 |
 Mozilla Network Security Services and Firefox Common Name Security Bypass Vulnerability
Industry Reference:CVE-2009-2408.
A security bypass vulnerability has been reported in Mozilla Network Security Services (NSS) and Firefox. Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Firefox is a popular, open source web browser developed by Mozilla Foundation. A remote attacker could exploit this flaw to execute a man-in-the-middle attack on the vulnerable system. This protection will detect and block NULL prefix found in SSL certificates.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A protection was released in a previous update.
VPN-1 NGX R65 & VSX NGX R65: A protection was released in a previous update.
CPAI-2009-129.
Mozilla Network Security Services Regexp Heap Overflow VulnerabilityIndustry Reference:CVE-2009-2404.
A remote code execution vulnerability has been reported within Mozilla Network Security Services. Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. it is used by applications such as Mozilla Firefox and Mozilla Thunderbird. A remote attacker could exploit this flaw to execute arbitrary code on a vulnerable system. This protection will detect and block malicious certificates that contain a crafted Common Name.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-165.
RealNetworks Helix Server RTSP SETUP Request Denial of Service VulnerabilityIndustry Reference:CVE-2009-2534.
A denial of service vulnerability has been reported in RealNetworks Helix Server. Helix Server is a multi-media server that is designed to serve streaming and static audio and video content. A remote attacker can exploit this issue to create a denial of service condition on a vulnerable system. This protection will detect and block malformed RTSP SETUP requests.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-167.
Oracle Secure Backup Administration Server Authentication Bypass VulnerabilityIndustry Reference:CVE-2009-1977.
An authentication bypass vulnerability has been reported in Oracle Secure Backup server. Oracle Secure Backup is a backup solution allowing for single point of management of data present on network attached storage (NAS) devices and distributed hosts. A remote attacker may exploit this issue to bypass authentication on vulnerable installations of Oracle Secure Backup. This protection will detect and block malformed requests sent to the vulnerable server.
Security Gateway R70: A new protection is now available.
CPAI-2009-169.
Squid Proxy Invalid HTTP Response Status Code Denial of Service VulnerabilityIndustry Reference:CVE-2009-2621.
A denial of service vulnerability exists in the way Squid handles HTTP requests and responses. The Squid proxy server is a popular open source, Internet proxy and web caching application. The vulnerability is due to a boundary error when handling malformed HTTP requests/responses. A remote attackers can exploit this vulnerability by sending a specially crafted HTTP request/response packet to an affected system. This protection will detect and block HTTP repsonses with invalid response codes sent to the Squid proxy server.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-227.
Recent Malware Threats (27-Aug-09)Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. IPS will detect and block the malware based on predefined signatures. The update includes 15 new protections against recent malware threats.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-171.
|
August 27, 2009
 |
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|