 |
Check Point�s update services protect customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, R62, R61, R60, VSX NGX R65, and InterSpect NGX from the following vulnerabilities:
 Adobe Multiple Products JBIG2 Stream Buffer Overflow Vulnerability
Industry Reference: CVE-2009-0658.
A buffer overflow vulnerability has been reported in Adobe Reader and Acrobat when handling PDF files that contain a JBIG2 stream. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system via a specially crafted PDF file. Portable Document Format (PDF) is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. Successful exploitation allows execution of arbitrary code on a vulnerable system and may cause the affected Acrobat application to terminate abnormally. This protection will detect and block PDF files that contain embedded malformed JBIG2 streams.
New Protections are available for this vulnerability. See CPAI-2009-050.
Oracle Secure Backup NDMP Packet Handling Multiple Denial of Service VulnerabilitiesIndustry Reference: CVE-2008-5441.
Multiple denial of service vulnerabilities were reported in Oracle Secure Backup. Oracle Secure Backup is a backup solution allowing for single point of management of data present on network attached storage (NAS) devices and distributed hosts. Oracle Secure Backup is using NDMP protocol to perform backup tasks for all clients. Oracle Secure Backup fails to properly handle NDMP request. Successful exploitation can cause the Oracle Secure Backup service to terminate abnormally. This protection will detect and block malformed NDMP requests sent to the affected server.
New Protections are available for these vulnerabilities. See CPAI-2009-052.
Recent Malware Threats (30-Mar-09)Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. The update enables the Header Rejection protection to detect and block the malware based on pre-defined header names. The update includes 2 new protections against recent malware threats: Backdoor Trojan: Zlob and Rogue Software: XP Antispyware 2009.
New Protections are available for these Malware. See CPAI-2009-054.
IBM Tivoli Storage Manager Express Backup Heap Corruption VulnerabilityIndustry Reference: CVE-2008-4563.
A buffer overflow vulnerability has been identified in IBM Tivoli Storage Manager. The IBM Tivoli Storage Manager (TSM) is a product used for storing backups and archiving data. A remote attacker may exploit this issue to crash the service and execute arbitrary code. This protection will detect and block malformed backup messages sent to the vulnerable service.
New Protections are available for this vulnerability. See CPAI-2009-058.
Check Point�s update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerabilities:
Recent Malware Threats (30-Mar-09)Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. IPS will detect and block the malware based on predefined signatures. The update includes 3 new protections against recent malware threats: KeyLogger: Monitor Win32 Perflogger, KeyLogger: Cheat Monitor, and Rogue Software: spywrprotect-2009.com.
New Protections are available for these Malware. See CPAI-2009-056.
| March 30, 2009
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|