SDS Banner

SmartDefense Services Bulletin
January 2008

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

 
In This Bulletin

About SmartDefense Services
Advisories
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 UTM
  • Anti-spyware updates for Check Point Integrity Anti-Spyware 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
Advisories (Sorted by Severity, then Date)
CPAI-2007-370
  Date:
  Severity:
  Description: Update Protection against X.Org X Font Server Handlers Integer Overflow
  Sources: Secunia Advisory: SA27040
  Vulnerable Systems: X.Org Foundation X Font Server 1.0.4 (X11R7.3) and prior
     
CPAI-2007-369
  Date:
  Severity:
  Description: Update Protection against Ingres Database Communications Server Component Heap Buffer Overflow
  Sources: Secunia Advisory: SA25756
  Vulnerable Systems: Ingres Ingres Database 2.x
Ingres Ingres Database 3.x
Ingres Ingres Database 2006 (9.x)
     
CPAI-2007-368
  Date:
  Severity:
  Description: Update Protection against IBM Tivoli Monitoring Express Universal Agent Buffer Overflow
  Sources: Secunia Advisory: SA24938
  Vulnerable Systems: IBM Tivoli Monitoring Express 6.1
     
CPAI-2007-358
  Date:
  Severity:
  Description: Update Protection against Samba Domain Controller Service Crafted Mailslot Name Buffer Overflow
  Sources: Secunia Advisory: SA27760
  Vulnerable Systems: Samba Team Samba 3.0.27a
     
CPAI-2007-345
  Date:
  Severity:
  Description: Oracle Database Server SYS.LT.FINDRICSET Function SQL Injection (CVE-2007-5511)
  Sources: Secunia Advisory: SA27251
  Vulnerable Systems: Oracle Database Server 10g Release 1, versions 10.1.0.5 and prior
Oracle Database Server 10g Release 2, versions 10.2.0.3 and prior
     
CPAI-2007-337
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Domino IMAP Server Buffer Overflow
  Sources: Secunia Advisory: SA27321
  Vulnerable Systems: IBM Lotus Domino 6.x prior to 6.5.6 Fix Pack 2
IBM Lotus Domino 7.x prior to 7.0.3
     
CPAI-2007-335
  Date:
  Severity:
  Description: Update Protection against Oracle Database Core RDBMS Component Denial of Service
  Sources: Secunia Advisory: SA27251
  Vulnerable Systems: Oracle Database Server 9i Release 1, version 9.0.1.5+
Oracle Database Server 9i Release 2, versions 9.2.0.8 and prior
Oracle Database Server 9i Release 2, version 9.2.0.8DV
Oracle Database Server 10g Release 1, versions 10.1.0.5 and prior
Oracle Database Server 10g Release 2, version 10.2.0.3 and prior
     
CPAI-2007-334
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Message Engine Insecure Methods
  Sources: Secunia Advisory: SA27192
  Vulnerable Systems: CA BrightStor Enterprise Backup r10.5
CA BrightStor ARCserve Backup v9.01
CA BrightStor ARCserve Backup r11 for Windows
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
CA Server Protection Suite r2
     
CPAI-2007-333
  Date:
  Severity:
  Description: Update Protection against CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow
  Sources: Secunia Advisory: SA27192
  Vulnerable Systems: CA BrightStor ARCserve Backup r9.01
CA BrightStor ARCserve Backup r10.5
CA BrightStor ARCserve Backup r11 for Windows
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA Business Protection Suite r2
CA Server Protection Suite r2
     
CPAI-2007-332
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Message Engine Stack Overflow
  Sources: Secunia Advisory: SA27192
  Vulnerable Systems: CA BrightStor ARCserve Backup v9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.5
     
CPAI-2007-326
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCServe Backup LGServer Arbitrary File Upload
  Sources: Secunia Advisory: SA25606
  Vulnerable Systems: CA ARCserve Backup for Laptops and Desktops r11.0
CA ARCserve Backup for Laptops and Desktops r11.1
CA ARCserve Backup for Laptops and Desktops r11.1 SP1
CA ARCserve Backup for Laptops and Desktops r11.1 SP2
CA ARCserve Backup for Laptops and Desktops r11.5
CA ARCserve Backup for Laptops and Desktops r4.0
CA Desktop Management Suite r11.0
CA Desktop Management Suite r11.1
CA Desktop Management Suite r11.2
CA Protection Suites 2
     
CPAI-2007-325
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCServe Backup LGServer Authentication Username Overflow
  Sources: Secunia Advisory: SA25606
  Vulnerable Systems: CA BrightStor ARCserve Backup for Laptops and Desktops r11.0
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP2
CA BrightStor ARCserve Backup for Laptops and Desktops r11.5
CA Desktop Management Suite r11.0
CA Desktop Management Suite r11.2
CA Protection Suite Server r2
CA BrightStor Mobile Backup - AdminGui 4
CA Unicenter DMS Manager - Backup Manager r11.1
     
CPAI-2007-324
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCServe Backup LGServer Auth Password Buffer Overflow
  Sources: Secunia Advisory: SA25606
  Vulnerable Systems: CA BrightStor ARCserve Backup for Laptops and Desktops r11.0
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1
CA BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP2
CA BrightStor ARCserve Backup for Laptops and Desktops r11.5
CA Desktop Management Suite r11.0
CA Desktop Management Suite r11.2
CA Protection Suite Server r2
CA BrightStor Mobile Backup - AdminGui 4
CA Unicenter DMS Manager - Backup Manager r11.1
     
CPAI-2007-323
  Date:
  Severity:
  Description: Update Protection against CA ARCserve Backup for Laptops and Desktops LGServer Buffer Overflows
  Sources: Secunia Advisory: SA25606
  Vulnerable Systems: CA ARCserve Backup for Laptops and Desktops r11.0
CA ARCserve Backup for Laptops and Desktops r11.1
CA ARCserve Backup for Laptops and Desktops r11.1 SP1
CA ARCserve Backup for Laptops and Desktops r11.1 SP2
CA ARCserve Backup for Laptops and Desktops r11.5
CA Desktop Management Suite r11.0
CA Desktop Management Suite r11.1
CA Protection Suites 2
CA BrightStor Mobile Backup - AdminGui 4
CA Unicenter DMS Manager - Backup Manager r11.1
     
CPAI-2007-322
  Date:
  Severity:
  Description: Update Protection against IBM Tivoli Storage Manager Express CAD Service Buffer Overflow
  Sources: Secunia Advisory: SA26883
  Vulnerable Systems: IBM Tivoli Storage Manager (TSM) 5.1
IBM Tivoli Storage Manager (TSM) 5.2
IBM Tivoli Storage Manager (TSM) 5.3
IBM Tivoli Storage Manager (TSM) 5.4
IBM Tivoli Storage Manager (TSM) Express 5.3
     
CPAI-2007-318
  Date:
  Severity:
  Description: Update Protection against Trend Micro ServerProtect TMregChange Stack Overflow
  Sources: Secunia Advisory: SA26523
  Vulnerable Systems: Trend Micro ServerProtect for Windows 5.58 Patch3 and prior
     
CPAI-2007-313
  Date:
  Severity:
  Description: Update Protection against EMC Legato NetWorker Remote Execution Service Buffer Overflow
  Sources: Secunia Advisory: SA26517
  Vulnerable Systems: EMC Legato NetWorker prior to 7.3.3
     
