLIST @@ -1,48 +1,94 @@ -@comment $NetBSD: PLIST,v 1.4 2002/08/04 08:02:38 veego Exp $ +@comment $NetBSD: PLIST,v 1.5 2002/10/13 09:11:53 frueauf Exp $ bin/nessus-build etc/nessus/accounts.txt etc/nessus/queso.conf lib/nessus/plugins/3com_switches.nasl +lib/nessus/plugins/AnyForm.nasl lib/nessus/plugins/BEA_weblogic_Reveal_Script_Code.nasl +lib/nessus/plugins/BEA_weblogic_Reveal_Script_Code_2.nasl +lib/nessus/plugins/CSCdi34061.nasl +lib/nessus/plugins/CSCdi36962.nasl +lib/nessus/plugins/CSCdp35794.nasl +lib/nessus/plugins/CSCds04747.nasl +lib/nessus/plugins/CSCds07326.nasl +lib/nessus/plugins/CSCds66191.nasl +lib/nessus/plugins/CSCdt46181.nasl +lib/nessus/plugins/CSCdt62732.nasl +lib/nessus/plugins/CSCdt65960.nasl +lib/nessus/plugins/CSCdt93866.nasl +lib/nessus/plugins/CSCdu20643.nasl +lib/nessus/plugins/CSCdu81936.nasl +lib/nessus/plugins/CSCdv48261.nasl +lib/nessus/plugins/CSCdw19195.nasl +lib/nessus/plugins/CSCdw67458.nasl +lib/nessus/plugins/CSCdy03429.nasl lib/nessus/plugins/ColdFusion.nasl +lib/nessus/plugins/DDI_AirConnect_Default_Password.nasl +lib/nessus/plugins/DDI_Cabletron_Web_View.nasl +lib/nessus/plugins/DDI_Compaq_Mgmt_Proxy.nasl +lib/nessus/plugins/DDI_Directory_Scanner.nasl lib/nessus/plugins/DDI_F5_Default_Support.nasl +lib/nessus/plugins/DDI_FTP_Any_User_Login.nasl +lib/nessus/plugins/DDI_GlobalASA_Retrieval.nasl +lib/nessus/plugins/DDI_IIS_Compromised.nasl +lib/nessus/plugins/DDI_IIS_dotNet_Trace.nasl +lib/nessus/plugins/DDI_IPSwitch-IMail-SMTP-Buffer-Overflow.nasl +lib/nessus/plugins/DDI_JRun_Sample_Files.nasl +lib/nessus/plugins/DDI_JRun_Traversal.nasl +lib/nessus/plugins/DDI_JavaServer_Default.nasl +lib/nessus/plugins/DDI_LanRover_Blank_Password.nasl +lib/nessus/plugins/DDI_Linksys_Router_Default_Password.nasl +lib/nessus/plugins/DDI_MPEiX_FTP_Accounts.nasl +lib/nessus/plugins/DDI_MRTG_File_Read.nasl lib/nessus/plugins/DDI_Netware_Management_Portal.nasl lib/nessus/plugins/DDI_PIX_Firewall_Manager.nasl lib/nessus/plugins/DDI_Unprotected_PCanywhere.nasl lib/nessus/plugins/DDI_Unprotected_SiteScope.nasl +lib/nessus/plugins/DDI_WhatsUp_Default.nasl +lib/nessus/plugins/DDI_ws_ftp-server-cpwd-bo.nasl lib/nessus/plugins/ExAir_dos_advsearch.nasl lib/nessus/plugins/ExAir_dos_query.nasl lib/nessus/plugins/ExAir_dos_search.nasl lib/nessus/plugins/GuildFTPD097.nasl lib/nessus/plugins/IIS_frontpage_DOS.nasl +lib/nessus/plugins/Jserv_css.nasl lib/nessus/plugins/LPRng.nasl +lib/nessus/plugins/NDS_Object_Enum.nasl lib/nessus/plugins/NetSphere.nasl lib/nessus/plugins/Omnihttpd_pro_source_disclosure.nasl lib/nessus/plugins/PC_anywhere.nasl lib/nessus/plugins/PC_anywhere_tcp.nasl lib/nessus/plugins/PGPCert_DoS.nasl +lib/nessus/plugins/PHPAdsNew.nasl +lib/nessus/plugins/PWS_DoS.nasl lib/nessus/plugins/RA_ssh_detect.nasl lib/nessus/plugins/RA_www_detect.nasl lib/nessus/plugins/ShowCode.nasl lib/nessus/plugins/TelSrv_DoS.nasl lib/nessus/plugins/WebSite.nasl lib/nessus/plugins/X.nasl +lib/nessus/plugins/Xerver_DoS.nasl lib/nessus/plugins/a1stats.nasl lib/nessus/plugins/acc.nasl lib/nessus/plugins/accounts.nes +lib/nessus/plugins/achievo_code_injection.nasl +lib/nessus/plugins/activestate_perl.nasl lib/nessus/plugins/admentor_login_flaw.nasl lib/nessus/plugins/afs_version.nasl lib/nessus/plugins/agora.nasl lib/nessus/plugins/aix_ftpd.nasl lib/nessus/plugins/alcatel_adsl.nasl lib/nessus/plugins/alcatel_adsl_firewalling.nasl +lib/nessus/plugins/alcatel_pabx4400_detect.nasl lib/nessus/plugins/alchemy_eye_http.nasl lib/nessus/plugins/alibaba.nasl lib/nessus/plugins/alibaba_get32.nasl lib/nessus/plugins/alibaba_overflow.nasl lib/nessus/plugins/alibaba_pl.nasl lib/nessus/plugins/alibaba_tst.nasl +lib/nessus/plugins/alienform.nasl lib/nessus/plugins/altavista_search.nasl +lib/nessus/plugins/alya.nasl lib/nessus/plugins/amanda_detect.nasl lib/nessus/plugins/amanda_version.nasl lib/nessus/plugins/an_httpd_cgis.nasl @@ -53,8 +99,13 @@ lib/nessus/plugins/analogx_dos.nasl