Saint vulnerability scanner updated to 6.9.3

In: Saint , Vulnerability Management , Vulnerability Scanner

19 November 2008

SAINT is the Security Administratorâ€™s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINTâ€™s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of the scan results are presented in hyperlinked HTML pages, and reports on complete scan results can be generated and saved

New vulnerability checks in version 6.9.3:

Microsoft XML Core Services vulnerabilities (MS08-069). (CVE2007-0099 CVE2008-4029 CVE2008-4033)
Windows SMB credential reflection vulnerability (MS08-068). (CVE2008-4037)
Adobe Reader and Acrobat util.printf Stack Buffer Overflow.(CVE2008-2992)
Multiple Vendors libspf2 DNS TXT Record Parsing Buffer Overflow. (CVE2008-2469)
Linux Kernel i915 Driver Memory Corruption Vulnerability. (CVE2008-3831)
Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow. (CVE2008-4556)
Apache HTTP Server OS Fingerprinting Unspecified Security Vulnerability
Adobe PageMaker Key Strings Stack Buffer Overflow.(CVE2007-6432)
multiple vulnerabilities fixed in Wireshark 1.0.4.(CVE2008-4680 CVE2008-4681 and etc.)
Symantec Altiris Deployment Solution Clear Text Password Local Information Disclosure Vulnerability
Apache Struts FilterDispatcher and DefaultStaticContentLoader Classes Directory Traversal
Opera multiple vulnerabilities fixed in 9.62. (CVE2008-4794 CVE2008-4795)
Adobe PageMaker Font Structure Multiple Buffer Overflow. (CVE2007-5394 CVE2007-6021)
Sun Java Web Start Remote Command Execution Vulnerability. (CVE2008-4910)
OpenOffice WMF and EMF File Handling Multiple Heap Based Buffer Overflow Vulnerabilities. (CVE2008-2237 CVE2008-2238)
freeSSHd SFTP "rename" and "realpath" Remote Denial of Service. (CVE2008-4762)
IBM DB2 Universal Database Prior to 9.1 Fixpak 6 Multiple Vulnerabilities. (CVE2008-4691CVE2008-4692CVE2008-4693)
VLC Media Player Multiple Remote Integer Overflow Vulnerabilities. (CVE2008-4686)
Cisco ASA and PIX vulnerabilities (CVE2008-3815 CVE2008-3816 CVE2008-3817)

New exploits in this version:

Trend Micro OfficeScan CGI programs POST exploit. (CVE2008-3862)
Oracle WebLogic Server Apache Connector exploit. (CVE2008-4008)
Adobe Acrobat util.printf exploit. (CVE2008-2992)
Adobe PageMaker key strings exploit. (CVE2007-6432)

Post scriptum

Download Basic release

Compliance Mandates

Vulnerability Management :
PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2
Vulnerability Scanner :
PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

Saint	15 April 2010 : SAINTÂ® 7.3.3 Released 9 April 2010 : SARA-7.9.2a the final version released 1 April 2010 : SAINTÂ® v7.3.2 Released 16 March 2010 : Saint Vulnerability Scanner v7.3 on the wild 27 February 2010 : Saint Vulnerability Scanner and Exploiter v7.2.7 released
Vulnerability Management	28 April 2010 : Nessus Parsing Tools v1.3.1 15 April 2010 : Nessus v4.2.2 released 9 March 2010 : Dradis v2.5.1 released 7 March 2010 : Samurai Web Testing Framework 0.8 available 1 March 2010 : Security-Database Vulnerability Dashboard updates
Vulnerability Scanner	12 May 2010 : Complemento v0.7.6 - Collection of Tools 10 May 2010 : SQLNinja v0.2.5 released! 26 April 2010 : Acunetix WVS v6.5 build 20100419 released 22 April 2010 : OpenSCAP v0.5.9 released 20 April 2010 : Sandcat v4.0 released

Saint vulnerability scanner updated to 6.9.3

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU