AppSpider release announcements for December 2016

Document created by Gary Sabala Employee on Dec 15, 2016Last modified by Gary Sabala Employee on Jan 3, 2017
Version 3Show Document
  • View in full screen mode

Rapid7 releases coverage updates for AppSpider to help you protect your environment against ever-evolving security threats. This page contains detailed announcements for the most recent AppSpider coverage releases:

 

  • AppSpider Pro Release 6.14.027: December 15, 2016
  • AppSpider Pro Release 6.14.026: December 14, 2016

________________________________________________________________________________ _____

AppSpider Pro 6.14.027 Release:

Application enhancements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • Fixed Selenium execution failure (introduced in the build 6.14.022)

AppSpider Pro 6.14.026 Release:

Application enhancements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • Updated installer to fix component registration errors during installation.
  • Implemented a fix to prevent operations that could result in memory corruption or crashes.
  • Improved memory management for scans with large requests.
  • Updated the Cross Domain Policy Check attack module to reduce false positive findings.
  • Enabled the Defend Scan feature in AppSpider Pro which verifies that the Defend signatures are protecting against discovered vulnerabilities once the Defend signatures have been deployed in a Web Application Firewall.
  • Fixed a problem with attacks interfering with a relogin process.
  • Implemented an IE cache cleanup after a scan has completed and log this event in the operational logs.
  • Resolved issue with AppSpider not web not processing .xsd files in certain use cases.

Attachments

    Outcomes