lib/nessus/plugins/analogx_traversal.nasl lib/nessus/plugins/annex_dos.nasl lib/nessus/plugins/aolserver_default_password.nasl +lib/nessus/plugins/apache_1_3_27.nasl +lib/nessus/plugins/apache_Tomcat_DOS_Device_XSS.nasl +lib/nessus/plugins/apache_Tomcat_Servlet_XSS.nasl +lib/nessus/plugins/apache_Tomcat_TroubleShooter.nasl lib/nessus/plugins/apache_auth_sql_insertion.nasl lib/nessus/plugins/apache_bat_exec.nasl +lib/nessus/plugins/apache_chunked_encoding.nasl lib/nessus/plugins/apache_dir_listing.nasl lib/nessus/plugins/apache_server_info.nasl lib/nessus/plugins/apache_server_status.nasl @@ -62,6 +113,9 @@ lib/nessus/plugins/apache_slash.nasl lib/nessus/plugins/apache_source_asp.nasl lib/nessus/plugins/apache_ssl_overflow.nasl lib/nessus/plugins/apache_username.nasl +lib/nessus/plugins/apache_win32_dir_trav.nasl +lib/nessus/plugins/appsocket_DoS.nasl +lib/nessus/plugins/arcserve_hidden_share.nasl lib/nessus/plugins/arkeia.nasl lib/nessus/plugins/ascend_kill.nasl lib/nessus/plugins/asip-status.nasl @@ -69,23 +123,31 @@ lib/nessus/plugins/asp_net_css.nasl lib/nessus/plugins/asp_net_path_disclosure.nasl lib/nessus/plugins/asp_source_data.nasl lib/nessus/plugins/asp_source_dot.nasl +lib/nessus/plugins/asp_source_space.nasl lib/nessus/plugins/ath0_hangup.nasl lib/nessus/plugins/auktion_cgi.nasl lib/nessus/plugins/auth_enabled.nasl lib/nessus/plugins/avengers_news_system_command_execution.nasl +lib/nessus/plugins/avirt_gateway_telnet.nasl +lib/nessus/plugins/awol_injection.nasl lib/nessus/plugins/axent_raptor_dos.nasl lib/nessus/plugins/axis.nasl lib/nessus/plugins/axis_camera.nasl lib/nessus/plugins/backorifice1.nasl lib/nessus/plugins/badblue_directory_traversal.nasl +lib/nessus/plugins/badblue_get_DoS.nasl +lib/nessus/plugins/badblue_null_byte.nasl lib/nessus/plugins/basilix_inc_files.nasl +lib/nessus/plugins/basilix_webmail.nasl lib/nessus/plugins/bb-hist.nasl lib/nessus/plugins/bb-hostsvc.nasl lib/nessus/plugins/bboard.nasl +lib/nessus/plugins/benhur_ftp_firewall.nasl lib/nessus/plugins/bftelnet.nasl lib/nessus/plugins/bftpd_chown.nasl lib/nessus/plugins/bftpd_format_string.nasl lib/nessus/plugins/bigconf.nasl +lib/nessus/plugins/bind9_dos.nasl lib/nessus/plugins/bind_authors.nasl lib/nessus/plugins/bind_covert_overflows.nasl lib/nessus/plugins/bind_dnsstorm.nasl @@ -100,14 +162,19 @@ lib/nessus/plugins/bizdb1_search.nasl lib/nessus/plugins/blackice_dos.nasl lib/nessus/plugins/bonk.nasl lib/nessus/plugins/bootparamd.nasl +lib/nessus/plugins/boozt_admin_overflow.nasl lib/nessus/plugins/broadvision_path_disclosure.nasl lib/nessus/plugins/broker_ftp.nasl +lib/nessus/plugins/browsegate_http_overflows.nasl +lib/nessus/plugins/bugbear.nasl lib/nessus/plugins/c32.nasl lib/nessus/plugins/ca_unicenter_file_transfer_service.nasl lib/nessus/plugins/ca_unicenter_transport_service.nasl +lib/nessus/plugins/cachefsd_overflow.nasl lib/nessus/plugins/cachemgr_cgi.nasl lib/nessus/plugins/calendar.nasl lib/nessus/plugins/campas.nasl +lib/nessus/plugins/canna_overflow.nasl lib/nessus/plugins/cassandra_nntp_dos.nasl lib/nessus/plugins/cayman_any_username.nasl lib/nessus/plugins/cdk.nasl @@ -126,15 +193,24 @@ lib/nessus/plugins/chameleon_smtpd_overflow.nasl lib/nessus/plugins/chargen.nasl lib/nessus/plugins/check_ports.nasl lib/nessus/plugins/checkpoint.nasl +lib/nessus/plugins/cifs445.nasl lib/nessus/plugins/cisco-view-source-dos.nasl lib/nessus/plugins/cisco_675.nasl lib/nessus/plugins/cisco_675_http_dos.nasl +lib/nessus/plugins/cisco_aironet_dos.nasl +lib/nessus/plugins/cisco_ata186_password_circumvent.nasl lib/nessus/plugins/cisco_catalyst.nasl lib/nessus/plugins/cisco_dos.nasl +lib/nessus/plugins/cisco_gsr_acl.nasl +lib/nessus/plugins/cisco_gsr_unreachable.nasl lib/nessus/plugins/cisco_http_admin_access.nasl lib/nessus/plugins/cisco_http_dos.nasl lib/nessus/plugins/cisco_no_pw.nasl +lib/nessus/plugins/cisco_ssh_multiple_vulns.nasl +lib/nessus/plugins/cisco_voip_dos.nasl +lib/nessus/plugins/citrix_find.nasl lib/nessus/plugins/cmail_overflow.nasl +lib/nessus/plugins/cobalt_cube_webmail_dir_trav.nasl lib/nessus/plugins/cobalt_web_admin_server.nasl lib/nessus/plugins/codered_x.nasl lib/nessus/plugins/cold_fusion_admin_dos.nasl @@ -162,23 +238,31 @@ lib/nessus/plugins/deep_throat.nasl lib/nessus/plugins/delegate_overflow.nasl lib/nessus/plugins/deltaups_detect.nasl lib/nessus/plugins/dhcp.nasl +lib/nessus/plugins/directory_manager.nasl +lib/nessus/plugins/directoryphp.nasl lib/nessus/plugins/directorypro.nasl lib/nessus/plugins/dmail_overflow.nasl lib/nessus/plugins/dns_xfer.nasl lib/nessus/plugins/doc_browsable.nasl lib/nessus/plugins/doc_package_browseable.nasl lib/nessus/plugins/domino.nasl +lib/nessus/plugins/domino_authentication_bypass.nasl lib/nessus/plugins/domino_default_db.nasl lib/nessus/plugins/domino_fs_config.nasl lib/nessus/plugins/domino_http_dos.nasl lib/nessus/plugins/dragon_ftp.nasl lib/nessus/plugins/dragon_telnet.nasl lib/nessus/plugins/dtspcd.nasl +lib/nessus/plugins/dump.inc lib/nessus/plugins/dumpenv.nasl +lib/nessus/plugins/dwhttp_format_string.nasl +lib/nessus/plugins/eDonkey_detect.nasl +lib/nessus/plugins/eXtremail_format_strings.nasl lib/nessus/plugins/echo.nasl lib/nessus/plugins/eftp_bufferoverflow.nasl lib/nessus/plugins/eftp_directory_traversal.nasl lib/nessus/plugins/eftp_dos.nasl +lib/nessus/plugins/eftp_root_disclosure.nasl lib/nessus/plugins/eicon_modem_dos.nasl lib/nessus/plugins/empower_path.nasl lib/nessus/plugins/eserv.nasl @@ -189,10 +273,12 @@ lib/nessus/plugins/ews.nasl lib/nessus/plugins/exchange_dos.nasl lib/nessus/plugins/exchange_public_folders_information_leak.nasl lib/nessus/plugins/ezshopper.nasl +lib/nessus/plugins/fake_identd.nasl lib/nessus/plugins/fakebo.nasl lib/nessus/plugins/faqmanager.nasl lib/nessus/plugins/faxsurvey.nasl lib/nessus/plugins/fcgi_echo.nasl +lib/nessus/plugins/find_ap.nasl lib/nessus/plugins/find_service.nes lib/nessus/plugins/finger.nasl lib/nessus/plugins/finger_0.nasl @@ -219,6 +305,7 @@ lib/nessus/plugins/ftp_bounce.nasl lib/nessus/plugins/ftp_bounce_scan.nes lib/nessus/plugins/ftp_check_user.nasl lib/nessus/plugins/ftp_cwd_root.nasl +lib/nessus/plugins/ftp_func.inc lib/nessus/plugins/ftp_glob_overflow.nasl lib/nessus/plugins/ftp_overflow.nasl lib/nessus/plugins/ftp_pasv_dos.nasl @@ -232,16 +319,21 @@ lib/nessus/plugins/ftp_servu_dos2.nasl lib/nessus/plugins/ftp_servu_traversal.nasl lib/nessus/plugins/ftp_site_exec.nasl lib/nessus/plugins/ftp_sol_check_user.nasl +lib/nessus/plugins/ftp_traversal.nasl lib/nessus/plugins/ftp_w98_devname_dos.nasl lib/nessus/plugins/ftp_write_dirs.nes +lib/nessus/plugins/ftp_zaurus.nasl lib/nessus/plugins/ftpgate.nasl lib/nessus/plugins/ftpglob.nasl lib/nessus/plugins/ftpserver_detect_type_nd_version.nasl +lib/nessus/plugins/gallery_injection.nasl lib/nessus/plugins/gatecrasher.nasl lib/nessus/plugins/gauntlet_overflow.nasl +lib/nessus/plugins/generic_WEB-INF.nasl lib/nessus/plugins/girlfriend.nasl lib/nessus/plugins/glimpse.nasl lib/nessus/plugins/gnapster_get_file.nasl +lib/nessus/plugins/gnutella_detect.nasl lib/nessus/plugins/goodtech_ftpd_dos.nasl lib/nessus/plugins/groupwise_overflow.nasl lib/nessus/plugins/groupwise_web_interface_help_hole.nasl @@ -264,8 +356,10 @@ lib/nessus/plugins/htmlscript.nasl lib/nessus/plugins/htsearch_config_switch.nasl lib/nessus/plugins/htsearch_location.nasl lib/nessus/plugins/http-rpc-epmap.nasl +lib/nessus/plugins/http_func.inc lib/nessus/plugins/http_ids_evasion.nasl lib/nessus/plugins/http_methods.nasl +lib/nessus/plugins/http_trace.nasl lib/nessus/plugins/http_version.nasl lib/nessus/plugins/http_w98_devname_dos.nasl lib/nessus/plugins/http_webshopper.nasl @@ -278,9 +372,11 @@ lib/nessus/plugins/hyperbomb.nasl lib/nessus/plugins/i2odialogd.nasl lib/nessus/plugins/iChat.nasl lib/nessus/plugins/iParty.nasl +lib/nessus/plugins/ibillpm_detect.nasl lib/nessus/plugins/ibm_server_code.nasl lib/nessus/plugins/icat.nasl lib/nessus/plugins/icecap_default_pw.nasl +lib/nessus/plugins/icecast_disclosure.nasl lib/nessus/plugins/icecast_overflow.nasl lib/nessus/plugins/icmp_mask_req.nasl lib/nessus/plugins/icmp_timestamp.nasl @@ -289,11 +385,14 @@ lib/nessus/plugins/idq_dll.nasl lib/nessus/plugins/ids_evasion.nasl lib/nessus/plugins/iis5_isapi_printer.nasl lib/nessus/plugins/iis5_printer.nasl +lib/nessus/plugins/iis5_sample_cross_site.nasl +lib/nessus/plugins/iis5_sample_path.nasl lib/nessus/plugins/iis_anything_idq.nasl lib/nessus/plugins/iis_asp_overflow.nasl lib/nessus/plugins/iis_authentification_manager.nasl lib/nessus/plugins/iis_bdir.nasl lib/nessus/plugins/iis_buffer_overflow.nasl +lib/nessus/plugins/iis_codebrws.nasl lib/nessus/plugins/iis_crash.nasl lib/nessus/plugins/iis_decode_bug.nasl lib/nessus/plugins/iis_dir_traversal.nasl @@ -303,6 +402,7 @@ lib/nessus/plugins/iis_frag_disclosure.nasl lib/nessus/plugins/iis_frontpage_dos.nasl lib/nessus/plugins/iis_ftp_crash.nasl lib/nessus/plugins/iis_htr_isapi.nasl +lib/nessus/plugins/iis_htr_overflow.nasl lib/nessus/plugins/iis_ida_isapi.nasl lib/nessus/plugins/iis_isapi_overflow.nasl lib/nessus/plugins/iis_malformed_request.nasl @@ -317,11 +417,13 @@ lib/nessus/plugins/iis_viewcode.nasl lib/nessus/plugins/iis_webdav_lock_memory_leak.nasl lib/nessus/plugins/iis_xss_404.nasl lib/nessus/plugins/iisadmin.nasl +lib/nessus/plugins/ike_check.nasl lib/nessus/plugins/imagemap.nasl lib/nessus/plugins/imail_host_overflow.nasl lib/nessus/plugins/imail_imapd_overflow.nasl lib/nessus/plugins/imail_imonitor_overflow.nasl lib/nessus/plugins/imap4_rev1_overflow.nasl +lib/nessus/plugins/imap_body_overflow.nasl lib/nessus/plugins/imap_overflow.nasl lib/nessus/plugins/imate_overflow.nasl lib/nessus/plugins/imp_session_hijacking.nasl @@ -331,14 +433,18 @@ lib/nessus/plugins/informix_traversal.nasl lib/nessus/plugins/infosrch.nasl lib/nessus/plugins/inn.nasl lib/nessus/plugins/innd_overflow.nasl +lib/nessus/plugins/interchange_detect.nasl lib/nessus/plugins/interscan_dos.nasl lib/nessus/plugins/interscan_vw_cgi.nasl +lib/nessus/plugins/iplanet_chunked_encoding.nasl lib/nessus/plugins/iplanet_dir_serv.nasl +lib/nessus/plugins/iplanet_search.nasl lib/nessus/plugins/iplanet_traversal.nasl lib/nessus/plugins/ipop2d.nasl lib/nessus/plugins/ipop2d_readfiles.nasl lib/nessus/plugins/ithousemail_bof.nasl lib/nessus/plugins/iws_shtml.nasl +lib/nessus/plugins/jigsaw_msdos_dev_DoS.nasl lib/nessus/plugins/jj.nasl lib/nessus/plugins/jrun.nasl lib/nessus/plugins/jrun_dir_listing.nasl @@ -351,21 +457,26 @@ lib/nessus/plugins/krb_pingpong.nasl lib/nessus/plugins/kuang2_the_virus.nasl lib/nessus/plugins/kw_whois.nasl lib/nessus/plugins/labrea.nasl +lib/nessus/plugins/labview_www_DoS.nasl lib/nessus/plugins/land.nasl lib/nessus/plugins/lcdproc_buffer_overflow.nasl lib/nessus/plugins/lcdproc_detect.nasl lib/nessus/plugins/ldap_null_base.nasl lib/nessus/plugins/ldap_null_bind.nasl lib/nessus/plugins/libgtop_daemon.nasl +lib/nessus/plugins/libwhisker_settings.nasl lib/nessus/plugins/linux_tftp.nes lib/nessus/plugins/linux_zero_len_fragment.nasl lib/nessus/plugins/linuxconf_detect.nasl lib/nessus/plugins/lion.nasl lib/nessus/plugins/listrec.nasl +lib/nessus/plugins/localweb2k.nasl lib/nessus/plugins/logins.nasl lib/nessus/plugins/lotus_envid.nasl lib/nessus/plugins/lotus_esmtp_overflow.nasl lib/nessus/plugins/lotus_notes_openserver_disclosure.nasl +lib/nessus/plugins/lotus_path_disclosure.nasl +lib/nessus/plugins/lpd_dvips.nasl lib/nessus/plugins/lpd_overflow.nasl lib/nessus/plugins/mailman_webmail.nasl lib/nessus/plugins/mailnews.nasl @@ -383,18 +494,26 @@ lib/nessus/plugins/mercure_imap_read_any_file.nasl lib/nessus/plugins/mercure_webview.nasl lib/nessus/plugins/metainfo_mail.nasl lib/nessus/plugins/minivend_view_page.nasl +lib/nessus/plugins/misc_func.inc lib/nessus/plugins/miscflood.nasl lib/nessus/plugins/mkilog.nasl +lib/nessus/plugins/mldonkey_telnet.nasl +lib/nessus/plugins/mldonkey_www.nasl +lib/nessus/plugins/mod_python_handle.nasl +lib/nessus/plugins/mod_ssl_offby1.nasl lib/nessus/plugins/mod_ssl_overflow.nasl lib/nessus/plugins/mrtg_traversal.nasl lib/nessus/plugins/ms_index_server.nasl +lib/nessus/plugins/ms_siteserver_info_disclosure.nasl lib/nessus/plugins/msadcs_dll.nasl +lib/nessus/plugins/msdtc_dos.nasl lib/nessus/plugins/msftp_dos.nasl lib/nessus/plugins/mspws_dotdotdot.nasl lib/nessus/plugins/msql_overflow.nasl lib/nessus/plugins/mssmtp_dos.nasl lib/nessus/plugins/mssql_blank_password.nasl lib/nessus/plugins/mssql_brute_force.nasl +lib/nessus/plugins/mssql_hello_overflow.nasl lib/nessus/plugins/mssql_ping.nasl lib/nessus/plugins/mssqlserver_detect.nasl lib/nessus/plugins/mssqlserver_dos.nasl @@ -424,6 +543,7 @@ lib/nessus/plugins/netbeans.nasl lib/nessus/plugins/netbios_name_get.nasl lib/nessus/plugins/netbus.nasl lib/nessus/plugins/netbus2.nasl +lib/nessus/plugins/netcommerce_sql.nasl lib/nessus/plugins/netscape_PageServices.nasl lib/nessus/plugins/netscape_accept_overflow.nasl lib/nessus/plugins/netscape_adminpw.nasl @@ -436,16 +556,20 @@ lib/nessus/plugins/netscape_pop_auth.nasl lib/nessus/plugins/netscape_publishing_expert_psuser.nasl lib/nessus/plugins/netscape_wp_tag.nasl lib/nessus/plugins/netstat.nasl +lib/nessus/plugins/nettools_cmd_exec.nasl lib/nessus/plugins/newdsn.nasl lib/nessus/plugins/newsdesk.nasl lib/nessus/plugins/nikto_wrapper.nes lib/nessus/plugins/nimda.nasl lib/nessus/plugins/nis_server.nasl +lib/nessus/plugins/nisd_overflow.nasl lib/nessus/plugins/nmap_tcp_connect.nes lib/nessus/plugins/nmap_wrapper.nes +lib/nessus/plugins/nntp_info.nasl lib/nessus/plugins/nntpserver_detect.nasl lib/nessus/plugins/no404.nasl lib/nessus/plugins/nortel_cgiproc_dos.nasl +lib/nessus/plugins/nortel_passport_default_pass.nasl lib/nessus/plugins/nortel_pwdless1.nasl lib/nessus/plugins/nortel_pwdless2.nasl lib/nessus/plugins/notes_mta_dos.nasl @@ -461,14 +585,20 @@ lib/nessus/plugins/ntp_open.nasl lib/nessus/plugins/ntp_overflow.nasl lib/nessus/plugins/oas_overflow.nasl lib/nessus/plugins/objectserver.nes +lib/nessus/plugins/officescan_disclosure.nasl lib/nessus/plugins/oops_overflow.nasl lib/nessus/plugins/openlink_overflow.nasl lib/nessus/plugins/openssh_231.nasl lib/nessus/plugins/openssh_301.nasl +lib/nessus/plugins/openssh_33.nasl lib/nessus/plugins/openssh_adv_option.nasl +lib/nessus/plugins/openssh_afs.nasl lib/nessus/plugins/openssh_channel.nasl lib/nessus/plugins/openssh_uselogin.nasl lib/nessus/plugins/openssh_uselogin_environment.nasl +lib/nessus/plugins/openssl_overflow_generic_test.nasl +lib/nessus/plugins/oracle9iAS_slashdot_DoS.nasl +lib/nessus/plugins/oracle9iAS_too_long_url.nasl lib/nessus/plugins/oracle9i_XSQLServlet_XSQLConfig.nasl lib/nessus/plugins/oracle9i_apache_dms.nasl lib/nessus/plugins/oracle9i_dad_admin.nasl @@ -492,6 +622,7 @@ lib/nessus/plugins/oshare.nasl lib/nessus/plugins/owa-anonymous.nasl lib/nessus/plugins/ows_bin_cgi.nasl lib/nessus/plugins/ows_overflow.nasl +lib/nessus/plugins/p-smash.nasl lib/nessus/plugins/pagelog_cgi.nasl lib/nessus/plugins/pals_cgi.nasl lib/nessus/plugins/pam_smb.nasl @@ -504,13 +635,18 @@ lib/nessus/plugins/perl_cal.nasl lib/nessus/plugins/perl_cgi.nasl lib/nessus/plugins/pfdipaly.nasl lib/nessus/plugins/pftp.nasl +lib/nessus/plugins/pgpmail.nasl lib/nessus/plugins/pgpnet_detect.nasl lib/nessus/plugins/phf.nasl lib/nessus/plugins/phonebook.nasl lib/nessus/plugins/phorum.nasl lib/nessus/plugins/php.nasl lib/nessus/plugins/php3_path_disclosure.nasl +lib/nessus/plugins/php4_path_disclosure.nasl +lib/nessus/plugins/phpMyAdmin_file_reading.nasl lib/nessus/plugins/phpMyExplorer.nasl +lib/nessus/plugins/phpPgAdmin_file_reading.nasl +lib/nessus/plugins/php_4_2_x_malformed_POST.nasl lib/nessus/plugins/php_apache_win32_default.nasl lib/nessus/plugins/php_file_upload.nasl lib/nessus/plugins/php_imap_overflow.nasl @@ -525,8 +661,10 @@ lib/nessus/plugins/php_safe_mode.nasl lib/nessus/plugins/php_split_mime.nasl lib/nessus/plugins/phpix.nasl lib/nessus/plugins/phprocketaddin_traversal.nasl +lib/nessus/plugins/pi3web_dos.nasl lib/nessus/plugins/pi3web_isapi.nasl lib/nessus/plugins/pimp.nasl +lib/nessus/plugins/ping_asp.nasl lib/nessus/plugins/ping_host.nasl lib/nessus/plugins/piranha.nasl lib/nessus/plugins/plusmail.nasl @@ -535,6 +673,7 @@ lib/nessus/plugins/pnserver.nasl lib/nessus/plugins/poc32.nasl lib/nessus/plugins/pollit.nasl lib/nessus/plugins/pop3_overflow.nasl +lib/nessus/plugins/poprelayd_auth.nasl lib/nessus/plugins/popserver_detect.nasl lib/nessus/plugins/port_shell_execution.nasl lib/nessus/plugins/portal_of_doom.nasl @@ -553,15 +692,19 @@ lib/nessus/plugins/proxy_connect.nasl lib/nessus/plugins/proxy_port.nasl lib/nessus/plugins/proxy_post.nasl lib/nessus/plugins/proxy_use.nasl +lib/nessus/plugins/qmtp_detect.nasl lib/nessus/plugins/qpopper.nasl +lib/nessus/plugins/qpopper2.nasl lib/nessus/plugins/qpopper_euidl.nasl lib/nessus/plugins/qpopper_list.nasl lib/nessus/plugins/quake3_dos.nasl lib/nessus/plugins/queso.nes lib/nessus/plugins/quickstore.nasl lib/nessus/plugins/quote.nasl +lib/nessus/plugins/radmin_detect.nasl lib/nessus/plugins/ramcrash.nasl lib/nessus/plugins/raptor_detect.nasl +lib/nessus/plugins/raptor_isn.nasl lib/nessus/plugins/rbs.nasl lib/nessus/plugins/realserver_disclosure.nasl lib/nessus/plugins/realserver_malformed_request_dos.nasl @@ -569,12 +712,15 @@ lib/nessus/plugins/realserver_ussr_dos.nasl lib/nessus/plugins/realserverg2.nasl lib/nessus/plugins/relative_field_vulnerability.nasl lib/nessus/plugins/remwatch.nasl +lib/nessus/plugins/resin_path_disclosure.nasl lib/nessus/plugins/resin_traversal.nasl lib/nessus/plugins/rexecd.nasl lib/nessus/plugins/rfparalyze.nasl lib/nessus/plugins/rfpoison.nasl +lib/nessus/plugins/rh_inetd.nasl lib/nessus/plugins/rich_media_ecommerce_stores_sensitive_information_insecurely.nasl lib/nessus/plugins/rlogin.nasl +lib/nessus/plugins/rlogin_froot.nasl lib/nessus/plugins/roads_cgi.nasl lib/nessus/plugins/rockliffe_mailsite_overflow.nasl lib/nessus/plugins/rover_pop3_overflow.nasl @@ -619,13 +765,19 @@ lib/nessus/plugins/rpc_ypbind.nasl lib/nessus/plugins/rpc_yppasswd.nasl lib/nessus/plugins/rpc_ypupated.nasl lib/nessus/plugins/rpc_ypxfrd.nasl +lib/nessus/plugins/rpcinfo.nasl lib/nessus/plugins/rpm_query.nasl lib/nessus/plugins/rsh.nasl +lib/nessus/plugins/rsh_null.nasl lib/nessus/plugins/rsh_users.nasl lib/nessus/plugins/rtsp_detect.nasl +lib/nessus/plugins/rusers_output.nasl +lib/nessus/plugins/rwalld_format_string.nasl lib/nessus/plugins/rwhois_format_string.nasl lib/nessus/plugins/rwhois_format_string2.nasl lib/nessus/plugins/samba_arbitrary_file_creation.nasl +lib/nessus/plugins/samba_possible_overflow.nasl +lib/nessus/plugins/sambar_DoS.nasl lib/nessus/plugins/sambar_cgi.nasl lib/nessus/plugins/sambar_mailit.nasl lib/nessus/plugins/sambar_pagecount.nasl @@ -641,15 +793,25 @@ lib/nessus/plugins/securemote.nasl lib/nessus/plugins/securemote_info_leak.nasl lib/nessus/plugins/sedum_dos.nasl lib/nessus/plugins/sendmail_bt_switch.nasl +lib/nessus/plugins/sendmail_custom_config.nasl lib/nessus/plugins/sendmail_debug.nasl +lib/nessus/plugins/sendmail_debug_leak.nasl lib/nessus/plugins/sendmail_decode.nasl lib/nessus/plugins/sendmail_expn.nasl +lib/nessus/plugins/sendmail_ident.nasl lib/nessus/plugins/sendmail_local_overflow.nasl lib/nessus/plugins/sendmail_mime_overflow.nasl +lib/nessus/plugins/sendmail_mime_overflow2.nasl +lib/nessus/plugins/sendmail_queue_destruction.nasl lib/nessus/plugins/sendmail_redirection.nasl lib/nessus/plugins/sendtemp.nasl +lib/nessus/plugins/servletExec_DoS.nasl +lib/nessus/plugins/servletExec_File_Reading.nasl +lib/nessus/plugins/servletExec_Path_Disclosure.nasl +lib/nessus/plugins/sgi_rpc_passwd.nasl lib/nessus/plugins/sglmerchant_information_disclosure.nasl