Check Point�s update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerabilities:

Recent Malware Threats (1-Jun-09)

Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. IPS will detect and block the malware based on predefined signatures. The update includes 4 new protections against recent malware threats: Backdoor Trojans: Kaju, Biodox, Virut.n, SRaT 1.6, Octopus 0.1, BRX Rat 0.02, and Arabian-Attacker 1.1.0.

New Protections are available for these Malware. See CPAI-2009-132.

Multiple Vendors NTP Daemon Autokey Stack Buffer Overflow Vulnerability

Industry Reference: CVE-2009-1252.

A buffer overflow vulnerability has been reported in the ntpd (NTP daemon). The ntpd daemon implements the Network Time Protocol (NTP) which sets and maintains the system time-of-day in synchronism with Internet standard time servers. A remote attacker may exploit this issue to crash the service and execute arbitrary code. This protection will detect and block malformed packets sent to the NTP daemon.

New Protections are available for this vulnerability. See CPAI-2009-134.

June 1, 2009

You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003�2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065