January 2008 SmartDefense Services Bulletin

SmartDefense Services Bulletin

January 2008

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

In This Bulletin

About SmartDefense Services
Advisories
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

Preemptive, ongoing, and real-time updates to defenses and security policies
Ongoing new protocol and application defenses against emerging threats and attacks
Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
Anti-virus updates and alerts for Check Point VPN-1 UTM
Anti-spyware updates for Check Point Integrity Anti-Spyware
Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)

Advisories (Sorted by Severity, then Date)


CPAI-2007-370
	Date:
	Severity:
	Description:	Update Protection against X.Org X Font Server Handlers Integer Overflow
	Sources:	Secunia Advisory: SA27040
	Vulnerable Systems:	X.Org Foundation X Font Server 1.0.4 (X11R7.3) and prior

CPAI-2007-369
	Date:
	Severity:
	Description:	Update Protection against Ingres Database Communications Server Component Heap Buffer Overflow
	Sources:	Secunia Advisory: SA25756
	Vulnerable Systems:	Ingres Ingres Database 2.x Ingres Ingres Database 3.x Ingres Ingres Database 2006 (9.x)

CPAI-2007-368
	Date:
	Severity:
	Description:	Update Protection against IBM Tivoli Monitoring Express Universal Agent Buffer Overflow
	Sources:	Secunia Advisory: SA24938
	Vulnerable Systems:	IBM Tivoli Monitoring Express 6.1

CPAI-2007-358
	Date:
	Severity:
	Description:	Update Protection against Samba Domain Controller Service Crafted Mailslot Name Buffer Overflow
	Sources:	Secunia Advisory: SA27760
	Vulnerable Systems:	Samba Team Samba 3.0.27a

CPAI-2007-345
	Date:
	Severity:
	Description:	Oracle Database Server SYS.LT.FINDRICSET Function SQL Injection (CVE-2007-5511)
	Sources:	Secunia Advisory: SA27251
	Vulnerable Systems:	Oracle Database Server 10g Release 1, versions 10.1.0.5 and prior Oracle Database Server 10g Release 2, versions 10.2.0.3 and prior

CPAI-2007-337
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Domino IMAP Server Buffer Overflow
	Sources:	Secunia Advisory: SA27321
	Vulnerable Systems:	IBM Lotus Domino 6.x prior to 6.5.6 Fix Pack 2 IBM Lotus Domino 7.x prior to 7.0.3

CPAI-2007-335
	Date:
	Severity:
	Description:	Update Protection against Oracle Database Core RDBMS Component Denial of Service
	Sources:	Secunia Advisory: SA27251
	Vulnerable Systems:	Oracle Database Server 9i Release 1, version 9.0.1.5+ Oracle Database Server 9i Release 2, versions 9.2.0.8 and prior Oracle Database Server 9i Release 2, version 9.2.0.8DV Oracle Database Server 10g Release 1, versions 10.1.0.5 and prior Oracle Database Server 10g Release 2, version 10.2.0.3 and prior

CPAI-2007-334
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Message Engine Insecure Methods
	Sources:	Secunia Advisory: SA27192
	Vulnerable Systems:	CA BrightStor Enterprise Backup r10.5 CA BrightStor ARCserve Backup v9.01 CA BrightStor ARCserve Backup r11 for Windows CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA Business Protection Suite r2 CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2 CA Server Protection Suite r2

CPAI-2007-333
	Date:
	Severity:
	Description:	Update Protection against CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow
	Sources:	Secunia Advisory: SA27192
	Vulnerable Systems:	CA BrightStor ARCserve Backup r9.01 CA BrightStor ARCserve Backup r10.5 CA BrightStor ARCserve Backup r11 for Windows CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA Business Protection Suite r2 CA Server Protection Suite r2

CPAI-2007-332
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Message Engine Stack Overflow
	Sources:	Secunia Advisory: SA27192
	Vulnerable Systems:	CA BrightStor ARCserve Backup v9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.5

CPAI-2007-326
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCServe Backup LGServer Arbitrary File Upload
	Sources:	Secunia Advisory: SA25606
	Vulnerable Systems:	CA ARCserve Backup for Laptops and Desktops r11.0 CA ARCserve Backup for Laptops and Desktops r11.1 CA ARCserve Backup for Laptops and Desktops r11.1 SP1 CA ARCserve Backup for Laptops and Desktops r11.1 SP2 CA ARCserve Backup for Laptops and Desktops r11.5 CA ARCserve Backup for Laptops and Desktops r4.0 CA Desktop Management Suite r11.0 CA Desktop Management Suite r11.1 CA Desktop Management Suite r11.2 CA Protection Suites 2

CPAI-2007-325
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCServe Backup LGServer Authentication Username Overflow
	Sources:	Secunia Advisory: SA25606
	Vulnerable Systems:	CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP2 CA BrightStor ARCserve Backup for Laptops and Desktops r11.5 CA Desktop Management Suite r11.0 CA Desktop Management Suite r11.2 CA Protection Suite Server r2 CA BrightStor Mobile Backup - AdminGui 4 CA Unicenter DMS Manager - Backup Manager r11.1

CPAI-2007-324
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCServe Backup LGServer Auth Password Buffer Overflow
	Sources:	Secunia Advisory: SA25606
	Vulnerable Systems:	CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1 CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP2 CA BrightStor ARCserve Backup for Laptops and Desktops r11.5 CA Desktop Management Suite r11.0 CA Desktop Management Suite r11.2 CA Protection Suite Server r2 CA BrightStor Mobile Backup - AdminGui 4 CA Unicenter DMS Manager - Backup Manager r11.1

CPAI-2007-323
	Date:
	Severity:
	Description:	Update Protection against CA ARCserve Backup for Laptops and Desktops LGServer Buffer Overflows
	Sources:	Secunia Advisory: SA25606
	Vulnerable Systems:	CA ARCserve Backup for Laptops and Desktops r11.0 CA ARCserve Backup for Laptops and Desktops r11.1 CA ARCserve Backup for Laptops and Desktops r11.1 SP1 CA ARCserve Backup for Laptops and Desktops r11.1 SP2 CA ARCserve Backup for Laptops and Desktops r11.5 CA Desktop Management Suite r11.0 CA Desktop Management Suite r11.1 CA Protection Suites 2 CA BrightStor Mobile Backup - AdminGui 4 CA Unicenter DMS Manager - Backup Manager r11.1

CPAI-2007-322
	Date:
	Severity:
	Description:	Update Protection against IBM Tivoli Storage Manager Express CAD Service Buffer Overflow
	Sources:	Secunia Advisory: SA26883
	Vulnerable Systems:	IBM Tivoli Storage Manager (TSM) 5.1 IBM Tivoli Storage Manager (TSM) 5.2 IBM Tivoli Storage Manager (TSM) 5.3 IBM Tivoli Storage Manager (TSM) 5.4 IBM Tivoli Storage Manager (TSM) Express 5.3

CPAI-2007-318
	Date:
	Severity:
	Description:	Update Protection against Trend Micro ServerProtect TMregChange Stack Overflow
	Sources:	Secunia Advisory: SA26523
	Vulnerable Systems:	Trend Micro ServerProtect for Windows 5.58 Patch3 and prior

CPAI-2007-313
	Date:
	Severity:
	Description:	Update Protection against EMC Legato NetWorker Remote Execution Service Buffer Overflow
	Sources:	Secunia Advisory: SA26517
	Vulnerable Systems:	EMC Legato NetWorker prior to 7.3.3

