New SmartDefense Updates

Email lists > CheckPoint SmartDefense Info

Thread: New SmartDefense Updates

Search this list only Search all lists
New SmartDefense Updates
Israel	2007-12-18 12:21:35
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Greetings, New SmartDefense Updates have been released today, December 18, 2007 for users of VPN-1 NGX R65, R62, R61 & R60. FLAC Project libFLAC Picture Protection Overview: A buffer overflow vulnerability has been reported in the Free Lossless Audio Codec (FLAC). FLAC is a file format designed for audio data compression. LibFLAC is the FLAC project library embedded in various products. A remote attacker can exploit this vulnerability via a specially crafted FLAC file. Successful exploitation of the vulnerability allows execution of arbitrary code on a vulnerable system. By enabling this protection, SmartDefense will detect and block the transferring of malformed FLAC files over HTTP. For more information, refer to CPAI-2007-136 at http://www.checkpoint.com/defense/advis ories/public/2007/cpai-09-Dec.html Apple QuickTime Crafted RTSP Response Protection Overview: A buffer overflow vulnerability has been reported in Apple QuickTime. Apple QuickTime is a multimedia player that supports a wide range of media formats, including Real Time Streaming Protocol (RTSP). A remote attacker can exploit this vulnerability to inject arbitrary code on the vulnerable system. By enabling this protection, SmartDefense will detect and block malformed RTSP requests. For more information, refer to CPAI-2007-137 at http://www.checkpoint.com/defense/advis ories/public/2007/cpai-11-Dec.html Protections against Recent Malware Threats (18-Dec-07) Overview: Malware is a software designed to infiltrate or damage a computer system without the owner's informed consent. It is a general name for a variety of forms of hostile, intrusive, or annoying programs like Viruses, worms, Adware, Trojans, and spyware that exploit unprotected clients, using network access to intrude upon organizations, destroying or stealing data. The update enables the Header Rejection protection and the HTTP Worm Catcher to detect and block the malware based on pre-defined header names and worm signatures. For more information, refer to CPAI-2007-138 at http://www.checkpoint.com/defense/advis ories/public/2007/cpai-10-Dec.html Microsoft Windows Message Queuing Protection (MS07-065) Overview: A buffer overflow vulnerability exists in Microsoft Windows Message Queuing Service. Microsoft Message Queuing (MSMQ) is a component of Microsoft Windows designed to act as a message portal between a set of applications requiring message exchange functionality. MSMQ enables applications that are running at different times to communicate across heterogeneous networks and across systems that may be temporarily offline. A remote attacker can exploit the MSMQ vulnerability to take complete control over an affected system. By enabling this protection, SmartDefense will detect and block any attempt to exploit the message queuing buffer overflow and attempts to conceal the attacks with multi-context bind calls. For more information, refer to CPAI-2007-139 at http://www.checkpoint.com/defense/advis ories/public/2007/cpai-13-Dec.html Microsoft AVI File Parsing Protection (MS07-064) Overview: A remote code execution vulnerability has been reported in Microsoft DirectX. Microsoft DirectX is a set of libraries that aim for accelerated video and audio experience on Microsoft Windows operating system. DirectX can parse various file formats which include AVI files. A remote attacker can exploit this vulnerability via a specially crafted AVI file. Successful exploitation of the vulnerability allows execution of arbitrary code on a vulnerable system. By enabling this protection, SmartDefense will detect and block the transferring of malformed AVI files over HTTP. For more information, refer to CPAI-2007-140 at http://www.checkpoint.com/defense/advis ories/public/2007/cpai-18-Dec.html Links to the recent SmartDefense Advisories are available at: http://www.checkpoint.com/defense/advisories/pub lic/summary.html Read more about SmartDefense Service at: http://www.checkpoint.com/defense/advisories/pu blic/overview.html To sign-up to the mailing list, send an email to listservamadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. To unsubscribe from this list, send an email to listservamadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" In the email body. As always, please feel free to contact us directly if you have any comments or questions (sda-infoCheckPoint.com). -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.6.3 (Build 3017) wsBVAwUBR2gPlqy7i8j/RTzHAQjL1Qf+MQ/KI4BhpWImrujLLpN8lWy3ueLK 7lr3 26lTRv40eM1ke/YmzmKZGO7HWf76v5+2/eBngcddKGljK28F3LQ4cwztKAwF OY7p lzNBXHEXf/BGbvtIk5Hv80l5AQRXH7OWNQC6bu/8AxX1f+66iRN2wZdwp7Ll c+0s 4TrzvU8RAtqrl4t7jI9jBkN9J07AqqupYthC7i9XG4qOEMWLqxWM/n9wibfn KwkI VGN6K5/5PJPW41dyKj1ob8iM0AvXcHmm9bX66RaFQ4mSoaEGIwpXvYAw6/pP uSd0 dyK65bCL+yN86CYLZePSRAo9ogQ8VgrdTN4Wg+F8CmcVt32Rvt+9XQ== =1kUj -----END PGP SIGNATURE-----

[1]

about | contact Other archives ( Real Estate discussion Medical topics )

Mailing lists