Microsoft Security Bulletins for
= Check Point has provided a protection to this bulletin
Microsoft Security Bulletin MS08-069:
Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (955218)
Severity: Critical
CVE-2008-4033: MSXML Header Request Vulnerability
An information disclosure vulnerability exists in the way that Microsoft XML Core Services handles transfer-encoding headers. The vulnerability could allow information disclosure if a user browses a Web site that contains specially crafted content or opens specially crafted HTML e-mail. An attacker who successfully exploited this vulnerability could read data from a Web page in another domain in Internet Explorer. In all cases, however, an attacker would have no way to force users to visit these Web sites.
- Check Point Response
- Update Protection against Microsoft XML Core Services Chunked Request Vulnerability (MS08-069) Release Date:
CVE-2008-4029: MSXML DTD Cross-Domain Scripting Vulnerability
An information disclosure vulnerability exists in the way that Microsoft XML Core Services handles error checks for external document type definitions (DTDs). The vulnerability could allow information disclosure if a user browses a Web site that contains specially crafted content or opens specially crafted HTML e-mail. An attacker who successfully exploited this vulnerability could read data from a Web page in another domain in Internet Explorer. In all cases, however, an attacker would have no way to force users to visit these Web sites.
- Check Point Response
- Update Protection against Microsoft XML Core Services DTD Cross-Domain Scripting Vulnerability (MS08-069) Release Date:
CVE-2007-0099: MSXML Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way that Microsoft XML Core Services parses XML content. The vulnerability could allow remote code execution if a user browses a Web site that contains specially crafted content or opens specially crafted HTML e-mail. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
- Check Point Response
- Update Protection against Microsoft XML Core Services Nested Tag Vulnerability (MS08-069) Release Date:
Microsoft Security Bulletin MS08-068:
Vulnerability in SMB Could Allow Remote Code Execution (957097)
Severity: High
CVE-2008-4037: SMB Credential Reflection Vulnerability
A remote code execution vulnerability exists in the way that Microsoft Server Message Block (SMB) Protocol handles NTLM credentials when a user connects to an attackers SMB server. This vulnerability allows an attacker to replay the users credentials back to them and execute code in the context of the logged-on user. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
- Check Point Response
- Security Best Practice: Protect Yourself against SMB Reflection Attacks Release Date: