Check Point�s update services protect customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, R62, and VSX NGX R65 from the following unpatched vulnerability:

Microsoft Office PowerPoint Invalid Object Reference Zero-Day Vulnerability

Industry Reference: CVE-2009-0556.

A memory corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. The protection will detect and block the transferring of malformed PowerPoint files over HTTP.

Protections are available immediately for this vulnerability. See CPAI-2009-066.

April 6, 2009

You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003�2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065