Nessus v4.2.1 released

Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost savings by using Nessus to audit business-critical enterprise devices and applications.

PNG - 55.8 kb

Web Based Interface
Nessus 4.2 comes with a built-in web interface which lets you start your scan and analyze the results from any system which can connect to your Nessus scanner.

Enhanced Reporting
Nessus 4.2 lets you compare different scans. It also contains an improved report export format, with additional templates are being regularly distributed through the Nessus ProfessionalFeed.

Performance enhancements
Scans start quicker, plugins updates use less bandwidth, memory usage has been further reduced and the handling of network timeouts has been improved.

Version 4.2.1

  • The per-host memory overhead during has scan has been reduced drastically, thus allowing for more hosts to be scanned in parallel (max_hosts can be set to a much higher value now)
  • Improved the overal responsiveness of the web interface, especially when dealing with large reports
  • Experimental Solaris 10 (sparc) build
    It also contains several bug fixes, including the following:
  • Fixed a memory leak when NASL was running with safe checks disabled
  • Fixed several segmentation fault occuring when the system is low on resources
  • Some DB queries would take too much time
  • Improved compatibility with HTTP proxies for the plugin updates
  • Converting a large report to .nessus or .nessus.v1 would sometimes fail
  • Fixed a SQL error occurring when polling the scan progress while a filter is set for the report
  • Fixed a size limit for hosts tags
  • Exporting data to a .nessus.v1 file would make the "Description" header sometimes go away
  • When scanning a list of IPs with the option "Avoid sequential scan" set, only the first 256 IPs would be scanned
  • Viewing the scan results in real time might sometimes yeld to loosing some host tags information in the report

More information: here

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

Related Articles

Vulnerability Scanner