Nexpose release notes - August 2014

Document created by mglinski Employee on Sep 2, 2014
Version 1Show Document
  • View in full screen mode

To help you protect your environment against ever-evolving security threats Rapid7 releases coverage updates for Nexpose on a weekly basis. This page contains detailed announcements for the most recent Nexpose coverage releases:

 

Update IDs are added to this announcement on the release date.

 


 

This Rapid7® Nexpose® 5.10.5 release contains the following improvements:                                                      

                                               
  • coverage improvement
  • accuracy improvement
  • application improvements
  •                                                      

 

Coverage improvement | product & content

 

New coverage expands your visibility into assets and threats in your environment:

  • Coverage for the NTP traffic amplification vulnerabilities that could result in more DRDoS attacks, described in R7-2014-12, has been added.

    

Accuracy improvement | product & content

 

Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

  • An issue preventing the use of Oracle database credentials in some scan configurations has been fixed.

                                                                                                           

Application improvements | product

          

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An issue preventing the selection of filters in dynamic sites has been fixed.
  • An issue that prevented logon in maintenance mode in certain situations has been fixed.
  • An issue that caused some scans that run on distributed Scan Engines and display incremental results to show Aborted status when they complete has been resolved.

 

Product Update IDs

     
  • Linux 64 | Update ID: 2764872670
  • Windows 64 | Update ID: 527721063
     

Content update ID

    
  • Update ID: 228829446

Installer links, md5sum links, and virtual appliance links

    

Click here for the latest installer links, md5sum links, and virtual appliance links.

 


 

This Rapid7® Nexpose® 5.10.4 release includes critical product updates.

 

Application correction | product & content

       

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An issue that prevented the application Home page from loading in certain situations has been fixed.

 

 

Product Update IDs

 

  • Linux 64 | Update ID: 3407213168
  • Windows 64 | Update ID: 1581071873

 

Content update ID

 

  • Update ID: 4190281408

 

Installer links, md5sum links, and virtual appliance links

 

Click here for the latest installer links, md5sum links, and virtual appliance links.

 

 


 

This Rapid7® Nexpose® 5.10.3 release contains the following improvements:                                              

                                       
  • application improvements
  •                                              

                                                                                                         

Application improvements | product

  

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • The scan engine  used for a scan is now shown in the Past Scans table on the Scans page for a given site.
  • The redesigned Web Help has a cleaner, more open look and feel, making it easier to read through topics. Also, the Help Search has been updated to provide more detailed results, to help you find the information you're looking for.
  • The Exploitable Assets by Skill Level chart on the Assets and Vulnerabilities pages now includes a Non-Exploitable section for vulnerabilities with no known exploits.

  • Vulnerability counts in e-mail subject lines for SMTP report distribution now correctly show the numbers after vulnerability filters have been applied in the report configuration.
  • An issue that caused some Unicode characters to be malformed when saved on the Site Configuration page has been resolved. The Site Configuration page now correctly supports all Unicode characters for all attributes in the site.

 

Product Update IDs

  • Linux 64 | Update ID: 3872202716
  • Windows 64 | Update ID: 388748312

Content update ID

  • Update ID: 4190281408

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

 


 

 

This Rapid7® Nexpose® 5.10.2 release includes critical product updates.

Application correction | product & content

 

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An issue that caused the Security Console to go into maintenance mode after an update was applied to an installation that had Automatic product updates turned off in the Security Console configuration has been fixed.
  • An issue that prevented the integration of scans with logs exceeding 2GB has been corrected.

 

Product Update IDs

 

  • Linux 64 | Update ID: 3621392126
  • Windows 64 | Update ID: 3681817430

 

Content update ID

 

  • Update ID: 3643995888

 

Installer links, md5sum links, and virtual appliance links

 

Click here for the latest installer links, md5sum links, and virtual appliance links.

 

 

 


 

 

This Rapid7® Nexpose® 5.10.1 release contains the following improvements:                               

                                  
  • August 2014 Patch Tuesday checks
  • application improvements
  • accuracy improvements
  • coverage improvements
  • scanning improvements
  •                               

                              

August 2014 Patch Tuesday checks | content

 

New vulnerability checks provide up-to-date Microsoft Patch Tuesday scan coverage for August 2014. For information about all current security bulletins covered in this release, see the Microsoft Security Bulletin Summary for August 2014. Use the checks in this update to verify that the latest Microsoft patches have been applied to system assets.

