1. www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Scan™ 6.4 Overview & What’s New

2. © Copyright 2008 - Lumension Security www.lumension.com 1 PatchLink Scan™ Comprehensive network-based scan of all of the devices on your network Scan (network-based) all devices for software and configuration-based vulnerabilities Prioritize identified threats against a robust, continuously updated vulnerability database for orderly remediation Deliver comprehensive reports of scan results

3. © Copyright 2008 - Lumension Security www.lumension.com 2 Rapid, Accurate Network-based Scans Scans all devices - routers, printers, servers, laptops, operating systems, switches, wireless access points and more Detailed assessment checks on security configurations, antivirus, sharing tools, worms, Trojans, missing patches, open ports, services and more Deep inspection of target systems that includes redundant file attribute and registry value correlation, as well as SSH tunneling and authenticated OS fingerprinting refinement

4. © Copyright 2008 - Lumension Security www.lumension.com 3 Vulnerability Prioritization Prioritize vulnerabilities based on asset criticality and vulnerability score-carding to aid in the remediation process Exhaustive information database of more than 4,000 vulnerabilities – full of actionable information to help you assess your threat levels and implement corrective actions.

5. © Copyright 2008 - Lumension Security www.lumension.com 4 Comprehensive Reporting Wide range of standard reports that provide high-level or detailed information on vulnerabilities found by category, risk level, individual machine, and more Simple point and click capability to quickly ascertain the enterprise security posture relative to common industry tracking mechanisms Easier than ever to demonstrate policy and regulatory compliance

6. © Copyright 2008 - Lumension Security www.lumension.com 5 Identify Broad Range of Vulnerabilities Display Domain Controller Encryption Error Message Exception Handling File Permission Folder Permission Forgery Ftp Guest Access Hijacking Implementation Flaw Information Disclosure Informational Input Validation Log Logon Macro Malware Out Of Date Software Legacy Operating Systems Overwrite Access Control Account Permission Account Policy Anti-Virus Arbitrary Code Execution Arbitrary Code Injection File Access Audit Policy Authentication Best Practice Banner Boot Buffer Overflows And Overruns Certificate Clear Text Protocol Cross Site Scripting Cryptography Data Integrity Denial Of Service Devices Design Error Directory Traversal Password Patch Performance Permissions Policy Privilege Elevation Registry Remote Execution Root Privilege Service Service Pack Shutdown Spoofing Symlink Attacks System Integrity Tampering Test Unauthorized Access Unauthorized Read Unauthorized Write Unsafe Code User Rights Web Browser Specific

7. © Copyright 2008 - Lumension Security www.lumension.com 6 PatchLink Scan – Key Features Adaptive Scanning - The most accurate vulnerability assessment scan using flexible network-based scanning techniques based on access-levels including credentialed and null based. Also, perform ad hoc scans that can target one or many machines and specific vulnerabilities. Auto Updating - Schedule and automate recurring scan tasks to run on a daily, weekly or monthly basis. Complete Asset Discovery - Identifies all network devices and performs configuration and informational checks on ports, services, users, shares and groups Comprehensive Vulnerability Coverage - Over 4000 vulnerability audits with wide support across Windows, POSIX and infrastructure devices. Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, common worms, and P2P software checks. Comprehensive Reporting - Ability to create and export (RTF, PDF, HTML, etc) numerous high-level or detailed reports of all scan data to confirm policy and regulatory compliance Consolidated Views - Multiple scans can be merged together to form a more comprehensive security posture.

8. © Copyright 2008 - Lumension Security www.lumension.com 7 Highly Scalable - Highly scalable architecture due to its modular components which can be installed on the same or separate systems and scaled-up as needed. Multiple instances of the scanner scan engine can be deployed across the enterprise, controlled remotely or locally. As the number of systems on the network increase so can the number of engines performing the scans. Non-Disruptive Scanning - Designed to safely scan for vulnerabilities using standard networking protocols with minimum impact to your network. Never employs malicious vulnerability attacks; scanning methodology uses safe standard networking protocols and API’s. Remediation Recommendations - Extensive vulnerability database with informational resources and remediation recommendations Risk-Based Prioritization - All scanned systems are evaluated and prioritized according to asset value and vulnerability criticalities using straight-forward equations. All systems are then listed by risk severity to help focus and prioritize remediation efforts. Role-Based Administration - Enables distributed management of scan activity by user roles Common Criteria EAL2 Certified - The Common Criteria Evaluation and Certification Scheme (CCS) Certification Body has asserted that PatchLink Scan complies with the all specified security requirements PatchLink Scan – Key Features cont’d

9. © Copyright 2008 - Lumension Security www.lumension.com 8 What’s New In PatchLink Scan 6.4.4 Compatibility with PatchLink Update 6.4  Directory Services Groups  Nested Groups Backwards compatibility with PatchLink Update 6.1, 6.2 and 6.3 Support for Microsoft Windows Vista Agent Management Job  The Ability to install or uninstall Agents to Windows Vista.  The ability to install or uninstall Agents with authenticated proxy. Internalization  A4 support for Report Generation  Date/Time support

10. © Copyright 2008 - Lumension Security www.lumension.com 9 Broad Platform Support OS / VersionDiscoveryAssessment 3com / Router, Switchx BSD Unix / Net, Free, BSDIx Cisco / IOS, CatOS, PIXxx Cisco VPNx Foundary / Router, Switchx HP / HP-UX 10.x and laterxx HP / Tru64 4.0F and laterxx IBM AIXx Juniper / JunOSx Linux / Fedora (6,7)xx Linux / Mandriva (7.0, 7.1)xx Linux / Red Hat (Enterprise 2.1, 3, 4, 5)xx Linux / SuSE Open/Enterprise (9, 10.0, 10.1, 10.2, 10.3)xx Nortel Switchx OpenBSD / 3.8 and laterxx Printers / Canon, Epson, Tektronixx Printers / HP Networkedxx Printers / Lexmarkx Sun Solaris / 2.5 and laterxx Windows (generic)x Windows / 2000, XP, 2003xx Windows / Vistaxx Windows / XP EmbeddedxX Wireless Access Pointx

11. © Copyright 2008 - Lumension Security www.lumension.com 10 Minimum Requirements Processor Requirements:Pentium ® compatible 1 GHz Memory Requirements:512 MB RAM Disk Capacity Requirements:20 GB available disk space Display:Monitor resolution 1024 x 768 Operating SystemWindows 2000 Server SP4 Windows 2000 Advanced Server SP4 Windows XP Professional SP2 Windows Server 2003 SP1

12. © Copyright 2008 - Lumension Security www.lumension.com 11 Thank You For more information, please call United States: +1 480 970-1025 (option 1) United Kingdom: + 44 (0) 1908 357 897 Luxembourg: + 352 265 354 11 Singapore: + 65 6725 6415 or visit us on the web at www.lumension.com