CPAI-2007-304
	Date:
	Severity:
	Description:	Update Protection against CA Products Message Queuing Server Buffer Overflow
	Sources:	Secunia Advisory: SA26190
	Vulnerable Systems:	CA Advantage Data Transformer 3.0 CA BrightStor Portal 11.1 CA BrightStor SAN Manager 11.1 CA BrightStor SAN Manager 11.5 CA CleverPath Aion 10.0 CA CleverPath ECM 3.5 CA CleverPath OLAP 5.1 CA CleverPath Predictive Analysis Server 2.0 CA CleverPath Predictive Analysis Server 3 CA eTrust Admin 2.01 CA eTrust Admin 2.04 CA eTrust Admin 2.07 CA eTrust Admin 2.09 CA eTrust Admin 8 CA eTrust Admin 8.1 CA Message Queuing Software Prior to v1.11 Build 54_4 CA Unicenter Application Performance Monitor 3.0 CA Unicenter Application Performance Monitor 3.5 CA Unicenter Asset Management 3.1 CA Unicenter Asset Management 3.2 CA Unicenter Asset Management 3.2SP1 CA Unicenter Asset Management 3.2SP2 CA Unicenter Asset Management 4.0 CA Unicenter Asset Management 4.0SP1 CA Unicenter Data Transport Option 2.0 CA Unicenter Enterprise Job Manager 1.0 SP1 CA Unicenter Enterprise Job Manager 1.0 SP2 CA Unicenter Jasmine 3.0 CA Unicenter Management for Microsoft Exchange 4.0 CA Unicenter Management for Microsoft Exchange 4.1 CA Unicenter Management for Web Servers 5 CA Unicenter Management for Web Servers 5.0.1 CA Unicenter Management for WebSphere MQ 3.5 CA Unicenter Management for Lotus Notes/Domino 4.0 CA Unicenter NSM 3.0 CA Unicenter NSM 3.1 CA Unicenter NSM Wireless Network Management Option 3.0 CA Unicenter Remote Control 6.0 CA Unicenter Remote Control 6.0 SP1 CA Unicenter Service Level Management 3.0 CA Unicenter Service Level Management 3.0.1 CA Unicenter Service Level Management 3.0.2 CA Unicenter Service Level Management 3.5 CA Unicenter Software Delivery 3.0 CA Unicenter Software Delivery 3.1 CA Unicenter Software Delivery 3.1SP1 CA Unicenter Software Delivery 3.1SP2 CA Unicenter Software Delivery 4.0 CA Unicenter Software Delivery 4.0SP1 CA Unicenter TNG 2.1 CA Unicenter TNG 2.2 CA Unicenter TNG 2.4 CA Unicenter TNG 2.4.2 CA Unicenter TNG JPN 2.2

CPAI-2007-297
	Date:
	Severity:
	Description:	Update Protection against CA Alert Notification Server RPC Request Buffer Overflow
	Sources:	Secunia Advisory: SA26088
	Vulnerable Systems:	CA Alert Notification Server Prior to 8.0.255.0

CPAI-2007-287
	Date:
	Severity:
	Description:	Update Protection against Trend Micro OfficeScan Console Authentication Buffer Overflow
	Sources:	Secunia Advisory: SA25778
	Vulnerable Systems:	Trend Micro OfficeScan Corporate Edition 8.0 prior to 8.0.0.1042 Trend Micro OfficeScan Corporate Edition 7.3 prior to 7.3.0.1293 Trend Micro OfficeScan Corporate Edition 7.0 prior to 7.0.0.1364

CPAI-2007-283
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Schannel Security Package Code Execution (MS07-031)
	Sources:	Microsoft Scurity Bulletin 935840
	Vulnerable Systems:	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003

CPAI-2007-278
	Date:
	Severity:
	Description:	Update Protection against Sun Java System Web Proxy sockd Daemon Buffer Overflow
	Sources:	Secunia Advisory: SA25405
	Vulnerable Systems:	Sun Microsystems Java System Web Proxy Server prior to 4.0.5

CPAI-2007-271
	Date:
	Severity:
	Description:	Update Protection against CA Multiple Products Console Server Login Handling Buffer Overflow
	Sources:	Secunia Advisory: SA25202
	Vulnerable Systems:	CA Anti-Spyware for the Enterprise r8 CA Anti-Virus for the Enterprise r8 CA Threat Manager for the Enterprise r8 CA Protection Suites r3

CPAI-2007-265
	Date:
	Severity:
	Description:	Update Protection against ISC BIND query_addsoa denial of service
	Sources:	Secunia Advisory: SA25070
	Vulnerable Systems:	Internet Systems Consortium (ISC) BIND 9.4.0 Internet Systems Consortium (ISC) BIND 9.5.0a1 Internet Systems Consortium (ISC) BIND 9.5.0a2 Internet Systems Consortium (ISC) BIND 9.5.0a3

CPAI-2007-261
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Media Server SUN-RPC Service Buffer Overflow
	Sources:	Secunia Advisory: SA24972
	Vulnerable Systems:	CA BrightStor ARCserve Backup v9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.0

CPAI-2007-258
	Date:
	Severity:
	Description:	Update Protection against Oracle Database Server DBMS_CDC_IPUBLISH Package Buffer Overflow
	Sources:	Secunia Advisory: SA24929
	Vulnerable Systems:	Oracle Database Server 10g 10.1.0.5 and prior Oracle Database Server 10gR2 10.2.0.2 and prior

CPAI-2007-256
	Date:
	Severity:
	Description:	Update Protection against Oracle Database DBMS_SNAP_INTERNAL Package Buffer Overflow
	Sources:	Secunia Advisory: SA24929
	Vulnerable Systems:	Oracle Database Server 10gR1 10.1.0.5 and prior Oracle Database Server 9iR2 9.2.0.7 and prior Oracle Database Server 9i 9.0.1.5 and prior

CPAI-2007-251
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution
	Sources:	Secunia Advisory: SA24682
	Vulnerable Systems:	CA BrightStor ARCserve Backup v9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 SP2 and prior

CPAI-2007-250
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Domino LDAP Server Invalid DN Message Buffer Overflow
	Sources:	Secunia Advisory: SA24633
	Vulnerable Systems:	IBM Lotus Domino 6.x prior to 6.5.6 IBM Lotus Domino 7.x prior to 7.0.2 FP1

CPAI-2007-247
	Date:
	Severity:
	Description:	Update Protection against Atrium Software MERCUR IMAPD NTLMSSP Command Handling Memory Corruption
	Sources:	Secunia Advisory: SA24596
	Vulnerable Systems:	Atrium Software MERCUR Messaging 2005 5.00.14 SP4 and prior

CPAI-2007-246
	Date:
	Severity:
	Description:	Update Protection against Cisco IP Phone SIP INVITE Message Denial of Service
	Sources:	Secunia Advisory: SA24600
	Vulnerable Systems:	Cisco IP Phone 7960/7940 P0S3-07-4-00

CPAI-2007-240
	Date:
	Severity:
	Description:	Update Protection against Mozilla Network Security Services SSLv2 Server Stack Overflow
	Sources:	Secunia Advisory: SA24253
	Vulnerable Systems:	Sun Microsystems Java System Web Server 6.1 Service Pack 7 and prior Sun Microsystems Java System Directory Server N/A Sun Microsystems Java System Portal Server N/A Sun Microsystems Java System Messaging Server N/A Sun Microsystems Java System Application Server N/A Red Hat Directory Server N/A Red Hat Certificate System N/A

CPAI-2007-236
	Date:
	Severity:
	Description:	Update Protection against HP Mercury Multiple Products Agent Command Processing Buffer Overflow
	Sources:	Secunia Advisory: SA24112
	Vulnerable Systems:	HP Mercury LoadRunner 8.0 GA HP Mercury LoadRunner 8.1 FP1 HP Mercury LoadRunner 8.1 FP2 HP Mercury LoadRunner 8.1 FP3 HP Mercury LoadRunner 8.1 FP4 HP Mercury LoadRunner 8.1 GA HP Mercury LoadRunner 8.1 SP1 HP Mercury Performance Center 8.0 GA HP Mercury Performance Center 8.1 FP1 HP Mercury Performance Center 8.1 FP2 HP Mercury Performance Center 8.1 FP3 HP Mercury Performance Center 8.1 FP4 HP Mercury Performance Center 8.1 GA HP Mercury Monitor over Firewall 8.1

CPAI-2007-232
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCServe Backup LGServer Stack Buffer Overflow
	Sources:	Secunia Advisory: SA23897
	Vulnerable Systems:	Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.0 Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1

CPAI-2007-231
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCServe Backup LGServer Buffer Overflow
	Sources:	Secunia Advisory: SA23897
	Vulnerable Systems:	Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.0 Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1

CPAI-2007-224
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow
	Sources:	Secunia Advisory: SA23648
	Vulnerable Systems:	CA BrightStor ARCserve Backup r9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.5

CPAI-2007-220
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Message Engine Opcode 47 Buffer Overflow
	Sources:	Secunia Advisory: SA23648
	Vulnerable Systems:	CA BrightStor ARCserve Backup r9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.5

CPAI-2007-219
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Tape Engine RPC Opcode 207 Buffer Overflow
	Sources:	Secunia Advisory: SA23648
	Vulnerable Systems:	CA BrightStor ARCserve Backup 9.01 CA BrightStor ARCserve Backup r11 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.5 CA Business Protection Suite r2 CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2 CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 CA Server Protection Suite r2

