Application Security Inc. - Database Security, Monitoring, Assessment, Auditing, Encryption, and Regulatory Compliance.
 
 
 
home client login partner login purchasing info contact us
search:
Solutions Products Partners Support News & Events About Us
add this
AppSec Inc Support

Security Updates - ASAP™ Updates
(Application Security Automatic Protection)

AppDetective™ Update 5.0.3 - 28 February 2005

ENHANCEMENTS

IBM DB2 - NEW CHECKS

  • Arbitrary code execution when processing connection messages
    Examines if the database is vulnerable to attacks involving connection messages
    Risk Level - High
  • Arbitrary code execution in a federated system
    Examines if the database is vulnerable to several federated system attacks
    Risk Level - High
  • Arbitrary code execution when using SELECT with XML functions
    Examines if the database is vulnerable to arbitrary code execution when using SELECT with XML functions
    Risk Level - High

IBM DB2 on Mainframe - CHECK ENHANCEMENTS

  • Enhancements to Access Control Security Audit checks

Sybase - CHECK ENHANCEMENTS

  • Off-line Password Cracking Enhancements to Identification/Password Control Security Audit checks for Increased Performance

UPDATED CHECKS

  • Updates to "Latest Patch Not Applied" checks
    • MySQL
    • Sybase
    • IBM DB2
  • Sybase - Updates to "Multiple Vulnerabilities in Sybase ASE" check
  • IBM DB2 - Updates to "Arbitrary file creation in XML Extender functions" and "Improper permissions on DB2 resources" checks

Return to ASAP™ Updates Listing
 
Contact Us | Privacy | Sitemap | Legal
sales@appsecinc.com | support@appsecinc.com 		Call us toll free at: 1-866-927-7732 | FAX: 1-212-947-8788
. Application Security, Inc. All Rights Reserved