 |
Check Point’s IPS update services protect customers using IPS-1 and IPS-1 NGX R65 from the following vulnerabilities:
 Sun Solaris sadmind RPC Request Buffer Overflow Vulnerability
Industry Reference: CVE-2008-3869.
A buffer overflow vulnerability was identified in the sadmind service within the Sun Solaris operating system. sadmind is a daemon used to control the servers running Sun Solaris operating system. The vulnerability is due to an input validation error occurring when parsing specially crafted RPC requests. Remote attackers could exploit this vulnerability by sending a maliciously crafted request to the vulnerable system. Successful exploitation would allow for arbitrary code injection and execution. IPS-1 will detect and block RPC requests with invalid Key/IntArrayValue specifications.
Protections were previously released for this vulnerability. See CPAI-2009-091.
Sun Solaris sadmind RPC Request Integer Overflow Vulnerability
Industry Reference: CVE-2008-3870.
An integer overflow vulnerability was reported in the sadmind service within the Sun Solaris operating system. sadmind is a daemon used to control servers running Sun Solaris operating system. The vulnerability is triggered when parsing crafted RPC requests. A remote unauthenticated attacker can leverage this vulnerability by sending a crafted RPC message to the target host, to potentially inject and execute arbitrary code. IPS-1 will detect and block RPC requests to the sadmind program that contain certain invalid header values.
New Protections are available for this vulnerability. See CPAI-2009-093.
Apple QuickTime PICT Image paintPoly Parsing Heap Buffer Overflow Vulnerability
Industry Reference: CVE-2009-0010.
A buffer overflow vulnerability was reported in Apple QuickTime, a multimedia player that supports a wide range of media formats. Apple QuickTime fails to process crafted PICT images. Remote attackers may exploit this vulnerability by persuading a target user to open a specially crafted PICT file using the vulnerable products. Successful exploitation may lead to arbitrary code execution or terminate the application resulting in a denial of service condition. IPS-1 will detect and block PICT image files with malformed attributes.
Protections were previously released for this vulnerability. See CPAI-2009-095.
Check Point’s IPS update services protect customers using IPS-1, IPS-1 NGX R65, and IPS Software Blade for Security Gateway R70 from the following vulnerability:
IBM AIX ToolTalk RPC Server Remote Buffer Overflow Vulnerability
A buffer overflow vulnerability has been discovered in IBM AIX ToolTalk RPC Server. ToolTalk is an inter-application communications system developed by Sun Microsystems in order to allow applications to communicate with each other at runtime. The ToolTalk service is designed to facilitate the development of inter-operating applications that serve individuals and work groups. A remote attacker may exploit this issue to compromise an affected system. This protection will detect and block attempts to exploit this vulnerability.
New Protections are available for this vulnerability. See CPAI-2009-115.
Check Point’s IPS update services protect customers using the IPS Software Blade for Security Gateway R70 from the following vulnerability:
Adobe Shockwave Player Pointer Memory Overwrite Vulnerability (APSB09-08)
Industry Reference: CVE-2009-1860.
A memory overwrite vulnerability has been identified in Adobe Shockwave Player. Adobe Shockwave is a multimedia player that allows Adobe Director applications to be published on the Internet and viewed in a web browser by anyone who has the Shockwave plug-in installed. A remote attacker may exploit this issue to take complete control of an affected system. This protection will detect and block attempts to transfer malformed Director Movie files over HTTP.
New Protections are available for this vulnerability. See CPAI-2009-113.
Check Point’s IPS update services protect customers using VPN-1® NGX R65, VSX NGX R65, and InterSpect NGX from the following vulnerability:
Microsoft Active Directory Invalid Free Remote Code Execution Vulnerability (MS09-018)
Industry Reference: CVE-2009-1138.
A remote code execution vulnerability has been reported in Microsoft Active Directory. Active Directory provides central authentication and authorization services for Windows-based systems. Active Directory Application Mode (ADAM) is a Lightweight Directory Access Protocol (LDAP) directory service that runs as a user service. A remote attacker can exploit the vulnerability to take complete control of an affected system. This protection will detect and block malformed LDAP requests sent to the vulnerable server.
Protections are now available for this vulnerability. See CPAI-2009-152.
Check Point’s IPS update services protect customers using InterSpect NGX from the following vulnerabilities:
Microsoft IIS Anonymous HTTP Request Authentication Bypass (MS09-020)
Industry Reference: CVE-2009-1122.
An elevation of privilege vulnerability has been reported in the Microsoft Windows WebDAV extension for IIS. Web Distributed Authoring and Versioning (WebDAV) is a set of extensions for HTTP that allows clients to publish, lock, and manage resources on the Web. A remote attacker may exploit this vulnerability to gain unauthorized access to protected resources. This protection will detect and block HTTP requests attempting to exploit this vulnerability.
Protections are now available for this vulnerability. See CPAI-2009-138.
Microsoft IIS WebDAV Extension URL Decoding Security Bypass Vulnerability (MS09-020)
Industry Reference: CVE-2009-1535.
An elevation of privilege vulnerability has been reported in the Microsoft Windows WebDAV extension for IIS. Web Distributed Authoring and Versioning (WebDAV) is a set of extensions for HTTP that allow clients to publish, lock, and manage resources on the Web. A remote attacker may exploit this vulnerability to gain unauthorized access to protected resources. This protection will detect and block WebDAV requests attempting to exploit this vulnerability.
Protections are now available for this vulnerability. See CPAI-2009-130.
Microsoft Windows Print Spooler NetShareEnum Buffer Overflow Vulnerability (MS09-022)
Industry Reference: CVE-2009-0228.
A buffer overflow vulnerability has been reported in Microsoft Windows Print Spooler. The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. A remote attacker may exploit the vulnerability to execute arbitrary code on a target system or to crash the vulnerable service via a malformed RPC request. This protection will detect and block malformed NetShareEnum RPC requests sent to the vulnerable service.
Protections are now available for this vulnerability. See CPAI-2009-154.
Microsoft Windows Print Spooler LoadLibrary Information Disclosure Vulnerability (MS09-022)
Industry Reference: CVE-2009-0230.
An elevation of privilege vulnerability has been reported in Microsoft Windows Print Spooler. The Print Spooler service manages the printing process, which includes such tasks as retrieving the location of the correct printer driver, loading that driver, spooling high-level function calls into a print job, and scheduling print jobs. A remote attacker may exploit the vulnerability to run arbitrary code on a target system via a malformed RPC request. This protection will detect and block malformed RPC requests sent to the vulnerable service.
Protections are now available for this vulnerability. See CPAI-2009-168.
|
June 25, 2009
 |
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|