Update Protection against Microsoft Windows Common Control Library Heap Buffer Overflow Vulnerability (MS10-081)
| Check Point Reference: | CPAI-2011-078 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS10-081 | |
| Industry Reference(s): | CVE-2010-2746 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft Windows 7 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 | ||
| Vulnerability Description A remote code execution vulnerability exists in Microsoft Windows Common Control Library. The common controls are a set of windows that are implemented by the common control library, Comctl32.dll, which is a DLL included with the Windows operating system. Like other control windows, a common control is a child window that an application uses in conjunction with another window to enable interaction with the user. A remote attacker may exploit this vulnerability to execute arbitrary code on a vulnerable system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS10-081 |
|
|
Vulnerability Details The vulnerability is due to a heap buffer overflow in the Comctl32.dll file when processing certain messages passed from a third-party scalable vector graphics (SVG) viewer. Successful exploitation of this vulnerability would allow injection and execution of arbitrary code on the vulnerable system. |
Protection Overview
This protection will detect and block malicious requests sent to the vulnerable client service.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.