 |
 Adobe Flash Media Server Resource Exhaustion Denial of Service Vulnerability (APSB09-18)
Industry Reference:CVE-2009-3791.
A resource exhaustion vulnerability has been discovered in Adobe Flash Media Server (FMS). Flash Media Server (FMS) is an application server for Flash-based applications. Successful exploitation of this issue will create a denial of service condition, causing the application to become non-responsive. This protection will detect and block attempts to transfer malformed RTMP packets sent to the vulnerable server.
Security Gateway R70: A new protection is now available.
CPAI-2009-255.
Oracle Database Server CREATE_TABLES SQL Injection VulnerabilityIndustry Reference:CVE-2009-1991.
An SQL injection vulnerability has been reported in Oracle Database server. The Oracle Database server is an enterprise-level relational database application suite. A remote attacker may exploit this vulnerability to execute malicious SQL commands on a vulnerable system. This protection will detect and block Oracle traffic with the vulnerable CREATE_TABLES function.
Security Gateway R70: A new protection is now available.
CPAI-2009-297.
Xpdf Splash DrawImage Integer Overflow VulnerabilityIndustry Reference:CVE-2009-3604.
An integer overflow vulnerability has been reported in Xpdf. Xpdf is an open source PDF viewer for the Unix-like operating systems and works under the X Window graphical user interface system. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system via a specially crafted PDF file. Successful exploitation of this issue may allow execution of arbitrary code on an affected system. This protection will detect and block attempts to transfer malformed PDF files over HTTP.
Security Gateway R70: A new protection is now available.
CPAI-2009-299.
IBM Tivoli Storage Manager Client CAD Service Buffer Overflow VulnerabilityIndustry Reference:CVE-2009-3853.
A buffer overflow vulnerability exists in IBM Tivoli Storage Manager Client software, a backup designed to protect data from failures and other errors by storing backups and archiving data. The vulnerability is due to a boundary error in the Client Acceptor Daemon (CAD) service while processing a specially crafted packet. Remote unauthenticated attackers can exploit this vulnerability to inject and execute arbitrary code on the target system. Successful exploitation of this vulnerability would allow for arbitrary code execution. This protection will detect and block certain malformed packets sent the IBM Tivoli Storage Manager Client dsmcad.exe process.
IPS-1 & IPS-1 NGX R65: A new protection is now available.
CPAI-2009-307.
EMC Captiva PixTools Distributed Imaging ActiveX Control File Creation VulnerabilityA vulnerability has been reported in EMC Captiva PixTools, a suite of software developer toolkits that provides image scanning, viewing, and processing functionality. The vulnerability lies in the Distributed Imaging ActiveX Control. Attackers can take remote control of a vulnerable system by enticing a user to visit a maliciously crafted web page.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-304.
Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow VulnerabilityIndustry References:CVE-2009-3031, CVE-2009-3033.
A stack buffer overflow vulnerability exists in multiple Symantec products. The vulnerability is due to an error in the AeXNSConsoleUtilities.dll ActiveX control when processing overly long arguments. This issue can be exploited by remote attackers to execute arbitrary code by convincing the user to visit a specially crafted web page. This protection will detect and block access to proscribed ActiveX class IDs.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-303.
HP LoadRunner XUpload.ocx ActiveX Control Arbitrary File Download VulnerabilityA vulnerability has been reported in HP LoadRunner. LoadRunner is a performance and load testing product by Hewlett-Packard for examining system behaviour and performance, while generating actual load. The vulnerability is due to an error in the Persits.XUpload ActiveX control which can permit the download of files to arbitrary locations on the victim's computer. This protection will detect and block the vulnerable HP LoadRunner ActiveX control.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-239.
SAP GUI EAI WebViewer3D ActiveX Stack Buffer Overflow VulnerabilityA vulnerability was reported in the SAP GUI, a GUI client in SAP's 3-tier architecture of database, application server and client. The vulnerability exists in SAP GUI EAI WebViewer3D ActiveX Control and can be exploited to cause a buffer overflow via an overly long argument. Successful exploitation allows execution of arbitrary code. This protection will detect and block attempts to access a particular ActiveX method in the SAP User Interface.
IPS-1 & IPS-1 NGX R65: A protection was released in a previous update.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2009-061.
|
December 23, 2009
 |
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe
As always, please feel free to contact us directly if you have any comments or questions.
Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065 |
|