Loading...
Security Resources

Software Updates

TrustKeeper Scan Engine Update for September 04, 2020

Summary

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Along with coverage for the vulnerabilities listed below, this update also gives us the capability to fingerprint Apple products and OSX versions.


New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Adobe Magento

Apache

  • Apache HTTP Server Cache-Digest Header Denial of Service (CVE-2020-9490)
  • Apache HTTP Server mod_remoteip IP Address Spoofing (CVE-2020-11985)
  • Apache HTTP Server mod_uwsgi Buffer Overflow (CVE-2020-11984)
  • Apache HTTP Server trace/debug Request Smuggling Vulnerability (CVE-2020-11993)

ISC BIND

  • Adobe Magento Flash Files Cross-Site Scripting (CVE-2014-9758)
  • Adobe Magento Insecure Direct Object Reference (CVE-2019-8235)
  • ISC BIND pk11.c Denial of Service (CVE-2020-8623)
  • ISC BIND resolver.c Denial of Service (CVE-2020-8621)
  • ISC BIND tcpdns.c Denial of Service (CVE-2020-8620)
  • ISC BIND TSIG-Signed Request Denial of Service (CVE-2020-8622)
  • ISC BIND Update-Policy Improper Privilege Management Vulnerability (CVE-2020-8624)
  • Missing VMware ESXi Patches (VMSA-2020-0018) (CVE-2020-3976)
  • Squid Proxy Cache Digest Response Denial of Service (SQUID-2020:9)
  • Squid Proxy HTTP(S) Request Smuggling Vulnerability (SQUID-2020:10) (CVE-2020-15810)
  • Squid Proxy HTTP(S) Request Splitting Vulnerability (SQUID-2020:8) (CVE-2020-15811)

Microsoft

Oracle

PostgreSQL

  • PostgreSQL search_path in CREATE EXTENSION Arbitrary Code Execution (CVE-2020-14350)
  • PostgreSQL search_path in Logical Replication Arbitrary Code Execution (CVE-2020-14349)

Red Hat (Credentialed Checks)

  • Red Hat Enterprise Linux .NET Core 3.1 security and bugfix update (RHSA-2020:3422) (CVE-2020-1597)
  • Red Hat Enterprise Linux Red Hat Ceph Storage 3.3 security and bug fix update (RHSA-2020:3504) (CVE-2020-10753)

Squid

  • Squid Proxy Cache Digest Response Denial of Service (SQUID-2020:9)
  • Squid Proxy HTTP(S) Request Smuggling Vulnerability (SQUID-2020:10) (CVE-2020-15810)
  • Squid Proxy HTTP(S) Request Splitting Vulnerability (SQUID-2020:8) (CVE-2020-15811)

Ubuntu (Credentialed Checks)

VMware

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.