CPAI-2007-304
  Date:
  Severity:
  Description: Update Protection against CA Products Message Queuing Server Buffer Overflow
  Sources: Secunia Advisory: SA26190
  Vulnerable Systems: CA Advantage Data Transformer 3.0
CA BrightStor Portal 11.1
CA BrightStor SAN Manager 11.1
CA BrightStor SAN Manager 11.5
CA CleverPath Aion 10.0
CA CleverPath ECM 3.5
CA CleverPath OLAP 5.1
CA CleverPath Predictive Analysis Server 2.0
CA CleverPath Predictive Analysis Server 3
CA eTrust Admin 2.01
CA eTrust Admin 2.04
CA eTrust Admin 2.07
CA eTrust Admin 2.09
CA eTrust Admin 8
CA eTrust Admin 8.1
CA Message Queuing Software Prior to v1.11 Build 54_4
CA Unicenter Application Performance Monitor 3.0
CA Unicenter Application Performance Monitor 3.5
CA Unicenter Asset Management 3.1
CA Unicenter Asset Management 3.2
CA Unicenter Asset Management 3.2SP1
CA Unicenter Asset Management 3.2SP2
CA Unicenter Asset Management 4.0
CA Unicenter Asset Management 4.0SP1
CA Unicenter Data Transport Option 2.0
CA Unicenter Enterprise Job Manager 1.0 SP1
CA Unicenter Enterprise Job Manager 1.0 SP2
CA Unicenter Jasmine 3.0
CA Unicenter Management for Microsoft Exchange 4.0
CA Unicenter Management for Microsoft Exchange 4.1
CA Unicenter Management for Web Servers 5
CA Unicenter Management for Web Servers 5.0.1
CA Unicenter Management for WebSphere MQ 3.5
CA Unicenter Management for Lotus Notes/Domino 4.0
CA Unicenter NSM 3.0
CA Unicenter NSM 3.1
CA Unicenter NSM Wireless Network Management Option 3.0
CA Unicenter Remote Control 6.0
CA Unicenter Remote Control 6.0 SP1
CA Unicenter Service Level Management 3.0
CA Unicenter Service Level Management 3.0.1
CA Unicenter Service Level Management 3.0.2
CA Unicenter Service Level Management 3.5
CA Unicenter Software Delivery 3.0
CA Unicenter Software Delivery 3.1
CA Unicenter Software Delivery 3.1SP1
CA Unicenter Software Delivery 3.1SP2
CA Unicenter Software Delivery 4.0
CA Unicenter Software Delivery 4.0SP1
CA Unicenter TNG 2.1
CA Unicenter TNG 2.2
CA Unicenter TNG 2.4
CA Unicenter TNG 2.4.2
CA Unicenter TNG JPN 2.2
     
CPAI-2007-297
  Date:
  Severity:
  Description: Update Protection against CA Alert Notification Server RPC Request Buffer Overflow
  Sources: Secunia Advisory: SA26088
  Vulnerable Systems: CA Alert Notification Server Prior to 8.0.255.0
     
CPAI-2007-287
  Date:
  Severity:
  Description: Update Protection against Trend Micro OfficeScan Console Authentication Buffer Overflow
  Sources: Secunia Advisory: SA25778
  Vulnerable Systems: Trend Micro OfficeScan Corporate Edition 8.0 prior to 8.0.0.1042
Trend Micro OfficeScan Corporate Edition 7.3 prior to 7.3.0.1293
Trend Micro OfficeScan Corporate Edition 7.0 prior to 7.0.0.1364
     
CPAI-2007-283
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Schannel Security Package Code Execution (MS07-031)
  Sources: Microsoft Scurity Bulletin 935840
  Vulnerable Systems: Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
     
CPAI-2007-278
  Date:
  Severity:
  Description: Update Protection against Sun Java System Web Proxy sockd Daemon Buffer Overflow
  Sources: Secunia Advisory: SA25405
  Vulnerable Systems: Sun Microsystems Java System Web Proxy Server prior to 4.0.5
     
CPAI-2007-271
  Date:
  Severity:
  Description: Update Protection against CA Multiple Products Console Server Login Handling Buffer Overflow
  Sources: Secunia Advisory: SA25202
  Vulnerable Systems: CA Anti-Spyware for the Enterprise r8
CA Anti-Virus for the Enterprise r8
CA Threat Manager for the Enterprise r8
CA Protection Suites r3
     
CPAI-2007-265
  Date:
  Severity:
  Description: Update Protection against ISC BIND query_addsoa denial of service
  Sources: Secunia Advisory: SA25070
  Vulnerable Systems: Internet Systems Consortium (ISC) BIND 9.4.0
Internet Systems Consortium (ISC) BIND 9.5.0a1
Internet Systems Consortium (ISC) BIND 9.5.0a2
Internet Systems Consortium (ISC) BIND 9.5.0a3
     
CPAI-2007-261
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Media Server SUN-RPC Service Buffer Overflow
  Sources: Secunia Advisory: SA24972
  Vulnerable Systems: CA BrightStor ARCserve Backup v9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.0
     
CPAI-2007-258
  Date:
  Severity:
  Description: Update Protection against Oracle Database Server DBMS_CDC_IPUBLISH Package Buffer Overflow
  Sources: Secunia Advisory: SA24929
  Vulnerable Systems: Oracle Database Server 10g 10.1.0.5 and prior
Oracle Database Server 10gR2 10.2.0.2 and prior
     
CPAI-2007-256
  Date:
  Severity:
  Description: Update Protection against Oracle Database DBMS_SNAP_INTERNAL Package Buffer Overflow
  Sources: Secunia Advisory: SA24929
  Vulnerable Systems: Oracle Database Server 10gR1 10.1.0.5 and prior
Oracle Database Server 9iR2 9.2.0.7 and prior
Oracle Database Server 9i 9.0.1.5 and prior
     
CPAI-2007-251
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution
  Sources: Secunia Advisory: SA24682
  Vulnerable Systems: CA BrightStor ARCserve Backup v9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5 SP2 and prior
     
CPAI-2007-250
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Domino LDAP Server Invalid DN Message Buffer Overflow
  Sources: Secunia Advisory: SA24633
  Vulnerable Systems: IBM Lotus Domino 6.x prior to 6.5.6
IBM Lotus Domino 7.x prior to 7.0.2 FP1
     
CPAI-2007-247
  Date:
  Severity:
  Description: Update Protection against Atrium Software MERCUR IMAPD NTLMSSP Command Handling Memory Corruption
  Sources: Secunia Advisory: SA24596
  Vulnerable Systems: Atrium Software MERCUR Messaging 2005 5.00.14 SP4 and prior
     
CPAI-2007-246
  Date:
  Severity:
  Description: Update Protection against Cisco IP Phone SIP INVITE Message Denial of Service
  Sources: Secunia Advisory: SA24600
  Vulnerable Systems: Cisco IP Phone 7960/7940 P0S3-07-4-00
     
CPAI-2007-240
  Date:
  Severity:
  Description: Update Protection against Mozilla Network Security Services SSLv2 Server Stack Overflow
  Sources: Secunia Advisory: SA24253
  Vulnerable Systems: Sun Microsystems Java System Web Server 6.1 Service Pack 7 and prior
Sun Microsystems Java System Directory Server N/A
Sun Microsystems Java System Portal Server N/A
Sun Microsystems Java System Messaging Server N/A
Sun Microsystems Java System Application Server N/A
Red Hat Directory Server N/A
Red Hat Certificate System N/A
     
CPAI-2007-236
  Date:
  Severity:
  Description: Update Protection against HP Mercury Multiple Products Agent Command Processing Buffer Overflow
  Sources: Secunia Advisory: SA24112
  Vulnerable Systems: HP Mercury LoadRunner 8.0 GA
HP Mercury LoadRunner 8.1 FP1
HP Mercury LoadRunner 8.1 FP2
HP Mercury LoadRunner 8.1 FP3
HP Mercury LoadRunner 8.1 FP4
HP Mercury LoadRunner 8.1 GA
HP Mercury LoadRunner 8.1 SP1
HP Mercury Performance Center 8.0 GA
HP Mercury Performance Center 8.1 FP1
HP Mercury Performance Center 8.1 FP2
HP Mercury Performance Center 8.1 FP3
HP Mercury Performance Center 8.1 FP4
HP Mercury Performance Center 8.1 GA
HP Mercury Monitor over Firewall 8.1
     
CPAI-2007-232
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCServe Backup LGServer Stack Buffer Overflow
  Sources: Secunia Advisory: SA23897
  Vulnerable Systems: Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.0
Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1
Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1
     
CPAI-2007-231
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCServe Backup LGServer Buffer Overflow
  Sources: Secunia Advisory: SA23897
  Vulnerable Systems: Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.0
Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1
Computer Associates BrightStor ARCserve Backup for Laptops and Desktops r11.1 SP1
     
CPAI-2007-224
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow
  Sources: Secunia Advisory: SA23648
  Vulnerable Systems: CA BrightStor ARCserve Backup r9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.5
     
CPAI-2007-220
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Message Engine Opcode 47 Buffer Overflow
  Sources: Secunia Advisory: SA23648
  Vulnerable Systems: CA BrightStor ARCserve Backup r9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.5
     
CPAI-2007-219
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Tape Engine RPC Opcode 207 Buffer Overflow
  Sources: Secunia Advisory: SA23648
  Vulnerable Systems: CA BrightStor ARCserve Backup 9.01
CA BrightStor ARCserve Backup r11
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.5
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Server Protection Suite r2
     
CPAI-2007-218
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Tape Engine RPC Code Execution
  Sources: Secunia Advisory: SA23648
  Vulnerable Systems: CA BrightStor ARCserve Backup r9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.5
     
CPAI-2007-140
  Date:
  Severity:
  Description: Update Protection against Microsoft AVI File Parsing Remote Code Execution Vulnerability (MS07-064)
  Sources: Microsoft Security Bulletin MS07-064
  Vulnerable Systems: Microsoft DirectX 7.0
Microsoft DirectX 8.1
Microsoft DirectX 9.0c
Microsoft DirectX 10
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows Server 2003
     
CPAI-2007-139
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Message Queuing Remote Code Execution Vulnerability (MS07-065)
  Sources: Microsoft Security Bulletin MS07-065
  Vulnerable Systems: Microsoft Windows 2000 Professional SP4
Microsoft Windows 2000 Server SP4
Microsoft Windows XP SP2
     
CPAI-2007-371
  Date:
  Severity:
  Description: Update Protection against Linux Kernel NetFilter SCTP Unknown Chunk Types Denial of Service Vulnerability
  Sources: Secunia Advisory: SA25594
  Vulnerable Systems: Linux Kernel Project Kernel 2.6.21.3 and prior
     
CPAI-2007-367
  Date:
  Severity:
  Description: Update Protection against Adobe Flash Player JPG Embedded SWF Processing Heap Overflow
  Sources: Secunia Advisory: SA28161
  Vulnerable Systems: Adobe Systems Macromedia Flash Player 7.0.70.0 and prior
Adobe Systems Macromedia Flash Player 8.0.35.0 and prior
Adobe Systems Macromedia Flash Player 9.0.48.0 and prior
     
CPAI-2007-365
  Date:
  Severity:
  Description: Update Protection against ClamAV libclamav MEW PE File Handling Integer Overflow
  Sources: Secunia Advisory: SA28117
  Vulnerable Systems: ClamAV Project ClamAV 0.91.2 and prior
     
CPAI-2007-364
  Date:
  Severity:
  Description: Update Protection against Apache mod_imap and mod_imagemap Module Cross-Site Scripting
  Sources: Secunia Advisory: SA28046
  Vulnerable Systems: Apache Software Foundation HTTP Server 1.3.0 - 1.3.39
Apache Software Foundation HTTP Server 2.0.35 - 2.0.61
Apache Software Foundation HTTP Server 2.2.0 - 2.2.6
     
CPAI-2007-363
  Date:
  Severity:
  Description: Update Protection against Internet Explorer DOM Object Cache Management Memory Corruption (MS07-069)
  Sources: Microsoft Scurity Bulletin MS07-069
  Vulnerable Systems: Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7.0
     
CPAI-2007-362
  Date:
  Severity:
  Description: Update Protection against Internet Explorer Clone Object Reference Memory Corruption (MS07-069)
  Sources: Microsoft Scurity Bulletin MS07-069
  Vulnerable Systems: Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7.0
     
CPAI-2007-361
  Date:
  Severity:
  Description: Update Protection against Microsoft DirectX WAV and AVI File Parsing Code Execution (MS07-064)
  Sources: Microsoft Scurity Bulletin MS07-064
  Vulnerable Systems: Microsoft DirectX 7.0
Microsoft DirectX 8.1
Microsoft DirectX 9.0c
Microsoft DirectX 10
     
CPAI-2007-360
  Date:
  Severity:
  Description: Update Protection against Internet Explorer DHTML Objects Memory Corruption (MS07-069)
  Sources: Microsoft Scurity Bulletin MS07-069
  Vulnerable Systems: Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7.0
     
CPAI-2007-359
  Date:
  Severity:
  Description: Update Protection against Internet Explorer Object Reference Counting Memory Corruption (MS07-069)
  Sources: Microsoft Scurity Bulletin MS07-069
  Vulnerable Systems: Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7.0
     
CPAI-2007-357
  Date:
  Severity:
  Description: Update Protection against 3ivx MPEG-4 MP4 File Handling Stack Overflow
  Sources: Secunia Advisory: SA27998
  Vulnerable Systems: 3ivx Technologies MPEG-4 5.0.1 and possibly prior
     
CPAI-2007-356
  Date:
  Severity:
  Description: Update Protection against Skype skype4com URI Handler Remote Heap Corruption
  Sources: Secunia Advisory: SA27934
  Vulnerable Systems: Skype Technologies Skype prior to 3.6 Gold
     
CPAI-2007-355
  Date:
  Severity:
  Description: Update Protection against Squid Proxy Cache Update Denial of Service
  Sources: Secunia Advisory: SA27910
  Vulnerable Systems: Squid Project Squid 2.x prior to 2.6.STABLE17
     
CPAI-2007-353
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Notes Lotus 1-2-3 Work Sheet File Viewer Buffer Overflow
  Sources: Secunia Advisory: SA27835
  Vulnerable Systems: IBM Lotus Notes 5.x
IBM Lotus Notes 6.x
IBM Lotus Notes 7.x
IBM Lotus Notes 8.x
     
CPAI-2007-352
  Date:
  Severity:
  Description: Update Protection against Mozilla Firefox Layout Frame Constructor Memory Corruption
  Sources: Secunia Advisory: SA27725
  Vulnerable Systems: Mozilla Foundation Firefox 2.0.0.9 and prior
Mozilla Foundation SeaMonkey 1.1.6 and prior
     
CPAI-2007-350
  Date:
  Severity:
  Description: Update Protection against Microsoft Office Jet Engine MDB File Parsing Buffer Overflow
  Sources: Secunia Advisory: SA14896
  Vulnerable Systems: Microsoft Jet Engine (msjet40.dll) 4.0.8618.0
     
CPAI-2007-349
  Date:
  Severity:
  Description: Update Protection against Samba WINS Server Name Registration Handling Stack Buffer Overflow
  Sources: Secunia Advisory: SA27450
  Vulnerable Systems: Samba Team Samba 3.0.x prior to 3.0.27
     
CPAI-2007-348
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime Color Table Atom Movie File Handling Heap Corruption
  Sources: Secunia Advisory: SA27523
  Vulnerable Systems: Apple Computer Quicktime prior to 7.3
     
CPAI-2007-347
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime Panorama Sample Atoms Movie File Handling Buffer Overflow
  Sources: Secunia Advisory: SA27523
  Vulnerable Systems: Apple Computer Quicktime prior to 7.3
     
CPAI-2007-346
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime STSD Atoms Handling Heap Overflow
  Sources: Secunia Advisory: SA27523
  Vulnerable Systems: Apple Computer QuickTime prior to 7.3
     
CPAI-2007-344
  Date:
  Severity:
  Description: Update Protection against RealNetworks RealPlayer RealMedia File Format Processing Heap Corruption
  Sources: Secunia Advisory: SA27361
  Vulnerable Systems: RealNetworks RealPlayer 8
RealNetworks RealPlayer 10
RealNetworks RealPlayer 10.5
RealNetworks RealOne Player V1
RealNetworks RealOne Player V2
RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)
     
CPAI-2007-343
  Date:
  Severity:
  Description: Update Protection against RealNetworks RealPlayer Multiple Products RA File Processing Heap Overflow
  Sources: Secunia Advisory: SA27361
  Vulnerable Systems: RealNetworks Mac RealPlayer 10.1 (prior to build 10.0.0.503)
RealNetworks Linux RealPlayer 10 (prior to build 10.0.9)
RealNetworks RealPlayer 8
RealNetworks RealPlayer 10
RealNetworks RealPlayer 10.5
RealNetworks RealOne Player V1
RealNetworks RealOne Player V2
RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)
     
CPAI-2007-342
  Date:
  Severity:
  Description: Update Protection against RealNetworks RealPlayer MP3 Files Processing Buffer Overflow
  Sources: Secunia Advisory: SA27361
  Vulnerable Systems: RealNetworks RealPlayer 10
RealNetworks RealPlayer 10.5
RealNetworks RealOne Player V1
RealNetworks RealOne Player V2
RealNetworks RealPlayer Enterprise prior to v1.11 (6.0.11.2160)
     
CPAI-2007-341
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Notes HTML Message Handling Buffer Overflow
  Sources: Secunia Advisory: SA27279
  Vulnerable Systems: IBM Lotus Notes Prior to 6.5
IBM Lotus Notes Prior to 7.0.3
IBM Lotus Notes Prior to 8.0
     
CPAI-2007-340
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Notes MIF Attachment Viewer Buffer Overflow
  Sources: Secunia Advisory: SA27279
  Vulnerable Systems: IBM Lotus Notes 6.5
IBM Lotus Notes 7.0 prior to 7.0.3
     
CPAI-2007-339
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Notes WPD Attachment Viewer Buffer Overflow
  Sources: Secunia Advisory: SA27279
  Vulnerable Systems: IBM Lotus Notes 6.5
IBM Lotus Notes 7.x prior to 7.0.3
IBM Lotus Notes 8.x prior to 8.0.1
     
CPAI-2007-338
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Notes DOC Attachment Viewer Buffer Overflow
  Sources: Secunia Advisory: SA27279
  Vulnerable Systems: IBM Lotus Notes 6.5
IBM Lotus Notes 7.0 prior to 7.0.3
     
CPAI-2007-336
  Date:
  Severity:
  Description: Update Protection against Mozilla Firefox XBL Event Handler Tags Removal Memory Corruption
  Sources: Secunia Advisory: SA27311
  Vulnerable Systems: Mozilla Foundation Firefox Prior to 2.0.0.8
     
CPAI-2007-331
  Date:
  Severity:
  Description: Update Protection against Adobe Pagemaker MAIPM6.DLL Long Font Name Buffer Overflow
  Sources: Adobe Security Bulletin APSB07-15
  Vulnerable Systems: Adobe Systems Pagemaker 7.0.1
Adobe Systems Pagemaker 7.0.2
     
CPAI-2007-330
  Date:
  Severity:
  Description: Update Protection against Internet Explorer Error Handling Code Execution (MS07-057)
  Sources: Microsoft Scurity Bulletin MS07-057
  Vulnerable Systems: Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7.0
     
CPAI-2007-329
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows SharePoint Services Cross Site Scripting (MS07-059)
  Sources: Microsoft Scurity Bulletin MS07-059
  Vulnerable Systems: Microsoft Office SharePoint Server 2007
Microsoft Office SharePoint Server 2007 x64 Edition
Microsoft Windows SharePoint Services 3.0
     
CPAI-2007-328
  Date:
  Severity:
  Description: Update Protection against Outlook Express and Windows Mail NNTP Handling Code Execution (MS07-056)
  Sources: Secunia Advisory: SA27112
  Vulnerable Systems: Microsoft Outlook Express 5.5
Microsoft Outlook Express 6
Microsoft Windows Mail
     
CPAI-2007-327
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Kodak Image Viewer Code Execution (MS07-055)
  Sources: Microsoft Scurity Bulletin MS07-055
  Vulnerable Systems: Microsoft Windows 2000 Server Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows Server 2003 Service Pack 1
Microsoft Windows Server 2003 Service Pack 2
     
CPAI-2007-320
  Date:
  Severity:
  Description: Update Protection against Microsoft Agent Crafted URL Stack Buffer Overflow (MS07-051)
  Sources: Microsoft Scurity Bulletin MS07-051
  Vulnerable Systems: Microsoft Agent 2.0.0.3425 and prior
     
CPAI-2007-319
  Date:
  Severity:
  Description: Update Protection against Lighttpd mod_fastcgi Extension CGI Variable Overwriting
  Sources: Secunia Advisory: SA26732
  Vulnerable Systems: Lighttpd Project Lighttpd 1.4.17 and Prior
     
CPAI-2007-317
  Date:
  Severity:
  Description: Update Protection against Microsoft Visual Basic 6.0 VBP Project File Handling Buffer Overflow
  Sources: Secunia Advisory: SA26704
  Vulnerable Systems: Microsoft Visual Basic 6.0
     
CPAI-2007-316
  Date:
  Severity:
  Description: ClamAV Mail Filter Extension Crafted Recipient Command Execution
  Sources: Secunia Advisory: SA26530
  Vulnerable Systems: ClamAV Project Clam AntiVirus prior to 0.91.2
     
CPAI-2007-315
  Date:
  Severity:
  Description: Update Protection against Microsoft MSN Messenger and Windows Live Messenger Code Execution
  Sources: Secunia Advisory: SA26570
  Vulnerable Systems: Microsoft MSN Messenger 6.2
Microsoft MSN Messenger 7.0
Microsoft MSN Messenger 7.5
Microsoft Windows Live Messenger 8.0
     
CPAI-2007-314
  Date:
  Severity:
  Description: Update Protection against RealNetworks Helix DNA Server RTSP Service Heap Overflow
  Sources: Secunia Advisory: SA26609
  Vulnerable Systems: RealNetworks Helix DNA Server 11.x prior to 11.1.4
     
CPAI-2007-312
  Date:
  Severity:
  Description: Update Protection against Mercury Mail Transport System SMTP AUTH CRAM-MD5 Buffer Overflow
  Sources: Secunia Advisory: SA26519
  Vulnerable Systems: Pegasus Mail Mercury Mail Transport System 4.51 and prior
     
CPAI-2007-311
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Vista Feed Headlines Gadget Code Execution (MS07-048)
  Sources: Secunia Advisory: SA26439
  Vulnerable Systems: Microsoft Windows Vista
Microsoft Windows Vista x64 Edition
     
CPAI-2007-310
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Media Player Skin Decompression Code Execution
  Sources: Secunia Advisory: SA26433
  Vulnerable Systems: Microsoft Windows Media Player 7.1
Microsoft Windows Media Player 9.0
Microsoft Windows Media Player 10
Microsoft Windows Media Player 11
     
CPAI-2007-309
  Date:
  Severity:
  Description: Update Protection against Internet Explorer Vector Markup Language VGX Buffer Overflow
  Sources: Microsoft Scurity Bulletin 938127
  Vulnerable Systems: Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
     
CPAI-2007-308
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Graphics Rendering Engine Code Execution (MS07-046)
  Sources: Microsoft Scurity Bulletin MS07-046
  Vulnerable Systems: Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
     
CPAI-2007-307
  Date:
  Severity:
  Description: Update Protection against Internet Explorer CSS Strings Parsing Memory Corruption (MS07-045)
  Sources: Microsoft Scurity Bulletin MS07-045
  Vulnerable Systems: Microsoft Internet Explorer 5.01
     
CPAI-2007-306
  Date:
  Severity:
  Description: Update Protection against Microsoft OLE Automation String Manipulation Heap Overflow (MS07-043)
  Sources: Secunia Advisory: SA26449
  Vulnerable Systems: Microsoft Office 2004 for Mac
Microsoft Visual Basic 6.0
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows XP Professional x64
Microsoft Windows Server 2003
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2007-305
  Date:
  Severity:
  Description: Update Protection against Microsoft XML Core Services Memory Corruption (MS07-042)
  Sources: Microsoft Scurity Bulletin ms07-042
  Vulnerable Systems: Microsoft XML Core Services 3.0
Microsoft XML Core Services 4.0
Microsoft XML Core Services 5.0
Microsoft XML Core Services 6.0
     
CPAI-2007-302
  Date:
  Severity:
  Description: Update Protection against Apple Safari Regular Expression Heap Buffer Overflow
  Sources: Secunia Advisory: SA26287
  Vulnerable Systems: Apple Safari Prior to 3.0.3
     
CPAI-2007-301
  Date:
  Severity:
  Description: Update Protection against Ipswitch IMail Server IMAP SUBSCRIBE Command Stack Buffer Overflow
  Sources: Secunia Advisory: SA26123
  Vulnerable Systems: Ipswitch IMail 2006 prior to 2006.21
Ipswitch IMail Plus 2006 prior to 2006.21
Ipswitch IMail Premium 2006 prior to 2006.21
     
CPAI-2007-300
  Date:
  Severity:
  Description: Update Protection against Ipswitch IMail Server Imailsec.dll Heap Buffer Overflow
  Sources: Secunia Advisory: SA26123
  Vulnerable Systems: Ipswitch IMail 2006 prior to 2006.21
Ipswitch IMail Plus 2006 prior to 2006.21
Ipswitch IMail Premium 2006 prior to 2006.21
     
CPAI-2007-299
  Date:
  Severity:
  Description: Update Protection against Microsoft DirectX RLE Compressed Targa Image File Heap Overflow
  Sources: Secunia Advisory: SA26131
  Vulnerable Systems: Microsoft DirectX End User Runtime 9.0c
Microsoft DirectX End User Runtime prior to October 2006
Microsoft DirectX SDK prior to October 2006
     
CPAI-2007-298
  Date:
  Severity:
  Description: Update Protection against Oracle Database SQL Compiler Access Control Security Bypass
  Sources: Secunia Advisory: SA26114
  Vulnerable Systems: Oracle Oracle Database 10.1.0.5
Oracle Oracle Database 10.2.0.3
Oracle Oracle Database 9.0.1.5+
Oracle Oracle Database 9.2.0.8
Oracle Oracle Database 9.2.0.8DV
     
CPAI-2007-296
  Date:
  Severity:
  Description: Update Protection against Internet Explorer OnBeforeUnload JavaScript Address Bar Spoofing (MS07-057)
  Sources: Microsoft Scurity Bulletin MS07-057
  Vulnerable Systems: Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
     
CPAI-2007-295
  Date:
  Severity:
  Description: Update Protection against IPSwitch WS_FTP Logging Server Daemon Denial of Service
  Sources: Secunia Advisory: SA26040
  Vulnerable Systems: Ipswitch WS_FTP Server 6.0 and priors
     
CPAI-2007-294
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime SMIL File Handling Integer Overflow
  Sources: Secunia Advisory: SA26034
  Vulnerable Systems: Apple QuickTime prior to 7.2
     
CPAI-2007-293
  Date:
  Severity:
  Description: Update Protection against Adobe Flash Player FLV Processing Buffer Overflow
  Sources: Adobe Security Bulletin APSB07-12
  Vulnerable Systems: Adobe Flash Player 9.0.45.0 and prior
     
CPAI-2007-291
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel rtWindow1 Record Handling Code Execution
  Sources: Microsoft Scurity Bulletin MS07-036
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel Viewer 2003
     
CPAI-2007-290
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Sheet Name Memory Corruption
  Sources: SecurityFocus Bugtraq ID: 24691
  Vulnerable Systems: Microsoft Excel 2003
Microsoft Excel 2002
Microsoft Excel 2000
     
CPAI-2007-289
  Date:
  Severity:
  Description: Update Protection against RealNetworks Multiple Products SMIL wallclock Stack Overflow
  Sources: Secunia Advisory: SA25819
  Vulnerable Systems: RealNetworks Helix Player 10.5 Gold and possibly prior
RealNetworks RealPlayer 10.5 Gold and possibly prior
     
CPAI-2007-288
  Date:
  Severity:
  Description: Update Protection against MIT Kerberos kadmind Rename Principal Buffer Overflow
  Sources: Secunia Advisory: SA25800
  Vulnerable Systems: MIT Kerberos krb5-1.6.1 and prior
     
CPAI-2007-286
  Date:
  Severity:
  Description: Update Protection against Ingres Database uuid_from_char Stack Buffer Overflow
  Sources: Secunia Advisory: SA25756
  Vulnerable Systems: Ingres Ingres Database 2.x
Ingres Ingres Database 3.x
     
CPAI-2007-285
  Date:
  Severity:
  Description: Update Protection against OpenOffice RTF File Parsing Heap Buffer Overflow
  Sources: Secunia Advisory: SA25648
  Vulnerable Systems: OpenOffice.org OpenOffice 2.2.0 and prior
Sun Microsystems StarOffice 6.0
Sun Microsystems StarOffice 7
Sun Microsystems StarOffice 8
Sun Microsystems StarSuite 6.0
Sun Microsystems StarSuite 7
Sun Microsystems StarSuite 8
     
CPAI-2007-284
  Date:
  Severity:
  Description: Update Protection against Microsoft Visio Packed Object Parsing Memory Corruption
  Sources: Microsoft Scurity Bulletin 927051
  Vulnerable Systems: Microsoft Visio 2002
Microsoft Visio 2003
     
CPAI-2007-282
  Date:
  Severity:
  Description: Update Protection against Microsoft Visio Version Number Handling Code Execution (MS07-030)
  Sources: Microsoft Scurity Bulletin 927051
  Vulnerable Systems: Microsoft Visio 2002 Service Pack 2
Microsoft Visio 2003 Service Pack 2
     
CPAI-2007-281
  Date:
  Severity:
  Description: Update Protection against Yahoo! Messenger Webcam ActiveX Control Stack Buffer Overflow
  Sources: Secunia Advisory: SA25547
  Vulnerable Systems: Yahoo! Messenger 8.1.0.249 and prior
     
CPAI-2007-280
  Date:
  Severity:
  Description: Update Protection against Mozilla Products SVG Layout Engine Index Parameter Memory Corruption
  Sources: Secunia Advisory: SA25469
  Vulnerable Systems: Mozilla Foundation Firefox 1.5.x, prior to 1.5.0.12
Mozilla Foundation Firefox 2.0.x, prior to 2.0.0.4
Mozilla Foundation SeaMonkey 1.0.x, prior to 1.0.8
Mozilla Foundation SeaMonkey 1.1.x, prior to 1.1.2
Mozilla Foundation Thunderbird 1.5.x, prior to 1.5.0.12
Mozilla Foundation Thunderbird 2.0.x, prior to 2.0.0.4
     
CPAI-2007-279
  Date:
  Severity:
  Description: Update Protection against Mozilla Products Overflow Event Handling Memory Corruption
  Sources: Secunia Advisory: SA25469
  Vulnerable Systems: Mozilla Foundation Firefox 1.5.x, prior to 1.5.0.12
Mozilla Foundation Firefox 2.0.x, prior to 2.0.0.4
Mozilla Foundation SeaMonkey 1.0.x, prior to 1.0.8
Mozilla Foundation SeaMonkey 1.1.x, prior to 1.1.2
Mozilla Foundation Thunderbird 1.5.x, prior to 1.5.0.12
Mozilla Foundation Thunderbird 2.0.x, prior to 2.0.0.4
     
CPAI-2007-277
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup caloggerd.exe Null Hostname Denial of Service
  Sources: Secunia Advisory: SA25300
  Vulnerable Systems: CA BrightStor ARCserve Backup 11.5.2.0 SP2 and possibly prior
     
CPAI-2007-276
  Date:
  Severity:
  Description: Update Protection against Sun JDK Hard Coded Image in Java File
  Sources: Secunia Advisory: SA25295
  Vulnerable Systems: Sun Microsystems Java Development Kit 1.5.x before 1.5.0_11-b03
Sun Microsystems Java Development Kit 1.6.x before 1.6.0_01-b06
     
CPAI-2007-275
  Date:
  Severity:
  Description: Update Protection against Symantec Discovery XFERWAN Service Buffer Overflow
  Sources: Secunia Advisory: SA24281
  Vulnerable Systems: Symantec Discovery 6.5 and prior
     
CPAI-2007-274
  Date:
  Severity:
  Description: Update Protection against Samba LSA RPC lsa_io_trans_names Request Handling Heap Overflow
  Sources: Secunia Advisory: SA25232
  Vulnerable Systems: Samba Team Samba 3.0.0 to 3.0.25rc3 (inclusive)
     
CPAI-2007-273
  Date:
  Severity:
  Description: Update Protection against Samba SPOOLSS smb_io_notify_option_type_data Request Buffer Overflow
  Sources: Secunia Advisory: SA25232
  Vulnerable Systems: Samba Team Samba 3.x, 3.0.25rc3 and prior
     
CPAI-2007-272
  Date:
  Severity:
  Description: Update Protection against Samba LSA LsarAddPrivilegesToAccount Crafted Request Handling Heap Overflow
  Sources: Secunia Advisory: SA25232
  Vulnerable Systems: Samba Team Samba 3.0.0 to 3.0.25rc3 (inclusive)
     
CPAI-2007-270
  Date:
  Severity:
  Description: Update Protection against Microsoft Internet Explorer 7 HTML Object Memory Corruption
  Sources: Microsoft Scurity Bulletin 931768
  Vulnerable Systems: Microsoft Internet Explorer 7
     
CPAI-2007-269
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Malformed Filter Records Handling Code Execution (MS07-023)
  Sources: Microsoft Scurity Bulletin MS07-023
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel Viewer 2003
     
CPAI-2007-268
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Set Font Handling Code Execution (MS07-023)
  Sources: Microsoft Scurity Bulletin MS07-023
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel 2007
Microsoft Excel Viewer 2003
     
CPAI-2007-267
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel File Named Graph Record Parsing Stack Overflow (MS07-023)
  Sources: Microsoft Scurity Bulletin MS07-023
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel Viewer 2003
     
CPAI-2007-266
  Date:
  Severity:
  Description: Update Protection against Microsoft Word Array Data Handling Buffer Overflow (MS07-024)
  Sources: Microsoft Scurity Bulletin MS07-024
  Vulnerable Systems: Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word Viewer 2003
     
CPAI-2007-264
  Date:
  Severity:
  Description: Update Protection against Nullsoft Winamp MP4 Files Handling Memory Corruption
  Sources: Secunia Advisory: SA25089
  Vulnerable Systems: Nullsoft Winamp 5.34 and prior
     
CPAI-2007-263
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime MOV File JVTCompEncodeFrame Heap Overflow
  Sources: SecurityFocus Bugtraq ID: 23650
  Vulnerable Systems: Apple QuickTime 7.1.5 and prior
     
CPAI-2007-262
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Media Server SUN RPC Denial of Service
  Sources: Secunia Advisory: SA24972
  Vulnerable Systems: CA BrightStor ARCserve Backup v9.01
CA BrightStor ARCserve Backup r11.0
CA BrightStor ARCserve Backup r11.1
CA BrightStor ARCserve Backup r11.5
CA BrightStor Enterprise Backup r10.0
     
CPAI-2007-260
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime for Java toQTPointer Function Memory Corruption
  Sources: Secunia Advisory: SA25011
  Vulnerable Systems: Apple QuickTime 7.1.5 and prior
     
CPAI-2007-259
  Date:
  Severity:
  Description: Update Protection against ACD Systems ACDSee Products XPM File Handling Buffer Overflow
  Sources: Secunia Advisory: SA24994
  Vulnerable Systems: ACD Systems ACDSee 9.0 Build 108 and prior
ACD Systems ACDSee Photo Editor 4.0 Build 195 and prior
ACD Systems ACDSee Pro 8.1 Build 99 and prior
     
CPAI-2007-257
  Date:
  Severity:
  Description: Update Protection against Novell GroupWise WebAccess Basic Authentication Buffer Overflow
  Sources: Secunia Advisory: SA24944
  Vulnerable Systems: Novell GroupWise 7.0 prior to SP2
     
CPAI-2007-255
  Date:
  Severity:
  Description: Update Protection against McAfee VirusScan On-Access Scanner Long Filename Handling Buffer Overflow
  Sources: Secunia Advisory: SA24914
  Vulnerable Systems: McAfee VirusScan Enterprise 8.0i Patch 11 and prior
     
CPAI-2007-254
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows HLP File Handling Heap Buffer Overflow
  Sources: SecurityFocus Bugtraq ID: 23382
  Vulnerable Systems: Microsoft Windows NT
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
     
CPAI-2007-252
  Date:
  Severity:
  Description: Update Protection against MIT Kerberos V5 KAdminD klog_vsyslog Server Stack Buffer Overflow
  Sources: Secunia Advisory: SA24740
  Vulnerable Systems: MIT Kerberos Project Kerberos Prior to krb5-1.6.1
     
CPAI-2007-249
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Vista Windows Mail File Execution (MS07-034)
  Sources: Microsoft Scurity Bulletin MS07-034
  Vulnerable Systems: Microsoft Windows Mail 6.0.6000.16386 and prior
     
CPAI-2007-245
  Date:
  Severity:
  Description: Update Protection against Internet Explorer 7 Canceled Page Cross-Site Scripting (MS07-033)
  Sources: Microsoft Scurity Bulletin MS07-033
  Vulnerable Systems: Microsoft Internet Explorer 7
     
CPAI-2007-244
  Date:
  Severity:
  Description: Update Protection against Apache Tomcat URIencoding Directory Traversal
  Sources: SecurityFocus Bugtraq ID: 22960
  Vulnerable Systems: Apache Software Foundation Tomcat prior to 5.5.22
Apache Software Foundation Tomcat prior to 6.0.10
     
CPAI-2007-243
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime udta Atom Parsing Heap Overflow
  Sources: Secunia Advisory: SA24359
  Vulnerable Systems: Apple QuickTime Prior to 7.1.5
     
CPAI-2007-242
  Date:
  Severity:
  Description: Update Protection against Mozilla Browsers JavaScript Argument Passing Code Execution Vulnerability
  Sources: Secunia Advisory: SA24205
  Vulnerable Systems: Mozilla Foundation Firefox Prior to 1.5.0.10
Mozilla Foundation Firefox Prior to 2.0.0.2
Mozilla Foundation SeaMonkey Prior to 1.0.8
Mozilla Foundation Thunderbird Prior to 1.5.0.10
     
CPAI-2007-241
  Date:
  Severity:
  Description: Update Protection against CA eTrust Intrusion Detection Encryption Key Handling Denial of Service
  Sources: Secunia Advisory: SA24309
  Vulnerable Systems: CA eTrust Intrusion Detection 2.0 SP1
CA eTrust Intrusion Detection 3.0
CA eTrust Intrusion Detection 3.0 SP1
     
CPAI-2007-238
  Date:
  Severity:
  Description: Update Protection against Internet Explorer onunload event memory corruption
  Sources: SecurityFocus Bugtraq ID: 22678
  Vulnerable Systems: Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7
     
CPAI-2007-237
  Date:
  Severity:
  Description: Update Protection against Microsoft Word Document Stream Handling Code Execution (MS07-024)
  Sources: Microsoft Scurity Bulletin MS07-024
  Vulnerable Systems: Microsoft Word 2000
Microsoft Word 2002
     
CPAI-2007-235
  Date:
  Severity:
  Description: Update Protection against Microsoft Office Drawing Record msofbtOPT Code Execution (MS07-015)
  Sources: Microsoft Scurity Bulletin MS07-015
  Vulnerable Systems: Microsoft Office 2000 Service Pack 3
Microsoft Office 2003 Service Pack 1
Microsoft Office 2003 Service Pack 2
Microsoft Office 2004 for Mac
Microsoft Office v. X for Mac
Microsoft Office XP Service Pack 3
Microsoft Project 2000 Service Release 1
Microsoft Project 2002 Service Pack 1
Microsoft Visio 2002 Service Pack 2
     
CPAI-2007-234
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime Color Table ID Heap Corruption
  Sources: Secunia Advisory: SA24359
  Vulnerable Systems: Apple QuickTime Prior to 7.1.5
     
CPAI-2007-233
  Date:
  Severity:
  Description: Update Protection against CA BrightStor ARCserve Backup Portmapper TADDR2UADDR Denial of Service
  Sources: Secunia Advisory: SA24009
  Vulnerable Systems: Computer Associates BrightStor ARCserve Backup r11.1
Computer Associates BrightStor ARCserve Backup r11.5
     
CPAI-2007-230
  Date:
  Severity:
  Description: Update Protection against Microsoft Word Section Table Array Buffer Overflow (MS07-14)
  Sources: Microsoft Scurity Bulletin MS07-14
  Vulnerable Systems: Microsoft Word 2000
Microsoft Word 2002
Microsoft Word 2003
Microsoft Word 2004 for Mac
Microsoft Word Viewer 2003
Microsoft Works Suite 2004
Microsoft Works Suite 2005
Microsoft Works Suite 2006
     
CPAI-2007-229
  Date:
  Severity:
  Description: Update Protection against Apple Mac OS X Installer Package Filename Format String
  Sources: SecurityFocus Bugtraq ID: 22272
  Vulnerable Systems: Apple Installer 2.1.5
     
CPAI-2007-228
  Date:
  Severity:
  Description: Update Protection against ISC BIND DNSSEC Validation Multiple RRsets Denial of Service
  Sources: Secunia Advisory: SA23904
  Vulnerable Systems: ISC BIND 9.0.x
ISC BIND 9.1.x
ISC BIND 9.2.0 - 9.2.7
ISC BIND 9.3.0 - 9.3.3
ISC BIND 9.4.0a1 - 9.4.0a6
ISC BIND 9.4.0b1 - 9.4.0b4
ISC BIND 9.4.0rc1
ISC BIND 9.5.0a1
     
CPAI-2007-227
  Date:
  Severity:
  Description: Update Protection against Apple QuickDraw PICT Images ARGB Records Handling Memory Corruption
  Sources: Secunia Advisory: SA23859
  Vulnerable Systems: Apple Computer QuickDraw 7.1.3 and possibly other versions
     
