* pop3-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled POP3 services. * nntp-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled NNTP services. ![]() ![]() * ms-sql-ntlm-info extracts OS version and sometimes hostname from MS SQL Server instances via the NTLM challenge message. The discovery is the same as targets-ipv6-multicast-mld, but the subscribed addresses are decoded and listed. * ipv6-multicast-mld-list discovers IPv6 multicast listeners with MLD probes. * imap-ntlm-info extracts hostname and sometimes OS version from NTLM-auth-enabled IMAP services. * http-vuln-cve2014-3704 detects and exploits the "Drupalgeddon" pre-auth SQL Injection vulnerability in Drupal. Also added a fingerprint for detecting CVE-2014-4019 to a. ![]() * http-vuln-cve2013-6786 detects a XSS and URL redirection vulnerability in Allegro RomPager web server. # Added 12 NSE scripts from 7 authors, bringing the total up to 527! and the summaries are below (authors are listed in brackets): * http-apache-server-status parses the server status page of Apache's mod_status.
0 Comments
Leave a Reply. |