These checks help you determine where new risks are located in your environment, allowing you to prioritize what needs to be remediated and help minimize risk.

                              

Application improvements | product

 

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • The Configuring Scan Credentials section of the user's guide now contains information on specific permissions required for scanning Unix and related targets.
  • The Risk Scorecard report and Policy Compliance report are now available in Japanese, Chinese, or Korean.
  • The Scan Engine administration page now displays the update ID and date for both content and product as well as a version number.
  • The new built-in Policy Compliance report shows the results for each tested policy, including the numbers and percentages of compliant assets, and the percentage of policy rules that assets comply with.
  • The tooltips inside of the Assets by Risk and Vulnerabilities chart now display the correct asset IP address.

 

Accuracy improvements | product & content

 

Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

  • Cross-site request forgery vulnerability detection for the web spider has been enhanced.
  • A false positive has been resolved so that Office 2003 SP3 is no longer identified as vulnerable for Microsoft advisory MS08-009.
  • Windows assets with .NET Framework 4.5.2 are now fingerprinted correctly.

 

 

Coverage improvement | product & content

 

New coverage expands your visibility into assets and threats in your environment:

  • Coverage has been added for the Symantec Endpoint Protection Client buffer overflow vulnerability SYM14-013.

 

Scanning improvement | product

 

New coverage expands your visibility into assets and threats in your environment:

  • Memory usage of the web spider has been improved.

 

Product Update IDs

  • Linux 64 | Update ID: 1516434977
  • Windows 64 | Update ID: 817855112

Content update ID

  • Update ID: 3946149486

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

 


 

 

This Rapid7® Nexpose® 5.10 release contains the following improvements:                      

  • application improvements
  • accuracy improvements
  • coverage improvements
  •                      

                     

Application improvements | product

 

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • New interactive charts enable you to get a quick overview of the risk in your environment and easily drill into more information and make decisions.The charts are located on the Home page, site summary pages, asset group summary pages, asset summary pages, the Assets tab, and the Vulnerabilities tab.
    • The new built-in Risk Scorecard report template provides contextual reporting to help you compare the risk of sets of assets against each other. It provides a grade key performance indicator (KPI) and risk summary details for measuring and communicating how sites, asset groups, or tags rate against each other. This allows you to determine where to invest or redirect efforts to effectively reduce risk.

     

    • The reporting data model now includes policy rule results and historical data for policy data, allowing you to create SQL Query Export reports or custom reports that show trends for policy data for assets, asset groups, sites, and tags.
    • The new built-in Policy Compliance report shows the results for each tested policy, including the numbers and percentages of compliant assets, and the percentage of policy rules that assets comply with.
    • You can now search for assets based on a CVE ID filter.
    • You can now search for assets by a vulnerability title.
    • An issue that prevented vulnerability exceptions from being submitted for specific instances on different assets has now been fixed.
    • An issue that could cause scans to not complete correctly when non-incremental importing of results was specified in the Security Console configuration and SCAP storage was enabled in the scan template has now been fixed.

     

    Accuracy improvements | product & content

     

    Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

    • Coverage for the Telnet default account checks has been increased.
    • The inconclusive-host check is been changed from a potential to a confirmed vulnerability check. This change incorporates the check into most built-in scan templates, making it easier for you to identify hosts for which the fingerprinting data is inconclusive.

    Coverage improvements | product & content

     

    New coverage expands your visibility into assets and threats in your environment:

    • The application now supports a new Defense Information Systems Agency (DISA) policy that provides compliance coverage for the Red Hat Enterprise Linux 6 (RHEL 6) operating system.
    • Detection of non-standard remote shell services, such as Ingreslock Backdoor, has been enhanced.

     

    Product Update IDs

    • Linux 64 | Update ID: 2416332011
    • Windows 64 | Update ID: 2163550786

    Content update ID

    • Update ID: 3889986253

     

    Installer links, md5sum links, and virtual appliance links

    Click here for the latest installer links, md5sum links, and virtual appliance links.

     

    Attachments

      Outcomes