Microsoft Security Bulletins for
= Check Point has provided a protection to this bulletin
Microsoft Security Bulletin MS08-012:
Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085)
Severity: Critical
CVE-2008-0102: Publisher Invalid Memory Reference Vulnerability â
A remote code execution vulnerability exists in the way Microsoft Office Publisher validates application data when loading Publisher files to memory. An attacker could exploit the vulnerability by constructing a specially crafted Publisher (.pub) file. When a user views the .pub file, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
- Check Point Response
- Workaround for Multiple Microsoft Publisher Vulnerabilities (MS08-012) Release Date:
Microsoft Security Bulletin MS08-011:
Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)
Severity: High
CVE-2007-0216: Microsoft Works File Converter Input Validation Vulnerability
A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates section length headers with the .wps format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
- Check Point Response
- Update Protection against Multiple Microsoft Works Remote Code Execution Vulnerabilities (MS08-011) Release Date:
CVE-2008-0108: Microsoft Works File Converter Field Length Vulnerability
A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates various field lengths information with the .wps file format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
- Check Point Response
- Update Protection against Multiple Microsoft Works Remote Code Execution Vulnerabilities (MS08-011) Release Date:
CVE-2008-0105: Microsoft Works File Converter Index Table Vulnerability
A remote code execution vulnerability exists in Microsoft Works File Converter due to the way that it improperly validates section header index table information with the .wps file format. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
- Check Point Response
Microsoft Security Bulletin MS08-010:
Cumulative Security Update for Internet Explorer (944533)
Severity: Critical
CVE-2007-4790: ActiveX Object Memory Corruption Vulnerability
A remote code execution vulnerability exists in a component of Microsoft Fox Pro. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user
- Check Point Response
- Update Protection against Microsoft Visual FoxPro ActiveX Object Memory Corruption Vulnerability (MS08-010) Release Date:
CVE-2008-0078: Argument Handling Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way Internet Explorer handles argument validation in image processing. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
- Check Point Response
- Update Protection against Microsoft Argument Handling Memory Corruption Vulnerability (MS08-010) Release Date:
CVE-2008-0077: Property Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way Internet Explorer handles a property method. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
- Check Point Response
- Update Protection against Microsoft Property Memory Corruption Vulnerability (MS08-010) Release Date:
CVE-2008-0076: HTML Rendering Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way Internet Explorer interprets HTML with certain layout combinations. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
- Check Point Response
- Update Protection against Microsoft HTML Rendering Memory Corruption Vulnerability (MS08-010) Release Date:
Microsoft Security Bulletin MS08-009:
Vulnerability in Microsoft Word Could Allow Remote Code Execution (947077)
Severity: Critical
CVE-2008-0109: Word Memory Corruption Vulnerability â
A remote code execution vulnerability exists in the way that Word handles specially crafted Word files. The vulnerability could allow remote code execution if a user opens a specially crafted Word file that includes a malformed value. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
- Check Point Response
- Update Protection against Microsoft Word Memory Corruption Vulnerability (MS08-009) Release Date:
Microsoft Security Bulletin MS08-008:
Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)
Severity: Critical
CVE-2007-0065: OLE Heap Overrun Vulnerability
A remote code execution vulnerability exists in Object Linking and Embedding (OLE) Automation. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. If a user is logged on with administrative user rights, an attacker could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
- Check Point Response
- Update Protection against Microsoft OLE Automation Remote Code Execution Vulnerability (MS08-008) Release Date:
Microsoft Security Bulletin MS08-007:
Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (946026)
Severity: Critical
CVE-2008-0080: Mini-Redirector Heap Overflow Vulnerability
A remote code execution vulnerability exists in the way that the WebDAV Mini-Redirector handles responses. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
- Check Point Response
- Update Protection against Microsoft WebDAV Mini-Redirector Remote Code Execution Vulnerability (MS08-007) Release Date:
Microsoft Security Bulletin MS08-006:
Vulnerability in Internet Information Services Could Allow Remote Code Execution (942830)
Severity: High
CVE-2008-0075: ASP Vulnerability
A remote code execution vulnerability exists in the way that Internet Information Services handles input to ASP Web pages. An attacker could exploit the vulnerability by passing malicious input to a Web siteâs ASP page. An attacker who successfully exploited this vulnerability could then perform any actions on the IIS Server with the same rights as the Worker Process Identity (WPI), which by default is configured with Network Service account privileges.
- Check Point Response
- Preemptive Protection against Microsoft Internet Information Services Cross-Site Scripting Vulnerability (MS08-006) Release Date:
Microsoft Security Bulletin MS08-004:
Vulnerability in Windows TCP/IP Could Allow Denial of Service (946456)
Severity: High
CVE-2008-0084: Windows Vista TCP/IP Vulnerability
denial of service vulnerability exists in TCP/IP processing in Windows Vista. An attacker could exploit the vulnerability by creating a specially crafted DHCP server that returns a specially crafted packet to a host, corrupting TCP/IP structures and causing the affected system to stop responding and automatically restart.
- Check Point Response
- Update Protection against Microsoft TCP/IP DHCP Denial Of Service Vulnerability (MS08-004) Release Date:
Microsoft Security Bulletin MS08-003:
Vulnerability in Active Directory Could Allow Denial of Service (946538)
Severity: High
CVE-2008-0088: Active Directory Vulnerability
A denial of service vulnerability exists in implementations of Active Directory on Microsoft Windows 2000 and Windows Server 2003. The vulnerability also exists in implementations of Active Directory Application Mode (ADAM) when installed on Windows XP and Windows Server 2003. The vulnerability is due to improper validation of specially crafted LDAP requests. An attacker who successfully exploited this vulnerability could cause the computer to stop responding and automatically restart.
- Check Point Response
- Update Protection against Microsoft LDAP Active Directory Denial of Service Vulnerability (MS08-003) Release Date: