 |
Check Point�s IPS update services protect customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, VSX NGX R65, IPS-1, and IPS-1 NGX R65 from the following vulnerability; No update is required to address this issue:
 Microsoft IIS WebDAV Extension URL Decoding Security Bypass Vulnerability
Industry Reference: CVE-2009-1535.
An elevation of privilege vulnerability has been reported in the Microsoft Windows WebDAV extension for IIS. Web Distributed Authoring and Versioning (WebDAV) is a set of extensions for HTTP that allow clients to publish, lock, and manage resources on the Web. A remote attacker may exploit this vulnerability to gain unauthorized access to protected resources. This protection will detect and block WebDAV requests attempting to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-130.
Check Point�s IPS update services protect customers using the IPS Software Blade for Security Gateway R70, VPN-1� NGX R65, and VSX NGX R65 from the following vulnerabilities:
Microsoft Windows Print Spooler NetShareEnum Buffer Overflow Vulnerability (MS09-022)Industry Reference: CVE-2009-0228.
A buffer overflow vulnerability has been reported in Microsoft Windows Print Spooler. The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. A remote attacker may exploit the vulnerability to execute arbitrary code on a target system or to crash the vulnerable service via a malformed RPC request. This protection will detect and block malformed NetShareEnum RPC requests sent to the vulnerable service.
Protections are available immediately for this vulnerability. See CPAI-2009-154.
Microsoft IIS Anonymous HTTP Request Authentication Bypass (MS09-027)Industry Reference: CVE-2009-1122.
An elevation of privilege vulnerability has been reported in the Microsoft Windows WebDAV extension for IIS. Web Distributed Authoring and Versioning (WebDAV) is a set of extensions for HTTP that allows clients to publish, lock, and manage resources on the Web. A remote attacker may exploit this vulnerability to gain unauthorized access to protected resources. This protection will detect and block HTTP requests attempting to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-138.
Check Point�s IPS update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerabilities:
Microsoft Active Directory Invalid Free Remote Code Execution Vulnerability (MS09-018)Industry Reference: CVE-2009-1138.
A remote code execution vulnerability has been reported in Microsoft Active Directory. Active Directory provides central authentication and authorization services for Windows-based systems. Active Directory Application Mode (ADAM) is a Lightweight Directory Access Protocol (LDAP) directory service that runs as a user service. A remote attacker can exploit the vulnerability to take complete control of an affected system. This protection will detect and block malformed LDAP requests sent to the vulnerable server.
Protections are available immediately for this vulnerability. See CPAI-2009-152.
Microsoft Internet Explorer HTML XMLHttpRequest Memory Corruption Vulnerability (MS09-019)Industry Reference: CVE-2009-1528.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-160.
Microsoft Internet Explorer Race Condition Cross-Domain Information Disclosure Vulnerability (MS09-019)Industry Reference: CVE-2007-3091.
An information disclosure vulnerability has been reported in Microsoft Internet Explorer where script can gain access to the content in another browser window in another domain or Internet Explorer zone. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which may allow the attacker to view data from a Web page in another Internet Explorer domain. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-170.
Microsoft Internet Explorer Cross-Domain Information Disclosure Vulnerability (MS09-019)Industry Reference: CVE-2009-1140.
An information disclosure vulnerability has been reported in the way that Internet Explorer caches data and incorrectly allows the cached content to be called, potentially bypassing Internet Explorer domain restriction. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which may allow the attacker to view data from a Web page in another Internet Explorer domain. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-172.
Microsoft Internet Explorer DHTML Table Row Object Memory Corruption Vulnerability (MS09-019)Industry Reference: CVE-2009-1141.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-174.
Microsoft Internet Explorer HTML SetCapture Memory Corruption Vulnerability (MS09-019)Industry Reference: CVE-2009-1529.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-176.
Microsoft Internet Explorer Multiple Events Improper Reference Counting Vulnerability (MS09-019)Industry Reference: CVE-2009-1530.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-178.
Microsoft Internet Explorer Rows Object Memory Corruption Vulnerability (MS09-019)Industry Reference: CVE-2009-1532.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-180.
Microsoft Internet Explorer DOM Manipulations Improper Handling Vulnerability (MS09-019)Industry Reference: CVE-2009-1531.
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection will detect and block attempts to exploit this vulnerability.
Protections are available immediately for this vulnerability. See CPAI-2009-182.
Microsoft Word Multiple SPRM Records Buffer Overflow Vulnerability (MS09-020)Industry Reference: CVE-2009-0563.
A remote code execution vulnerability has been identified in Microsoft Word. Microsoft Word is a popular word processing software. A remote attacker could exploit this issue via a malformed Word file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Word files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-162.
Microsoft Word Malformed SPRM Record Buffer Overflow Vulnerability (MS09-020)Industry Reference: CVE-2009-0565.
A remote code execution vulnerability has been identified in Microsoft Word. Microsoft Word is a popular word processing software. A remote attacker could exploit this issue via a malformed Word file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Word files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-164.
Microsoft Excel Object Record Memory Corruption Vulnerability (MS09-021)Industry Reference: CVE-2009-0557.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-140.
Microsoft Excel ExternSheet Record Indexing Memory Corruption Vulnerability (MS09-021)Industry Reference: CVE-2009-0558.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-142.
Microsoft Excel String Copy Stack-Based Overrun Vulnerability (MS09-021)Industry Reference: CVE-2009-0559.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-144.
Microsoft Excel FormulaValue Field Memory Corruption Vulnerability (MS09-021)Industry Reference: CVE-2009-0560.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-146.
Microsoft Excel SST Record Integer Overflow Vulnerability (MS09-021)Industry Reference: CVE-2009-0561.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-148.
Microsoft Excel QSir and QSif Records Pointer Corruption Vulnerability (MS09-021)Industry Reference: CVE-2009-1134.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-150.
Microsoft Excel BRAI Record Pointer Corruption Vulnerability (MS09-021)Industry Reference: CVE-2009-0549.
A remote code execution vulnerability has been identified in the Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-158.
Microsoft Windows Print Splooer LoadLibrary Information Disclosure Vulnerability (MS09-022)Industry Reference: CVE-2009-0230.
An elevation of privilege vulnerability has been reported in Microsoft Windows Print Spooler. The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. A remote attacker may exploit the vulnerability to run arbitrary code on a target system via a malformed RPC request. This protection will detect and block malformed RPC requests sent to the vulnerable service.
Protections are available immediately for this vulnerability. See CPAI-2009-168.
Microsoft Works Converter Oversized Font Buffer Overflow Vulnerability (MS09-024)Industry Reference: CVE-2009-1533.
A remote code execution vulnerability has been discovered in Microsoft Works Converter. Microsoft Works is home productivity software suite with fewer features than the Microsoft Office suite. The Microsoft Works Converter allows the user to open, edit, and save files in the Microsoft Works file format. A remote attacker could exploit this vulnerability via a malformed Microsoft Works file. Successful exploitation of this issue may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed MS Works files over HTTP.
Protections are available immediately for this vulnerability. See CPAI-2009-166.
| June 9, 2009
 | You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|