At SAINT, we respond quickly to vulnerability discoveries. Our engineers continuously update and refine our products to meet the latest security protocols. In addition, when a security alert is issued, we inform our customers via
SAINT® 6.9.7 Released 01/02/2009 –
New vulnerability checks in version 6.9.7:
- PowerDNS "CH HINFO" Remote Denial of Service. (CVE 2008-5277)
- phpMyAdmin table parameter SQL injection. (CVE 2008-5622)
- Multiple Vulnerabilities fixed in Firefox 2.0.19 and 3.0.5 and SeaMonkey 1.1.14. (CVE 2008-5500, CVE 2008-5501, and etc.)
- Mac OS X Security Update 2008-008. (CVE 2008-1391 CVE 2008-3170 etc.)
- vulnerabilities fixed in Joomla! versions 1.0.15, 1.5.4, 1.5.5, 1.5.6, and 1.5.7
- Joomla! Authentication Cookie Vulnerability. (CVE 2008-4122)
- University of Washington IMAP Toolkit Buffer overflows in tmail/dmail delivery agents and for UW IMAP Toolkit smtp.c client library denial of service. (CVE 2008-5005 CVE 2008-5006)
- CuteNews config_skin file inclusion vulnerability (BID 32142)
- multiple Linux Kernel Local Denial of Services vulnerabilities. (CVE 2008-5713, CVE 2008-5700, CVE 2008-5713, and BID 32759)
- Tivoli Provisioning manager SOAP authentication bypass. (CVE 2008-5686)
- Kerio XSS vulnerability (BID 32863)
- phpPgAdmin file inlcude vulnerability(CVE 2008-5587)
- TWiki Cross Site Scripting and Perl remote code execution vulnerabilities (2008-5304 and 2008-5305)
- FLEXnet ActiveX vulnerability. (CVE 2007-0328)
- CMS Made Simple directory-traversal vulnerability. (CVE 2008-5642)
- Sophos remote denial of service vulnerability
- MPlayer buffer overflow. (CVE 2008-5616)
- Nagios Cross-site request forgery. (CVE 2008-5028)
- Java Web Console redirect vulnerability. (CVE 2008-5550)
- Drupal prior to 5.13 and 6.7 XSS vulnerability
- MDaemon Server WorldClient Script Injection
- XOOPS directory traversal vulnerability
