SDS Banner

SmartDefense Services Bulletin
June 2008

Greetings! This bulletin features Check Point SmartDefense Services highlights for the month of . Please feel free to email us if you have any comments or questions.

To sign-up to the mailing list, send an email to listserv@amadeus.us.checkpoint.com with the text "SUBSCRIBE SMARTDEFENSE-NEWS" in the email body. If you'd like to unsubscribe from this bulletin, send an email to listserv@amadeus.us.checkpoint.com with the text "SIGNOFF SMARTDEFENSE-NEWS" in the email body.

 
In This Bulletin

About SmartDefense Services
What's New
Advisories
Defense Updates

About SmartDefense Services

Check Point SmartDefense Services maintain the most current preemptive security for your Check Point security infrastructure. To help your defenses stay continuously ahead of today’s constantly evolving threat landscape, SmartDefense Services provide:

  • Preemptive, ongoing, and real-time updates to defenses and security policies
  • Ongoing new protocol and application defenses against emerging threats and attacks
  • Step-by-step instructions on how to activate and configure defenses against emerging threats and vulnerabilities – usually before exploits are created by hackers
  • Messaging Security updates (providing comprehensive protection for email infrastructures) for UTM-1 Total Security appliances and VPN-1 UTM Total Security software licenses
  • Anti-virus updates and alerts for Check Point VPN-1 UTM
  • Anti-spyware updates for Check Point Endpoint Security 
  • Malicious applications database for automating network access and malware termination policies (Program Advisor Service for Check Point Endpoint Security)
What's New

Messaging Security -- Protect your Email Infrastructure

Messaging Security from Check Point provides comprehensive protection for an organization's messaging infrastructure. The multi-dimensional approach protects the email infrastructure, provides highly accurate spam protection, defends organizations from a wide variety of virus and malware threats within email. Messaging Security is available as part of Check Point UTM-1 Total Security offerings, including UTM-1 Total Security appliances and VPN-1 UTM Total Security software licenses. Click here for more information (http://www.checkpoint.com/defense/advisories/public/messaging/index.html).

Advisories (Sorted by Severity, then Date)
CPAI-2008-069
  Date:
  Severity:
  Description: Update Protection against Microsoft Word Cascading Style Sheet (CSS) Vulnerability (MS08-026)
  Sources: Microsoft Security Bulletin MS08-026
  Vulnerable Systems: Microsoft Word 2000 SP3
Microsoft Word 2002 SP3
Microsoft Word 2003 SP2
Microsoft Word 2003 SP3
Microsoft Word Viewer 2003
Microsoft Word Viewer 2003 SP3
Microsoft Word 2007
Microsoft Word 2007 SP1
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
     
CPAI-2008-068
  Date:
  Severity:
  Description: Update Protection against Microsoft Word Drawing Object Remote Code Execution Vulnerability (MS08-026)
  Sources: Microsoft Security Bulletin MS08-026
  Vulnerable Systems: Microsoft Word 2000 SP3
Microsoft Word 2002 SP3
Microsoft Word 2003 SP2
Microsoft Word 2003 SP3
Microsoft Word Viewer 2003
Microsoft Word Viewer 2003 SP3
Microsoft Word 2007
Microsoft Word 2007 SP1
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
     
CPAI-2008-112
  Date:
  Severity:
  Description: Update Protection against HP OpenView Network Node Manager HTTP Handling Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29641
  Vulnerable Systems: HP OpenView Network Node Manager 7.51
     
CPAI-2008-071
  Date:
  Severity:
  Description: Update Protections against Recent Malware Threats (25-May-08)
  Sources: http://www.spywaresignatures.com/details.php?spyware=find.fmtoolbar
http://www.spywaresignatures.com/details.php?spyware=ezreward
http://www.ca.com/us/securityadvisor/pest/pest.aspx?id=453090717
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2008-105
  Date:
  Severity:
  Description: Update Protection against Adobe Multiple Products BMP Image Header Handling Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29838
  Vulnerable Systems: Adobe Systems Adobe Photoshop CS 3
Adobe Systems Adobe Photoshop Album Starter 3.2
Adobe Systems After Effects CS3
     
CPAI-2008-132
  Date:
  Severity:
  Description: Update Protection against CA ARCserve Backup for Laptops and Desktops NetBackup Arbitrary File Upload Vulnerability
  Sources: Secunia Advisory: SA25606
  Vulnerable Systems: CA ARCserve Backup for Laptops and Desktops r11.0
CA ARCserve Backup for Laptops and Desktops r11.1
CA ARCserve Backup for Laptops and Desktops r11.5
CA Desktop Management Suite 11.1
CA Desktop Management Suite 11.2
     
CPAI-2008-131
  Date:
  Severity:
  Description: Update Protection against Cisco Secure Access Control Server UCP Application CSuserCGI.exe Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29351
  Vulnerable Systems: Cisco Systems UCP Prior to 4.2
     
