List Info

Thread: SmartDefense Services Bulletin - May 2006
SmartDefense Services Bulletin - May 2006
user name
 2006-05-05 19:42:26 
SmartDefense Services Bulletin 

May 2006 

Greetings! This bulletin features Check Point SmartDefense
Services 
highlights for the month of April. Please feel free to email
us 
mailto:sda-infoCheckPoint.com 
if you have any comments or questions. 

To sign-up to the mailing list, send an email to 
listservamadeus.us.checkpoint.com 

mailto:listservamadeus.us.checkpoint.com?body=SUBSCRIBE%20SMARTDEFEN
SE-NEWS 
with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in
the email 
body. If you'd like to unsubscribe from this bulletin, send
an email 
to listservamadeus.us.checkpoint.com 

mailto:listservamadeus.us.checkpoint.com?body=SIGNOFF%20SMARTDEFENSE
-NEWS 
with the text "SIGNOFF SMARTDEFENSE-NEWS" in the
email body. 

In This Bulletin 

About SmartDefense Services 
#about_sd 

April Advisories 
#advisories 

April Security Best Practices 
#security_best_practices 

April Defense Updates 
#sd_updates 

About SmartDefense Services 

Check Point SmartDefense Services maintain the most current
preemptive 
security for your Check Point security infrastructure. To
help your 
defenses stay continuously ahead of todays constantly
evolving 
threat landscape, SmartDefense Services provide: 

Preemptive, ongoing, and real-time updates to defenses and
security 
policies 
Ongoing new protocol and application defenses against
emerging threats 
and attacks 
Step-by-step instructions on how to activate and configure
defenses 
against emerging threats and vulnerabilities usually before
exploits 
are created by hackers 
Anti-virus updates and alerts for Check Point VPN-1 Express
CI 
Anti-spyware updates for Check Point Integrity Anti-Spyware 
Malicious applications database for automating network
access and 
malware termination policies (Program Advisor Service for
Integrity) 

April Advisories (Sorted by Severity, then Date) 

CPAI-2006-040 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VR
 

Date: 
27-Apr-2006 

Severity: 
Critical 

Description: 
Multiple Products FTP Server Vulnerabilities 

Sources: 
securiteam 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VS
 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VS
 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VS
 
SECURInfos 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VT
 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VT
 
MilwOrm 

http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VU
 

securiteam 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VS
 

Vulnerable Systems: 
FreeFTPd version 1.0.8 and prior 

XM Easy Personal FTP Server version 4.2 

ArGoSoft FTP Server 1.4.x 

Meteor FTP Server version 1.5 

CPAI-2006-036 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VW
 

Date: 
11-Apr-2006 

Severity: 
Critical 

Description: 
Protection against Microsoft Outlook Express Windows Address
Book File 
Vulnerability (MS06-016) 

Sources: 
Microsoft Security Bulletin MS06-016 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VY
 

Vulnerable Systems: 
Microsoft Windows 2000 Service Pack 4 

Microsoft Windows XP SP1, SP2 

Microsoft Windows XP Professional x64 Edition 

Microsoft Windows Server 2003 

CPAI-2006-039 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VA
 

Date: 
27-Apr-2006 

Severity: 
Medium 

Description: 
Multiple Vendors' LDAP Server Remote Denial of Service 

Sources: 
FrSIRT/ADV-2006-0537 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VB
 

../../../../../../templates/smartdefenses/FrSIRT/ADV-2006-05
37 

SecurityTracker: 1015604 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VC
 

Gleg Advisory 

http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VD
 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VD
 
Secunia Advisory: SA18818 

http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSR
 

Secunia Advisory: SA18738 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSS
 

Vulnerable Systems: 
IBM Tivoli Directory Server 4.x, 5.x, 6.x 

IBM Lotus Domino 7.x 

Sun Java System Directory Server 5.x 

Sun ONE Directory Server 5.x 

CommuniGate Pro 5.x 

Isode M-Vault Server 11.x 

CPAI-2006-037 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VST
 

Date: 
27-Apr-2006 

Severity: 
Medium 

Description: 
Protection against Oracle Reports Arbitrary File Reading
Vulnerability 

Sources: 
US-CERT VU#925261 

http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSU
 

Vulnerable Systems: 
Oracle Reports Server 

CPAi-2006-035 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSW
 

Date: 
11-Apr-2006 

Severity: 
Medium 

Description: 
Preemptive Protection against a Vulnerability in Microsoft
FrontPage 
Server Extensions (MS06-017) 

Sources: 
Microsoft Security Bulletin MS06-017 

http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSY
 

Vulnerable Systems: 
Microsoft FrontPage Server Extensions 

Microsoft SharePoint Team Services 

CPAI-2006-034 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSA
 

Date: 
05-Apr-2006 

Severity: 
Medium 

Description: 
Preemptive Protection against BlueCoat WinProxy Host Header
Stack 
Overflow Vulnerability 

