COMODO Vulnerability Analyzer Version 1.0.1.18 (BETA) Released

[Guest]

[Liron Jan]

So... VA will not alert about new version of emule because of that?

[gibran]

So... VA will not alert about new version of emule because of that?

I guess that will only cover the Vulnerability part.

In regards to monitored software detection and update notices related to emule I'm not able to provide an answer but it could be useful to know if you are using an official emule release or a fork (modded variant).

[Liron Jan]

Well... I think I downloaded the official. I downloaded it from eMule-Project.

Thanks, Liron Jan.

[gibran]

I'm having Crashes on cvaupdat.exe after i press the start buttom

exception: c0000005 (access violation)
addresses: 76EEA817(rasconnectionnotificationw) or 76EE3CE9(rasenumentriesw)

My system specs are:
P4 HT 3 GHz and over 1gb ram available and XP sp3 32bit, HW  DEP Optout.
Other apps: Avira Antivir, Comodo Safesurf, Riva Tuner, Unlocker assistant, Speedfan, Daemon tools, Comodo Firewall Pro 3.0.25, Logitech Setpoint 4.60.122

[Ragwing]

When we show error code, it can be checked out on Microsoft site, e.g. error code '-2147024770' seen by Ragwing can be seen by visiting following link:

http://support.microsoft.com/kb/315297

Okay, thanks.

CAUSE
This problem may occur if Internet Explorer has some damaged files, or if the Inseng.dll dynamic link library (DLL) file is not registered.

Guess it in this case should be 'if Internet Explorer is missing some files'... I hate Internet Explorer anyways, so it doesn't matter. Would be cool with Comodo Safety Browser or something...
Disabling 'Scan for Windows updates' in Settings will fix this.

And now some suggestions...

Maybe include an option to scan for available BETA-versions (not checked by default), and when checking it, pop-up a box that says 'WARNING! BETA-versions might be unstable, and is not recommended to be run on your every-day PC' or something...
BETA-releases might be unstable and full of bugs, but still be safer than the former verison.

And err.. CVA only scans for vulnerable programs, and if there's any updates for them, right? So if there's no known vulnerability, it won't show that there's an update available, if there is?
Although it's not a part of CVA's job (seeing as it's named Comodo Vulnerability Analyzer), it wouldn't be too bad if it also alerted about updates for non-vulnerable programs too... Not necessary tho, but it's always a small bonus.

Cheers,
Ragwing

[panic]

LOL! How come CVA found more Windows updates than "Windows Updates" did?

Ewen :-)

[Melih]

told you we were good

Melih

[3xist]

LOL! How come CVA found more Windows updates than "Windows Updates" did?

Ewen :-)

Funny... The same thing happened to me!!

Edit: Is this a FP? (I thought Apple fixed this vulnerability):

Josh

[Rahul]

Funny... The same thing happened to me!!

Edit: Is this a FP? (I thought Apple fixed this vulnerability):

Josh

Hi Josh,

This is not a False Positive. And you are right, Apple did fixed this vulnerability in QuickTime 7.5. Currently you are running QuickTime 7.4.5, thus the CVA alert.
Ref URLs:
http://www.us-cert.gov/cas/techalerts/TA08-162C.html
http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html

You can download the latest version via Software Update preferences, or from Apple Downloads (http://www.apple.com/quicktime/download/).

Rahul

[umesh]

Hi Ragwing,
Regarding covering BETA products, so far we are covering only google.
As of now we have decided not to include BETAs in general, we would consider this request to show these on option bases. Not a bad idea.

Regarding it's Vulnerability Analyzer and it should cover updates also, when a system is found to be having an older version of product but not vulnerable it is shown under 'Updates Available' section.

Regarding Liron Jan's remark that it doesn't show eMule version under 'Updates Available' section, we are in the process of covering all famous P2P products, we first cover latest version and then cover older versions, so you might see this version under 'Updates Available' section soon.

Thanks
-umesh

[3xist]

Hi Josh,

This is not a False Positive. And you are right, Apple did fixed this vulnerability in QuickTime 7.5. Currently you are running QuickTime 7.4.5, thus the CVA alert.
Ref URLs:
http://www.us-cert.gov/cas/techalerts/TA08-162C.html
http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html

You can download the latest version via Software Update preferences, or from Apple Downloads (http://www.apple.com/quicktime/download/).

Rahul

Thanks Rahul.

I should off noticed this on filehippo.

Now running iTunes 7.6.2.9

Josh

[Rahul]

Thanks Rahul.

I should off noticed this on filehippo.

Now running iTunes 7.6.2.9

Josh

Anytime.

[Ronny]

Got a question about the Enterprise version, how's that gonna be ? agent ? agentless ?
i've been beta testing Secunia's NSI and wondering now if i have to sit and wait 

[Melih]

Got a question about the Enterprise version, how's that gonna be ? agent ? agentless ?
i've been beta testing Secunia's NSI and wondering now if i have to sit and wait 

how would you like it?

Melih

[Ronny]

Both have pro's and con's of course, if you do agent's then you have to "update" them if there's a new version.
And with 2000+ pc's with central management that's not the biggest problem but the problem is with this kind of stuff, the test pc / test server under the desk of somebody who didn't use the "centrally managed install".
and those have the greatest risk of being vulnerable because of the "manual" install, and only get used "sometimes" to test stuff.

If you want to scan agentless and do this within reasonable time you need a lot of threads on a big machine.

It would be nice if both where available and that you can scan an ip range and say check all hosts for availability of the latest CVA agent and if not, do a "remote" scan and report so we can "fix" the missing Agent.

[Tags:]