CPAI-2007-226
  Date:
  Severity:
  Description: Update Protection against Apple Mac OS X iChat AIM URL Format String
  Sources: SecurityFocus Bugtraq ID: 22146
  Vulnerable Systems: Apple iChat 3.1.6 (v441) and prior
     
CPAI-2007-225
  Date:
  Severity:
  Description: Update Protection against Microsoft Help Workshop HPJ OPTIONS Section Buffer Overflow
  Sources: Secunia Advisory: SA23862
  Vulnerable Systems: Microsoft Help Workshop 4.03.0002
     
CPAI-2007-223
  Date:
  Severity:
  Description: Update Protection against Microsoft Help Workshop CNT Help Contents Buffer Overflow
  Sources: Secunia Advisory: SA23862
  Vulnerable Systems: Microsoft Help Workshop 4.03.0002
     
CPAI-2007-222
  Date:
  Severity:
  Description: Update Protection against Sun Java GIF File Handling Memory Corruption
  Sources: Secunia Advisory: SA23757
  Vulnerable Systems: Sun Microsystems Java Runtime Environment 1.3.1_18 and prior
Sun Microsystems Java Runtime Environment 1.4.2_12 and prior
Sun Microsystems Java Runtime Environment 5.0 Update 9 and prior
     
CPAI-2007-221
  Date:
  Severity:
  Description: Update Protection against Squid Proxy FTP URI Processing Denial of Service
  Sources: Secunia Advisory: SA23805
  Vulnerable Systems: Squid Project Squid Web Proxy Cache 2.6-STABLE6 and prior
     
CPAI-2007-217
  Date:
  Severity:
  Description: Update Protection against Apple Computer Finder DMG Volume Name Memory Corruption
  Sources: SecurityFocus Bugtraq ID: 21980
  Vulnerable Systems: Apple Computer Finder 10.4.6 and prior versions
     
CPAI-2007-216
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Malformed Palette Record Memory Corruption (MS07-002)
  Sources: Microsoft Scurity Bulletin MS07-002
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel 2004 for Mac
Microsoft Excel v. X for Mac
Microsoft Excel Viewer 2003
     
CPAI-2007-215
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Column Record Handling Memory Corruption (MS07-002)
  Sources: Microsoft Scurity Bulletin MS07-002
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel 2004 for Mac
Microsoft Excel v. X for Mac
Microsoft Excel Viewer 2003
     
CPAI-2007-214
  Date:
  Severity:
  Description: Update Protection against MS Outlook iCal Meeting Request VEVENT Record Memory Corruption (MS07-003)
  Sources: Microsoft Scurity Bulletin MS07-003
  Vulnerable Systems: Microsoft Outlook 2002
Microsoft Outlook 2003
     
CPAI-2007-213
  Date:
  Severity:
  Description: Update Protection against Microsoft Excel Malformed IMDATA Record Buffer Overflow (MS07-002)
  Sources: Microsoft Scurity Bulletin MS07-002
  Vulnerable Systems: Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Excel 2004 for Mac
Microsoft Excel v. X for Mac
Microsoft Excel Viewer 2003
     
CPAI-2007-212
  Date:
  Severity:
  Description: Update Protection against Adobe Acrobat Reader PDF Catalog Handling
  Sources: SecurityFocus Bugtraq ID: 21910
  Vulnerable Systems: Adobe Systems Acrobat Reader 7.0 and prior
     
CPAI-2007-211
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime MOV File HREFTrack Cross-Zone Scripting
  Sources: INSERT_VALUE
  Vulnerable Systems: Apple Computer QuickTime 7.1.3 and prior
Apple Computer iTunes 7.0.2.16 and prior
     
CPAI-2007-210
  Date:
  Severity:
  Description: Update Protection against Adobe Acrobat Reader Plugin Crafted URL Double Free
  Sources: Adobe Security Bulletin APSA07-01
  Vulnerable Systems: Adobe Acrobat Professional 7.0.8 and prior
Adobe Acrobat Reader 7.0.8 and prior
Adobe Acrobat Standard 7.0.8 and prior
     
CPAI-2007-209
  Date:
  Severity:
  Description: Update Protection against Apple Quicktime RTSP URL Buffer Overflow
  Sources: Secunia Advisory: SA23540
  Vulnerable Systems: Apple Quicktime 7.1.3 and prior
     
CPAI-2007-143
  Date:
  Severity:
  Description: Update Protections against Recent Malware Threats (30-Dec-07)
  Sources: http://www.spywareguide.com/product_show.php?id=2636
http://www.spywaresignatures.com/details.php?spyware=bluewaveadultlinks
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2007-142
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Media Format ASF Parsing Code Execution Vulnerability (MS07-068)
  Sources: Microsoft Security Bulletin MS07-068
  Vulnerable Systems: Microsoft Windows Media Format Runtime 7.1
Microsoft Windows Media Format Runtime 9
Microsoft Windows Media Format Runtime 9.5
Microsoft Windows Media Format Runtime 11
Microsoft Windows Media Format Runtime x64 Edition 9.5
Microsoft Windows Media Services 9.1
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows Server 2003
     
CPAI-2007-141
  Date:
  Severity:
  Description: Update Protection against Microsoft DirectX SAMI Files Parsing Code Execution Vulnerability (MS07-064)
  Sources: Microsoft Security Bulletin MS07-064
  Vulnerable Systems: Microsoft DirectX 6.4
Microsoft DirectX 7.0
Microsoft DirectX 8.1
     
CPAI-2007-138
  Date:
  Severity:
  Description: Update Protections against Recent Malware Threats (18-Dec-07)
  Sources: http://www.spywareremove.com/removeSideFind.html
http://www.spywareguide.com/product_show.php?id=481
http://www.spywareguide.com/spydet_2594_gralicwrap.html
http://www.spywareguide.com/spydet_3785_personal_web.html
http://www.spywareguide.com/spydet_1253_browseracclerator.html
http://www.spywareguide.com/spydet_2535_sexyvideoscreensaver.html
http://research.sunbelt-software.com/threatdisplay.aspx?name=Trojan-Downloader.Delf.AMB&threatid=123651
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2007-137
  Date:
  Severity:
  Description: Update Protection against Apple QuickTime Crafted RTSP Response Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA27755
  Vulnerable Systems: Apple QuickTime 7.3 and prior
     
CPAI-2007-136
  Date:
  Severity:
  Description: Update Protection against FLAC Project libFLAC Picture Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA27210
  Vulnerable Systems: FLAC Project libFLAC Prior to 1.2.1
     
CPAI-2007-366
  Date:
  Severity:
  Description: Update Protection against IBM Lotus Domino Web Access ActiveX Controls Buffer Overflow
  Sources: Secunia Advisory: SA28184
  Vulnerable Systems: IBM Lotus Domino Web Access 6.x
IBM Lotus Domino Web Access 7.x
     
CPAI-2007-354
  Date:
  Severity:
  Description: Update Protection against ACD Systems ACDSee Products XPM Values Section Buffer Overflow
  Sources: SecurityFocus Bugtraq ID: 26554
  Vulnerable Systems: ACDSee Systems ACDSee Photo Editor 4.0 build 195 and priors
ACDSee Systems ACDSee Photo Manager 8.1 build 99 and priors
ACDSee Systems ACDSee Photo Manager 9.0 build 108 and priors
     
CPAI-2007-351
  Date:
  Severity:
  Description: Update Protection against BitDefender Online Scanner ActiveX Control Buffer Overflow
  Sources: Secunia Advisory: SA27717
  Vulnerable Systems: SOFTWIN BitDefender Online Scanner 8.0
     
CPAI-2007-321
  Date:
  Severity:
  Description: Update Protection against OpenOffice TIFF File Parsing Integer Overflow
  Sources: Secunia Advisory: SA26839
  Vulnerable Systems: OpenOffice.org OpenOffice Prior to 2.3.0
     
