SDS Banner

SmartDefense Services Bulletin
May 2007

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.
 
In This Bulletin

About SmartDefense Services
Advisories
Defense Updates
About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Anti-virus updates and alerts for Check Point VPN-1 UTM and UTM-1
  • Anti-spyware updates for Check Point Integrity Anti-Spyware 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Integrity)
Advisories (Sorted by Severity, then Date)
CPAI-2007-053
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows DNS Server RPC Management Interface Buffer Overflow Vulnerability
  Sources: Microsoft Security Advisory (935964)
  Vulnerable Systems: Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Server
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows Server 2003 Storage Server
     
CPAI-2007-051
  Date:
  Severity:
  Description: Update Protection against Trend Micro OfficeScan ActiveX Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA24193
  Vulnerable Systems: Trend Micro OfficeScan Corporate Edition version 7.0
Trend Micro OfficeScan Corporate Edition version 7.3
     
CPAI-2007-043
  Date:
  Severity:
  Description: Preemptive Protection against Microsoft Agent Remote Code Execution Vulnerability (MS07-020)
  Sources: Microsoft Security Bulletin MS07-020
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Server 2003 SP2
Microsoft Windows Server 2003 x64 Edition SP1
Microsoft Windows Server 2003 x64 Edition SP2
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 SP2 (Itanium)
     
CPAI-2007-041
  Date:
  Severity:
  Description: Preemptive Protection against WMF/EMF Vulnerabilities (MS07-017)
  Sources: Microsoft Security Bulletin MS07-017
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 with SP1 (Itanium)
Microsoft Windows Server 2003 with SP2 (Itanium)
Microsoft Windows Server 2003 x64 Edition
Microsoft Windows Server 2003 x64 Edition SP2
Windows Vista
Windows Vista x64 Edition
     
CPAI-2007-040
  Date:
  Severity:
  Description: Preemptive Protection against Microsoft Windows Animated Cursor Remote Code Execution Vulnerability (MS07-017)
  Sources: Microsoft Security Bulletin MS07-017
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows Server 2003
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 (Itanium)
Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Windows Server 2003 SP2 (Itanium)
Microsoft Windows Server 2003 x64 Edition
Microsoft Windows Server 2003 x64 Edition SP2
Windows Vista
Windows Vista x64 Edition
     
CPAI-2007-055
  Date:
  Severity:
  Description: Preemptive Protection against Atrium MERCUR IMAP SUBSCRIBE Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA24619
  Vulnerable Systems: Atrium MERCUR Messaging Server 5.00.14 SP4 and prior
     
CPAI-2007-052
  Date:
  Severity:
  Description: Update Protection against Microsoft Universal Plug and Play Remote Code Execution Vulnerability (MS07-019)
  Sources: Microsoft Security Bulletin MS07-019
  Vulnerable Systems: Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
Microsoft Windows XP Professional x64 Edition SP2
     
CPAI-2007-049
  Date:
  Severity:
  Description: Update Protection against Novell NetMail IMAP Verb Literal Buffer Overflow Vulnerability
  Sources: FrSIRT/ADV-2006-5134
  Vulnerable Systems: Novell NetMail version 3.52 and prior
     
CPAI-2007-048
  Date:
  Severity:
  Description: Update Protection against Novell Netmail WebAdmin Remote Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA24445
  Vulnerable Systems: Novell Netmail version 3.5.2 and prior
     
CPAI-2007-047
  Date:
  Severity:
  Description: Update Protection against Trend Micro ServerProtect Buffer Overflow Vulnerabilities
  Sources: Secunia Advisory: SA24243
  Vulnerable Systems: Trend Micro ServerProtect for Windows version 5.58
Trend Micro ServerProtect for EMC version 5.58
Trend Micro ServerProtect for Network Appliance Filer version 5.61
Trend Micro ServerProtect for Network Appliance Filer version 5.62
     
CPAI-2007-046
  Date:
  Severity:
  Description: Update Protection against Oracle ORADC ActiveX Control Remote Code Execution Vulnerability
  Sources: Oracle Technology Network
ISS X-Force
  Vulnerable Systems: Oracle Oracle Database Server 10g
Oracle Oracle Database Server 9i
Oracle Oracle Database Server 8i
     
CPAI-2007-045
  Date:
  Severity:
  Description: Update Protection against Symantec Veritas NetBackup Remote Code Execution Vulnerability
  Sources: Secunia Advisory: SA23368
  Vulnerable Systems: Symantec Veritas NetBackup Enterprise Server version 6.0
Symantec Veritas NetBackup Enterprise Server version 5.1
Symantec Veritas NetBackup Enterprise Server version 5.0
Symantec Veritas NetBackup Server version 6.0
Symantec Veritas NetBackup Server version 5.1
Symantec Veritas NetBackup Server version 5.0
     
CPAI-2007-042
  Date:
  Severity:
  Description: Preemptive Protection against Mercury Mail IMAP Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA13348
  Vulnerable Systems: Mercury Mail version 4.01 and Prior 
     
CPAI-2007-054
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.152.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2007-050
  Date:
  Severity:
  Description: Update Protection against Microsoft Windows Workstation Service "NetrWkstaUserEnum" Denial of Service Vulnerability
  Sources: Secunia Advisory: SA23487
  Vulnerable Systems: Microsoft Windows 2000 SP4
Microsoft Windows XP SP1
Microsoft Windows XP SP2
Microsoft Windows XP Professional x64 Edition
     
CPAI-2007-044
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.149.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
Defense Updates
CPAI-2007-054
  Date:
  Update Number: 692070425 (Connectra NGX R61/R62)
691070425 (Connectra NGX R60)
690070425 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.152.0
     
CPAI-2007-053
  Date:
  Update Number: 541070419 (VPN-1 NG R55)
550070419 (VPN-1 NG R55W)
591070419 (VPN-1 NGX R60)
602070419 (VPN-1 NGX R61/R62/R65)
591070419 (VPN-1 VSX NGX)
547070419 (InterSpect 1.x and 2.0)
592070419 (InterSpect NGX)
  Description: Microsoft DNS Server RPC Protection
     
CPAI-2007-052
  Date:
  Update Number: 541070419 (VPN-1 NG R55)
550070419 (VPN-1 NG R55W)
591070419 (VPN-1 NGX R60)
602070419 (VPN-1 NGX R61/R62/R65)
591070419 (VPN-1 VSX NGX)
547070419 (InterSpect 1.x and 2.0)
592070419 (InterSpect NGX)
  Description: Microsoft UPnP Protection (MS07-019)
     
CPAI-2007-051
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
  Description: Trend Micro OfficeScan ActiveX Protection
     
CPAI-2007-050
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
  Description: Microsoft Windows Workstation Service 'NetrWkstaUserEnum' Protection
     
CPAI-2007-049
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: Novell NetMail IMAP Verb Literal Protection
     
CPAI-2007-048
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: Novell Netmail WebAdmin Protection
     
CPAI-2007-047
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: Trend Micro ServerProtect Protection
     
CPAI-2007-046
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
  Description: Oracle ORADC ActiveX Control Protection
     
CPAI-2007-045
  Date:
  Update Number: 541070412 (VPN-1 NG R55)
550070412 (VPN-1 NG R55W)
591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
591070412 (VPN-1 VSX NGX)
547070412 (InterSpect 1.x and 2.0)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: Symantec Veritas NetBackup Protection
     
SBP-2007-06
  Date:
  Update Number: 591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: FTP Format Strings Attacks Protection
     
SBP-2007-05
  Date:
  Update Number: 591070412 (VPN-1 NGX R60)
602070412 (VPN-1 NGX R61/R62/R65)
592070412 (InterSpect NGX)
692070412 (Connectra NGX R61/R62)
  Description: FTP Brute Force Attacks Protection
     
CPAI-2007-044
  Date:
  Update Number: 692070411 (Connectra NGX R61/R62)
691070411 (Connectra NGX R60)
690070411 (Connectra 2.0)
  Description: Integrity Clientless Security (ICS) Update 3.7.149.0
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065