Tenable Network Security Podcast Episode 139 - "IE Vulnerabilities, SecurityCenter Sneak Preview"
Note: Tenable SecurityCenter is now Tenable.sc. To learn more about this application and its latest capabilities, visit the Tenable.sc web page.
Announcements
- We're hiring! - Visit the Tenable website for more information about open positions.
- Check out our video channel on YouTube which contains new Nessus and SecurityCenter 4 tutorials.
- Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make product and company announcements, provide Nessus plugin statistics, and more!
- Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join Tenable's Discussion Forum for custom scripts, announcements, and more!
- You can subscribe to the Tenable Network Security Podcast on iTunes!
New & Notable Plugins
Nessus
- Microsoft Visual Studio Team Foundation Server Detection (Credentialed Check)
- MS12-061: Vulnerability in Visual Studio Team Foundation Server
- MS12-062: Vulnerability in System Center Configuration Manager
- MS Update Rollup for ActiveX Kill Bits (2736233)
- SolarWinds Orion NPM < 10.3.1 Vulnerabilities
- ISC BIND Assertion Error Resource Record Remote DoS
- WebSphere MQ 7.1 < 7.1.0.1 Security Configuration Bypass
- XnView < 1.99.1 JPEG Compressed TIFF Image Overflow
- LogAnalyzer index.php highlight Parameter XSS
- MDaemon WorldClient < 12.5.7 XSS Vulnerabilities
Passive Vulnerability Scanner
- JustCloud 'Cloud' Backup Service Detection
- Apache 2.2 < 2.2.23 Vulnerabilities
- iTunes < 10.7 Vulnerabilities
- Real Networks RealPlayer < 15.0.6.14 Vulnerabilities
- Sprint TV app on Android mobile devices
- MS Skydrive 'Cloud' Backup Service Detection
- Carbonite 'Cloud' Backup Service Detection
- Foursquare app on an Android mobile device
SecurityCenter Dashboards
Compliance Checks
Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.
Stories
- Sneak Peek at SecurityCenter 4.6
- Internet Explorer Users: Please Read This
- Compliance Lessons from Lance « The New School of Information Security
- Tenable Network Security: Auditing Open Ports on Windows.
- Your BMW can be stolen by any idiot with a $30 hacking kit | Naked Security
- Technology News: Security: Hacker Claims Old-School Tactic Brought GoDaddy to Its Knees
- Users told: Get rid of Internet Explorer (again)
- Microsoft offers workarounds for IE bug
- Romanians Plead Guilty To Credit Card Hack On US Subway Shops ≈ Packet Storm
Related Articles
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
November 22, 2024Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely. And get the latest on the BianLian ransomware gang and on the challenges of protecting water and transportation systems against cyberattacks.
Active Directory Under Attack: Five Eyes Guidance Targets Crucial Security Gaps
November 21, 2024A landmark global report from cybersecurity agencies emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the first of our two-part series, we offer five steps you can take today to shore up your AD defenses.
Five Cyber Agencies Sound Alarm About Active Directory Attacks: Beyond the Basics
November 21, 2024A landmark global report emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the second of our two-part series, we take you beyond the basics to highlight three key areas to focus on.
- Podcast
- Vulnerability Management