IBM AppScan 最新版本 8.5 ,修改了不少bug:
http://www-01.ibm.com/support/docview.wss?uid=swg27023615#0
APAR | Description |
PM23122 | Importing WSDL file into GSC takes 3 hours |
PM25228 | GSC could filter parameters with unknown XSD types. |
PM27800 | AppScan does not test error pages |
PM28740 | OS/WS/AS fields are not filled in PDF reports if manually defined in Environment Definition |
PM29667 | AppScan adds a non-existent cookie with path=/ |
PM32327 | Japanese "Update Log" window title incorrect |
PM32641 | GSC unable to retrieve an answer when a PKCS12 certificate with no password is used in the SSL configuration |
PM34023 | The "Add Page break after each Issue URL" setting is ignored when generating reports in RTF format |
PM35533 | DFT Improper message output when AppScan stopped JSA before it finishes |
PM39578 | Imported WSDL file does not show methods |
PM41775 | Corrupted multi-step sequence name in scan log |
PM41881 | English word "State" is not translated correctly in Chinese version |
PM44696 | Inconsistent severity "Security Issues" and "Remediation Tasks" for "Oracle Application Server PL/SQL Unauthorized SQL Query" |
PM45778 | "Detected in Cycle" and "subject" fields are not populated when HP QC defect is opened via AppScan Standard |
PM45852 | AppScan inconsistantly detects "SSL Certificate Domain Name Mismatch" with multiple certificate domains |
PM46325 | Certificate About to Expire incorrectly flagged |
PM46611 | DB Error Pattern false negative |
PM46913 | AppScan does not correctly track cookies on 302 redirects |
PM46920 | When kerberos negotiate is entered both manual and auto attempt ntlm |
PM46992 | Description of [Special Patterns: Separator: path-query] is not correct |
PM47162 | Using the OpenExternalBrowser option causes '-private%20' to be added into the URL for IE 6.0 and 7.0 |
PM47257 | In-session Request is made during Exploration of Multi-step sequence. |
PM47676 | Additional host filtering is case sensitive |
PM47923 | Starting URLs are omitted from subsequent sequences when Multi-step Auto Explore is run |
PM48462 | ASTD custom header description in GUI is unclear |
PM48627 | Advisories and Fix Recommendations appear empty after an automatic update |
PM50239 | Inconsistency in Severity Level for "Permanent Cookie Contains Sensitive Session Information" |
PM50433 | SQL Injection for SQL Server Vulnerability Reported when Oracle set in Scan Configuration |
PM50675 |
AppScan may not detect DOM XSS when Java Script contains Japanese characters |
下载地址: