risu 1.7.6 → 1.7.7

data/lib/risu/parsers/nessus/postprocess/apache_tomcat.rb

@@ -42,6 +42,10 @@ module Risu
                 81649,
                 12085,
                 35806,
+								81650,
+								83526,
+								
+
 
 							]
 						}

data/lib/risu/parsers/nessus/postprocess/apple_itunes.rb

@@ -0,0 +1,58 @@
+# Copyright (c) 2010-2016 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class AppleiTunesPatchRollup < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "Apple iTunes Patch Rollup",
+							:plugin_id => -99960,
+							:plugin_name => "Update to the latest Apple iTunes",
+							:item_name => "Update to the latest Apple iTunes",
+							:plugin_ids => [
+								84504,
+								86001,
+								86602,
+								91347,
+								87371,
+								
+
+
+
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/cisco_anyconnect.rb

@@ -0,0 +1,63 @@
+# Copyright (c) 2010-2016 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class CiscoAnyConnectPatchRollup < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "Cisco AnyConnect Client Patch Rollup",
+							:plugin_id => -99961,
+							:plugin_name => "Update to the latest Cisco AnyConnect Client",
+							:item_name => "Update to the latest Cisco AnyConnect Client",
+							:plugin_ids => [
+								76491,
+								81978,
+								86302,
+								78676,
+								81671,
+								82270,
+								85266,
+								85267,
+								85541,
+								87894,
+								88100,
+								
+
+
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/cisco_ios.rb

@@ -0,0 +1,62 @@
+# Copyright (c) 2010-2016 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class CiscoIOSPatchRollup < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "Cisco IOS Patch Rollup",
+							:plugin_id => -99965,
+							:plugin_name => "Update to the latest Cisco IOS",
+							:item_name => "Update to the latest Cisco IOS",
+							:plugin_ids => [
+								58568,
+								58570,
+								58572,
+								62372,
+								62373,
+								65891,
+								70316,
+								70322,
+								73345,
+								78035,
+								82571,
+								
+
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/downgrade_plugins.rb

@@ -48,6 +48,7 @@ module Risu
 							41028 => 0, #SNMP Agent Default Community Name (public) - 41028
               10264 => 0, #SNMP Agent Default Community Names - 10264
 							10081 => 0, #FTP Privileged Port Bounce Scan - 10081
+							#42411 => 0, #Microsoft Windows SMB Shares Unprivileged Access
 
 						}
 					end

data/lib/risu/parsers/nessus/postprocess/firefox.rb

@@ -71,8 +71,19 @@ module Risu
 								71347,
 								72331,
 								85275,
+								85689,
+								86071,
+								86764,
+								87476,
+								86418,
+								88461,
+								89875,
+								90793,
+								91547,
+								88754,
 								
 
+
 							]
 						}
 					end

data/lib/risu/parsers/nessus/postprocess/flash_player.rb

@@ -113,7 +113,22 @@ module Risu
 								84642,
 								84730,
 								31799,
-								85326
+								85326,
+								86060,
+								86369,
+								86423,
+								86851,
+								87244,
+								87657,
+								88639,
+								88639,
+								11323,
+								89834,
+								90425,
+								91163,
+								
+
+
 
 
 							]

data/lib/risu/parsers/nessus/postprocess/google_chrome.rb

@@ -67,8 +67,66 @@ module Risu
 								84342,
 								77184,
 								85567,
+								85743,
+								86061,
+								86209,
+								86380,
+								86598,
+								86852,
+								87206,
+								87245,
+								87417,
+								88088,
+								88681,
+								90794,
+								88956,
+								89685,
+								89786,
+								90194,
+								90542,
+								73419,
+								74008,
+								70916,
+								70923,
+								72167,
+								72939,
+								66813,
+								62313,
+								62519,
+								63110,
+								63232,
+								63468,
+								63645,
+								73710,
+								74122,
+								71227,
+								71968,
+								72616,
+								72800,
+								73082,
+								67232,
+								69139,
+								69423,
+								70273,
+								70494,
+								66556,
+								66930,
+								91128,
+								91350,
+								91455,
+								61381,
+								61462,
+								61774,
+								62518,
+								62861,
+								63063,
+								64813,
+								65029,
+								65097,
 								
 
+
+
 							]
 						}
 					end

data/lib/risu/parsers/nessus/postprocess/hp_system_mgt_homepage.rb

@@ -57,6 +57,9 @@ module Risu
 								85181,
 								84923,
 								73639,
+								90150,
+								90251,
+								91222,
 								
 
 

data/lib/risu/parsers/nessus/postprocess/irfanview.rb

@@ -0,0 +1,51 @@
+# Copyright (c) 2010-2016 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class IrfanViewPatchRollup < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "IrfanView Patch Rollup",
+							:plugin_id => -99958,
+							:plugin_name => "Update to the latest IrfanView",
+							:item_name => "Update to the latest IrfanView",
+							:plugin_ids => [
+								68888,
+								72395,
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/java.rb

@@ -88,8 +88,15 @@ module Risu
 								84824,
 								33486,
 								25709,
+								86542,
+								88045,
+								90625,
+								90828,
 								
 
+
+
+
 							]
 						}
 					end

data/lib/risu/parsers/nessus/postprocess/libreoffice.rb

@@ -0,0 +1,57 @@
+# Copyright (c) 2010-2016 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class LibreOfficePatchRollup < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "LibreOffice Patch Rollup",
+							:plugin_id => -99962,
+							:plugin_name => "Update to the latest LibreOffice",
+							:item_name => "Update to the latest LibreOffice",
+							:plugin_ids => [
+								80078,
+								86900,
+								88983,
+								86901,
+								80832,
+								73336
+
+
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end