 |
Check Point SmartDefense� Services protects customers using VPN-1� NGX R65, R62, R61, R60, VSX NGX R65, and InterSpect NGX from the following Vulnerabilities:
 Squid HTTP Version Number Parsing Denial of Service Vulnerability
Industry Reference: CVE-2009-0478.
A denial of service vulnerability has been reported in Squid proxy. The Squid proxy server is a popular open source, Internet proxy and web caching application. A remote attacker may exploit this issue to create a denial of service condition and crash the vulnerable application. SmartDefense Services protection will detect and block specially crafted HTTP requests sent to the Squid proxy server.
New Protections are available for this vulnerability. See CPAI-2009-026.
Oracle Secure Backup NDMP CONECT_CLIENT_AUTH Command Buffer Overflow VulnerabilityIndustry Reference: CVE-2008-5444.
A buffer overflow vulnerability was reported in Oracle Secure Backup. Oracle Secure Backup is a backup solution allowing for single point of management of data present on network attached storage (NAS) devices and distributed hosts. Oracle Secure Backup is using NDMP protocol to perform backup tasks for all clients. Oracle Secure Backup fails to properly handle NDMP messages. Remote unauthenticated attackers can exploit this vulnerability by sending specially crafted messages to the affected interface. Successful exploitation can lead to arbitrary code execution. SmartDefense Services protection will detect and block attempts to exploit a buffer overflow vulnerability in Oracle Secure Backup.
New Protections are available for this vulnerability. See CPAI-2009-029.
Multiple Oracle Secure Backup Administration Server Command Injection VulnerabilitiesIndustry References: CVE-2008-5448, CVE-2008-4006, CVE-2008-5449.
Several command injection vulnerabilities were reported in Oracle Secure Backup Administration Server. The Server allows for single point of management of data present on network attached storage (NAS) devices and distributed hosts which may have different operating systems. Remote unauthenticated attackers can exploit these vulnerabilities by sending a crafted HTTP request to the target host. Successful exploitation could allow for arbitrary command execution in the security context of the user running a vulnerable installation of Oracle Secure Backup. SmartDefense Services protection will detect and block attempts to exploit the command injection vulnerabilities in Oracle Secure Backup.
New Protections are available for these vulnerabilities. See CPAI-2009-031.
Oracle TimesTen evtdump Remote Format String VulnerabilityIndustry Reference: CVE-2008-5440.
A format string error vulnerability was reported in Oracle TimesTen In-memory Database. Oracle TimesTen In-Memory Database is a product for real-time data management and is used for performance-critical functions in environments like real-time enterprises, telecom, capital markets and defense. The flaw is due to an input error when processing HTTP requests sent to a vulnerable installation of Oracle TimeTen. Remote authenticated attackers can exploit this vulnerability by sending specially crafted messages to the affected interface. Successful exploitation can lead to arbitrary code execution. SmartDefense Services protection will detect and block attempts exploit the format string vulnerability in Oracle's evtdump CGI.
New Protections are available for this vulnerability. See CPAI-2009-021.
Recent Malware Threats (1-Mar-09)Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. The update enables the Header Rejection protection and the HTTP Worm Catcher to detect and block the malware based on pre-defined header names and worm signatures.
New Protections are available for these Malware. See CPAI-2009-030.
| March 1, 2009
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003�2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|