CPAI-2007-218
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Tape Engine RPC Code Execution
	Sources:	Secunia Advisory: SA23648
	Vulnerable Systems:	CA BrightStor ARCserve Backup r9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.5

CPAI-2007-140
	Date:
	Severity:
	Description:	Update Protection against Microsoft AVI File Parsing Remote Code Execution Vulnerability (MS07-064)
	Sources:	Microsoft Security Bulletin MS07-064
	Vulnerable Systems:	Microsoft DirectX 7.0 Microsoft DirectX 8.1 Microsoft DirectX 9.0c Microsoft DirectX 10 Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003

CPAI-2007-139
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Message Queuing Remote Code Execution Vulnerability (MS07-065)
	Sources:	Microsoft Security Bulletin MS07-065
	Vulnerable Systems:	Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Server SP4 Microsoft Windows XP SP2

CPAI-2007-371
	Date:
	Severity:
	Description:	Update Protection against Linux Kernel NetFilter SCTP Unknown Chunk Types Denial of Service Vulnerability
	Sources:	Secunia Advisory: SA25594
	Vulnerable Systems:	Linux Kernel Project Kernel 2.6.21.3 and prior

CPAI-2007-367
	Date:
	Severity:
	Description:	Update Protection against Adobe Flash Player JPG Embedded SWF Processing Heap Overflow
	Sources:	Secunia Advisory: SA28161
	Vulnerable Systems:	Adobe Systems Macromedia Flash Player 7.0.70.0 and prior Adobe Systems Macromedia Flash Player 8.0.35.0 and prior Adobe Systems Macromedia Flash Player 9.0.48.0 and prior

CPAI-2007-365
	Date:
	Severity:
	Description:	Update Protection against ClamAV libclamav MEW PE File Handling Integer Overflow
	Sources:	Secunia Advisory: SA28117
	Vulnerable Systems:	ClamAV Project ClamAV 0.91.2 and prior

CPAI-2007-364
	Date:
	Severity:
	Description:	Update Protection against Apache mod_imap and mod_imagemap Module Cross-Site Scripting
	Sources:	Secunia Advisory: SA28046
	Vulnerable Systems:	Apache Software Foundation HTTP Server 1.3.0 - 1.3.39 Apache Software Foundation HTTP Server 2.0.35 - 2.0.61 Apache Software Foundation HTTP Server 2.2.0 - 2.2.6

CPAI-2007-363
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer DOM Object Cache Management Memory Corruption (MS07-069)
	Sources:	Microsoft Scurity Bulletin MS07-069
	Vulnerable Systems:	Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7.0

CPAI-2007-362
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer Clone Object Reference Memory Corruption (MS07-069)
	Sources:	Microsoft Scurity Bulletin MS07-069
	Vulnerable Systems:	Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7.0

CPAI-2007-361
	Date:
	Severity:
	Description:	Update Protection against Microsoft DirectX WAV and AVI File Parsing Code Execution (MS07-064)
	Sources:	Microsoft Scurity Bulletin MS07-064
	Vulnerable Systems:	Microsoft DirectX 7.0 Microsoft DirectX 8.1 Microsoft DirectX 9.0c Microsoft DirectX 10

CPAI-2007-360
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer DHTML Objects Memory Corruption (MS07-069)
	Sources:	Microsoft Scurity Bulletin MS07-069
	Vulnerable Systems:	Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7.0

CPAI-2007-359
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer Object Reference Counting Memory Corruption (MS07-069)
	Sources:	Microsoft Scurity Bulletin MS07-069
	Vulnerable Systems:	Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7.0

CPAI-2007-357
	Date:
	Severity:
	Description:	Update Protection against 3ivx MPEG-4 MP4 File Handling Stack Overflow
	Sources:	Secunia Advisory: SA27998
	Vulnerable Systems:	3ivx Technologies MPEG-4 5.0.1 and possibly prior

CPAI-2007-356
	Date:
	Severity:
	Description:	Update Protection against Skype skype4com URI Handler Remote Heap Corruption
	Sources:	Secunia Advisory: SA27934
	Vulnerable Systems:	Skype Technologies Skype prior to 3.6 Gold

CPAI-2007-355
	Date:
	Severity:
	Description:	Update Protection against Squid Proxy Cache Update Denial of Service
	Sources:	Secunia Advisory: SA27910
	Vulnerable Systems:	Squid Project Squid 2.x prior to 2.6.STABLE17

CPAI-2007-353
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Notes Lotus 1-2-3 Work Sheet File Viewer Buffer Overflow
	Sources:	Secunia Advisory: SA27835
	Vulnerable Systems:	IBM Lotus Notes 5.x IBM Lotus Notes 6.x IBM Lotus Notes 7.x IBM Lotus Notes 8.x

CPAI-2007-352
	Date:
	Severity:
	Description:	Update Protection against Mozilla Firefox Layout Frame Constructor Memory Corruption
	Sources:	Secunia Advisory: SA27725
	Vulnerable Systems:	Mozilla Foundation Firefox 2.0.0.9 and prior Mozilla Foundation SeaMonkey 1.1.6 and prior

CPAI-2007-350
	Date:
	Severity:
	Description:	Update Protection against Microsoft Office Jet Engine MDB File Parsing Buffer Overflow
	Sources:	Secunia Advisory: SA14896
	Vulnerable Systems:	Microsoft Jet Engine (msjet40.dll) 4.0.8618.0

CPAI-2007-349
	Date:
	Severity:
	Description:	Update Protection against Samba WINS Server Name Registration Handling Stack Buffer Overflow
	Sources:	Secunia Advisory: SA27450
	Vulnerable Systems:	Samba Team Samba 3.0.x prior to 3.0.27

CPAI-2007-348
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime Color Table Atom Movie File Handling Heap Corruption
	Sources:	Secunia Advisory: SA27523
	Vulnerable Systems:	Apple Computer Quicktime prior to 7.3

CPAI-2007-347
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime Panorama Sample Atoms Movie File Handling Buffer Overflow
	Sources:	Secunia Advisory: SA27523
	Vulnerable Systems:	Apple Computer Quicktime prior to 7.3

CPAI-2007-346
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime STSD Atoms Handling Heap Overflow
	Sources:	Secunia Advisory: SA27523
	Vulnerable Systems:	Apple Computer QuickTime prior to 7.3

CPAI-2007-344
	Date:
	Severity:
	Description:	Update Protection against RealNetworks RealPlayer RealMedia File Format Processing Heap Corruption
	Sources:	Secunia Advisory: SA27361
	Vulnerable Systems:	RealNetworks RealPlayer 8 RealNetworks RealPlayer 10 RealNetworks RealPlayer 10.5 RealNetworks RealOne Player V1 RealNetworks RealOne Player V2 RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)

CPAI-2007-343
	Date:
	Severity:
	Description:	Update Protection against RealNetworks RealPlayer Multiple Products RA File Processing Heap Overflow
	Sources:	Secunia Advisory: SA27361
	Vulnerable Systems:	RealNetworks Mac RealPlayer 10.1 (prior to build 10.0.0.503) RealNetworks Linux RealPlayer 10 (prior to build 10.0.9) RealNetworks RealPlayer 8 RealNetworks RealPlayer 10 RealNetworks RealPlayer 10.5 RealNetworks RealOne Player V1 RealNetworks RealOne Player V2 RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)

CPAI-2007-342
	Date:
	Severity:
	Description:	Update Protection against RealNetworks RealPlayer MP3 Files Processing Buffer Overflow
	Sources:	Secunia Advisory: SA27361
	Vulnerable Systems:	RealNetworks RealPlayer 10 RealNetworks RealPlayer 10.5 RealNetworks RealOne Player V1 RealNetworks RealOne Player V2 RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)

CPAI-2007-341
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Notes HTML Message Handling Buffer Overflow
	Sources:	Secunia Advisory: SA27279
	Vulnerable Systems:	IBM Lotus Notes Prior to 6.5 IBM Lotus Notes Prior to 7.0.3 IBM Lotus Notes Prior to 8.0

CPAI-2007-340
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Notes MIF Attachment Viewer Buffer Overflow
	Sources:	Secunia Advisory: SA27279
	Vulnerable Systems:	IBM Lotus Notes 6.5 IBM Lotus Notes 7.0 prior to 7.0.3

