SmartDefense Security Advisory

Symantec Altiris Deployment Solution ActiveX File Download Vulnerability

A remote program execution vulnerability exists in Symantec Altiris Deployment Solution software. The software provides tools to deploy and configure software across hardware platforms and operating systems. The vulnerability is due to a flaw in an ActiveX control (AeXNSPkgDLLib.dll). A remote attacker can exploit this vulnerability to download and execute arbitrary programs to a vulnerable system by convincing a user to visit a crafted web page. This protection will detect and block attempts to load web pages that contain the Altiris eXpress NS SC Download ActiveX control.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-231.

Symantec Mail Security KeyView Excel File SST Parsing Integer Overflow Vulnerability

Industry Reference:CVE-2009-3037.

An integer overflow vulnerability exists in multiple products using Autonomy KeyView SDK (File Viewer for Excel). A remote attacker could exploit this vulnerability by enticing the target user to open or view a malicious Excel file with the vulnerable version of the product. Successful exploitation could result in execution of arbitrary code. This protection will detect and block the transferring of malformed Excel files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A protection was released in a previous update.
CPAI-2009-233.

Recent Malware Threats (4-Oct-09)

Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. IPS will detect and block the malware based on predefined signatures. The update includes 20 new protections against recent malware threats.

Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-196.

 October 4, 2009

IPS Software Blade

Buy Now

Guidelines

Forums

SmartDefense Microsoft Security Resources
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065