 |
Check Point SmartDefense Services protects customers using VPN-1 NGX R65, R62, R61, R60, VSX NGX R65, and InterSpect NGX from the following Vulnerabilities:
 Oracle Database SYS.OLAPIMPL_T Package ODCITABLESTART Buffer Overflow Vulnerability
Industry Reference: CVE-2008-3974.
A buffer overflow vulnerability has been reported in the Oracle Database Server SYS.OLAPIMPL_T package. Oracle Database Server is an enterprise-level relational database application suite. A remote attacker may exploit this issue to execute arbitrary code on an affected system. SmartDefense Services protection will detect and block the vulnerable Oracle Database function in SYS.OLAPIMPL_T package over TNS, SMB or iSQL Plus traffic.
New Protections are available for this vulnerability. See CPAI-2009-022.
Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow VulnerabilityIndustry Reference: CVE-2008-4556.
Solstice AdminSuite is a set of applications for distributed system administration. sadmind is a daemon used by Solstice AdminSuite to control the servers running Sun Solaris operating system. A stack buffer overflow vulnerability has been reported in Solstice AdminSuite's sadmind. A remote attacker may exploit this issue to execute arbitrary code on an affected system. SmartDefense Services protection will detect and block malformed SUN-RPC requests sent to the vulnerable service.
New Protections are available for this vulnerability. See CVE-2008-4556.
LibSPF2 DNS TXT Records Parsing Buffer Overflow VulnerabilityIndustry Reference: CVE-2008-2469.
A buffer overflow vulnerability was reported in LibSPF2, a widely deployed implementation of Sender Policy Framework (SPF). LibSPF2 contains a buffer overflow vulnerability in the code that parses DNS TXT records. An attacker who runs a malicious DNS server can exploit this vulnerability by sending a message with overly long TXT records to the target system. Successful exploitation could allow for execution of arbitrary code. SmartDefense Services protection will detect and block malformed DNS TXT resource records.
New Protections are available for this vulnerability. See CPAI-2008-230.
Recent Malware Threats (19-Feb-09)Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. The update enables the Header Rejection protection to detect and block the malware based on pre-defined header names.
New Protections are available for these Malware. See CPAI-2009-020.
Microsoft Exchange Server MS-TNEF Memory Corruption Vulnerability (MS09-003)Industry Reference: CVE-2009-0098.
A remote code execution vulnerability has been reported in the way Microsoft Exchange Server decodes the Transport Neutral Encapsulation Format (TNEF) data for a message. The Microsoft Exchange Server is an implementation of an email server capable of handling numerous Internet protocol, including the Simple Mail Transfer Protocol (SMTP). TNEF is a format used by the Microsoft Exchange Server when sending messages formatted as Rich Text Format (RTF). A remote attacker may exploit this issue to execute arbitrary code on a target system. SmartDefense Services protection will detect and block the transferring of malformed RTF files over SMTP.
Protections are now available for this vulnerability. See CPAI-2009-010.
Microsoft Exchange Server EMSMDB32 Literal Processing Vulnerability (MS09-003)Industry Reference: CVE-2009-0099.
A denial of service vulnerability has been reported in the way the Electronic Messaging System Microsoft Data Base, 32 bit build (EMSMDB32) provider handles invalid MAPI commands. The EMSMDB32 provider refers to the Exchange Transport provider which implements both a transport and a message store provider for MAPI. It provides the ability to submit messages to Exchange Server and to read messages to an Exchange store process. A remote attacker may exploit this issue to create a denial of service condition on a target system. SmartDefense Services protection will detect and block attempts to exploit this vulnerability.
Protections are now available for this vulnerability. See CPAI-2009-014.
|
February 19, 2008
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|