Application Security, Inc.
home client login partner login online store contact us
search:
Solutions Products Partners Support News & Events About Us

Security Updates - ASAP™ Updates
(Application Security Automatic Protection)

AppDetective™ Update 5.1.7 - 13 June 2006

ENHANCEMENTS

Oracle - UPDATED CHECKS

  • NEW! Critical Patch Update – April 2006
    Examines if the database contains vulnerabilities described by Critical Patch Update – April 2006.
    Risk Level - High
    AppRadar Filter Available for Download

  • NEW! Export xproc SQL injection
    Examines if the database is vulnerable to PL/SQL injection vulnerability in the DBMS_EXPORT_EXTENSION package.
    Risk Level - High
    AppRadar Filter Available for Download

  • NEW! CREATE VIEW priv escalation
    Examines if the database is vulnerable to read-only user privilege escalation.
    Risk Level - High
    AppRadar rule to monitor for this threat in real-time:
    • Read-only user can modify data

  • UPDATED: Default database password
    Updated to examine for the latest Oracle default passwords.
    AppRadar rules to monitor for related events in real-time:
    • Use of default user account: Monitor for failed login attempts
    • Failed Login: Monitor for login attempts using well-known accounts
 
Contact Us | Privacy | Sitemap | Legal
sales@appsecinc.com | support@appsecinc.com 		Call us toll free at: 1-866-927-7732 | FAX: 1-212-947-8788
. Application Security, Inc. All Rights Reserved