Software Updates

AppDetectivePRO and DbProtect Knowledgebase Update 4.58

Written by | Feb 7, 2016 8:47:00 AM

This month's update for our AppDetectivePRO and DbProtect Knowledgebase is now available.

Knowledgebase version 4.58 includes new checks for MySQL and Oracle, new policies for DISA-STIG Oracle 11G V8R1-15 -Audit, and updated checks for IBM DB2 LUW.

New Vulnerability and Configuration Check Highlights

MySQL

  • Critical Patch Update -January 2016
    • Check version to determine if the database contains vulnerabilities described by Critical Patch Update - January 2016
    • Risk: High
    • Relevant CVEs: CVE-2015-7744, CVE-2016-0502, CVE-2016-0503, CVE-2016-0504, CVE-2016-0505, CVE-2016-0546, CVE-2016-0594, CVE-2016-0595, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0600, CVE-2016-0605, CVE-2016-0606, CVE-2016-0607, CVE-2016-0608, CVE-2016-0609, CVE-2016-0610, CVE-2016-0611, CVE-2016-0616

New Checks

Oracle

  • Critical Patch Update/Patch Set Update -January 2016
    • Check version to determine if the database contains vulnerabilities described by Critical Patch Update/Patch Set Update -January 2016.
    • Risk: High
    • Relevant CVEs: CVE-2015-4921, CVE-2015-4923, CVE-2015-4925, CVE-2016-0461, CVE-2016-0467, CVE-2016-0472, CVE-2016-0499
  • Excessive privileges on SYS.SCHEDULER$_CREDENTIAL
    • List all permissions granted on SCHEDULER$_CREDENTIAL table.
    • Risk: Medium
    • Relevant CVEs: N/A
  • Excessive privileges on SYS.USER$
    • Excessive privileges on SYS.USER$
    • Risk: Informational
    • Relevant CVEs: N/A
  • Excessive privileges on USER_HISTORY$
    • List all permissions granted on USER_HISTORY$ table.
    • Risk: Informational
    • Relevant CVEs: N/A
  • Server allows registering with listener via TCP/IP
    • Verifies whether TCP/IP can be used to register an instance with a listener.
    • Risk: Low
    • Relevant CVEs: N/A
  • SQL92_SECURITY parameter not set to FALSE
    • Verifies that SQL92_SECURITY parameter is set to FALSE.
    • Risk: Low
    • Relevant CVEs: N/A
  • User data found on the root of CDB
    • Check for user-created tables on the root of CDB.
    • Risk: Low
    • Relevant CVEs: N/A

New Policies

DISA-STIG Oracle 11G V8R1-15 -Audit (Built-in)

  • This policy has been created with guidance of the configuration parameters outlined by the DISA-STIG ORACLE 11G DATABASE SECURITY CHECKLIST Version 8, Release 1.15
    • Note that AppDetectivePROusers should use the DISA STIG NEW! Policy as the new policies are part of the super set of DISA STG policies.

Updated Checks

IBM DB2 LUW

  • Fix Pack not installed on time
    • Updated to Support 10.5 Fix Pack 7
    • Risk: High
    • Relevant CVEs: N/A
  • Latest Fix Pack not installed
    • Updated to Support 10.5 Fix Pack 7
    • Risk: High
    • Relevant CVEs: N/A

All AppDetectivePRO and DbProtect customers with maintenance (subscription or perpetual) in good standing can download the latest Knowledgebase Update 4.58 by visiting the Trustwave support portal at https://trustwave.com/Company/Support and selecting either the AppDetectivePRO or DbProtect product.

AppDetectivePRO customers can also update their deployment by launching the "Updater" within the product.