lib/nessus/plugins/shaft.nasl +lib/nessus/plugins/shambala_www_dos.nasl lib/nessus/plugins/shells.nasl lib/nessus/plugins/shiva_default_pass.nasl lib/nessus/plugins/shopping_cart_information_disclosure.nasl @@ -658,6 +820,7 @@ lib/nessus/plugins/shoutcast_version.nasl lib/nessus/plugins/showmount.nasl lib/nessus/plugins/silverstream_database.nasl lib/nessus/plugins/silverstream_dirlisting.nasl +lib/nessus/plugins/simpleserverwww_dos.nasl lib/nessus/plugins/simplewww.nasl lib/nessus/plugins/siteUserMod.nasl lib/nessus/plugins/sitescope_management_server.nasl @@ -723,6 +886,13 @@ lib/nessus/plugins/smb_nt_ms02-005.nasl lib/nessus/plugins/smb_nt_ms02-006.nasl lib/nessus/plugins/smb_nt_ms02-008.nasl lib/nessus/plugins/smb_nt_ms02-009.nasl +lib/nessus/plugins/smb_nt_ms02-016.nasl +lib/nessus/plugins/smb_nt_ms02-017.nasl +lib/nessus/plugins/smb_nt_ms02-018.nasl +lib/nessus/plugins/smb_nt_ms02-024.nasl +lib/nessus/plugins/smb_nt_ms02-029.nasl +lib/nessus/plugins/smb_nt_ms02-042.nasl +lib/nessus/plugins/smb_null_params_dos.nasl lib/nessus/plugins/smb_reg_autologon.nasl lib/nessus/plugins/smb_reg_hklm.nasl lib/nessus/plugins/smb_reg_missing_winreg.nasl @@ -732,6 +902,7 @@ lib/nessus/plugins/smb_reg_run_permissions.nasl lib/nessus/plugins/smb_reg_schedule.nasl lib/nessus/plugins/smb_reg_service_pack.nasl lib/nessus/plugins/smb_reg_service_pack_W2K.nasl +lib/nessus/plugins/smb_reg_service_pack_XP.nasl lib/nessus/plugins/smb_reg_sfcdisable.nasl lib/nessus/plugins/smb_reg_trojan_paths.nasl lib/nessus/plugins/smb_reg_winlogon_permissions.nasl @@ -750,15 +921,22 @@ lib/nessus/plugins/smb_users_lastpwchange.nasl lib/nessus/plugins/smb_users_neverloggedon.nasl lib/nessus/plugins/smb_users_pwexpiry.nasl lib/nessus/plugins/smb_xp_ms01-059.nasl +lib/nessus/plugins/smtp_AV_42zip_DoS.nasl +lib/nessus/plugins/smtp_antivirus.nasl lib/nessus/plugins/smtp_bounce.nasl lib/nessus/plugins/smtp_bypass_cisco.nasl lib/nessus/plugins/smtp_file.nasl +lib/nessus/plugins/smtp_func.inc lib/nessus/plugins/smtp_helo.nasl lib/nessus/plugins/smtp_ms01-037.nasl +lib/nessus/plugins/smtp_ms02-037.nasl lib/nessus/plugins/smtp_program.nasl lib/nessus/plugins/smtp_relay.nasl +lib/nessus/plugins/smtp_settings.nasl lib/nessus/plugins/smtpserver_detect.nasl +lib/nessus/plugins/snapstream_dir_trav.nasl lib/nessus/plugins/snmpXdmid.nasl +lib/nessus/plugins/snmp_cisco_type.nasl lib/nessus/plugins/snmp_default_communities.nasl lib/nessus/plugins/snmp_detect.nasl lib/nessus/plugins/snmp_dos.nasl @@ -772,13 +950,16 @@ lib/nessus/plugins/snmp_portscan.nes lib/nessus/plugins/snmp_processes.nasl lib/nessus/plugins/snmp_sysDesc.nasl lib/nessus/plugins/snmp_vacm.nasl +lib/nessus/plugins/socks4a_hostname_overflow.nasl lib/nessus/plugins/sojourn.nasl lib/nessus/plugins/spinclient.nasl lib/nessus/plugins/sqlqhit_information_disclosure.nasl lib/nessus/plugins/squid_dos.nasl lib/nessus/plugins/squid_overflows.nasl +lib/nessus/plugins/sscd_input.nasl lib/nessus/plugins/ssh1_proto_enabled.nasl lib/nessus/plugins/ssh3_passwd.nasl +lib/nessus/plugins/ssh_AllowedAuthentications.nasl lib/nessus/plugins/ssh_crc32.nasl lib/nessus/plugins/ssh_detect.nasl lib/nessus/plugins/ssh_insertion.nasl @@ -806,6 +987,7 @@ lib/nessus/plugins/tcp_chorusing.nasl lib/nessus/plugins/teardrop.nasl lib/nessus/plugins/technote.nasl lib/nessus/plugins/telnet.nasl +lib/nessus/plugins/telnet_func.inc lib/nessus/plugins/telnetserver_detect_type_nd_version.nasl lib/nessus/plugins/teso_telnet.nasl lib/nessus/plugins/test-cgi.nasl @@ -816,6 +998,7 @@ lib/nessus/plugins/thttpd_buffer_overflow.nasl lib/nessus/plugins/thttpd_bug.nasl lib/nessus/plugins/thttpd_ssi.nasl lib/nessus/plugins/tiny_proxy_heap_overflow.nasl +lib/nessus/plugins/tmosdos.nasl lib/nessus/plugins/tomcat_admin.nasl lib/nessus/plugins/tomcat_path_disclosure.nasl lib/nessus/plugins/tomcat_snoop.nasl @@ -826,6 +1009,8 @@ lib/nessus/plugins/trinity.nasl