Loading...
Security Resources

Software Updates

TrustKeeper Scan Engine Update for February 07, 2018

Summary

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy!

New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

cPanel

  • cPanel Multiple Vulnerabilities (TSR-2018-0001)

Drupal

HTTP/2

  • Cleartext connections allowed over HTTP/2

ISC Bind

  • ISC Bind improper fetch cleanup sequencing Denial of Service (AA-01542) (CVE-2017-3145)

Oracle

PfSense

  • PfSense Base System Arbitrary Code Execution (pfSense-SA-17_10)
  • PfSense status_filter_reload.php Cross-Site Scripting vulnerability (pfSense-SA-17_11)

Squid

  • Squid ESI Response processing Denial of Service (SQUID-2018:1)
  • Squid HTTP Message processing Denial of Service (SQUID-2018:2)

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.