SDS Banner

SmartDefense Services Bulletin
September 2006

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

 
In This Bulletin

About SmartDefense Services
What's New
Advisories
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 UTM
  • Anti-spyware updates for Check Point Integrity Anti-Spyware 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
What's New

Available in October ... NGX R62 with SmartDefense Profiles

New SmartDefense functionality that many of you have asked for is almost here. Define multiple SmartDefense profiles and associate these profiles with your Check Point gateways. The result: different gateways can have different SmartDefense attributes, while still being centrally managed through the SmartDashboard.

Advisories (Sorted by Severity, then Date)
CPAI-2006-097
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Server Service Vulnerability (MS06-040)
  Sources: Microsoft Security Bulletin MS06-040
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1, SP2
Microsoft Windows XP Professional x64 Edition 
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
     
CPAI-2006-095
  Date:
  Severity:
  Description: Preemptive Protection against Malformed DNS Resource Records Vulnerability (MS06-041)
  Sources: Microsoft Security Bulletin MS06-041
US-CERT VU#794580
  Vulnerable Systems: Microsoft Windows 2000 SP4 
Microsoft Windows XP SP1, SP2 
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-100
  Date:
  Severity:
  Description: Apache LDAP HTTP Server Buffer Overflow Vulnerability
  Sources: FrSIRT/ADV-2006-3017
  Vulnerable Systems: Apache versions 1.3.28 through 1.3.36
Apache versions 2.0.46 through 2.0.58
Apache versions 2.2.0 through 2.2.2
     
CPAI-2006-096
  Date:
  Severity:
  Description: Preemptive Protection against Microsoft Windows WMF File Handling Denial of Service Vulnerability
  Sources: FRSIRT/ADV-2006-3180
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-094
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.96.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
Defense Updates
CPAI-2006-098
  Date:
  Update Number: 692060809 (Connectra NGX R61)
  Description: Malformed IMAP Commands Protection
     
CPAI-2006-097
  Date:
  Update Number: 541060816 (VPN-1 NG R55)
550060816 (VPN-1 NG R55W)
591060816 (VPN-1 NGX R60)
602060816 (VPN-1 NGX R61)
591060816 (VPN-1 VSX NGX)
547060816 (InterSpect 1.x and 2.0)
592060816 (InterSpect NGX)
  Description: Microsoft Windows Server Service Protection (MS06-040)
     
CPAI-2006-094
  Date:
  Update Number: 692060809 (Connectra NGX R61)
691060809 (Connectra NGX)
690060809 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.96.0
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065