OVAL interpreter v5.6.1 released

In: Configurations checks , Local auditing , OVAL , Vulnerability Scanner

11 September 2009

Open Vulnerability and Assessment Language (OVALâ„¢) is an international, information security, community standard to promote open and publicly available security content, and to standardize the transfer of this information across the entire spectrum of security tools and services. OVAL includes a language used to encode system details, and an assortment of content repositories held throughout the community.

Changelog :

Updated to support version 5.6 of the OVAL Language.
Added support for the win-def:printereffectiverights_test.
Updated the win-def:activedirectory_test so that it aligns with Version 5.6 of the OVAL Language.
Closed the OVAL float datatype bug in the EntityComparator::CompareFloat() method.
Added support for the win-def:serviceeffectiverights_test.
Fixed a bug in the ind-def:xmlfilecontent_test probe that caused it to report errors on valid XPath expressions.
Fixed a bug in the Common::GetXSLFilename() method that caused it to always add the schema path to the input provided with the ’-t’ command line argument.
Fixed a bug in the win-def:activedirectory_test probe that caused it to fail when connecting to certain Active Directories. This bug was fixed by specifying the DNS name of the server in the LDAP ADsPath.
Fixed a bug in the FileEffectiveRightsProbe::GetEffectiveRights() method that caused the generic_read, generic_write, and generic_execute entities to be set incorrectly.
Fixed a bug in the FileEffectiveRights53Probe::GetEffectiveRights() method that caused the generic_read, generic_write, and generic_execute entities to be set incorrectly.
Added support for registry behaviors.
Updated the win-def:registry_test to support registry behaviors.
Added support for the win-def:regkeyeffectiverights_test.
Added support for the win-def:regkeyeffectiverights53_test.
Added support for the unix-def:password_test.
Corrected bug in RunLevelProbe causing Kill or Start scripts appearing with incorrect values in the results.xml file.

Post scriptum

Download

Compliance Mandates

Vulnerability Scanner :
PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

Configurations checks	10 May 2010 : WebTest 1.2.1 - Testing Web Application with Python 1 May 2010 : Lansweeper v4.0 released 1 May 2010 : Sysinternal AccessChk v5.0 released 1 May 2010 : Spiceworks v4.7 build 50667 released 28 April 2010 : NSIA (Network System Integrity Analysis) v0.8.99 released
Local auditing	11 May 2010 : iScanner v0.5 released - Malicious codes scanner 22 April 2010 : OpenSCAP v0.5.9 released 30 March 2010 : Buck Security - Checks for Debian Linux - v0.5 released 29 March 2010 : PDFResurrect v0.10 released 26 March 2010 : Flint the Firewall Rules Checkup Scanner updated to v1.0.4
OVAL	9 January 2010 : OVAL Interpreter v5.6.4 released 2 October 2009 : OVAL Interpreter v5.6.3 released 11 September 2009 : OVAL interpreter v5.6.1 released 13 August 2009 : OVAL interpreter release 5.5.25 available 23 June 2008 : Integrating OVAL Interpreter into BackTrack 3.0
Vulnerability Scanner	12 May 2010 : Complemento v0.7.6 - Collection of Tools 10 May 2010 : SQLNinja v0.2.5 released! 26 April 2010 : Acunetix WVS v6.5 build 20100419 released 20 April 2010 : Sandcat v4.0 released 15 April 2010 : Nessus v4.2.2 released

OVAL interpreter v5.6.1 released

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU