NeXpose Release October 4, 2010 (Content)

Document created by techeditor on Apr 8, 2011Last modified by techeditor on Nov 1, 2011
Version 2Show Document
  • View in full screen mode

This release is a content update.


  • Content updates include new checks for vulnerabilities, patch verification, and compliance with security policies.
  • Product updates include performance improvements, bug fixes, and new features.


Bi-monthly vulnerability check update

  • New vulnerability and patch checks bring coverage up to date for the following operating systems and applications:
    o Adobe Flash
    o Adobe Reader
    o Apache
    o CentOS
    o Cisco devices
    o Mozilla Firefox
    o OpenSSL
    o PHP
    o Red Hat Enterprise Linux
    o Solaris
    o VMware

    These checks help prevent security breaches that could allow hostile parties to take control of affected systems, gain access to confidential data, disrupt business operations, or cause other problems.


New Vulnerability Checks

  • This release contains the following new vulnerability checks:


  • Adobe Flash permissive crossdomain.xml policy
  • APSB10-22: Adobe Flash Unspecified Vulnerability (CVE-2010-2884)
  • CESA-2010:0697: samba security and bug fix update
  • CESA-2010:0698: samba3x security update
  • CESA-2010:0703: bzip2 security update
  • CESA-2010:0704: kernel security update
  • CESA-2010:0705: kernel security update
  • CESA-2010:0711: kernel security update
  • Cisco IOS Software H.323 Denial of Service Vulnerabilities
  • Cisco IOS Software Internet Group Management Protocol Denial of Service Vulnerability
  • Cisco IOS Software Network Address Translation Vulnerabilities
  • Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerabilities
  • Cisco IOS SSL VPN Vulnerability
  • RHSA-2010:0693: tomcat5 security update
  • RHSA-2010:0697: samba security and bug fix update
  • RHSA-2010:0698: samba3x security update
  • RHSA-2010:0703: bzip2 security update
  • RHSA-2010:0704: kernel security update
  • RHSA-2010:0705: kernel security update
  • RHSA-2010:0706: flash-plugin security update
  • RHSA-2010:0711: kernel security update
  • Unencrypted Telnet Service Available