At SAINT, we respond quickly to vulnerability discoveries. Our engineers continuously update and refine our products to meet the latest security protocols. In addition, when a security alert is issued, we inform our customers via
e-mail. You can download updates to correct the latest vulnerability discoveries below.
SAINT®
6.7.13
Released 05/09/07 –
New vulnerability checks in version 6.4.6:
- Microsoft Exchange vulnerabilities (MS07-026)
- Microsoft Internet Explorer vulnerabilities (MS07-027)
- Microsoft Excel (MS07-023)
- Microsoft Word vulnerabilities (MS07-024)
- Microsoft Office drawing object vulnerability (MS07-025)
- CAPICOM.Certificates ActiveX control vulnerability (MS07-028)
- Winamp
- Adobe Photoshop PNG buffer overflow vulnerability
- QuickTime vulnerabilities
- Java Web Console vulnerability
- ISC BIND query_addsoa denial of service
- IncrediMail ActiveX Control Buffer Overflow
- ZoneAlarm Spyware Removal Engine local privilege elevation
- eXtremail buffer overflow and DNS spoofing vulnerabilities
- Firefox 2.0.0.3 CRLF Injection
- OpenSSH information gathering vulnerability
- phpMyAdmin cross-site scripting vulnerabilities
- ACDSee XPM file handling buffer overflow
- MyBB SQL injection (calendar.php)
- Phorum vulnerabilities
- Quagga denial of service vulnerability
- Trillian IRC module vulnerabilities
- Wordtube vulnerabilities
New exploits in this version:
- BrightStor ARCserve Media Server SUN RPC exploit
- Microsoft Step-by-Step Interactive Training exploit
New features in version 6.4:
- IPv6 compatibility in SAINTexploit
- Requires Socket6 and IO-Socket-INET6 PERL modules available from www.cpan.org
- Encrypted Windows authentication
- Secure authenticated checks against Windows targets
- Full compatibility with Windows Vista
- Requires OpenSSL
- Smaller file sizes for PDF reports
- zlib compression of PDF streams
- Faster target discovery in firewall mode