Sources: 
iDEFENSE ID: 01.05.06 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSB
 

Vulnerable Systems: 
WinProxy 4 

WinProxy 5.x 

WinProxy 6.x 

CPAI-2006-038 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSC
 

Date: 
27-Apr-2006 

Severity: 
Low 

Description: 
Protection Against IPSwitch WhatsUp Professional DoS 

Sources: 
FrSIRT/ADV-2006-0704 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSD
 

Vulnerable Systems: 
WhatsUp Professional 2006 

April Security Best Practices (Sorted by Severity, then
Date) 

CPSA-2006-03 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VTR
 

Date: 
27-Apr-2006 

Severity: 
Critical 

Description: 
Enforcement of MS-RPC Protections over all TCP Ports 

Sources: 
SmartDefense Research Center 

Vulnerable Systems: 
Microsoft Windows operating systems 

April Defense Updates 

CPAI-2006-040 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VR
 

Date: 
27-Apr-2006 

Update Number: 
591060425 (VPN-1 NGX R60) 

602060425 (VPN-1 NGX R61) 

Description: 
Multiple Products FTP Servers Vulnerabilities 

CPAI-2006-039 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VA
 

Date: 
27-Apr-2006 

Update Number: 
541060430 (VPN-1 NG R54/R55) 

550060425 (VPN-1 NG R55W) 

591060425 (VPN-1 NGX R60) 

602060425 (VPN-1 NGX R61) 

547060425 (InterSpect 1.x and 2.0) 

Description: 
Multiple Products LDAP Vulnerabilities 

CPAI-2006-038 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VSC
 

Date: 
27-Apr-2006 

Update Number: 
541060430 (VPN-1 NG R54/R55) 

550060425 (VPN-1 NG R55W) 

591060425 (VPN-1 NGX R60) 

602060425 (VPN-1 NGX R61) 

547060425 (InterSpect 1.x and 2.0) 

592060425 (InterSpect NGX) 

Description: 
IPSwitch WhatUp Professional DoS 

CPAI-2006-037 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VST
 

Date: 
27-Apr-2006 

Update Number: 
541060430 (VPN-1 NG R54/R55) 

550060425 (VPN-1 NG R55W) 

591060425 (VPN-1 NGX R60) 

602060425 (VPN-1 NGX R61) 

547060425 (InterSpect 1.x and 2.0) 

592060425 (InterSpect NGX) 

Description: 
Oracle Reports/Forms Vulnerability 

CPAI-2006-036 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VR
 

Date: 
27-Apr-2006 

Update Number: 
592060425 (InterSpect NGX) 

Description: 
Multiple Products FTP Servers Vulnerabilities 

CPAI-2006-035 


http://enews.checkpoint.com/servlet/cc5?Jo
siQSYYYQUVthgKhgxf81GQf1V2VA
 

Date: 
27-Apr-2006 

Update Number: 
592060425 (InterSpect NGX) 

Description: 
Multiple Products LDAP Vulnerabilities 

CPSA-2006-03 


http://enews.checkpoint.com/servlet/cc5?J
osiQSYYYQUVthgKhgxf81GQf1V2VTR
 

Date: 
27-Apr-2006 

Update Number: 
541060430 (VPN-1 NG R54/R55) 

550060425 (VPN-1 NG R55W) 

591060425 (VPN-1 NGX R60) 

602060425 (VPN-1 NGX R61) 

547060425 (InterSpect 1.x and 2.0) 

592060425 (InterSpect NGX) 

Description: 
MS-RPC Protections Enforced on TCP Ports 

You received this email because our records indicate that
you wish to 
be contacted about SmartDefense Updates, Advisories, product
news, and 
security information. If you do not want to receive further
mailings, 
unsubscribe by sending a message with "SIGNOFF 
SMARTDEFENSE-NEWS" command to LISTSERVAMADEUS.US.CHECKPOINT.COM 
# 
in the first line (not the subject). 

Copyright (c) 2006 Check Point Software Technologies LTD 

____________________________________________________________
__________
This message was sent by Check Point Software Technologies
using Responsys Interact.
    http://www.responsy
s.com/rsvp.asp

Safely unsubscribe from Check Point Software Technologies
e-mail at any time:
    http://enews.checkpoint.com/servlet/opt
out?JoriDUYYYDWEshgKhgFf9z.26DfzE0

View our permission marketing policy:
    http://enews.checkpoint.com/servlet/pp/1?u=http://enews.
checkpoint.com/servlet/optout?JoriDUYYYDWEshgKhgFf9z.26DfzE0
[1]

about | contact  Other archives ( Real Estate discussion Medical topics )