 |
 Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability
Industry Reference:CVE-2009-3672.
A memory corruption vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. This protection detects and blocks malformed CSS tags used in HTML documents.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-249.
SSL and TLS Protocols Renegotiation VulnerabilityIndustry Reference:CVE-2009-3555.
Transport Layer Security (TLS) and Secure Sockets Layer (SSL) are cryptographic protocols that provide security for communications over networks. TLS and SSL encrypt the segments of network connections at the Transport Layer end-to-end. A spoofing vulnerability exists in multiple implementations of these protocols. The TLS and SSL protocols fail to properly associate renegotiation handshakes with an existing connection, which allows man-in-the-middle attackers to insert data into HTTPS sessions, and possibly other types of sessions protected by TLS or SSL. A remote attacker can leverage this vulnerability to execute an HTTP transaction authenticated by a legitimate user. The TLS Renegotiation protection detects and blocks all TLS renegotiation traffic. The TLS Client Initiated Renegotiation protection detects and blocks client initiated TLS renegotiation requests.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
SBP-2009-23.
HP Power Manager Remote Code Execution VulnerabilityIndustry Reference:CVE-2009-2685.
A remote code execution vulnerability exists within HP Power Manager, a web-based application for managing a HP Uninterruptible Power System (UPS). The vulnerability is due to insufficient bounds checking in the HP Power Manager while processing URL parameters in the login form of the web based management web server. Remote attackers can exploit this vulnerability by sending malicious HTTP requests to the target. Successful exploitation could result in execution of arbitrary code. This protection will detect and block HTTP requests to the HP Power Manager UPS management system with malformed username parameters.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
CPAI-2009-300.
Novell eDirectory dhost HTTPSTK Buffer Overflow VulnerabilityA code execution vulnerability exists in Novell eDirectory. Novell eDirectory is a Lightweight Directory Access Protocol (LDAP) server, intended for use as part of an identity management solution. The vulnerability is due to an error in dhost when handling HTTP requests. A remote, authenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request to a vulnerable system. Successful exploitation would allow for execution of arbitrary code. This protection will detect and block HTTP post requests to the eDirectory dhost application with malformed "sadminpwd" parameters.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
CPAI-2009-301.
Microsoft Office Excel Document Parsing Memory Corruption Vulnerability (MS09-067)Industry Reference:CVE-2009-3133.
A memory corruption vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-298.
|
November 29, 2009
 |
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|