Vulnerabilities / Threats
12/4/2012
03:08 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Tenable Rolls Out Vulnerabilty Management Solution For IPv6

SecurityCenter Continuous View designed to identify emerging threats and vulnerabilities

Columbia, MD, December 04, 2012 -- Tenable Network Security, Inc., the leader in real-time vulnerability management, today released the first vulnerability management solution designed to identify emerging threats and vulnerabilities as an entirely new field of Internet addresses are employed.

IPv6 (Internet Protocol version 6) is the latest revision of the Internet Protocol (IP), the primary communications protocol upon which the entire Internet is built. It is intended to replace the older IPv4, which is running out of addresses that are needed to connect the exploding number of devices like smartphones and tablets to the Internet.

Security solutions not yet able to discover and assess known devices and systems assigned the new IPv6 address leave networks vulnerable to security risk and compliance violations, especially to malicious users who will be trying to exploit networks that contain unknown IPv6 addresses.

No longer a job for scheduled scanning alone, upgrades to Tenable's SecurityCenter Continuous View&trade (CV) solution combines scheduled scanning and passive vulnerability monitoring to identify vulnerabilities, threats, and compliance violations located at any of 1.2*10^24 IPv6 addresses, a /48 space recommended for a "typical" organization.

Already unique in its ability to manage risk from mobile devices, cloud-based services and virtual infrastructure, enhancements to SecurityCenter CV components, SecurityCenter&trade version 4.6 and Passive Vulnerability Scanner&trade (PVS) version 3.8, extend Tenable's lead in vulnerability management to identify security and compliance risk from rapidly evolving computing environments.

"Our customers are already the first to continuously manage risk from mobile, cloud and virtual infrastructure. Now they can add IPv6 to the list of challenges they've uniquely prepared their organizations for," said Ron Gula, CEO and co-founder of Tenable Network Security. "This new release of SecurityCenter continues to set the pace for IT risk management, helping companies rapidly adopt new technologies, and reduce gaps in risk awareness from months to minutes by transitioning from periodic scanning to continuous real-time monitoring."

The following enhancements to SecurityCenter and PVS&trade improve monitoring, analysis and collaboration:

· IPv6 – Enhancements to SecurityCenter and PVS automatically identify security and compliance risk in IPv6 assets as soon as and wherever they appear across hybrid IPv4/IPv6 address spaces, increasing situational awareness.

· Unified IPv6 Scanning – Enhancements to SecurityCenter, when used with Tenable Perimeter Service, provide a comprehensive internal and external assessment of an organization's IPv6 risk posture.

· LDAP Access and Asset Calculator - Enhancements in SecurityCenter simplifies the creation of scans targeted at devices based on enterprise IT asset information. New Plugin Date Filters improve compliance trending and reporting.

· Scan on Alert, Report on Scan, and Report Sharing - New collaboration functionsallow SecurityCenter to trigger scans, share reports, and initiate incident and remediation workflow with rich information on vulnerabilities, threats, and malware detection. With Tenable's Log Correlation Engine&trade deployed, reports and scans can be triggered based on anomalous behavior (e.g., never-before-seen events).

A complete list of enhancements can be found at [link].

About Tenable Network Security

Tenable Network Security is the de facto standard for vulnerability and compliance management solutions with over 15,000 customers worldwide. Tenable's unique real-time vulnerability and threat management technologies are used by the most demanding security professionals, compliance auditors, and executive risk managers to reduce the risk from mobile, cloud and virtual technologies. Our solutions scale to meet the needs of the smallest to the largest enterprises and government agencies including the entire U.S. Department of Defense.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.