IBM AppScan 8.5

IBM AppScan 最新版本 8.5 ，修改了不少bug：

http://www-01.ibm.com/support/docview.wss?uid=swg27023615#0

 

APAR​	Description​
PM23122​	Importing WSDL file into GSC takes 3 hours​
PM25228​	GSC could filter parameters with unknown XSD types.​
PM27800​	AppScan does not test error pages​
PM28740​	OS/WS/AS fields are not filled in PDF reports if manually defined in Environment Definition​
PM29667​	AppScan adds a non-existent cookie with path=/​
PM32327​	Japanese "Update Log" window title incorrect​
PM32641​	GSC unable to retrieve an answer when a PKCS12 certificate with no password is used in the SSL configuration​
PM34023​	The "Add Page break after each Issue URL" setting is ignored when generating reports in RTF format​
PM35533​	DFT Improper message output when AppScan stopped JSA before it finishes​
PM39578​	Imported WSDL file does not show methods​
PM41775​	Corrupted multi-step sequence name in scan log​
PM41881​	English word "State" is not translated correctly in Chinese version​
PM44696​	Inconsistent severity "Security Issues" and "Remediation Tasks" for "Oracle Application Server PL/SQL Unauthorized SQL Query"​
PM45778​	"Detected in Cycle" and "subject" fields are not populated when HP QC defect is opened via AppScan Standard​
PM45852​	AppScan inconsistantly detects "SSL Certificate Domain Name Mismatch" with multiple certificate domains​
PM46325​	Certificate About to Expire incorrectly flagged​
PM46611​	DB Error Pattern false negative​
PM46913​	AppScan does not correctly track cookies on 302 redirects​
PM46920​	When kerberos negotiate is entered both manual and auto attempt ntlm​
PM46992​	Description of [Special Patterns: Separator: path-query] is not correct​
PM47162​	Using the OpenExternalBrowser option causes '-private%20' to be added into the URL for IE 6.0 and 7.0​
PM47257​	In-session Request is made during Exploration of Multi-step sequence.​
PM47676​	Additional host filtering is case sensitive​
PM47923​	Starting URLs are omitted from subsequent sequences when Multi-step Auto Explore is run​
PM48462​	ASTD custom header description in GUI is unclear​
PM48627​	Advisories and Fix Recommendations appear empty after an automatic update​
PM50239​	Inconsistency in Severity Level for "Permanent Cookie Contains Sensitive Session Information"​
PM50433​	SQL Injection for SQL Server Vulnerability Reported when Oracle set in Scan Configuration​
PM50675​	AppScan may not detect DOM XSS when Java Script contains Japanese characters

 

下载地址：

http://www.ibm.com/developerworks/downloads/r/appscan/