This release features a check for a recently announced Microsoft Internet Explorer vulnerability. This release also features enhanced Windows patch scanning, improved Web application vulnerability detection, improved Web scanning performance, modified authenticated vulnerability scanning, and enhanced scan accuracy in Cisco IOS and CentOS 4.x environments, along with the regular bi-monthly vulnerability check update.
New Microsoft Internet Explorer vulnerability check
- NeXpose now scans for a recently announced vulnerability in Microsoft Internet Explorer that could allow remote attackers to execute code on targeted machines. For more information, see Microsoft Security Advisory MS10-018, found here: http://www.microsoft.com/technet/security/advisory/981374.mspx.
Enhanced Windows patch scanning coverage
- Patch scanning has been enhanced to include coverage for Microsoft Windows 7 and Microsoft Windows Vista. This enhancement provides coverage of software flaws in these Windows environments.
Improved Web application vulnerability detection
- Improvements to the scanning of Web applications enable NeXpose to detect header injection vulnerabilities in Web applications, ensuring it is even more effective at alerting you when business-critical Web applications are at risk of Web-based attacks such as cross-site scripting (XSS).
Improved Web scanning performance
- Web application injection testing is now faster. An issue that had caused the product to slow down when processing pages containing long lines of HTML code has been fixed, resulting in improved Web scanning performance.
Modified authenticated vulnerability scanning
- The product has been modified to ensure successful authenticated vulnerability scanning. This release introduces a modification to address a bug that prevented authenticated vulnerability scanning of hosts running certain versions of OpenSSH.
Enhanced scan accuracy in Cisco IOS and CentOS 4.x environments
- Scan accuracy has been enhanced in Cisco IOS and CentOS 4.x environments. Better vulnerability detection ensures coverage of software flaws that put systems in these environments at risk.
Bi-monthly vulnerability check update
- As part of an ongoing process, NeXpose is kept up-to-date with coverage for recently announced vulnerabilities in Red Hat Enterprise Linux, CentOS, Solaris, Cisco devices, and Mozilla Firefox. These vulnerability and patch checks address software flaws that could allow hostile parties to take control of affected systems.
- This release includes more than 70 new checks.