TrustKeeper Scan Engine Update - September 17, 2013

The latest and greatest release of the TrustKeeper Scanning Engine is here. This update contains coverage for 14 new vulnerabilities, including tests for Oracle Database Server, Oracle MySQL Server, PHP, Apache HTTP Server and more.

This update also contains many improvements to current tests and many other improvements to the engine itself.

New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Apache

  • Apache HTTP Server mod_session_dbd Session ID Reuse Vulnerability (CVE-2013-2249)
Microsoft
Oracle
PHP
  • PHP Parsing Vulnerability in openssl_x509_parse Function (CVE-2013-4248)
Serv-U

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as it's available. No action is required.

Trustwave reserves the right to review all comments in the discussion below. Please note that for security and other reasons, we may not approve comments containing links.