Update Protection against Microsoft .NET Framework Arbitrary Memory Modification Vulnerability (MS09-061)
| Check Point Reference: | CPAI-2009-266 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS09-061 | |
| Industry Reference(s): | CVE-2009-2497 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft .NET Framework 3.5 Microsoft .NET Framework 2.0 Microsoft Silverlight 2 | ||
| Vulnerability Description A remote code execution vulnerability exists in the Microsoft .NET Framework. The Microsoft .NET Framework is a software framework that includes a large library of coded solutions to common programming problems and a virtual machine that manages the execution of programs written specifically for the framework. An attacker could exploit this issue by constructing a specially crafted Web page that when viewed by a user, could allow the attacker to execute arbitrary code remotely. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS09-061 |
|
|
Vulnerability Details This vulnerability is due to the way the Microsoft .NET Common Language Runtime (CLR) handles interfaces. The CLR allows applications to modify arbitrary memory in such a way that an attacker could execute arbitrary code on the vulnerable system. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.