SAINT top bar Go to home page Search this site Contact SAINT Corporation
[an error occurred while processing this directive]
SAINT logo
SAINT Support banner





Vulnerability Checks

 

 

 

 

 

At SAINT, we respond quickly to vulnerability discoveries. Our engineers continuously update and refine our products to meet the latest security protocols. In addition, when a security alert is issued, we inform our customers via e-mail. You can download updates to correct the latest vulnerability discoveries below.

SAINT® 6.8 Released 07/29/2008 –

New vulnerability checks in version 6.7.14:

  • Oracle Critical Patch Update Advisory - July 2008. (CVE 2008-2587 CVE 2008-2614 and etc.)
  • Mozilla Firefox Multiple Vulnerabilities fixed in 3.0.1 and 2.0.0.16. (CVE 2008-2933 CVE 2008-2934 CVE 2008-3198)
  • Sun Java Multiple Vulnerabilities. (CVE 2008-3103 CVE 2008-3104 and etc.)
  • Opera Multiple Vulnerabilities fixed in 9.51. (CVE 2008-3078 CVE 2008-3079)
  • VideoLAN Client WAV File Handling Integer Overflow. (CVE 2008-2430)
  • Novell GroupWise WebAccess Simple Interface Cross-Site Scripting.
  • Linux Kernel Multiple Vulnerabilities fixed in 2.6.25.10. (CVE 2008-2812 CVE 2008-3077)
  • Wireshark vulnerability.
  • Red Hat Certificate System rhpki-common Security Bypass. (CVE 2008-1676)
  • SNMP to DMI mapper on Solaris vulnerability.
  • php fusion sql injection vulnerability.
  • Mozilla Multiple Products CSS Objects Handling Code Execution. (CVE 2008-2785)
  • Novell eDirectory LDAP Service Search Parameters Heap Overflow Vulnerability. (CVE 2008-1809)
  • phpmyadmin fixed in 2.11.7.1. (CVE 2008-3197)
  • vulnerabilities in Apache2. (CVE 2007-6420)
  • vBulletin vulnerability. (CVE 2008-3184)
  • Panda ActiveScan vulnerabilities. (CVE 2008-3155 CVE 2008-3156)
  • BlackBerry Attachment Service PDF Processing Remote Code Execution. (CVE 2008-3246)
  • Pidgin MSN SLP message Integer Overflow. (CVE 2008-2927)
  • Mambo/Joomla remote file inclusion vulnerability.
  • Apple Safari Domain Extensions Insecure Cookie Access and HTTPS to HTTPS Referer Information Disclosure. (CVE 2008-3170 CVE 2008-3171)
  • MyBB vulnerabilities fixed in 1.2.13. (CVE 2008-3069 CVE 2008-3070 etc.)
  • BEA WebLogic Server Apache Connector HTTP Version String Buffer Overflow. (CVE 2008-3257)
  • Firebird Multiple Denial of Service and Information Disclosure Vulnerabilities.
  • Simple DNS Plus Remote Denial of Service Vulnerability. (CVE 2008-3208)
  • Black Ice Software Document Imaging SDK ActiveX Buffer Overflow. (CVE 2008-3209)
  • IBM WebSphere Application Server Vulnerabilities fixed in 5.1.1.19. (CVE 2008-3235 CVE 2008-3236)

New exploits in this version:

  • Microsoft Works WkImgSrv.dll ActiveX exploit. (CVE 2008-1898)
  • Alt-N SecurityGateway username exploit.
  • SNMPc Network Manager SNMP TRAP exploit. (CVE 2008-2214)
  • Sun Java Web Start exploit. (CVE 2008-3111)
  • Linux support for HP Openview Network Node Manager ovalarmsrv exploit.
  • BEA WebLogic Apache Connector POST exploit. (CVE 2008-3257)
  Copyright SAINT Corporation. All Rights Reserved Privacy information Legal information Site map