 |
Check Point�s IPS protects customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, R62, and VSX NGX R65 from the following vulnerability; No update is required to address this issue:
 Microsoft Office PowerPoint Invalid Object Reference Zero-Day Vulnerability (MS09-017)
Industry Reference: CVE-2009-0556.
A memory corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections were previously released for this vulnerability. See CPAI-2009-066.
Check Point�s IPS protects customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, R62, and VSX NGX R65 from the following vulnerabilities:
Microsoft PowerPoint Data Out of Bounds Stack Buffer Overflow Vulnerability (MS09-017)Industry Reference: CVE-2009-1131.
A stack buffer overflow vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-106.
Microsoft PowerPoint LinkedSlide Record Integer Overflow Vulnerability (MS09-017)Industry Reference: CVE-2009-0221.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-112.
Microsoft PowerPoint Invalid Build Object Casting Memory Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-0224.
A memory corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-114.
Microsoft PowerPoint Notes Record Parsing Heap Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-1130.
A heap corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system.
Protections are available immediately for this vulnerability. See CPAI-2009-116.
Check Point�s IPS update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerabilities:
Microsoft PowerPoint Legacy File Format Memory Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-0225.
A memory corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-102.
Microsoft PowerPoint Legacy File Format Stack Buffer Overrun Vulnerability (MS09-017)Industry Reference: CVE-2009-0227.
A stack buffer overrun vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-104.
Microsoft PowerPoint Converter SoundEntity Record Stack Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-1128.
A stack corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-108.
Microsoft PowerPoint Converter ExEmbed Record Stack Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-1129.
A stack corruption vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-110.
Microsoft PowerPoint Converter CoCollection Record Handling Error Vulnerability (MS09-017)Industry Reference: CVE-2009-0226.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow the attacker to take complete control of a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-118.
Microsoft PowerPoint Converter ExObject Record Remote Code Execution Vulnerability (MS09-017)Industry Reference: CVE-2009-0223.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow the attacker to take complete control of a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-120.
Microsoft PowerPoint Converter NoteSlide Record Memory Corruption Vulnerability (MS09-017)Industry Reference: CVE-2009-0220.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow the attacker to take complete control of a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-122.
Microsoft PowerPoint Converter SlideRec Record Remote Code Execution Vulnerability (MS09-017)Industry Reference: CVE-2009-0222.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow the attacker to take complete control of a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-124.
Microsoft PowerPoint MasterPagePackedText Record Remote Code Execution Vulnerability (MS09-017)Industry Reference: CVE-2009-1137.
A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability may allow the attacker to take complete control of a target system. This protection will detect and block the transferring of malformed PowerPoint files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-126.
Check Point�s IPS update services protect customers using IPS-1 from the following vulnerabilities:
IBM Tivoli Storage Manager Express Backup Server Heap Corruption VulnerabilityIndustry Reference: CVE-2008-4563.
A buffer overflow vulnerability has been identified in IBM Tivoli Storage Manager. The IBM Tivoli Storage Manager (TSM) is a product used for storing backups and archiving data. A remote attacker may exploit this issue to crash the service and execute arbitrary code. This protection will detect and block malformed TSM client messages sent to the vulnerable service.
New Protections are available for this vulnerability. See CPAI-2009-058.
HP OpenView Network Node Manager ovalarmsrv Integer Overflow VulnerabilityIndustry Reference: CVE-2008-2438.
HP OpenView Network Node Manager (NNM) is a software application designed for management, maintenance and monitoring of networks and network devices. The application fails to properly validate maliciously crafted requests. By sending a crafted request, a remote unauthenticated attacker could overflow a buffer and execute arbitrary code on the target system. By enabling this protection, IPS-1 will detect and block invalid requests to the HP OpenView ovalarmsrv process.
New Protections are available for this vulnerability. See CPAI-2009-083.
Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow VulnerabilityIndustry Reference: CVE-2009-1016.
A buffer overflow vulnerability was reported in BEA WebLogic Server, an Application Server platform for large enterprise web applications. The vulnerability is due to a boundary error while parsing SSL certificates. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted certificate to the target host. By enabling this protection, IPS-1 will detect and block HTTPS Client requests containing malformed certificates.
New Protections are available for this vulnerability. See CPAI-2009-081.
Oracle Application Server (Oracle AS) Portal Cross Site Scripting VulnerabilityOracle AS Portal is a Web-based application for building and deploying portals. A vulnerability has been identified in Oracle Application Server that could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an affected site, allowing the attackers to gain read and write access to user's cookies and other sensitive information. By enabling this protection, IPS-1 will detect and block attempts to access the Oracle Application Server with Javascript embedded in certain parameters.
New Protections are available for this vulnerability. See CPAI-2009-079.
Novell QuickFinder Server Multiple Cross Site Scripting VulnerabilityIndustry Reference: CVE-2009-0611.
A cross-site scripting vulnerability was reported in Novell QuickFinder Server, a site-specific search engine. The flaw is due to lack of validation of user supplied input data. An attacker can leverage this flaw to execute arbitrary HTML and script code on target user's web browser, within the context of a trusted web site. This can allow an attacker to gain read and write access to user's cookies and other sensitive information. By enabling this protection, IPS-1 will detect and block attempts to embed Javascript into quickfinder queries.
Protections are available immediately for this vulnerability. See CPAI-2009-077.
Oracle Application Server BPEL Module Cross Site Scripting VulnerabilityIndustry Reference: CVE-2008-4014.
Oracle Application Server is vulnerable to cross-site scripting due to lack of validation of user supplied data. Oracle Application Server is a multi-platform solution for developing and deploying enterprise applications and web sites. The flaw may be exploited by attackers to execute arbitrary HTML and script code on a user's web browser. An attacker can leverage this to gain read and write access to the web browser's session cookies and other sensitive information. By enabling this protection, IPS-1 will detect and block attempts to embed Javascript in CGI requests to the BPEL server.
New Protections are available for this vulnerability. See CPAI-2009-075.
Microsoft Office Word WordPerfect Converter Buffer Overflow Vulnerability (MS09-010)Industry Reference: CVE-2009-0088.
A remote code execution vulnerability has been reported in Microsoft Word 2000 WordPerfect convertor. The Microsoft Office WordPerfect Converter assists users to convert documents from Corel WordPerfect file formats to Microsoft Word file formats. The Microsoft Office Converter Pack allows Office to use additional document formats that were not natively supported. A remote attacker can exploit this vulnerability via a specially crafted WordPerfect document. Successful exploitation may allow execution of arbitrary code on a vulnerable system. By enabling this protection, IPS-1 will detect and block malformed WordPerfect files being transferred over various network transports (i.e. HTTP, SMPT, FTP).
New Protections are available for this vulnerability. See CPAI-2009-073.
| May 12, 2009
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003�2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|