what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 12 of 12

Files from Sven Vermeulen

CVE Checker 3.5

Posted Sep 30, 2013

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Various updates.

tags | tool, vulnerability

systems | unix

SHA-256 | 7d3e0becf23ca3897a3a89c3f913e3b112adda39792417a659684534063c14b9

Download | Favorite | View

CVE Checker 3.3

Posted Sep 17, 2013

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Mainly a bugfix release, but contains a few features such as allowing standard input for the binary list as well as introduction of the CVECHECKER_CONFFILE environment variable.

tags | tool, vulnerability

systems | unix

SHA-256 | 63b8661a7ea102e25f67122b90819e8c58f7e0ceb6acd6ea7d8bb9138e380914

Download | Favorite | View

CVE Checker 3.2

Posted Nov 26, 2012

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Reports CVSS scoring when a CVE is potentially applicable to the system. Also fixes some buffer handling code and adds in checks for missing runtime dependencies in the scripts.

tags | tool, vulnerability

systems | unix

SHA-256 | d054766533535bda5c86d8650a423042fb8de3363a77ff9ebc18531177104f66

Download | Favorite | View

CVE Checker 3.1

Posted Apr 14, 2011

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This bugfix release sanitizes the user defined key before it is put in the database and fixes a runtime problem when both SQLite and MySQL support are requested.

tags | vulnerability

systems | unix

SHA-256 | a7bed8adf2ecf6e23ed3f5339c1e7c15686d07059931a0cf2de3c60290e434f8

Download | Favorite | View

CVE Checker 3.0

Posted Apr 12, 2011

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: MySQL is now supported. Watchlists have been added.

tags | vulnerability

systems | unix

SHA-256 | f23e5fc08f41cbc184e4b817960bba907308330aa9d1192f6a4b26468a43b2e2

Download | Favorite | View

CVE Checker 2.0

Posted Dec 2, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This release includes the ability to scan changed/added files rather than the entire system, a command that helps to generate version matching rules, and a new switch to report vulnerabilities of software versions that are higher than the software versions you have on your system.

tags | vulnerability

systems | unix

SHA-256 | a9d99bafa0ee674ed7db0f39913ac69a7db68c61feadf6f6fb301580e83da1cb

Download | Favorite | View

CVE Checker 1.0

Posted Oct 4, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: A few small error handling and buffer overflow problems were fixed.

tags | vulnerability

systems | unix

SHA-256 | 8b60bf1563a79d28075dea944f0f49a13fda7ca7de44d91631356eb2a2433378

Download | Favorite | View

CVE Checker 0.6

Posted Sep 11, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Reporting performance was improved tremendously for recent SQLite libraries. Reporting on found software, regardless of it matching a CVE entry, was added, and quite a few bugs were fixed.

tags | vulnerability

systems | unix

SHA-256 | 818a0fa17c65124e82df8e30ae5679aee65d7f9646353fdb97f393b14c2a6bd1

Download | Favorite | View

CVE Checker 0.5

Posted Sep 3, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: The tool should now build properly on NetBSD and FreeBSD (although more user experience here is still welcome). This release introduces a cvereport command (example output can be found at the project site), and has lowered its initial dependency requirements. pullcves now only loads the CVE XML changes in the database, rather than iterating across all CVE XML entries.

tags | vulnerability

systems | unix

SHA-256 | b4b0316c61f87022c046f8558b8fe514d770dd2e605866b1a794a6a10d890f0b

Download | Favorite | View

CVE Checker 0.4

Posted Aug 26, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This release includes internal project files reorganization (more to the liking of the GNU autoconf/automake standards), fixes a database leak bug, and introduces a slightly more intelligent pullcves command (with multiple return code behavior to improve automation efforts). All documentation has been updated, and a pullcves manual page has been added.

tags | vulnerability

systems | unix

SHA-256 | 5d43fb948d296ce79943d6b84634a90f68d6a566816163a8756bd4f272f9b566

Download | Favorite | View

CVE Checker 0.3

Posted Aug 21, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Cleanups in the CSV output have been made, and a few sample reporting files have been added. This release fixes a few bugs in file matching support and adds --no-check-certificates to the wget command.

tags | vulnerability

systems | unix

SHA-256 | 3c8bf7f22f9ffe6e657b5b30a7762ca7f8074d0b2bf638ab221cb7d4c008b7ce

Download | Favorite | View

CVE Checker 0.2

Posted Aug 17, 2010

Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This release fixes ./configure to fail when sqlite3 or libconfig isn\'t present. It fixes make to support make install. It fixes compiler warnings on size_t usage.

tags | vulnerability

systems | unix

SHA-256 | 09efa8d4050dc9fe1d0ed218d95860ef5154db8b3a4fdf5ea39991d42c2da7cf

Download | Favorite | View