SAINT® 7.1.3 Released

SAINT is the Security Administrator’s Integrated Network Tool. It is used to non-intrusively detect security vulnerabilities on any remote target, including servers, workstations, networking devices, and other types of nodes. It will also gather information such as operating system types and open ports. The SAINT graphical user interface provides access to SAINT’s data management, scan configuration, scan scheduling, and data analysis capabilities through a web browser. Different aspects of the scan results are presented in hyperlinked HTML pages, and reports on complete scan results can be generated and saved

New features in version 7.1.3:

  • Added support for ntlmv2 authentication.
  • SAINTwriter:
  • Added option to have no header in reports.
  • Added $support_noframes option to allow user to skip the noframes tag for performance reasons.
JPEG - 31.3 kb

New vulnerability checks in version 7.1.3:

  • Mac OS X security update 2009-005
  • FreeRADIUS rad_decode denial of service. (CVE 2009-3111)
  • Altiris eXpress ActiveX control file download vulnerability. (BID36346)
  • Excel crafted attached file code execution in Lotus Notes (CVE 2009-3037)
  • Symantec Altiris Deployment Solution Multiple Vulnerabilities (CVE 2009-3107 CVE 2009-3108 CVE 2009-3109 CVE 2009-3110)
  • ntop HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability. (CVE 2009-2732)
  • Linux Kernel "udp_sendmsg()" MSG_MORE Flag Local Privilege Escalation. (CVE 2009-2698)
  • Linux Kernel ’cmp_ies()’ Remote Null Pointer Dereference Vulnerability. (CVE 2009-2844)
  • Linux Kernel "net/llc/af_llc.c" Local Information Disclosure. (CVE 2009-3001)
  • Brightmail Control Server XSS and Multiple Unpsecified Vulnerabilities (CVE 2009-0063 CVE 2009-0064)
  • Snitz Forums 2000 v3.4.7 SQL Injection vulnerability (BID35764)
  • CommuniGatePro 5.2.14 Webmail Cross Site Scripting vulnerability
  • CA Data Transport Services Buffer Overflow (CVE 2009-2026)
  • Google Chrome ’Math.Random()’ Random Number Generation Vulnerability. (BID36185)
  • SquirrelMail Form Submissions Cross Site Request Forgery Vulnerability.(CVE 2009-2964)
  • OpenOffice Prior to 3.1.1 Multiple Unspecified Security Vulnerabilities. (BID36186)
  • Cisco IOS-BGP vulnerabilities. (CVE 2009-1168 CVE 2009-2049)
  • MailEnable ’MEHTTPS.EXE’ Stack-Based Buffer Overflow Vulnerability. (BID36197)
  • CA Multiple Product DTScore vulnerability (CVE 2009-2026)
  • Drupal Cross Site Scripting (XSS) vulnerability (CVE 2009-2372 CVE 2009-2373 CVE 2009-2374)
  • Opera Multiple Vulnerabilities fixed in 10.00. (CVE 2009-3044 CVE 2009-3045 and etc.)
  • IBM WebSphere Application Server Vulnerabilities fixed in (CVE 2009-2090 CVE 2009-2092 and etc.)
  • PHP-Fusion ’downloads.php’ SQL Injection Vulnerability.(BID36167)
  • Novell eDirectory HTTP Request Denial of Service. (BID36301)
  • Cisco Unified Communications Manager Multiple Denial of Service Vulnerabilities. (CVE 2009-2050 CVE 2009-2051 and etc.)
  • PHP-Fusion Multiple Information Disclosure Vulnerability.(BID36171)
  • wp-login - Security Bypass Vulnerability in Wordpress 2.8.3 (CVE 2009-2762).
  • wp-admin Security Bypass Vulnerability in wordpress 2.8.2 (CVE 2009-2853 CVE 2009-2854).
  • Multiple Vulnerabilities in wordpress 2.8.1 (CVE 2009-2851).
  • Multiple Vulnerabilities in wordpress 2.8.0 (CVE 2009-2334 CVE 2009-2335 CVE 2009-2336 CVE 2009-2432).
  • Username information disclosure in wordpress 2.7.1 (CVE 2009-2431)
  • Horde Password module XSS vulnerability (CVE 2009-2360)
  • Apple QuickTime Multiple Vulnerabilities fixed in 7.6.4. (CVE 2009-2202 CVE 2009-2798 and etc.)
  • Linux Kernel ’drivers/char/tty_ldisc.c’ NULL Pointer Dereference Denial of Service Vulnerability. (CVE 2009-3043)
  • Linux Kernel Multiple Protocols Local Information Disclosure Vulnerabilities. (BID36176)
  • Kaspersky Antivirus & Internet Security DOS (CVE 2009-2647 CVE 2009-2966)
  • FileCOPA FTP server NOOP denial of service. (BID36397)
  • FtpXQ FTP server ABOR command denial of service. (BID36391)
  • Dnsmasq TFTP server heap overflow. (CVE 2009-2957)
  • Zope ZODB Protocol code Execution and Authentication bypass (CVE 2009-0668 CVE 2009-0669)

New exploits in this version:

  • VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow exploit. (CVE 2009-2484)
  • Microsoft Excel BIFF format Qsir record exploit. (CVE 2009-1134)
  • Safari WebKit floating point number exploit. (CVE 2009-2195)
  • ACDSee TIFF file handling buffer overflow exploit. (BID35175)
  • Symantec Altiris Deployment Solution ActiveX control file download exploit
  • Mozilla Firefox PKCS11 Module Installation Code Execution exploit. (CVE 2009-3076)

Post scriptum

Compliance Mandates

  • Vulnerability Management :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

Related Articles

Vulnerability Management
Vulnerability Scanner