[Customerconnect] Internet Scanner XPU 6.18 Now Available!

From: ISS Customer Relations (bpq@iss.net)
Date: 09/17/02

To: customerconnect@iss.net
From: ISS Customer Relations <bpq@iss.net>
Date: Tue, 17 Sep 2002 11:28:41 -0400

Internet Scanner X-Press Update 6.18 is now available from the ISS Download
Center: <http://www.iss.net/download/>. X-Press Update 6.18 includes two
new checks related to the "Slapper" OpenSSL/Apache Worm. The first
identifies the OpenSSL vulnerability, and the second identifies systems
infected by the worm. The X-Force Alert provides more information on this
worm and is accessible at:


The new checks in this XPU are listed below.

Risk VulnID Check Name Category
==== ====== ========== =========
High 9714 OpensslSsl2MasterkeyBo Web Scan
High 10098 SlapperWorm* Web Scan

*The SlapperWorm check will cause the worm service to become uncontrollable
but is not marked as a Denial of Service check due to the nature of the
vulnerability. This check does not harm legitimate processes. Repeat scans
will not show the vulnerability unless the SlapperWorm has been restarted
on the server. The worm process has the ability to restart upon reboot.


XPU 6.18 is for use with Internet Scanner version 6.2.1. Internet Scanner
6.2.1 is available on the ISS Download
Center: <http://www.iss.net/eval/eval.php>.

For more information on this release, please contact the following:

* For additional product information:
- Internet Scanner:
- X-Press Updates: <http://www.iss.net/db_data/xpu/IS.php>

* For sales and professional services information:
- sales@iss.net <mailto:sales@iss.net>
- 888-776-2362 (U.S. and Canada); +1-404-236-2600 (International)

* For support information, including ISS' Technical Support Knowledgebase:
- Customer Support - <http://www.iss.net/support/enterprise/index.php>
- Technical Support Knowledgebase -

Customerconnect mailing list