SDS Banner

SmartDefense Services Bulletin
July 2005

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

 
In This Bulletin

About SmartDefense Services
What's New
Advisories
Security Best Practices
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 Express CI
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
What's New

This month we're introducing a new easier-to-read format for the SmartDefense Services Bulletin. We welcome your comments on the new look, and any feedback on any aspect of this bulletin.

Advisories (Sorted by Severity, then Date)
CPAI-2005-99
  Date:
  Severity:
  Category: Remote Code Execution
  Description: Microsoft Internet Explorer PNG Rendering Vulnerability (MS05-025)
  Sources:

Microsoft Security Bulletin MS05-025

  Vulnerable Systems: Microsoft Windows 2000 SP3 and SP4
Microsoft Windows XP SP1 and Microsoft Windows XP SP2
Microsoft Windows XP 64-Bit Edition SP1
Microsoft Windows XP 64-Bit Edition Version 2003
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
Microsoft Windows Server 2003 x64 Edition
Microsoft Windows 98
Microsoft Windows 98 Second Edition (SE)
Microsoft Windows Millennium Edition (ME)
     
CPAI-2005-94
  Date:
  Severity:
  Category: Remote Code Execution
  Description: Preemptive Protection against Vulnerability in HTML Help (MS05-026)
  Sources:

Microsoft Security Bulletin MS05-026

  Vulnerable Systems: Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional
     
CPAI-2005-103
  Date:
  Severity:
  Category: Remote Code Execution
  Description: Preemptive Protection against RealNetworks RealPlayer RealText Parsing Buffer Overflow
  Sources: iDEFENSE Security Advisory 06.23.05:
  Vulnerable Systems: Real Networks RealPlayer 8
Real Networks RealPlayer 10
Real Networks RealPlayer 10.5
Real Networks RealPlayer Enterprise
Real Networks RealOne Player v1
Real Networks RealOne Player v2
     
CPAI-2005-102
  Date:
  Severity:
  Category: Microsoft Windows networks
  Description: Microsoft Telnet Client Vulnerability (MS05-033)
  Sources:

Microsoft Security Bulletin MS05-033

  Vulnerable Systems: Microsoft Windows XP SP1, Service Pack 2
Microsoft Windows XP 64-Bit Edition SP1
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003 and Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
Microsoft Windows Server 2003 x64 Edition
Microsoft Windows Services for UNIX 3.5 when running on Windows 2000
Microsoft Windows Services for UNIX 3.0 when running on Windows 2000
Microsoft Windows Services for UNIX 2.2 when running on Windows 2000
     
CPAI-2005-101
  Date:
  Severity:
  Category: SQL Injection
  Description: Preemptive Protection against Ipswitch WhatsUp SQL Injection Vulnerability
  Sources:

iDEFENSE Security Advisory 06.22.05

  Vulnerable Systems:

IpSwitch WhatsUP Professional 2005
IpSwitch WhatsUP Professional 2005 SP1

     
CPAI-2005-100
  Date:
  Severity:
  Category: Cross-Site Scripting
  Description: Preemptive Protection against Multiple Vulnerabilities in SquierrelMail
  Sources: SecurityTracker Alert ID: 1014217
  Vulnerable Systems: SquirrelMail versions 1.4.0 - 1.4.4
     
CPAI-2005-98
  Date:
  Severity:
  Category: HTTP Protocol Inspection
  Description: Preemptive Protection against Multiple Content-Length Headers Vulnerability (MS05-034)
  Sources:

Microsoft Security Bulletin MS05-034

  Vulnerable Systems: Microsoft Internet Security and Acceleration (ISA) Server 2000 Service Pack 2
     
CPAI-2005-97
  Date:
  Severity:
  Category: Spoofing
  Description: Preemptive Protection against a Vulnerability in Microsoft Agent (MS05-032)
  Sources:

Microsoft Security Bulletin MS05-032

  Vulnerable Systems: Microsoft Windows 2000 SP3 and SP4 
Microsoft Windows XP SP1 and SP2 
Microsoft Windows XP 64-Bit Edition SP1 
Microsoft Windows XP 64-Bit Edition Version 2003  
Microsoft Windows XP Professional x64 Edition  
Microsoft Windows Server 2003 and Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 with SP1 for Itanium-based Systems  
Microsoft Windows Server 2003 x64 Edition
 
     
CPAI-2005-96
  Date:
  Severity:
  Category: Remote Code Execution
  Description: Vulnerability in Microsoft Step-by-Step Interactive Training (MS05-031)
  Sources:

Microsoft Security Bulletin MS05-031

  Vulnerable Systems: Microsoft Windows 2000 SP3 and SP4 
Microsoft Windows XP SP1 and SP 2 
Microsoft Windows XP 64-Bit Edition SP1  
Microsoft Windows XP 64-Bit Edition Version 2003  
Microsoft Windows XP Professional x64 Edition 
Microsoft Windows Server 2003 and Microsoft Windows Server 2003 SP1 
Microsoft Windows Server 2003 for Itanium-based Systems 
Microsoft Windows Server 2003 with SP1 for Itanium-based 
Microsoft Windows Server 2003 x64 Edition
 
     
CPAI-2005-95
  Date:
  Severity:
  Category: Cross-Site Scripting
  Description: Preemptive Protection against a Vulnerability in Microsoft Outlook Web Access (OWA) for Exchange Server 5.5 (MS05-029)
  Sources:

Microsoft Security Bulletin MS05-029

  Vulnerable Systems: Microsoft Exchange Server 5.5 Service Pack 4
     
CPAI-2005-93
  Date:
  Severity:
  Category: Worms and Viruses
  Description: W32.Hotworld.A Trojan (Rona.A)
  Sources:

panda software

  Vulnerable Systems: Microsoft Windows operating systems
     
Security Best Practices (Sorted by Severity, then Date)
CPSA-2005-06
  Date:
  Severity:
  Category: VPN Protocols
  Description: Security Best Practice: RFC Compliant Internet Key Exchange (IKE) Protocol Enforcement
  Sources: SmartDefenese Research Center
  Vulnerable Systems: VPN-based systems
     
CPSA-2005-08
  Date:
  Severity:
  Category: Information leakage
  Description: Security Best Practice: Preventing Information Disclosure with the Error Concealment Protection
  Sources: SmartDefense Research Center
  Vulnerable Systems: Web servers & Web-based applications
     
CPSA-2005-07
  Date:
  Severity:
  Category: Instant Messaging
  Description: Security Best Practice: Protection against Instant Messaging hazards
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows operating systems
     
Defense Updates
CPAI-2005-102
  Date:
  Update Number: 591050629 (VPN-1 NGX R60)
541050629 (VPN-1 NGAI R55)
550050629 (VPN-1 NGAI R55W)
547050629 (InterSpect)
  Description: Telnet Protection (MS05-033)
     
CPAI-2005-99
  Date:
  Update Number: 591050621 (VPN-1 NGX R60)
541050621 (VPN-1 NGAI R55)
550050621 (VPN-1 NGAI R55W)
547050621 (InterSpect)
  Description: Malformed PNG Protection
     
CPAI-2005-93
  Date:
  Update Number: 580050609 (Connectra)
  Description: W32.Hotworld.A Trojan Protection
     
CPSA-2005-06
  Date:
  Update Number: 591050605 (VPN-1 NGX R60)
541050605 (VPN-1 NGAI R55)
550050605 (VPN-1 NGAI R55W)
547050605 (InterSpect)
  Description: IKE Enforcement Protection
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065