Re: [WEB SECURITY] Knowing what's plugged-in?

From: Bil Corry <bil_at_nospam>
Date: Tue Jun 03 2008 - 01:14:27 GMT
To: websecurity@webappsec.org

Jon Kibler wrote on 6/2/2008 5:19 PM:
> Which gets me to my question: Is there any good tool available to
> inventory each workstation in a organization and report on installed
> plugins for each browser installed?
>
> As a follow-up question: Is there a tool available that will push out
> plugins to every browser that needs an update? (Something like patch
> management for browser plugins?)

I'm aware of PSI for Windows, which will alert you to any products that are vulnerable or end-of-life (including browser plug-ins):

<https://www.secunia.com/>

I've not used their "business edition" so I don't know what reporting and/or patching capabilities it has (if any). The free personal edition works well, it caught an older version of Flash that was installed in an odd place as part of another product's installation.

Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: http://www.webappsec.org/lists/websecurity/

Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA

This message: [ Message body ]
Next message: Andre Gironda: "Re: [WEB SECURITY] AccessMe Tool Now Available"
Previous message: Oliver Lavery: "[WEB SECURITY] AccessMe Tool Now Available"
In reply to: Jon Kibler: "[WEB SECURITY] Knowing what's plugged-in?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]