SDS Banner

SmartDefense Services Bulletin
November 2006

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

 
In This Bulletin

About SmartDefense Services
What's New
Advisories
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against new threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 UTM
  • Anti-spyware updates for Check Point Integrity Anti-Spyware 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
What's New

NEW Release:  NGX R62
Centrally manage multiple SmartDefense Profiles

The new NGX R62 release supports VPN-1 gateways and SMART management solutions, including VPN-1 Power, VPN-1 UTM, SmartCenter and Provider-1. The most significant enhancement in this release is the enablement of SmartDefense Profiles.

SmartDefense Profiles expand the flexibility and granularity of security defenses, while allowing central control and management of the security infrastructure. By defining multiple SmartDefense Profiles and associating them with Check Point gateways, each gateway can have different defense settings and SmartDefense attributes. SmartDefense Profiles are now supported on VPN-1 Power and VPN-1 UTM gateways. All profiles on all gateways can be centrally managed through the SmartDashboard in SmartCenter or Provider-1.

To learn more about this release, please visit:  http://www.checkpoint.com/downloads/latest/ngx_r62.html

Advisories (Sorted by Severity, then Date)
CPAI-2006-117
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Mailslot Buffer Overflow Vulnerability (MS06-035)
  Sources: Microsoft Security Bulletin MS06-035
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 with SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-118
  Date:
  Severity:
  Description: Update Protection against Microsoft Internet Explorer DirectAnimation Path (daxctle.ocx) Vulnerabilities (MS06-067)
  Sources: Microsoft Security Bulletin MS06-067
  Vulnerable Systems: Microsoft Internet Explorer 5.01 SP4 on Microsoft Windows 2000 SP4
Microsoft Internet Explorer 6 SP1 on Microsoft Windows 2000 SP4
Microsoft Internet Explorer 6 SP1 on Microsoft Windows XP SP1
Microsoft Internet Explorer 6 for Microsoft Windows XP SP2
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 SP1
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 with SP1 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Microsoft Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Microsoft Internet Explorer 6 SP1 on Microsoft Windows 98
Microsoft Internet Explorer 6 SP1 on Microsoft Windows 98 SE
Microsoft Internet Explorer 6 SP1 on Microsoft Windows Millennium Edition
     
CPAI-2006-116
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Routing and Remote Access Buffer Overflow Vulnerabilities (MS06-025)
  Sources:

Microsoft Security Bulletin MS06-025

  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 with SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-115
  Date:
  Severity:
  Description: Update Protection against Windows Explorer GUID Remote Code Execution Vulnerability (MS06-045)
  Sources: Microsoft Security Bulletin MS06-045
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-114
  Date:
  Severity:
  Description: Update Protection against Microsoft Management Console (MMC) Remote Code Execution Vulnerability (MS06-044)
  Sources: Microsoft Security Bulletin MS06-044
  Vulnerable Systems: Microsoft Windows 2000 SP4
     
CPAI-2006-113
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows MHTML Remote Code Execution Vulnerability (MS06-043)
  Sources: Microsoft Security Bulletin MS06-043
  Vulnerable Systems: Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
Microsoft Outlook Express 6 on Microsoft Windows XP SP2
Microsoft Outlook Express 6 on Microsoft Windows XP Professional x64 Edition
Microsoft Outlook Express 6 on Microsoft Windows Server 2003 SP1
Microsoft Outlook Express 6 on Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Outlook Express 6 on Microsoft Windows Server 2003 x64 Edition
     
CPAI-2006-112
  Date:
  Severity:
  Description: Update Protection against Microsoft Internet Explorer Memory Corruption Vulnerabilities (MS06-042)
  Sources: Microsoft Security Bulletin MS06-042
  Vulnerable Systems: Microsoft Internet Explorer 5.01 SP4 on Microsoft Windows 2000 SP4
Microsoft Internet Explorer 6 SP1 on Microsoft Windows 2000 SP4
Microsoft Internet Explorer 6 SP1 on Microsoft Windows XP SP1
Microsoft Internet Explorer 6 for Microsoft Windows XP SP2
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 SP1
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Microsoft Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
     
CPAI-2006-111
  Date:
  Severity:
  Description: Update Protection against Malformed DNS ATMA Resource Record Protection (MS06-041)
  Sources: Microsoft Security Bulletin MS06-041
  Vulnerable Systems:
     
CPAI-2006-122
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.105.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2006-121
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.104.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2006-120
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.103.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2006-119
  Date:
  Severity:
  Description: Update Protection against CBSMS Mambo Module Remote File Vulnerabilities
  Sources: FrSIRT/ADV-2006-2528
  Vulnerable Systems: CBSMS Mambo Module version 1.0 and prior
     
Defense Updates
CPAI-2006-122
  Date:
  Update Number: 692061009 (Connectra NGX R61)
691061009 (Connectra NGX)
690061009 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.105.0
     
CPAI-2006-121
  Date:
  Update Number: 692061003 (Connectra NGX R61)
691061003 (Connectra NGX)
690061003 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.104.0
     
CPAI-2006-120
  Date:
  Update Number: 692060925 (Connectra NGX R61)
691060925 (Connectra NGX)
690060925 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.103.0
     
CPAI-2006-119
  Date:
  Update Number: 541061011 (VPN-1 NG R54/R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: CBSMS Mambo Module Protection
     
CPAI-2006-118
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft IE DirectAnimation Path Protection (925444)
     
CPAI-2006-117
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft Windows MailSlot Protection (MS06-035)
     
CPAI-2006-116
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft Windows RASMAN Protection (MS06-025)
     
CPAI-2006-115
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Windows Explorer GUID Protection (MS06-045)
     
CPAI-2006-114
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft Management Console Protection (MS06-044)
     
CPAI-2006-113
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft Windows MHTML Protection (MS06-043)
     
CPAI-2006-112
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Microsoft Internet Explorer Memory Corruption Protections (MS06-042)
     
CPAI-2006-111
  Date:
  Update Number: 541061011 (VPN-1 NG R55)
550061011 (VPN-1 NG R55W)
591061011 (VPN-1 NGX R60)
602061011 (VPN-1 NGX R61/R62)
591061011 (VPN-1 VSX NGX)
592061011 (InterSpect NGX)
  Description: Malformed DNS ATMA Protection (MS06-041)
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065