CPAI-2007-339
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Notes WPD Attachment Viewer Buffer Overflow
	Sources:	Secunia Advisory: SA27279
	Vulnerable Systems:	IBM Lotus Notes 6.5 IBM Lotus Notes 7.x prior to 7.0.3 IBM Lotus Notes 8.x prior to 8.0.1

CPAI-2007-338
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Notes DOC Attachment Viewer Buffer Overflow
	Sources:	Secunia Advisory: SA27279
	Vulnerable Systems:	IBM Lotus Notes 6.5 IBM Lotus Notes 7.0 prior to 7.0.3

CPAI-2007-336
	Date:
	Severity:
	Description:	Update Protection against Mozilla Firefox XBL Event Handler Tags Removal Memory Corruption
	Sources:	Secunia Advisory: SA27311
	Vulnerable Systems:	Mozilla Foundation Firefox Prior to 2.0.0.8

CPAI-2007-331
	Date:
	Severity:
	Description:	Update Protection against Adobe Pagemaker MAIPM6.DLL Long Font Name Buffer Overflow
	Sources:	Adobe Security Bulletin APSB07-15
	Vulnerable Systems:	Adobe Systems Pagemaker 7.0.1 Adobe Systems Pagemaker 7.0.2

CPAI-2007-330
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer Error Handling Code Execution (MS07-057)
	Sources:	Microsoft Scurity Bulletin MS07-057
	Vulnerable Systems:	Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7.0

CPAI-2007-329
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows SharePoint Services Cross Site Scripting (MS07-059)
	Sources:	Microsoft Scurity Bulletin MS07-059
	Vulnerable Systems:	Microsoft Office SharePoint Server 2007 Microsoft Office SharePoint Server 2007 x64 Edition Microsoft Windows SharePoint Services 3.0

CPAI-2007-328
	Date:
	Severity:
	Description:	Update Protection against Outlook Express and Windows Mail NNTP Handling Code Execution (MS07-056)
	Sources:	Secunia Advisory: SA27112
	Vulnerable Systems:	Microsoft Outlook Express 5.5 Microsoft Outlook Express 6 Microsoft Windows Mail

CPAI-2007-327
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Kodak Image Viewer Code Execution (MS07-055)
	Sources:	Microsoft Scurity Bulletin MS07-055
	Vulnerable Systems:	Microsoft Windows 2000 Server Service Pack 4 Microsoft Windows XP Service Pack 2 Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 Service Pack 2

CPAI-2007-320
	Date:
	Severity:
	Description:	Update Protection against Microsoft Agent Crafted URL Stack Buffer Overflow (MS07-051)
	Sources:	Microsoft Scurity Bulletin MS07-051
	Vulnerable Systems:	Microsoft Agent 2.0.0.3425 and prior

CPAI-2007-319
	Date:
	Severity:
	Description:	Update Protection against Lighttpd mod_fastcgi Extension CGI Variable Overwriting
	Sources:	Secunia Advisory: SA26732
	Vulnerable Systems:	Lighttpd Project Lighttpd 1.4.17 and Prior

CPAI-2007-317
	Date:
	Severity:
	Description:	Update Protection against Microsoft Visual Basic 6.0 VBP Project File Handling Buffer Overflow
	Sources:	Secunia Advisory: SA26704
	Vulnerable Systems:	Microsoft Visual Basic 6.0

CPAI-2007-316
	Date:
	Severity:
	Description:	Update Protection against ClamAV Mail Filter Extension Crafted Recipient Command Execution
	Sources:	Secunia Advisory: SA26530
	Vulnerable Systems:	ClamAV Project Clam AntiVirus prior to 0.91.2

CPAI-2007-315
	Date:
	Severity:
	Description:	Update Protection against Microsoft MSN Messenger and Windows Live Messenger Code Execution
	Sources:	Secunia Advisory: SA26570
	Vulnerable Systems:	Microsoft MSN Messenger 6.2 Microsoft MSN Messenger 7.0 Microsoft MSN Messenger 7.5 Microsoft Windows Live Messenger 8.0

CPAI-2007-314
	Date:
	Severity:
	Description:	Update Protection against RealNetworks Helix DNA Server RTSP Service Heap Overflow
	Sources:	Secunia Advisory: SA26609
	Vulnerable Systems:	RealNetworks Helix DNA Server 11.x prior to 11.1.4

CPAI-2007-312
	Date:
	Severity:
	Description:	Update Protection against Mercury Mail Transport System SMTP AUTH CRAM-MD5 Buffer Overflow
	Sources:	Secunia Advisory: SA26519
	Vulnerable Systems:	Pegasus Mail Mercury Mail Transport System 4.51 and prior

CPAI-2007-311
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Vista Feed Headlines Gadget Code Execution (MS07-048)
	Sources:	Secunia Advisory: SA26439
	Vulnerable Systems:	Microsoft Windows Vista Microsoft Windows Vista x64 Edition

CPAI-2007-310
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Media Player Skin Decompression Code Execution
	Sources:	Secunia Advisory: SA26433
	Vulnerable Systems:	Microsoft Windows Media Player 7.1 Microsoft Windows Media Player 9.0 Microsoft Windows Media Player 10 Microsoft Windows Media Player 11

CPAI-2007-309
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer Vector Markup Language VGX Buffer Overflow
	Sources:	Microsoft Scurity Bulletin 938127
	Vulnerable Systems:	Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7

CPAI-2007-308
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Graphics Rendering Engine Code Execution (MS07-046)
	Sources:	Microsoft Scurity Bulletin MS07-046
	Vulnerable Systems:	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003

CPAI-2007-307
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer CSS Strings Parsing Memory Corruption (MS07-045)
	Sources:	Microsoft Scurity Bulletin MS07-045
	Vulnerable Systems:	Microsoft Internet Explorer 5.01

CPAI-2007-306
	Date:
	Severity:
	Description:	Update Protection against Microsoft OLE Automation String Manipulation Heap Overflow (MS07-043)
	Sources:	Secunia Advisory: SA26449
	Vulnerable Systems:	Microsoft Office 2004 for Mac Microsoft Visual Basic 6.0 Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows XP Professional x64 Microsoft Windows Server 2003 Microsoft Windows Server 2003 for Itanium-based Systems Microsoft Windows Server 2003 x64 Edition

CPAI-2007-305
	Date:
	Severity:
	Description:	Update Protection against Microsoft XML Core Services Memory Corruption (MS07-042)
	Sources:	Microsoft Scurity Bulletin ms07-042
	Vulnerable Systems:	Microsoft XML Core Services 3.0 Microsoft XML Core Services 4.0 Microsoft XML Core Services 5.0 Microsoft XML Core Services 6.0

CPAI-2007-302
	Date:
	Severity:
	Description:	Update Protection against Apple Safari Regular Expression Heap Buffer Overflow
	Sources:	Secunia Advisory: SA26287
	Vulnerable Systems:	Apple Safari Prior to 3.0.3

CPAI-2007-301
	Date:
	Severity:
	Description:	Update Protection against Ipswitch IMail Server IMAP SUBSCRIBE Command Stack Buffer Overflow
	Sources:	Secunia Advisory: SA26123
	Vulnerable Systems:	Ipswitch IMail 2006 prior to 2006.21 Ipswitch IMail Plus 2006 prior to 2006.21 Ipswitch IMail Premium 2006 prior to 2006.21

CPAI-2007-300
	Date:
	Severity:
	Description:	Update Protection against Ipswitch IMail Server Imailsec.dll Heap Buffer Overflow
	Sources:	Secunia Advisory: SA26123
	Vulnerable Systems:	Ipswitch IMail 2006 prior to 2006.21 Ipswitch IMail Plus 2006 prior to 2006.21 Ipswitch IMail Premium 2006 prior to 2006.21

CPAI-2007-299
	Date:
	Severity:
	Description:	Update Protection against Microsoft DirectX RLE Compressed Targa Image File Heap Overflow
	Sources:	Secunia Advisory: SA26131
	Vulnerable Systems:	Microsoft DirectX End User Runtime 9.0c Microsoft DirectX End User Runtime prior to October 2006 Microsoft DirectX SDK prior to October 2006

CPAI-2007-298
	Date:
	Severity:
	Description:	Update Protection against Oracle Database SQL Compiler Access Control Security Bypass
	Sources:	Secunia Advisory: SA26114
	Vulnerable Systems:	Oracle Oracle Database 10.1.0.5 Oracle Oracle Database 10.2.0.3 Oracle Oracle Database 9.0.1.5+ Oracle Oracle Database 9.2.0.8 Oracle Oracle Database 9.2.0.8DV

CPAI-2007-296
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer OnBeforeUnload JavaScript Address Bar Spoofing (MS07-057)
	Sources:	Microsoft Scurity Bulletin MS07-057
	Vulnerable Systems:	Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7

CPAI-2007-295
	Date:
	Severity:
	Description:	Update Protection against IPSwitch WS_FTP Logging Server Daemon Denial of Service
	Sources:	Secunia Advisory: SA26040
	Vulnerable Systems:	Ipswitch WS_FTP Server 6.0 and priors

CPAI-2007-294
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime SMIL File Handling Integer Overflow
	Sources:	Secunia Advisory: SA26034
	Vulnerable Systems:	Apple QuickTime prior to 7.2

CPAI-2007-293
	Date:
	Severity:
	Description:	Update Protection against Adobe Flash Player FLV Processing Buffer Overflow
	Sources:	Adobe Security Bulletin APSB07-12
	Vulnerable Systems:	Adobe Flash Player 9.0.45.0 and prior

CPAI-2007-291
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel rtWindow1 Record Handling Code Execution
	Sources:	Microsoft Scurity Bulletin MS07-036
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003

CPAI-2007-290
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Sheet Name Memory Corruption
	Sources:	SecurityFocus Bugtraq ID: 24691
	Vulnerable Systems:	Microsoft Excel 2003 Microsoft Excel 2002 Microsoft Excel 2000

CPAI-2007-289
	Date:
	Severity:
	Description:	Update Protection against RealNetworks Multiple Products SMIL wallclock Stack Overflow
	Sources:	Secunia Advisory: SA25819
	Vulnerable Systems:	RealNetworks Helix Player 10.5 Gold and possibly prior RealNetworks RealPlayer 10.5 Gold and possibly prior

CPAI-2007-288
	Date:
	Severity:
	Description:	Update Protection against MIT Kerberos kadmind Rename Principal Buffer Overflow
	Sources:	Secunia Advisory: SA25800
	Vulnerable Systems:	MIT Kerberos krb5-1.6.1 and prior

CPAI-2007-286
	Date:
	Severity:
	Description:	Update Protection against Ingres Database uuid_from_char Stack Buffer Overflow
	Sources:	Secunia Advisory: SA25756
	Vulnerable Systems:	Ingres Ingres Database 2.x Ingres Ingres Database 3.x

CPAI-2007-285
	Date:
	Severity:
	Description:	Update Protection against OpenOffice RTF File Parsing Heap Buffer Overflow
	Sources:	Secunia Advisory: SA25648
	Vulnerable Systems:	OpenOffice.org OpenOffice 2.2.0 and prior Sun Microsystems StarOffice 6.0 Sun Microsystems StarOffice 7 Sun Microsystems StarOffice 8 Sun Microsystems StarSuite 6.0 Sun Microsystems StarSuite 7 Sun Microsystems StarSuite 8

CPAI-2007-284
	Date:
	Severity:
	Description:	Update Protection against Microsoft Visio Packed Object Parsing Memory Corruption
	Sources:	Microsoft Scurity Bulletin 927051
	Vulnerable Systems:	Microsoft Visio 2002 Microsoft Visio 2003

CPAI-2007-282
	Date:
	Severity:
	Description:	Update Protection against Microsoft Visio Version Number Handling Code Execution (MS07-030)
	Sources:	Microsoft Scurity Bulletin 927051
	Vulnerable Systems:	Microsoft Visio 2002 Service Pack 2 Microsoft Visio 2003 Service Pack 2

CPAI-2007-281
	Date:
	Severity:
	Description:	Update Protection against Yahoo! Messenger Webcam ActiveX Control Stack Buffer Overflow
	Sources:	Secunia Advisory: SA25547
	Vulnerable Systems:	Yahoo! Messenger 8.1.0.249 and prior

CPAI-2007-280
	Date:
	Severity:
	Description:	Update Protection against Mozilla Products SVG Layout Engine Index Parameter Memory Corruption
	Sources:	Secunia Advisory: SA25469
	Vulnerable Systems:	Mozilla Foundation Firefox 1.5.x, prior to 1.5.0.12 Mozilla Foundation Firefox 2.0.x, prior to 2.0.0.4 Mozilla Foundation SeaMonkey 1.0.x, prior to 1.0.8 Mozilla Foundation SeaMonkey 1.1.x, prior to 1.1.2 Mozilla Foundation Thunderbird 1.5.x, prior to 1.5.0.12 Mozilla Foundation Thunderbird 2.0.x, prior to 2.0.0.4

CPAI-2007-279
	Date:
	Severity:
	Description:	Update Protection against Mozilla Products Overflow Event Handling Memory Corruption
	Sources:	Secunia Advisory: SA25469
	Vulnerable Systems:	Mozilla Foundation Firefox 1.5.x, prior to 1.5.0.12 Mozilla Foundation Firefox 2.0.x, prior to 2.0.0.4 Mozilla Foundation SeaMonkey 1.0.x, prior to 1.0.8 Mozilla Foundation SeaMonkey 1.1.x, prior to 1.1.2 Mozilla Foundation Thunderbird 1.5.x, prior to 1.5.0.12 Mozilla Foundation Thunderbird 2.0.x, prior to 2.0.0.4

CPAI-2007-277
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup caloggerd.exe Null Hostname Denial of Service
	Sources:	Secunia Advisory: SA25300
	Vulnerable Systems:	CA BrightStor ARCserve Backup 11.5.2.0 SP2 and possibly prior

CPAI-2007-276
	Date:
	Severity:
	Description:	Update Protection against Sun JDK Hard Coded Image in Java File
	Sources:	Secunia Advisory: SA25295
	Vulnerable Systems:	Sun Microsystems Java Development Kit 1.5.x before 1.5.0_11-b03 Sun Microsystems Java Development Kit 1.6.x before 1.6.0_01-b06

CPAI-2007-275
	Date:
	Severity:
	Description:	Update Protection against Symantec Discovery XFERWAN Service Buffer Overflow
	Sources:	Secunia Advisory: SA24281
	Vulnerable Systems:	Symantec Discovery 6.5 and prior

CPAI-2007-274
	Date:
	Severity:
	Description:	Update Protection against Samba LSA RPC lsa_io_trans_names Request Handling Heap Overflow
	Sources:	Secunia Advisory: SA25232
	Vulnerable Systems:	Samba Team Samba 3.0.0 to 3.0.25rc3 (inclusive)

CPAI-2007-273
	Date:
	Severity:
	Description:	Update Protection against Samba SPOOLSS smb_io_notify_option_type_data Request Buffer Overflow
	Sources:	Secunia Advisory: SA25232
	Vulnerable Systems:	Samba Team Samba 3.x, 3.0.25rc3 and prior

CPAI-2007-272
	Date:
	Severity:
	Description:	Update Protection against Samba LSA LsarAddPrivilegesToAccount Crafted Request Handling Heap Overflow
	Sources:	Secunia Advisory: SA25232
	Vulnerable Systems:	Samba Team Samba 3.0.0 to 3.0.25rc3 (inclusive)

CPAI-2007-270
	Date:
	Severity:
	Description:	Update Protection against Microsoft Internet Explorer 7 HTML Object Memory Corruption
	Sources:	Microsoft Scurity Bulletin 931768
	Vulnerable Systems:	Microsoft Internet Explorer 7

CPAI-2007-269
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Malformed Filter Records Handling Code Execution (MS07-023)
	Sources:	Microsoft Scurity Bulletin MS07-023
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003

CPAI-2007-268
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Set Font Handling Code Execution (MS07-023)
	Sources:	Microsoft Scurity Bulletin MS07-023
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel 2007 Microsoft Excel Viewer 2003

CPAI-2007-267
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel File Named Graph Record Parsing Stack Overflow (MS07-023)
	Sources:	Microsoft Scurity Bulletin MS07-023
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel Viewer 2003

CPAI-2007-266
	Date:
	Severity:
	Description:	Update Protection against Microsoft Word Array Data Handling Buffer Overflow (MS07-024)
	Sources:	Microsoft Scurity Bulletin MS07-024
	Vulnerable Systems:	Microsoft Word 2000 Microsoft Word 2002 Microsoft Word 2003 Microsoft Word Viewer 2003

CPAI-2007-264
	Date:
	Severity:
	Description:	Update Protection against Nullsoft Winamp MP4 Files Handling Memory Corruption
	Sources:	Secunia Advisory: SA25089
	Vulnerable Systems:	Nullsoft Winamp 5.34 and prior

CPAI-2007-263
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime MOV File JVTCompEncodeFrame Heap Overflow
	Sources:	SecurityFocus Bugtraq ID: 23650
	Vulnerable Systems:	Apple QuickTime 7.1.5 and prior

CPAI-2007-262
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Media Server SUN RPC Denial of Service
	Sources:	Secunia Advisory: SA24972
	Vulnerable Systems:	CA BrightStor ARCserve Backup v9.01 CA BrightStor ARCserve Backup r11.0 CA BrightStor ARCserve Backup r11.1 CA BrightStor ARCserve Backup r11.5 CA BrightStor Enterprise Backup r10.0

CPAI-2007-260
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime for Java toQTPointer Function Memory Corruption
	Sources:	Secunia Advisory: SA25011
	Vulnerable Systems:	Apple QuickTime 7.1.5 and prior

CPAI-2007-259
	Date:
	Severity:
	Description:	Update Protection against ACD Systems ACDSee Products XPM File Handling Buffer Overflow
	Sources:	Secunia Advisory: SA24994
	Vulnerable Systems:	ACD Systems ACDSee 9.0 Build 108 and prior ACD Systems ACDSee Photo Editor 4.0 Build 195 and prior ACD Systems ACDSee Pro 8.1 Build 99 and prior

CPAI-2007-257
	Date:
	Severity:
	Description:	Update Protection against Novell GroupWise WebAccess Basic Authentication Buffer Overflow
	Sources:	Secunia Advisory: SA24944
	Vulnerable Systems:	Novell GroupWise 7.0 prior to SP2

CPAI-2007-255
	Date:
	Severity:
	Description:	Update Protection against McAfee VirusScan On-Access Scanner Long Filename Handling Buffer Overflow
	Sources:	Secunia Advisory: SA24914
	Vulnerable Systems:	McAfee VirusScan Enterprise 8.0i Patch 11 and prior

CPAI-2007-254
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows HLP File Handling Heap Buffer Overflow
	Sources:	SecurityFocus Bugtraq ID: 23382
	Vulnerable Systems:	Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003

CPAI-2007-252
	Date:
	Severity:
	Description:	Update Protection against MIT Kerberos V5 KAdminD klog_vsyslog Server Stack Buffer Overflow
	Sources:	Secunia Advisory: SA24740
	Vulnerable Systems:	MIT Kerberos Project Kerberos Prior to krb5-1.6.1

CPAI-2007-249
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Vista Windows Mail File Execution (MS07-034)
	Sources:	Microsoft Scurity Bulletin MS07-034
	Vulnerable Systems:	Microsoft Windows Mail 6.0.6000.16386 and prior

CPAI-2007-245
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer 7 Canceled Page Cross-Site Scripting (MS07-033)
	Sources:	Microsoft Scurity Bulletin MS07-033
	Vulnerable Systems:	Microsoft Internet Explorer 7

CPAI-2007-244
	Date:
	Severity:
	Description:	Update Protection against Apache Tomcat URIencoding Directory Traversal
	Sources:	SecurityFocus Bugtraq ID: 22960
	Vulnerable Systems:	Apache Software Foundation Tomcat prior to 5.5.22 Apache Software Foundation Tomcat prior to 6.0.10

CPAI-2007-243
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime udta Atom Parsing Heap Overflow
	Sources:	Secunia Advisory: SA24359
	Vulnerable Systems:	Apple QuickTime Prior to 7.1.5

CPAI-2007-242
	Date:
	Severity:
	Description:	Update Protection against Mozilla Browsers JavaScript Argument Passing Code Execution Vulnerability
	Sources:	Secunia Advisory: SA24205
	Vulnerable Systems:	Mozilla Foundation Firefox Prior to 1.5.0.10 Mozilla Foundation Firefox Prior to 2.0.0.2 Mozilla Foundation SeaMonkey Prior to 1.0.8 Mozilla Foundation Thunderbird Prior to 1.5.0.10

CPAI-2007-241
	Date:
	Severity:
	Description:	Update Protection against CA eTrust Intrusion Detection Encryption Key Handling Denial of Service
	Sources:	Secunia Advisory: SA24309
	Vulnerable Systems:	CA eTrust Intrusion Detection 2.0 SP1 CA eTrust Intrusion Detection 3.0 CA eTrust Intrusion Detection 3.0 SP1

CPAI-2007-238
	Date:
	Severity:
	Description:	Update Protection against Internet Explorer onunload event memory corruption
	Sources:	SecurityFocus Bugtraq ID: 22678
	Vulnerable Systems:	Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7

CPAI-2007-237
	Date:
	Severity:
	Description:	Update Protection against Microsoft Word Document Stream Handling Code Execution (MS07-024)
	Sources:	Microsoft Scurity Bulletin MS07-024
	Vulnerable Systems:	Microsoft Word 2000 Microsoft Word 2002

CPAI-2007-235
	Date:
	Severity:
	Description:	Update Protection against Microsoft Office Drawing Record msofbtOPT Code Execution (MS07-015)
	Sources:	Microsoft Scurity Bulletin MS07-015
	Vulnerable Systems:	Microsoft Office 2000 Service Pack 3 Microsoft Office 2003 Service Pack 1 Microsoft Office 2003 Service Pack 2 Microsoft Office 2004 for Mac Microsoft Office v. X for Mac Microsoft Office XP Service Pack 3 Microsoft Project 2000 Service Release 1 Microsoft Project 2002 Service Pack 1 Microsoft Visio 2002 Service Pack 2

CPAI-2007-234
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime Color Table ID Heap Corruption
	Sources:	Secunia Advisory: SA24359
	Vulnerable Systems:	Apple QuickTime Prior to 7.1.5

CPAI-2007-233
	Date:
	Severity:
	Description:	Update Protection against CA BrightStor ARCserve Backup Portmapper TADDR2UADDR Denial of Service
	Sources:	Secunia Advisory: SA24009
	Vulnerable Systems:	Computer Associates BrightStor ARCserve Backup r11.1 Computer Associates BrightStor ARCserve Backup r11.5

CPAI-2007-230
	Date:
	Severity:
	Description:	Update Protection against Microsoft Word Section Table Array Buffer Overflow (MS07-14)
	Sources:	Microsoft Scurity Bulletin MS07-14
	Vulnerable Systems:	Microsoft Word 2000 Microsoft Word 2002 Microsoft Word 2003 Microsoft Word 2004 for Mac Microsoft Word Viewer 2003 Microsoft Works Suite 2004 Microsoft Works Suite 2005 Microsoft Works Suite 2006

CPAI-2007-229
	Date:
	Severity:
	Description:	Update Protection against Apple Mac OS X Installer Package Filename Format String
	Sources:	SecurityFocus Bugtraq ID: 22272
	Vulnerable Systems:	Apple Installer 2.1.5

CPAI-2007-228
	Date:
	Severity:
	Description:	Update Protection against ISC BIND DNSSEC Validation Multiple RRsets Denial of Service
	Sources:	Secunia Advisory: SA23904
	Vulnerable Systems:	ISC BIND 9.0.x ISC BIND 9.1.x ISC BIND 9.2.0 - 9.2.7 ISC BIND 9.3.0 - 9.3.3 ISC BIND 9.4.0a1 - 9.4.0a6 ISC BIND 9.4.0b1 - 9.4.0b4 ISC BIND 9.4.0rc1 ISC BIND 9.5.0a1

CPAI-2007-227
	Date:
	Severity:
	Description:	Update Protection against Apple QuickDraw PICT Images ARGB Records Handling Memory Corruption
	Sources:	Secunia Advisory: SA23859
	Vulnerable Systems:	Apple Computer QuickDraw 7.1.3 and possibly other versions

CPAI-2007-226
	Date:
	Severity:
	Description:	Update Protection against Apple Mac OS X iChat AIM URL Format String
	Sources:	SecurityFocus Bugtraq ID: 22146
	Vulnerable Systems:	Apple iChat 3.1.6 (v441) and prior

CPAI-2007-225
	Date:
	Severity:
	Description:	Update Protection against Microsoft Help Workshop HPJ OPTIONS Section Buffer Overflow
	Sources:	Secunia Advisory: SA23862
	Vulnerable Systems:	Microsoft Help Workshop 4.03.0002

CPAI-2007-223
	Date:
	Severity:
	Description:	Update Protection against Microsoft Help Workshop CNT Help Contents Buffer Overflow
	Sources:	Secunia Advisory: SA23862
	Vulnerable Systems:	Microsoft Help Workshop 4.03.0002

CPAI-2007-222
	Date:
	Severity:
	Description:	Update Protection against Sun Java GIF File Handling Memory Corruption
	Sources:	Secunia Advisory: SA23757
	Vulnerable Systems:	Sun Microsystems Java Runtime Environment 1.3.1_18 and prior Sun Microsystems Java Runtime Environment 1.4.2_12 and prior Sun Microsystems Java Runtime Environment 5.0 Update 9 and prior

CPAI-2007-221
	Date:
	Severity:
	Description:	Update Protection against Squid Proxy FTP URI Processing Denial of Service
	Sources:	Secunia Advisory: SA23805
	Vulnerable Systems:	Squid Project Squid Web Proxy Cache 2.6-STABLE6 and prior

CPAI-2007-217
	Date:
	Severity:
	Description:	Update Protection against Apple Computer Finder DMG Volume Name Memory Corruption
	Sources:	SecurityFocus Bugtraq ID: 21980
	Vulnerable Systems:	Apple Computer Finder 10.4.6 and prior versions

CPAI-2007-216
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Malformed Palette Record Memory Corruption (MS07-002)
	Sources:	Microsoft Scurity Bulletin MS07-002
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel 2004 for Mac Microsoft Excel v. X for Mac Microsoft Excel Viewer 2003

CPAI-2007-215
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Column Record Handling Memory Corruption (MS07-002)
	Sources:	Microsoft Scurity Bulletin MS07-002
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel 2004 for Mac Microsoft Excel v. X for Mac Microsoft Excel Viewer 2003

CPAI-2007-214
	Date:
	Severity:
	Description:	Update Protection against MS Outlook iCal Meeting Request VEVENT Record Memory Corruption (MS07-003)
	Sources:	Microsoft Scurity Bulletin MS07-003
	Vulnerable Systems:	Microsoft Outlook 2002 Microsoft Outlook 2003

CPAI-2007-213
	Date:
	Severity:
	Description:	Update Protection against Microsoft Excel Malformed IMDATA Record Buffer Overflow (MS07-002)
	Sources:	Microsoft Scurity Bulletin MS07-002
	Vulnerable Systems:	Microsoft Excel 2000 Microsoft Excel 2002 Microsoft Excel 2003 Microsoft Excel 2004 for Mac Microsoft Excel v. X for Mac Microsoft Excel Viewer 2003

CPAI-2007-212
	Date:
	Severity:
	Description:	Update Protection against Adobe Acrobat Reader PDF Catalog Handling
	Sources:	SecurityFocus Bugtraq ID: 21910
	Vulnerable Systems:	Adobe Systems Acrobat Reader 7.0 and prior

CPAI-2007-211
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime MOV File HREFTrack Cross-Zone Scripting
	Sources:	INSERT_VALUE
	Vulnerable Systems:	Apple Computer QuickTime 7.1.3 and prior Apple Computer iTunes 7.0.2.16 and prior

CPAI-2007-210
	Date:
	Severity:
	Description:	Update Protection against Adobe Acrobat Reader Plugin Crafted URL Double Free
	Sources:	Adobe Security Bulletin APSA07-01
	Vulnerable Systems:	Adobe Acrobat Professional 7.0.8 and prior Adobe Acrobat Reader 7.0.8 and prior Adobe Acrobat Standard 7.0.8 and prior

CPAI-2007-209
	Date:
	Severity:
	Description:	Update Protection against Apple Quicktime RTSP URL Buffer Overflow
	Sources:	Secunia Advisory: SA23540
	Vulnerable Systems:	Apple Quicktime 7.1.3 and prior

CPAI-2007-143
	Date:
	Severity:
	Description:	Update Protections against Recent Malware Threats (30-Dec-07)
	Sources:	http://www.spywareguide.com/product_show.php?id=2636 http://www.spywaresignatures.com/details.php?spyware=bluewaveadultlinks
	Vulnerable Systems:	Microsoft Windows clients

CPAI-2007-142
	Date:
	Severity:
	Description:	Update Protection against Microsoft Windows Media Format ASF Parsing Code Execution Vulnerability (MS07-068)
	Sources:	Microsoft Security Bulletin MS07-068
	Vulnerable Systems:	Microsoft Windows Media Format Runtime 7.1 Microsoft Windows Media Format Runtime 9 Microsoft Windows Media Format Runtime 9.5 Microsoft Windows Media Format Runtime 11 Microsoft Windows Media Format Runtime x64 Edition 9.5 Microsoft Windows Media Services 9.1 Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003

CPAI-2007-141
	Date:
	Severity:
	Description:	Update Protection against Microsoft DirectX SAMI Files Parsing Code Execution Vulnerability (MS07-064)
	Sources:	Microsoft Security Bulletin MS07-064
	Vulnerable Systems:	Microsoft DirectX 6.4 Microsoft DirectX 7.0 Microsoft DirectX 8.1

CPAI-2007-138
	Date:
	Severity:
	Description:	Update Protections against Recent Malware Threats (18-Dec-07)
	Sources:	http://www.spywareremove.com/removeSideFind.html http://www.spywareguide.com/product_show.php?id=481 http://www.spywareguide.com/spydet_2594_gralicwrap.html http://www.spywareguide.com/spydet_3785_personal_web.html http://www.spywareguide.com/spydet_1253_browseracclerator.html http://www.spywareguide.com/spydet_2535_sexyvideoscreensaver.html http://research.sunbelt-software.com/threatdisplay.aspx?name=Trojan-Downloader.Delf.AMB&threatid=123651
	Vulnerable Systems:	Microsoft Windows clients

CPAI-2007-137
	Date:
	Severity:
	Description:	Update Protection against Apple QuickTime Crafted RTSP Response Buffer Overflow Vulnerability
	Sources:	Secunia Advisory: SA27755
	Vulnerable Systems:	Apple QuickTime 7.3 and prior

CPAI-2007-136
	Date:
	Severity:
	Description:	Update Protection against FLAC Project libFLAC Picture Buffer Overflow Vulnerability
	Sources:	Secunia Advisory: SA27210
	Vulnerable Systems:	FLAC Project libFLAC Prior to 1.2.1

CPAI-2007-366
	Date:
	Severity:
	Description:	Update Protection against IBM Lotus Domino Web Access ActiveX Controls Buffer Overflow
	Sources:	Secunia Advisory: SA28184
	Vulnerable Systems:	IBM Lotus Domino Web Access 6.x IBM Lotus Domino Web Access 7.x

CPAI-2007-354
	Date:
	Severity:
	Description:	Update Protection against ACD Systems ACDSee Products XPM Values Section Buffer Overflow
	Sources:	SecurityFocus Bugtraq ID: 26554
	Vulnerable Systems:	ACDSee Systems ACDSee Photo Editor 4.0 build 195 and priors ACDSee Systems ACDSee Photo Manager 8.1 build 99 and priors ACDSee Systems ACDSee Photo Manager 9.0 build 108 and priors

CPAI-2007-351
	Date:
	Severity:
	Description:	Update Protection against BitDefender Online Scanner ActiveX Control Buffer Overflow
	Sources:	Secunia Advisory: SA27717
	Vulnerable Systems:	SOFTWIN BitDefender Online Scanner 8.0

CPAI-2007-321
	Date:
	Severity:
	Description:	Update Protection against OpenOffice TIFF File Parsing Integer Overflow
	Sources:	Secunia Advisory: SA26839
	Vulnerable Systems:	OpenOffice.org OpenOffice Prior to 2.3.0

CPAI-2007-303
	Date:
	Severity:
	Description:	Update Protection against CA Products AV Engine CHM File Handling Denial of Service
	Sources:	Secunia Advisory: SA26155
	Vulnerable Systems:	CA Anti-Spyware 2007 CA Anti-Virus 2007 Version 8 CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.0 CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 8 CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 8.1 CA Anti-Virus Gateway (Formerly eTrust Antivirus eTrust Antivirus Gateway) 7.1 CA Anti-Virus SDK (Formerly eTrust Anti-Virus SDK) CA BrightStor ARCserve Backup 9.01 CA BrightStor ARCserve Backup 11 CA BrightStor ARCserve Backup 11.1 CA BrightStor ARCserve Backup 11.5 CA BrightStor ARCserve Client agent for Windows CA BrightStor Enterprise Backup 10.5 CA Common Services(CCS) r11 CA Common Services(CCS) r11.1 CA eTrust EZ Antivirus 6.1 CA eTrust EZ Antivirus 7 CA eTrust EZ Armor 1 CA eTrust EZ Armor 2 CA eTrust EZ Armor 3.x CA eTrust Internet Security Suite 1 CA eTrust Internet Security Suite 2 CA eTrust Intrusion Detection 2.0 SP1 CA eTrust Intrusion Detection 3.0 CA eTrust Intrusion Detection 3.0 SP1 CA Protection Suites 2 CA Protection Suites 3 CA Secure Content Manager (Formerly eTrust Secure Content Manager) 1.1 CA Secure Content Manager (Formerly eTrust Secure Content Manager) 8.0 CA Threat Manager for the Enterprise (Formerly eTrust Integrated Threat Management) 8 CA Unicenter Network and Systems Management (NSM) 3.0 CA Unicenter Network and Systems Management (NSM) 3.1 CA Unicenter Network and Systems Management (NSM) 11 CA Unicenter Network and Systems Management (NSM) 11.1 CA Anti-Spyware for the Enterprise (Formerly eTrust PestPatrol) 8 CA Anti-Spyware for the Enterprise (Formerly eTrust PestPatrol) 8.1 CA Internet Security Suite 2007 Version 3 CA Threat Manager for the Enterprise (formerly eTrust Integrated Threat Management) 8 CA Threat Manager for the Enterprise (formerly eTrust Integrated Threat Management) 8.1

CPAI-2007-292
	Date:
	Severity:
	Description:	Update Protection against Microsoft Publisher 2007 conversion library code execution (MS07-037)
	Sources:	Microsoft Scurity Bulletin MS07-037
	Vulnerable Systems:	Microsoft Publisher 2007

CPAI-2007-253
	Date:
	Severity:
	Description:	Update Protection against Yahoo Messenger AudioConf ActiveX Control Buffer Overflow
	Sources:	Secunia Advisory: SA24742
	Vulnerable Systems:	Yahoo! Yahoo! Messenger 5.x Yahoo! Yahoo! Messenger 6.x Yahoo! Yahoo! Messenger 7.x Yahoo! Yahoo! Messenger 8.x prior to 8.1.0.249

CPAI-2007-248
	Date:
	Severity:
	Description:	Update Protection against Digium Asterisk SIP Invalid Response Code Denial of Service
	Sources:	Secunia Advisory: SA24579
	Vulnerable Systems:	Digium Asterisk 1.2.x prior to 1.2.18 Digium Asterisk 1.4.x prior to 1.4.3 Digium Asterisk Appliance Developer Kit 0.x.x prior to 0.4.0 Digium Asterisk Business Edition A.x.x all releases Digium Asterisk Business Edition B.x.x prior and including B.1.3.2 Digium AsteriskNOW Prior and including Beta 5

CPAI-2007-239
	Date:
	Severity:
	Description:	Update Protection against Mozilla Network Security Services SSLv2 client integer underflow
	Sources:	Secunia Advisory: SA24253
	Vulnerable Systems:	Mozilla Foundation Firefox Prior to 1.5.0.10 Mozilla Foundation Firefox Prior to 2.0.0.2 Mozilla Foundation SeaMonkey Prior to 1.0.8 Mozilla Foundation Thunderbird Prior to 1.5.0.10

CPAI-2007-208
	Date:
	Severity:
	Description:	IPS-1 Protection Update - Authentication (v 15), DDOS (v 12), DHCP (v 8), Enterprise Software (v 2), Finger (v 10), FTP (v 23), IRC (v 13), LPD (v 11)
	Sources:
	Vulnerable Systems:

CPAI-2007-135
	Date:
	Severity:
	Description:	Preemptive Protection against Apache HTTP Server 413 Error Page Cross-Site Scripting Vulnerability
	Sources:	Secunia Advisory: SA27906
	Vulnerable Systems:	Apache version 2.0.46 (Red Hat) Apache version 2.0.51 (Fedora) Apache version 2.0.55 (Ubuntu) Apache version 2.0.59 (Unix) Apache version 2.2.3 (FreeBSD) Apache version 2.2.4 (Linux/SUSE)

CPAI-2007-134
	Date:
	Severity:
	Description:	Integrity Clientless Security (ICS) Update 3.7.193.0
	Sources:	SmartDefense Research Center
	Vulnerable Systems:	Microsoft Windows clients

Defense Updates


CPAI-2007-143
	Date:
	Update Number:	541071227 (VPN-1 NG R54/R55) 591071227 (VPN-1 NGX R60) 602071227 (VPN-1 NGX R61/R62/R65) 591071227 (VPN-1 VSX NGX) 592071227 (InterSpect NGX)
	Description:	Protections against Recent Malware Threats (30-Dec-07)


CPAI-2007-142
	Date:
	Update Number:	541071227 (VPN-1 NG R55 Only) 591071227 (VPN-1 NGX R60) 602071227 (VPN-1 NGX R61/R62/R65) 591071227 (VPN-1 VSX NGX) 592071227 (InterSpect NGX)
	Description:	Microsoft Windows Media Format ASF Parsing Vulnerability (MS07-068)


CPAI-2007-141
	Date:
	Update Number:	591071227 (VPN-1 NGX R60) 602071227 (VPN-1 NGX R61/R62/R65)
	Description:	Microsoft DirectX SAMI Files Parsing Vulnerability (MS07-064)


CPAI-2007-139
	Date:
	Update Number:	692071223 (Connectra NGX R61/R62) 541071223 (VPN-1 NG R55 Only) 591071223 (VPN-1 VSX NGX) 592071223 (InterSpect NGX)
	Description:	Microsoft Windows Message Queuing Protection (MS07-065)


CPAI-2007-138
	Date:
	Update Number:	692071223 (Connectra NGX R61/R62) 541071223 (VPN-1 NG R54/R55) 591071223 (VPN-1 VSX NGX) 592071223 (InterSpect NGX)
	Description:	Protections against Recent Malware Threats (18-Dec-07)


CPAI-2007-137
	Date:
	Update Number:	692071223 (Connectra NGX R61/R62) 541071223 (VPN-1 NG R55 Only) 591071223 (VPN-1 VSX NGX) 592071223 (InterSpect NGX)
	Description:	Apple QuickTime Crafted RTSP Response Protection


CPAI-2007-136
	Date:
	Update Number:	592071223 (InterSpect NGX)
	Description:	FLAC Project libFLAC Picture Protection


CPAI-2007-140
	Date:
	Update Number:	591071218 (VPN-1 NGX R60) 602071218 (VPN-1 NGX R61/R62/R65)
	Description:	Microsoft AVI File Parsing Protection (MS07-064)


CPAI-2007-139
	Date:
	Update Number:	591071218 (VPN-1 NGX R60) 602071218 (VPN-1 NGX R61/R62/R65)
	Description:	Microsoft Windows Message Queuing Protection (MS07-065)


CPAI-2007-138
	Date:
	Update Number:	591071218 (VPN-1 NGX R60) 602071218 (VPN-1 NGX R61/R62/R65)
	Description:	Protections against Recent Malware Threats (18-Dec-07)


CPAI-2007-137
	Date:
	Update Number:	591071218 (VPN-1 NGX R60) 602071218 (VPN-1 NGX R61/R62/R65)
	Description:	Apple QuickTime Crafted RTSP Response Protection


CPAI-2007-136
	Date:
	Update Number:	591071218 (VPN-1 NGX R60) 602071218 (VPN-1 NGX R61/R62/R65)
	Description:	FLAC Project libFLAC Picture Protection


CPAI-2007-134
	Date:
	Update Number:	692071129 (Connectra NGX R61/R62) 691071129 (Connectra NGX R60)
	Description:	Integrity Clientless Security (ICS) Update 3.7.193.0


SBP-2007-11
	Date:
	Update Number:	541071115 (VPN-1 NG R55 Only) 591071115 (VPN-1 NGX R60) 602071115 (VPN-1 NGX R61/R62/R65) 591071115 (VPN-1 VSX NGX) 592071115 (InterSpect NGX)
	Description:	Multiple Oracle Database Protections

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).