 |
 Sun MySQL mysql_log Format String Vulnerability
A format string vulnerability exists in Sun Microsystems MySQL database server, a popular open-source implementation of a relational database. The flaw is due to insufficient input validation when processing database commands. Remote authenticated attackers could exploit this vulnerability by sending malformed data to the MySQL process. Successful exploitation could result in a denial of service condition. By enabling this protection, IPS-1 will detect and block SQL Drop table statements that contain format string specifiers.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
CPAI-2009-205.
DHCP Stack Overflow in 'dhclient' script_write_params() VulnerabilityIndustry Reference:CVE-2009-0692.
The ISC DHCP client code (dhclient) application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code. ISC DHCP is a reference implementation of the DHCP protocol, including a DHCP server, client, and relay agent. dhclient fails to check the length of the server-supplied subnet-mask option before copying it into a buffer. A rogue DHCP server may be able to execute arbitrary code with root privileges on a vulnerable client system. IPS-1 has protected against this vulnerability since July 2006. The protection detects and blocks violations of the DHCP RFC including field overruns, invalid values, etc.
IPS-1 & IPS-1 NGX R65: Preemptive protection is provided by this product.
CPAI-2009-207.
Motorola Timbuktu Pro PlughNTCommand Stack Based Buffer Overflow VulnerabilityIndustry Reference:CVE-2009-1394.
A buffer overflow vulnerability exists in Motorola Timbuktu Pro. Motorola Timbuktu is a remote monitoring and control product available for Microsoft Windows and other operating systems. The flaw is due to a boundary error in data processing. Remote attackers could exploit this vulnerability by sending malformed data to the Timbuktu Pro process. This protection will detect and block invalid requests sent to a particular SMB named pipe.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-203.
CA ARCserve Backup Message Engine Denial of Service VulnerabilityIndustry Reference:CVE-2009-1761.
A denial of service vulnerability exists in CA ARCserve Backup Message Engine. The vulnerability is due to insufficient data validation. A remote unauthenticated attacker may exploit this vulnerability by sending a crafted message to the target server, potentially leading to denial of service condition to the Message Engine. This protection will detect and block specific RPC requests to the RCserve Message Engine with invalid parameters.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-099.
|
July 27, 2009
 |
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|