Security Best Practices
Security Best Practices are short pieces that contain the latest security recommendations from Check Point.
| Severity | Date | Check Point Reference |
Industry Reference |
Description |
|---|---|---|---|---|
| SBP-2011-12 | CVE-2011-1980 | Security Best Practice: Protect Yourself from Multiple Products .DLL Insecure Library Loading (CVE-2011-1980) | ||
| SBP-2011-12 | Security Best Practice: Protect Yourself from Repeated Character Conversion Obfuscation | |||
| SBP-2011-11 | Security Best Practice: Protect Yourself from Microsoft Remote Desktop Brute Force Attack (Win32.Morto.A) | |||
| SBP-2011-10 | Security Best Practice: Protect Yourself from Filter Proxy HTTP Headers Mismatch | |||
|
Updated |
SBP-2011-09 | CVE-2011-1273 | Workaround for Microsoft Office Excel BIFF5 Records Vulnerabilities (MS11-045; CVE-2011-1273) | |
| SBP-2011-08 | Security Best Practice: Protect Yourself from Javascript Character Manipulation Obfuscation (Fragus) | |||
| SBP-2011-07 |
CVE-2010-0840 CVE-2010-0094 CVE-2008-5353 |
Security Best Practice: Protect Yourself from Java Applet Exploits | ||
|
Updated |
SBP-2011-06 |
CVE-2011-0097 CVE-2011-0098 CVE-2011-0103 |
Workaround for Multiple Microsoft Office Excel BIFF4, BIFF5, and BIFF6 Records Vulnerabilities (MS11-021) | |
| SBP-2011-05 | Security Best Practice: Protect Yourself from SSH Brute Force Attacks | |||
| SBP-2011-04 | Security Best Practice: Protect Yourself from Metasploit Legacy Browser Exploit Whitespace Obfuscation Technique | |||
| SBP-2011-03 | Security Best Practice: Protect Yourself from Brute Force Scanning of CIFS Ports | |||
| SBP-2011-01 | Security Best Practice: Protect Yourself from JavaScript eval Case Sensitivity Obfuscation Exploits | |||
| SBP-2011-02 | Security Best Practice: Blocking Apple iPhone Browsing | |||
| SBP-2010-36 | Security Best Practice: Blocking Citrix ICA Session Sharing (Seamless Window) Vulnerabilities | |||
| SBP-2010-35 | CVE-2010-0102 | Security Best Practice: Protect Yourself from DCE-RPC over CIFS Fragmented Request Evasion Technique | ||
| SBP-2010-34 | CVE-2010-0102 | Security Best Practice: Protect Yourself from DCE-RPC Fragmented Request Evasion Technique | ||
| SBP-2010-33 | CVE-2010-0102 | Security Best Practice: Protect Yourself from DCE-RPC Invalid NDR Value Evasion Technique | ||
|
Updated |
SBP-2010-32 | CVE-2010-0102 | Security Best Practice: Protect Yourself from Microsoft SMB Invalid Write Mode Evasion Techniques | |
|
Updated |
SBP-2010-31 | CVE-2010-0102 | Security Best Practice: Protect Yourself from DCE-RPC Big Endian Evasion Techniques | |
|
Updated |
SBP-2010-30 | CVE-2010-2572 | Security Best Practice: Blocking Legacy PowerPoint Files | |
| SBP-2010-29 | CVE-2010-3654 | Workaround for Adobe Flash Player Flash Content Parsing Code Execution Vulnerability (APSA10-05) | ||
| SBP-2010-28 | CVE-2010-1883 | Workaround for Microsoft Embedded OpenType Font Engine Integer Overflow Vulnerability (MS10-076) | ||
|
Updated |
SBP-2010-27 | CVE-2010-3230 | Workaround for Microsoft Excel CrErr BIFF Record Parsing Integer Overflow Vulnerability (MS10-080) | |
|
Updated |
SBP-2010-26 | CVE-2010-3332 | Security Best Practice: Blocking Multiple HTTP Error Responses | |
| SBP-2010-25 | CVE-2010-2738 | Security Best Practice: Blocking Embedded Base-64 Encoded TTF Files | ||
| SBP-2010-24 | CVE-2010-0542 | Security Best Practice: Suspicious Characters in FTP User Name | ||
|
Updated |
SBP-2010-23 |
CVE-2009-0658 CVE-2009-1858 CVE-2010-1801 |
Security Best Practice: Protect Yourself from PDF Files Containing Malformed JBIG2 Structure Vulnerabilities | |
| SBP-2010-22 |
CVE-2010-1297 CVE-2010-2168 CVE-2010-2201 |
Security Best Practice: Protect Yourself from PDF Files Containing Embedded Adobe Flash Movies Vulnerabilities (APSB10-15) | ||
| SBP-2010-21 | Security Best Practice: Suspicious Adobe Director Files | |||
| SBP-2010-20 | Security Best Practice: Familiarize Yourself with the SMB Remote Disk Scanning for Executable Files Protection |