Check Point Protects Networks Against Vulnerability Being Exploited by the Duqu Malware
( Microsoft Security Advisory 2639658, CVE-2011-3402 )
A vulnerability in the Microsoft Windows TrueType font parsing engine can allow an attacker to execute code on a targeted system. This vulnerability is being exploited in the wild by the Duqu malware. The Check Point IPS Software Blade protects networks against this issue in the latest IPS update.
Learn More
.
Remote Code Execution Vulnerability Discovered in Microsoft Windows Mail and Meeting Space Applications
( Microsoft Security Bulletin MS11-085, CVE-2011-2016 )
A remote code execution vulnerability has been reported in Microsoft Windows Mail and Windows Meeting Space. The Check Point IPS Software Blade provides network protection against this issue in the latest IPS update.
Learn More
.
Check Point Provides Network Protection Against Adobe Photoshop Remote Code Execution Vulnerability
( APSB-11-22, CVE-2011-2131 )
A remote code execution vulnerability has been discovered in Adobe Photoshop. The Check Point IPS Software Blade provides network protection against this issue in the latest IPS update.
Learn More
.
| In This Advisory | |
| Top Protections | |
| • | Check Point Protects Networks Against Vulnerability Being Exploited by the Duqu Malware |
| • | Remote Code Execution Vulnerability Discovered in Microsoft Windows Mail and Meeting Space Applications |
| • | Check Point Provides Network Protection Against Adobe Photoshop Remote Code Execution Vulnerability |
| Highlighted Protections | |
| • | Including Patch Tuesday |
» Highlighted Protections
This table lists Check Point protections for recently disclosed threats. In some cases, Check Point protections against such threats or threat types have been available for some time, and the date listed is the date when the protection became available.
| Severity | Vulnerability Description | Check Point Protection Issued |
Industry Reference | Check Point Reference Number |
 Critical
|
Microsoft Windows Messenger Service Buffer Overrun Code Execution | 08-Nov-2011 | CAN-2003-0717 | CPAI-2011-516 |
|
Critical
|
Microsoft Windows Negotiate SSP Code Execution | 08-Nov-2011 | CAN-2004-0119 | CPAI-2011-514 |
|
Critical
|
Web Servers SSL Flooding Denial of Service | 06-Nov-2011 | - | CPAI-2011-505 |
|
High
|
Web Servers HTTP Flooding Denial of Service | 01-Nov-2011 | - | CPAI-2011-504 |
|
High
|
Microsoft Windows SMB Unchecked Buffer Denial of Service | 08-Nov-2011 | CAN-2002-0724 | CPAI-2011-511 |
More Updates >
Have questions about IPS? Participate in the IPS User Forum. The IPS Forum is your space for asking questions regarding all IPS features, and to collaborate with other IPS users, worldwide, on IPS related issues. Check Point employees may monitor the forum and provide information on the issues posted. |
Know someone who should be getting the Advisories? |
| » About the Check Point Update Services Check Point provides ongoing and real-time updates and configuration information through an update service included with the relevant subscriptions. Updates from Check Point's global Research and Response Centers increase the value of your Check Point products, and minimize threats by providing defenses that can be used before vendor patches are applied throughout your network. For more information, visit www.CheckPoint.com. |
©2003-2010 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved. 800 Bridge Parkway, Redwood City, CA USA 94065