SAINT Security Scanner 6.7.1 released
SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of the scan results are presented in hyperlinked HTML pages, and reports on complete scan results can be generated and saved.
New vulnerability checks in version 6.7.1:
- multiple Windows TCP/IP vulnerabilities (MS08-001)
- LSASS vulnerability (MS08-002)
- Apache mod_imap and mod_imagemap vulnerability
- HP Software Update tool vulnerability
- Safari for Windows
- Peercast vulnerability
- AOL Picture Editor ActiveX Control browser denial of service
- VLC multiple vulnerabilities
- Winace vulnerability
- Persits Software XUpload ActiveX Control buffer overflow
- WordPress vulnerability
- Asterisk vulnerability
- multiple Sun Java System Web Proxy Server cross-site scripting vulnerabilities
- Apache Tomcat JULI Logging Component Inadequate Default Security Policy
- Macrovision InstallShield Update Service
- Appian Enterprise BPM packet handling error vulnerability
- Mantis view.php cross-site scripting
- multiple cross-site scripting vulnerabilities in Dokeos 1.8.4 and earlier
- multiple vulnerabilities in TikiWiki versions prior to 1.9.9
New exploits in this version:
- Trend Micro ServerProtect RPCFN_CMON_SetSvcImpersonateUser exploit
- Lotus Domino Web Access ActiveX exploit
- Lotus Notes WPD attachment viewer exploit
- Macrovision InstallShield Update Service DownloadAndExecute exploit
Post scriptum
Compliance Mandates
|
Related Articles
| Saint |
|
| Vulnerability Scanner |
|
