Saint Scanner version 6.4.6 released

by

In: Saint , Vulnerability Scanner

10 May 2007

SAINT, or the Security Administrator’s Integrated Network Tool, uncovers areas of weakness and recommends fixes. With SAINT® vulnerability assessment tool, you can:

  • Detect and fix possible weaknesses in your network’s security before they can be exploited by intruders.
  • Anticipate and prevent common system vulnerabilities.
  • Demonstrate compliance with current government regulations such as FISMA, Sarbanes Oxley, GLBA, HIPAA, and COPPA

New vulnerability checks in version 6.4.6:

  • Microsoft Exchange vulnerabilities (MS07-026)
  • Microsoft Internet Explorer vulnerabilities (MS07-027)
  • Microsoft Excel (MS07-023)
  • Microsoft Word vulnerabilities (MS07-024)
  • Microsoft Office drawing object vulnerability (MS07-025)
  • CAPICOM.Certificates ActiveX control vulnerability (MS07-028)
  • Winamp
  • Adobe Photoshop PNG buffer overflow vulnerability
  • QuickTime vulnerabilities
  • Java Web Console vulnerability
  • ISC BIND query_addsoa denial of service
  • IncrediMail ActiveX Control Buffer Overflow
  • ZoneAlarm Spyware Removal Engine local privilege elevation
  • eXtremail buffer overflow and DNS spoofing vulnerabilities
  • Firefox 2.0.0.3 CRLF Injection
  • OpenSSH information gathering vulnerability
  • phpMyAdmin cross-site scripting vulnerabilities
  • ACDSee XPM file handling buffer overflow
  • MyBB SQL injection (calendar.php)
  • Phorum vulnerabilities
  • Quagga denial of service vulnerability
  • Trillian IRC module vulnerabilities
  • Wordtube vulnerabilities

New exploits in this version:

  • BrightStor ARCserve Media Server SUN RPC exploit
  • Microsoft Step-by-Step Interactive Training exploit

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Saint
Vulnerability Scanner