Security System Analyzer 1.6 Beta 2 - Changelog

What's new in Security System Analyzer 1.6 Beta 2:

July 3rd, 2008

· Updated OVAL Security Check Plugin to support OVAL 5.4 schema
· Proxy support of NTLM authentication
· Reported Bugs fixed
· Draft documentation delayed (sorry guys, we’ve urged to release beta 2 to fix errors generated with OVAL 5.3 schema)

What's new in Security System Analyzer 1.5.2:

August 10th, 2007

· Based on OVAL 5.3 build 20 (new features see oval.mitre.org for more information)
· SSA now supports SCAP (Security Content Automation Protocol) (see http://nvd.nist.gov/scap.cfm)
· The XML SCAP files are extracted using our new SCAP Parser (SCAP_Patch_Extractor)
· Added Windows XP Patches definition file
· Added Windows Vista Patches definition file
· Added Windows 2000 Patches definition file
· Added Office 2007 Patches definition file
· Added Internet explorer 7 patches definition file
· SSA now supports scan for missed patches (using SCAP format)
· Updated OVAL XML Viewer Plugin: Now supports CVE search (ex: CVE-2007-* will return all CVEs in 2007 used along with OVALids), Bugs fixed

What's new in Security System Analyzer 1.5.1:

March 13th, 2007

· Based on OVAL 5.2 build 11 (bugs fixed)
· Corrected bug in EntityComparator::ParseVersionStr().
· Added error checking to the function to enusre that the input version strings are in a valid format.
· Removed VC7 project from source distributions.
· Now SSA relies on CPE (common Platform Enumeration) names to display inventories.
· SSA supports VISTA definitions.
· Added Menu Help
· PDF documentation : link to SSA PDF doc.
· OVAL Concept documentation : link to OVAL FAQS.
· CPE Concept documentation : link to CPE docs.
· [NEw Security-Database Feature]: Submit a bug about SSA
· Security-Database Vulnerability Search : Search information into our cross linked Vulnerability database
· Fixed bugs into scan() function
· Handle exception: Error while parsed corrupted XML File (thanks to Drew Buttner from OVAL project)
· Handle exception: Error while using unsupported schema
· Fixed a latency in function "stop/reload"
· Fixed the PATH bug. Now SSA can be installed in any directory

What's new in Security System Analyzer 1.5:

February 16th, 2007

· NOW fully based on OVAL 5.2 Interpreter.
· Added OVAL XML Database Plug-in.
· View OVAL ID Information
· Search by OS and OVAL ID
· Double click on entry and get more information (linked to OVAL.mitre.org and security-database.com)
· More information about CVE (CVSS, Related sources, Related missed patches....)
· NOW SSA Security System Analyzer in added to OVAL.mitre.org compatibility program
· Added function Stop/Reload in SSA
· Improved performance in SSA Core Scanner
· Fixed bugs (function checks, abnormal scan abort...)
· Fixed bugs in Updater Plug-in
· Added second progress bar in Updater Plug-in to indicate the stages left to be processed.