CPAI-2007-303
  Date:
  Severity:
  Description: Update Protection against CA Products AV Engine CHM File Handling Denial of Service
  Sources: Secunia Advisory: SA26155
  Vulnerable Systems: CA Anti-Spyware 2007
CA Anti-Virus 2007 Version 8
CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.0
CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1
CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 8
CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 8.1
CA Anti-Virus Gateway (Formerly eTrust Antivirus eTrust Antivirus Gateway) 7.1
CA Anti-Virus SDK (Formerly eTrust Anti-Virus SDK)
CA BrightStor ARCserve Backup 9.01
CA BrightStor ARCserve Backup 11
CA BrightStor ARCserve Backup 11.1
CA BrightStor ARCserve Backup 11.5
CA BrightStor ARCserve Client agent for Windows
CA BrightStor Enterprise Backup 10.5
CA Common Services(CCS) r11
CA Common Services(CCS) r11.1
CA eTrust EZ Antivirus 6.1
CA eTrust EZ Antivirus 7
CA eTrust EZ Armor 1
CA eTrust EZ Armor 2
CA eTrust EZ Armor 3.x
CA eTrust Internet Security Suite 1
CA eTrust Internet Security Suite 2
CA eTrust Intrusion Detection 2.0 SP1
CA eTrust Intrusion Detection 3.0
CA eTrust Intrusion Detection 3.0 SP1
CA Protection Suites 2
CA Protection Suites 3
CA Secure Content Manager (Formerly eTrust Secure Content Manager) 1.1
CA Secure Content Manager (Formerly eTrust Secure Content Manager) 8.0
CA Threat Manager for the Enterprise (Formerly eTrust Integrated Threat Management) 8
CA Unicenter Network and Systems Management (NSM) 3.0
CA Unicenter Network and Systems Management (NSM) 3.1
CA Unicenter Network and Systems Management (NSM) 11
CA Unicenter Network and Systems Management (NSM) 11.1
CA Anti-Spyware for the Enterprise (Formerly eTrust PestPatrol) 8
CA Anti-Spyware for the Enterprise (Formerly eTrust PestPatrol) 8.1
CA Internet Security Suite 2007 Version 3
CA Threat Manager for the Enterprise (formerly eTrust Integrated Threat Management) 8
CA Threat Manager for the Enterprise (formerly eTrust Integrated Threat Management) 8.1
     
CPAI-2007-292
  Date:
  Severity:
  Description: Update Protection against Microsoft Publisher 2007 conversion library code execution (MS07-037)
  Sources: Microsoft Scurity Bulletin MS07-037
  Vulnerable Systems: Microsoft Publisher 2007
     
CPAI-2007-253
  Date:
  Severity:
  Description: Update Protection against Yahoo Messenger AudioConf ActiveX Control Buffer Overflow
  Sources: Secunia Advisory: SA24742
  Vulnerable Systems: Yahoo! Yahoo! Messenger 5.x
Yahoo! Yahoo! Messenger 6.x
Yahoo! Yahoo! Messenger 7.x
Yahoo! Yahoo! Messenger 8.x prior to 8.1.0.249
     
CPAI-2007-248
  Date:
  Severity:
  Description: Update Protection against Digium Asterisk SIP Invalid Response Code Denial of Service
  Sources: Secunia Advisory: SA24579
  Vulnerable Systems: Digium Asterisk 1.2.x prior to 1.2.18
Digium Asterisk 1.4.x prior to 1.4.3
Digium Asterisk Appliance Developer Kit 0.x.x prior to 0.4.0
Digium Asterisk Business Edition A.x.x all releases
Digium Asterisk Business Edition B.x.x prior and including B.1.3.2
Digium AsteriskNOW Prior and including Beta 5
     
CPAI-2007-239
  Date:
  Severity:
  Description: Update Protection against Mozilla Network Security Services SSLv2 client integer underflow
  Sources: Secunia Advisory: SA24253
  Vulnerable Systems: Mozilla Foundation Firefox Prior to 1.5.0.10
Mozilla Foundation Firefox Prior to 2.0.0.2
Mozilla Foundation SeaMonkey Prior to 1.0.8
Mozilla Foundation Thunderbird Prior to 1.5.0.10
     
CPAI-2007-208
  Date:
  Severity:
  Description: IPS-1 Protection Update - Authentication (v 15), DDOS (v 12), DHCP (v 8), Enterprise Software (v 2), Finger (v 10), FTP (v 23), IRC (v 13), LPD (v 11)
  Sources:  
  Vulnerable Systems:  
     
CPAI-2007-135
  Date:
  Severity:
  Description: Preemptive Protection against Apache HTTP Server 413 Error Page Cross-Site Scripting Vulnerability
  Sources: Secunia Advisory: SA27906
  Vulnerable Systems: Apache version 2.0.46 (Red Hat)
Apache version 2.0.51 (Fedora)
Apache version 2.0.55 (Ubuntu)
Apache version 2.0.59 (Unix)
Apache version 2.2.3 (FreeBSD)
Apache version 2.2.4 (Linux/SUSE)
     
CPAI-2007-134
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.193.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
Defense Updates
CPAI-2007-143
  Date:
  Update Number: 541071227 (VPN-1 NG R54/R55)
591071227 (VPN-1 NGX R60)
602071227 (VPN-1 NGX R61/R62/R65)
591071227 (VPN-1 VSX NGX)
592071227 (InterSpect NGX)
  Description: Protections against Recent Malware Threats (30-Dec-07)
     
CPAI-2007-142
  Date:
  Update Number: 541071227 (VPN-1 NG R55 Only)
591071227 (VPN-1 NGX R60)
602071227 (VPN-1 NGX R61/R62/R65)
591071227 (VPN-1 VSX NGX)
592071227 (InterSpect NGX)
  Description: Microsoft Windows Media Format ASF Parsing Vulnerability (MS07-068)
     
CPAI-2007-141
  Date:
  Update Number: 591071227 (VPN-1 NGX R60)
602071227 (VPN-1 NGX R61/R62/R65)

  Description: Microsoft DirectX SAMI Files Parsing Vulnerability (MS07-064)
     
CPAI-2007-139
  Date:
  Update Number: 692071223 (Connectra NGX R61/R62)
541071223 (VPN-1 NG R55 Only)
591071223 (VPN-1 VSX NGX)
592071223 (InterSpect NGX)
  Description: Microsoft Windows Message Queuing Protection (MS07-065)
     
CPAI-2007-138
  Date:
  Update Number: 692071223 (Connectra NGX R61/R62)
541071223 (VPN-1 NG R54/R55)
591071223 (VPN-1 VSX NGX)
592071223 (InterSpect NGX)
  Description: Protections against Recent Malware Threats (18-Dec-07)
     
CPAI-2007-137
  Date:
  Update Number: 692071223 (Connectra NGX R61/R62)
541071223 (VPN-1 NG R55 Only)
591071223 (VPN-1 VSX NGX)
592071223 (InterSpect NGX)
  Description: Apple QuickTime Crafted RTSP Response Protection
     
CPAI-2007-136
  Date:
  Update Number: 592071223 (InterSpect NGX)
  Description: FLAC Project libFLAC Picture Protection
     
CPAI-2007-140
  Date:
  Update Number: 591071218 (VPN-1 NGX R60)
602071218 (VPN-1 NGX R61/R62/R65)
  Description: Microsoft AVI File Parsing Protection (MS07-064)
     
CPAI-2007-139
  Date:
  Update Number: 591071218 (VPN-1 NGX R60)
602071218 (VPN-1 NGX R61/R62/R65)
  Description: Microsoft Windows Message Queuing Protection (MS07-065)
     
CPAI-2007-138
  Date:
  Update Number: 591071218 (VPN-1 NGX R60)
602071218 (VPN-1 NGX R61/R62/R65)
  Description: Protections against Recent Malware Threats (18-Dec-07)
     
CPAI-2007-137
  Date:
  Update Number: 591071218 (VPN-1 NGX R60)
602071218 (VPN-1 NGX R61/R62/R65)
  Description: Apple QuickTime Crafted RTSP Response Protection
     
CPAI-2007-136
  Date:
  Update Number: 591071218 (VPN-1 NGX R60)
602071218 (VPN-1 NGX R61/R62/R65)
  Description: FLAC Project libFLAC Picture Protection
     
CPAI-2007-134
  Date:
  Update Number: 692071129 (Connectra NGX R61/R62)
691071129 (Connectra NGX R60)
  Description: Integrity Clientless Security (ICS) Update 3.7.193.0
     
SBP-2007-11
  Date:
  Update Number: 541071115 (VPN-1 NG R55 Only)
591071115 (VPN-1 NGX R60)
602071115 (VPN-1 NGX R61/R62/R65)
591071115 (VPN-1 VSX NGX)
592071115 (InterSpect NGX)
  Description: Multiple Oracle Database Protections
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065