 |
Check Point�s update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerabilities:
 Recent Malware Threats (2-Apr-09)
Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. IPS will detect and block the malware based on predefined signatures. The update includes 4 new protections against recent malware threats: Rogue Software: Windows Antivirus 2008, KeyLogger: Silent Keylogger 1.5, Backdoor Trojan: SynRat 2.1 Pro, and Backdoor Trojan: LOST DOOR 3.0.
New Protections are available for these Malware. See CPAI-2009-060.
HP OpenView Network Node Manager Multiple Parameters Buffer Overflow VulnerabilitiesIndustry References: CVE-2009-0920, CVE-2009-0921.
Multiple buffer overflow vulnerabilities were reported in HP OpenView Network Node Manager software. The Network Node Manager (NNM) is an HP OpenView product which manages networks. It determines and displays physical and logical connectivity in networks, as well as information referring to protocols running over the network. A remote attacker could exploit these vulnerabilities to inject and execute arbitrary code on a target server. This protection will detect and block crafted requests sent to the vulnerable server.
New Protections are available for these vulnerabilities. See CPAI-2009-062.
Microsoft Office Visio Multiple Memory Corruption Vulnerabilities (MS09-005)Industry References: CVE-2009-0095, CVE-2009-0096, CVE-2009-0097.
Multiple remote code execution vulnerabilities have been reported in Microsoft Visio. Microsoft Visio is a diagram creation software for Microsoft Windows. A remote attacker can exploit these vulnerabilities via a specially crafted Visio file. Successful exploitation may allow execution of arbitrary code on a vulnerable system. This protection will detect and block the transferring of malformed Visio files over HTTP.
New Protections are available for these vulnerabilities. See CPAI-2009-064.
| April 2, 2009
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003?2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|