CPAI-2008-130
  Date:
  Severity:
  Description: Update Protection against Borland StarTeam Multicast Service HTTP Handling Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29631
  Vulnerable Systems: Borland StarTeam Multicast Service 6.4
     
CPAI-2008-127
  Date:
  Severity:
  Description: Update Protection against McAfee ePolicy Orchestrator Framework Services HTTP Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29637
  Vulnerable Systems: McAfee ePolicy Orchestrator 4.0
     
CPAI-2008-072
  Date:
  Severity:
  Description: Integrity Clientless Security (ICS) Update 3.7.223.0
  Sources: SmartDefense Research Center
  Vulnerable Systems: Microsoft Windows clients
     
CPAI-2008-070
  Date:
  Severity:
  Description: Update Protection against Microsoft Malware Protection Engine Vulnerability (MS08-029)
  Sources: Microsoft Security Bulletin MS08-029
  Vulnerable Systems: Windows Live OneCare
Microsoft Antigen for Exchange 9.x
Microsoft Antigen for SMTP Gateway 9.x
Microsoft Windows Defender for Windows XP
Microsoft Windows Defender in Windows Vista
Microsoft Forefront Client Security
Microsoft Forefront Edge Server
Microsoft Forefront Security for Exchange Server
Microsoft Forefront Security for SharePoint
Standalone System Sweeper with MDOP
     
CPAI-2008-133
  Date:
  Severity:
  Description: Update Protection against Multiple Vendor CUPS Administration Interface CGI Heap Overflow vulnerability
  Sources: Secunia Advisory: SA29431
  Vulnerable Systems: Apple CUPS 1.3.5 and prior
     
CPAI-2008-128
  Date:
  Severity:
  Description: Update Protection against Trend Micro OfficeScan CGI Password Decryption Buffer Overflow Vulnerability
  Sources: Secunia Advisory: SA29124
  Vulnerable Systems: Trend Micro OfficeScan Corporate Edition 7.3 Patch 3 Build 1314 and prior
Trend Micro OfficeScan Corporate Edition 8.0 Patch 2 Build 1189 and prior
     
Defense Updates
CPAI-2008-071
  Date:
  Update Number: 591080521 (VPN-1 NGX R60)
602080521 (VPN-1 NGX R61/R62/R65)
602080521 (VPN-1 VSX NGX R65)
  Description: Protections against Recent Malware Threats (25-May-08)
     
CPAI-2008-070
  Date:
  Update Number: 591080521 (VPN-1 NGX R60)
  Description: Microsoft Malware Protection Engine Protection (MS08-029)
     
CPAI-2008-069
  Date:
  Update Number: 591080521 (VPN-1 NGX R60)
  Description: Microsoft Word Cascading Style Sheet (CSS) Protection (MS08-026)
     
CPAI-2008-068
  Date:
  Update Number: 591080521 (VPN-1 NGX R60)
  Description: Microsoft Word Drawing Object Remote Code Execution Protection (MS08-026)
     
CPAI-2008-072
  Date:
  Update Number: 692080520 (Connectra NGX R61/R62)
691080520 (Connectra NGX R60)
  Description: Integrity Clientless Security (ICS) Update 3.7.223.0
     
CPAI-2008-070
  Date:
  Update Number: 602080513 (VPN-1 NGX R61/R62/R65)
602080513 (VPN-1 VSX NGX R65)
  Description: Microsoft Malware Protection Engine Protection (MS08-029)
     
CPAI-2008-069
  Date:
  Update Number: 602080513 (VPN-1 NGX R61/R62/R65)
602080513 (VPN-1 VSX NGX R65)
  Description: Microsoft Word Cascading Style Sheet (CSS) Protection (MS08-026)
     
CPAI-2008-068
  Date:
  Update Number: 602080513 (VPN-1 NGX R61/R62/R65)
602080513 (VPN-1 VSX NGX R65)
  Description: Microsoft Word Drawing Object Remote Code Execution Protection (MS08-026)
     
SBP-2008-06
  Date:
  Update Number: 591080521 (VPN-1 NGX R60)
  Description: Microsoft Malware Protection Engine Denial of Service Protection (MS08-029)
     
SBP-2008-06
  Date:
  Update Number: 602080513 (VPN-1 NGX R61/R62/R65)
602080513 (VPN-1 VSX NGX R65)
  Description: Microsoft Malware Protection Engine Denial of Service Protection (MS08-029)
     
SDS Footer

You received this email because our records indicate that you wish to be contacted about SmartDefense Updates, Advisories, product news, and security information. If you do not want to receive further mailings, unsubscribe by sending a message with "SIGNOFF SMARTDEFENSE-NEWS" command to LISTSERV@AMADEUS.US.CHECKPOINT.COM in the first line (not the subject).

Copyright 2003-2008 Check Point Software Technologies LTD (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065