lib/nessus/plugins/trinoo.nasl lib/nessus/plugins/tripwire_webpage.nasl lib/nessus/plugins/ttawebtop.nasl +lib/nessus/plugins/ttyprompt.nasl +lib/nessus/plugins/typsoft_ftp_DoS.nasl lib/nessus/plugins/ultraseek_detect.nasl lib/nessus/plugins/ultraseek_dos.nasl lib/nessus/plugins/unicast_dos.nasl @@ -837,6 +1022,7 @@ lib/nessus/plugins/uw_imap_overflow.nasl lib/nessus/plugins/uw_imap_overflow_two.nasl lib/nessus/plugins/vftpd_overflow.nasl lib/nessus/plugins/view_source_cgi.nasl +lib/nessus/plugins/viralator.nasl lib/nessus/plugins/visadmin.nasl lib/nessus/plugins/visualroute_server_detect.nasl lib/nessus/plugins/vnc.nasl @@ -851,6 +1037,7 @@ lib/nessus/plugins/web_traversal.nasl lib/nessus/plugins/webactive_log.nasl lib/nessus/plugins/webalizer.nasl lib/nessus/plugins/webcart.nasl +lib/nessus/plugins/webcart_cmd_exec.nasl lib/nessus/plugins/webdav.nasl lib/nessus/plugins/webdav_iis.nasl lib/nessus/plugins/webdist.nasl @@ -863,12 +1050,14 @@ lib/nessus/plugins/webmin.nasl lib/nessus/plugins/webmirror.nasl lib/nessus/plugins/webplus.nasl lib/nessus/plugins/webplus_version.nasl +lib/nessus/plugins/webseal_DoS.nasl lib/nessus/plugins/websendmail.nasl lib/nessus/plugins/webserver_robot.nasl lib/nessus/plugins/webshield.nasl lib/nessus/plugins/website_pro.nasl lib/nessus/plugins/websitepro_overflow.nasl lib/nessus/plugins/webspeed.nasl +lib/nessus/plugins/websphere_xss.nasl lib/nessus/plugins/webspirs_cgi.nasl lib/nessus/plugins/wftp.nasl lib/nessus/plugins/wftp_241_dos.nasl @@ -877,6 +1066,7 @@ lib/nessus/plugins/whisker_wrapper.nes lib/nessus/plugins/whois_raw.nasl lib/nessus/plugins/win_trinoo.nasl lib/nessus/plugins/windmail.nasl +lib/nessus/plugins/windows_terminal_services.nasl lib/nessus/plugins/wingate.nasl lib/nessus/plugins/wingate_denial.nasl lib/nessus/plugins/wingate_user.nasl @@ -885,22 +1075,36 @@ lib/nessus/plugins/winnt_pptp_dos.nasl lib/nessus/plugins/winnuke.nasl lib/nessus/plugins/wins_udp_flood.nasl lib/nessus/plugins/winsatan.nasl +lib/nessus/plugins/wnn_overflow.nasl lib/nessus/plugins/worldclient_server_detection.nasl +lib/nessus/plugins/worldspan_gw_DoS.nasl lib/nessus/plugins/wrap.nasl +lib/nessus/plugins/wsftp_overflows.nasl lib/nessus/plugins/wu_ftpd_overflow.nasl lib/nessus/plugins/wu_ftpd_site_exec.nasl lib/nessus/plugins/wu_ftpd_site_newer.nasl +lib/nessus/plugins/www_infinite_request_DoS.nasl lib/nessus/plugins/www_too_long_auth.nasl +lib/nessus/plugins/www_too_long_cookie.nasl +lib/nessus/plugins/www_too_long_header.nasl +lib/nessus/plugins/www_too_long_header10.nasl +lib/nessus/plugins/www_too_long_header11.nasl +lib/nessus/plugins/www_too_long_method.nasl lib/nessus/plugins/www_too_long_post.nasl lib/nessus/plugins/www_too_long_url.nasl +lib/nessus/plugins/www_too_long_useragent.nasl +lib/nessus/plugins/www_too_long_version.nasl lib/nessus/plugins/wwwboardpwd.nasl lib/nessus/plugins/wwwwais.nasl lib/nessus/plugins/xdmcp.nasl lib/nessus/plugins/xitami_overflow.nasl lib/nessus/plugins/xmail_overflow.nasl +lib/nessus/plugins/xtel_detect.nasl +lib/nessus/plugins/xtelw_detect.nasl lib/nessus/plugins/xtramail_control.nasl lib/nessus/plugins/xtramail_helo.nasl lib/nessus/plugins/xtramail_pop_overflow.nasl +lib/nessus/plugins/xtux_server.nasl lib/nessus/plugins/yabb.nasl lib/nessus/plugins/yahoo_dos.nasl lib/nessus/plugins/yppasswdd.nasl diff --git a/security/nessus-plugins/distinfo b/security/nessus-plugins/distinfo index 448d5ea073e..d082b434799 100644 --- a/security/nessus-plugins/distinfo +++ b/security/nessus-plugins/distinfo @@ -1,4 +1,4 @@ -$NetBSD: distinfo,v 1.6 2002/05/10 13:18:47 frueauf Exp $ +$NetBSD: distinfo,v 1.7 2002/10/13 09:11:53 frueauf Exp $ -SHA1 (nessus-plugins-1.2.0.tar.gz) = 164c669465a45a1910227e4f40c8f0d5a553d9f9 -Size (nessus-plugins-1.2.0.tar.gz) = 724145 bytes +SHA1 (nessus-plugins-1.2.6.tar.gz) = 76bac9d8101be0d69f8d7e6414ab85c3b6afa650 +Size (nessus-plugins-1.2.6.tar.gz) = 886230 bytes -- cgit v1.2.3