Breaking News

08-May-2012: The month of May brings seven Microsoft security bulletins, with three being ranked Critical and the remaining four being Important. These address 23 issues in Windows, Office, Silverlight, and the .NET framework.

Top Protections

Overview
Malware Resources
Latest Protections
Product Updates
MS Security

Check Point Update Services Overview

In a constantly changing threat environment, defenses must evolve with or ahead of threats. Check Point Update Services provide real-time defense updates and configuration advice for IPS, URL Filtering, Antivirus & Anti-Malware, Anti-Spam & Email Security Security Service Software Blades. Also covered by Update Services are SmartDefense in NGX VPN-1, VSX, IPS-1, Connectra, Endpoint Security On Demand, and Endpoint Security products.

Key Benefits

Pre-emptive Protection - Keep your defenses current between your regularly-scheduled product upgrades and security patches.
Easy Management - Update your whole system in minutes. Each update comes with full configuration instructions and information about the associated threat.
IPS, Web security, Antivirus, Anti-Malware, Web filtering, and Anti-Spam protection - Get the latest signatures and detection methods.
Program Advisor - Update Check Point Endpoint Security with recommendations for application control for your endpoint computers.
24x7 Threat Coverage - Check Point Security products are supported by multiple Check Point Research and Response Centers around the globe that provided the best Microsoft vulnerability threat coverage amongst leading security vendors.

Malware Resources

Protect Better!

12 easy steps for boosting your organization's protection against malware

Malware Removal Resources

Malware-fighting utilities and recommendations on how to use them

Have an Infected Machine?

Find out how to identify and clean up malware and bot-infected computers

Get the Rescue CD – designed to scan, disinfect and restore infected machines that can't be disinfected with conventional malware removal tools

