SDS Banner

SmartDefense Services Bulletin
March 2007

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.
 
In This Bulletin

About SmartDefense Services
Advisories
Defense Updates
About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 UTM and UTM-1
  • Anti-spyware updates for Check Point Integrity Anti-Spyware 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
Advisories (Sorted by Severity, then Date)
CPAI-2007-020
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows SNMP Memory Corruption Vulnerability (MS06-074)
  Sources: Microsoft Security Bulletin MS06-074
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 x64 Edition
     
CPAI-2007-019
  Date:
  Severity:
  Description: Update Protection against Citrix Presentation Remote Code Execution Vulnerability
  Sources: Secunia Advisory: SA23246
  Vulnerable Systems: Citrix Presentation Server Client for Windows versions prior to 9.230
     
CPAI-2007-013
  Date:
  Severity:
  Description: Update Protection against AOL (CDDB) Control Buffer Overflow Vulnerability
  Sources: FrSIRT/ADV-2006-4904
  Vulnerable Systems: AOL 9.0 Security Edition (revision 4156.910)
AOL 8.0 (revision 4129.230)
AOL 7.0 (revision 4114.563)
     
CPAI-2007-024
  Date:
  Severity:
  Description: Preemptive Protection against SmartFTP Banner Handling Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA24051
  Vulnerable Systems: SmartFTP Client version 2.0.1002
     
CPAI-2007-023
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Print Spooler Service Denial of Service Vulnerability
  Sources: Secunia Advisory: SA23196
  Vulnerable Systems: Microsoft Windows 2000 SP4
     
CPAI-2007-022
  Date:
  Severity:
  Description: Update Protection against Novell eDirectory Denial of Service Vulnerability
  Sources: Secunia Advisory: SA22506
  Vulnerable Systems: Novell eDirectory 8.8.1 and prior
Novell eDirectory 8.7.3.8 and prior
     
CPAI-2007-021
  Date:
  Severity:
  Description: Update Protection against Novell Print Spooler Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA23027
  Vulnerable Systems: Novell Client for Windows version 4.91 and prior
     
CPAI-2007-018
  Date:
  Severity:
  Description: Update Protection against Novell NetMail NMAP Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA23437
  Vulnerable Systems: Novell NetMail version 3.52 and prior
     
CPAI-2007-017
  Date:
  Severity:
  Description: Update Protection against Symantec Veritas NetBackup Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA23368
FrSIRT/ADV-2006-4999
  Vulnerable Systems: Symantec VERITAS NetBackup 5.0 Prior to MP7
Symantec VERITAS NetBackup 5.1 Prior to MP6
Symantec VERITAS NetBackup 6.0 Prior to MP4
     
CPAI-2007-016
  Date:
  Severity:
  Description: Update Protection against CA BrightStor Discovery Buffer Overflow Vulnerability
  Sources: FrSIRT/ADV-2006-4910
  Vulnerable Systems: BrightStor ARCserve Backup r11.5 SP1 and prior
BrightStor ARCserve Backup r11.1
BrightStor ARCserve Backup for Windows r11
BrightStor Enterprise Backup r10.5
BrightStor ARCserve Backup v9.01
CA Server Protection Suite r2
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
     
CPAI-2007-015
  Date:
  Severity:
  Description: Update Protection against IBM Tivoli Storage Manager Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA23177
  Vulnerable Systems: IBM Tivoli Storage Manager versions prior to 5.3.4
IBM Tivoli Storage Manager versions prior to 5.2.9
     
CPAI-2007-014
  Date:
  Severity:
  Description: Update Protection against 3Com TFTP Server Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA23113
  Vulnerable Systems: 3Com TFTP Server 2.0.1 and prior
     
CPAI-2007-012
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.135.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
Defense Updates
SBP-2007-03
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
692070221 (Connectra NGX R61/R62)
  Description: Multiple SNMP Protections
     
CPAI-2007-023
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: Microsoft Windows Print Spooler Service Protection
     
CPAI-2007-022
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: Novell eDirectory Protection
     
CPAI-2007-021
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: Novell Print Spooler Protection
     
CPAI-2007-020
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
692070221 (Connectra NGX R61/R62)
  Description: Microsoft Windows SNMP GetBulk Protection (MS06-074)
     
CPAI-2007-019
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: Citrix Presentation Protection
     
CPAI-2007-018
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: Novell NetMail NMAP Protection
     
CPAI-2007-017
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
692070221 (Connectra NGX R61/R62)
  Description: Symantec Veritas NetBackup Protection
     
CPAI-2007-016
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
692070221 (Connectra NGX R61/R62)
  Description: CA BrightStor Discovery Protection
     
CPAI-2007-015
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
692070221 (Connectra NGX R61/R62)
  Description: IBM Tivoli Storage Manager Protection
     
CPAI-2007-014
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
692070221 (Connectra NGX R61/R62)
  Description: 3Com TFTP Server Protection
     
CPAI-2007-013
  Date:
  Update Number: 541070221 (VPN-1 NG R55)
550070221 (VPN-1 NG R55W)
591070221 (VPN-1 NGX R60)
602070221 (VPN-1 NGX R61/R62)
591070221 (VPN-1 VSX NGX)
547070221 (InterSpect 1.x and 2.0)
592070221 (InterSpect NGX)
  Description: AOL (CDDB) Control Protection
     
CPAI-2007-012
  Date:
  Update Number: 692070205 (Connectra NGX R61/R62)
691070205 (Connectra NGX R60)
690070205 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.135.0
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065