IBM AppScan 最新版本 8.5 修复了包括导入 WSDL 文件耗时过长、参数过滤问题、不测试错误页面、PDF 报告字段填充错误、不存在的 cookie 添加等问题在内的多个 Bug。
IBM AppScan 最新版本 8.5 ,修改了不少bug:
http://www-01.ibm.com/support/docview.wss?uid=swg27023615#0
| APAR | Description |
| PM23122 | Importing WSDL file into GSC takes 3 hours |
| PM25228 | GSC could filter parameters with unknown XSD types. |
| PM27800 | AppScan does not test error pages |
| PM28740 | OS/WS/AS fields are not filled in PDF reports if manually defined in Environment Definition |
| PM29667 | AppScan adds a non-existent cookie with path=/ |
| PM32327 | Japanese "Update Log" window title incorrect |
| PM32641 | GSC unable to retrieve an answer when a PKCS12 certificate with no password is used in the SSL configuration |
| PM34023 | The "Add Page break after each Issue URL" setting is ignored when generating reports in RTF format |
| PM35533 | DFT Improper message output when AppScan stopped JSA before it finishes |
| PM39578 | Imported WSDL file does not show methods |
| PM41775 | Corrupted multi-step sequence name in scan log |
| PM41881 | English word "State" is not translated correctly in Chinese version |
| PM44696 | Inconsistent severity "Security Issues" and "Remediation Tasks" for "Oracle Application Server PL/SQL Unauthorized SQL Query" |
| PM45778 | "Detected in Cycle" and "subject" fields are not populated when HP QC defect is opened via AppScan Standard |
| PM45852 | AppScan inconsistantly detects "SSL Certificate Domain Name Mismatch" with multiple certificate domains |
| PM46325 | Certificate About to Expire incorrectly flagged |
| PM46611 | DB Error Pattern false negative |
| PM46913 | AppScan does not correctly track cookies on 302 redirects |
| PM46920 | When kerberos negotiate is entered both manual and auto attempt ntlm |
| PM46992 | Description of [Special Patterns: Separator: path-query] is not correct |
| PM47162 | Using the OpenExternalBrowser option causes '-private%20' to be added into the URL for IE 6.0 and 7.0 |
| PM47257 | In-session Request is made during Exploration of Multi-step sequence. |
| PM47676 | Additional host filtering is case sensitive |
| PM47923 | Starting URLs are omitted from subsequent sequences when Multi-step Auto Explore is run |
| PM48462 | ASTD custom header description in GUI is unclear |
| PM48627 | Advisories and Fix Recommendations appear empty after an automatic update |
| PM50239 | Inconsistency in Severity Level for "Permanent Cookie Contains Sensitive Session Information" |
| PM50433 | SQL Injection for SQL Server Vulnerability Reported when Oracle set in Scan Configuration |
| PM50675 | AppScan may not detect DOM XSS when Java Script contains Japanese characters |
下载地址:
扫一扫
1万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