ThreatWiki Quick Search

Go to ThreatWiki Page

Latest Protections

Check Point Reference	Industry Reference	Description
CPAI-2012-235	CVE-2012-0779	Adobe Flash Player Object Confusion Code Execution (APSB12-09; CVE-2012-0779)
CPAI-2012-233	CVE-2012-1823	PHP php-cgi Query String Parameter Code Execution (CVE-2012-1823)
CPAI-2012-232	CVE-2012-0499	Oracle Java Runtime TTF Heap Buffer Overflow (CVE-2012-0499)
CPAI-2012-231	CVE-2011-4191	Novell Netware XNFS.NLM Caller Name xdrDecodeString Heap Buffer Overflow (CVE-2011-4191)
CPAI-2012-230	CVE-2011-3319	Cisco WebEx Player ATDL2006.dll Heap Memory Corruption (CVE-2011-3319)
CPAI-2012-227	CVE-2011-3045	libpng png_inflate Buffer Overflow (CVE-2011-3045)
CPAI-2012-224	CVE-2011-4194	Novell iPrint Server attributes-natural-language Buffer Overflow (CVE-2011-4194)
CPAI-2012-222	CVE-2012-0395	EMC NetWorker nsrindexd.exe Buffer Overflow (CVE-2012-0395)
CPAI-2012-221	CVE-2012-0501	Oracle Java zip_util readCEN Stack Overflow (CVE-2012-0501)
CPAI-2012-220		Novell GroupWise Messenger nmma.exe Login Memory Corruption
CPAI-2012-219	CVE-2010-2561	Microsoft XML Core Services Response Handling Memory Corruption (MS10-051; CVE-2010-2561)
CPAI-2012-218		PHP htmlspecialchars htmlentities Buffer Overflow
CPAI-2012-217	CVE-2011-3923	Apache Struts 2 ParametersInterceptor OGNL Command Execution (CVE-2011-3923)
CPAI-2012-216	CVE-2012-0199	IBM Tivoli Provisioning Manager Express User.updateUserValue SQL Injection (CVE-2012-0199)
CPAI-2012-214	CVE-2012-0199	IBM Tivoli Provisioning Manager Express Asset.getMimeType SQL Injection (CVE-2012-0199)
CPAI-2012-213	CVE-2010-3269	Cisco WebEx Player Malformed .WRF File Code Execution (CVE-2010-3269)
CPAI-2012-212	CVE-2009-2621	Squid Proxy Invalid HTTP Request Denial of Service (CVE-2009-2621)
CPAI-2012-211	CVE-2011-3478	Symantec pcAnywhere Host Services Login Remote Code Execution (CVE-2011-3478)
CPAI-2012-210	CVE-2012-0110	Oracle Outside In Lotus 1-2-3 Heap Buffer Overflow (CVE-2012-0110)
CPAI-2012-209	CVE-2012-0830	PHP php_register_variable_ex Function Code Execution (CVE-2012-0830)
CPAI-2012-208	CVE-2011-4189	Novell GroupWise Address Book Heap Buffer Overflow (CVE-2011-4189)
CPAI-2012-207	CVE-2011-3026	libpng png_decompress_chunk Integer Overflow (CVE-2011-3026)
CPAI-2012-206	CVE-2011-4789	HP Diagnostics magentservice.exe Code Execution (CVE-2011-4789)
CPAI-2012-205	CVE-2012-0870	Samba smbd Packets Infinite Loop Code Execution (CVE-2012-0870)
CPAI-2012-203		Novell eDirectory Unchecked Length Denial of Service
CPAI-2012-202	CVE-2011-3000	Mozilla Multiple Products Multiple Location Headers CRLF Injection (CVE-2011-3000)
CPAI-2012-201	CVE-2011-3167	HP OpenView Network Node Manager ov.dll Buffer Overflow (CVE-2011-3167)
CPAI-2012-196	CVE-2011-2131	Adobe Photoshop CS5 Malformed GIF File Code Execution (APSB11-22; CVE-2011-2131)
CPAI-2012-192	CVE-2011-3834	Nullsoft Winamp RIFF INFO Record Heap Buffer Overflow (CVE-2011-3834)
CPAI-2012-191	CVE-2011-0609	Adobe Flash Player Malformed SWF Memory Corruption (APSA11-01; CVE-2011-0609)
CPAI-2012-188	CVE-2012-0189	IBM SPSS VsVIEW6.ocx ActiveX control Code Execution (CVE-2012-0189)
CPAI-2012-187		ASUS Net4Switch ipswcom.dll ActiveX Control Stack Buffer Overflow
CPAI-2012-186	CVE-2011-4786	HP Easy Printer Care ActiveX Control Directory Traversal (CVE-2011-4786)
CPAI-2012-185		Citrix Provisioning Services streamprocess.exe Integer Underflow
CPAI-2012-184		IBM solidDB ROWNUM Subquery Denial of Service
CPAI-2012-183		Oracle Outside In OOXML Relationship Tag Parsing Stack Buffer Overflow
CPAI-2012-182	CVE-2012-0247	ImageMagick EXIF ResolutionUnit Handling Memory Corruption (CVE-2012-0247)
CPAI-2012-181	CVE-2012-0444	Mozilla Multiple Products Ogg Vorbis Decoding Memory Corruption (CVE-2012-0444)
CPAI-2012-177	CVE-2011-4862	Multiple Vendors BSD telnetd Encryption Key Buffer Overflow (CVE-2011-4862)
CPAI-2012-176	CVE-2011-1388	IBM Rational Rhapsody BBFlashBack.Recorder.dll Multiple Code Execution (CVE-2011-1388)
CPAI-2012-175	CVE-2012-0053	Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure (CVE-2012-0053)
CPAI-2012-174		Novell GroupWise Messenger nmma.exe createsearch Memory Corruption
CPAI-2012-172	CVE-2011-3205	Squid Proxy Gopher Response Processing Denial of Service (CVE-2011-3205)
CPAI-2012-171	CVE-2011-3210	OpenSSL Handshake Sequence Cipher Suite Use-After-Free (CVE-2011-3210)
CPAI-2012-170	CVE-2011-3179	Novell Groupwise Messenger Server Process Memory Information Disclosure (CVE-2011-3179)
CPAI-2012-169	CVE-2011-4536	WellinTech Kingview SCADA Heap Buffer Overflow (CVE-2011-4536)
CPAI-2012-168	CVE-2011-3250	Apple QuickTime JPEG 2000 COD Length Integer Underflow (CVE-2011-3250)
CPAI-2012-167	CVE-2012-0021	Apache HTTPD mod_log_config Cookie Handling Denial of Service (CVE-2012-0021)
CPAI-2012-166	CVE-2012-0200	IBM solidDB Redundant WHERE Clause Denial Of Service (CVE-2012-0200)
CPAI-2012-165	CVE-2011-3166	HP OpenView Network Node Manager webappmon.exe Buffer Overflow (CVE-2011-3166)
CPAI-2012-164	CVE-2011-3210	OpenSSL Handshake Requests ECDH Use-After-Free (CVE-2011-3210)
CPAI-2012-151	CVE-2011-4259	RealNetworks RealPlayer MPG Width Integer Underflow Memory Corruption (CVE-2011-4259)
CPAI-2012-096		Microsoft Excel Window2 Record Use-After-Free
CPAI-2012-215	CVE-2012-1847	Microsoft Excel SERIES Record Parsing Code Execution (MS12-030; CVE-2012-1847)
CPAI-2012-200	CVE-2012-0162	Microsoft .NET Framework XBAP Buffer Allocation Code Execution (MS12-034; CVE-2012-0162)
CPAI-2012-199	CVE-2012-0176	Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)
CPAI-2012-198	CVE-2012-0159	Microsoft Windows Malformed TrueType Font Remote Code Execution (MS12-034; CVE-2012-0159)
CPAI-2012-197	CVE-2012-0184	Microsoft Excel SXLI Record Memory Corruption (MS12-030; CVE-2012-0184)
CPAI-2012-195	CVE-2012-0143	Microsoft Excel Record Structure Memory Corruption (MS12-030; CVE-2012-0143)
CPAI-2012-194	CVE-2012-0141	Microsoft Excel File Format Code Execution (MS12-030; CVE-2012-0141)

Product Updates

Security Gateway

VSX

NGX R65 / R67

IPS-1

IPS-1

Microsoft Security