Application Security, Inc.
home client login partner login online store contact us
search:
Solutions Products Partners Support News & Events About Us

Security Updates - ASAP™ Updates
(Application Security Automatic Protection)

AppDetective™ Update 5.1.2 - 30 September 2005

ENHANCEMENTS

SECURITY CHANGE AUDITING

  • New feature to AppDetective that provides a method for tracking and analyzing databases for modifications and changes available for Beta testing
  • To learn more about this new feature and become a Beta Tester, contact us at beta@appsecinc.com

Oracle - UPDATED CHECKS

  • Support for Oracle10g Release 2 on Windows and Linux
  • Update to latest patchset checks
  • Enhancements to auditing Oracle9i Personal Edition

IBM DB2 - ENHANCEMENTS

  • Update to latest fixpak checks
  • Enhancements to DB2 UDB Discovery
  • SELECT privilege escalation
    Examines if the database is susceptible to SELECT privilege escalation
    Risk Level - Medium

MySQL - NEW AND UPDATED CHECKS

  • Update to latest version checks
  • UDF Directory Traversal
    Examines if server is vulnerable to User Defined Function directory traversal
    Risk Level - Low
  • UDF Buffer Overflow
    Examines if server is vulnerable to certain buffer overflows
    Risk Level - Low
  • Zlib Multiple Vulnerabilities
    Examines if server contains any vulnerabilities in the Zlib component
    Risk Level - Medium

IBM WEBSPHERE - NEW CHECKS

  • Added Beta support for Penetration Testing of IBM WebSphere
  • To learn more about this new feature and become a Beta Tester, contact us at beta@appsecinc.com
  • Cross Site scripting in the WAS Admin Console
    Examines if the Admin Console is susceptible to cross site scripting
    Risk Level - High
  • WebSphere security not enabled
    Examines if WebSphere security has been turned on for the Admin Console
    Risk Level - High
  • WebSphere Personalization Resource Console
    Examines if the Personalization Resource Console is installed on a server
    Risk Level - Medium
  • WebSphere well-known file
    Examines for well known files that may be installed by default
    Risk Level - Medium

CHECK POINT OPSEC CERTIFICATION

  • AppDetective is now Check Point OPSEC certified. For more technical details on the integration, see the "Check Point Logging Properties Installation Guide for AppDetective" in the Advanced User Documentation section.
  • To learn more about this new certification, contact us at sales@appsecinc.com

Return to ASAP™ Updates Listing
 
Contact Us | Privacy | Sitemap | Legal
sales@appsecinc.com | support@appsecinc.com 		Call us toll free at: 1-866-927-7732 | FAX: 1-212-947-8788
. Application Security, Inc. All Rights Reserved