Check Point Security Advisory
»Top Protections

Check Point Protects Networks Against Vulnerability Being Exploited by the Duqu Malware
( Microsoft Security Advisory 2639658CVE-2011-3402 )
A vulnerability in the Microsoft Windows TrueType font parsing engine can allow an attacker to execute code on a targeted system. This vulnerability is being exploited in the wild by the Duqu malware. The Check Point IPS Software Blade protects networks against this issue in the latest IPS update. Learn More .

Remote Code Execution Vulnerability Discovered in Microsoft Windows Mail and Meeting Space Applications
( Microsoft Security Bulletin MS11-085, CVE-2011-2016 )
A remote code execution vulnerability has been reported in Microsoft Windows Mail and Windows Meeting Space. The Check Point IPS Software Blade provides network protection against this issue in the latest IPS update. Learn More .

Check Point Provides Network Protection Against Adobe Photoshop Remote Code Execution Vulnerability
( APSB-11-22, CVE-2011-2131 )
A remote code execution vulnerability has been discovered in Adobe Photoshop. The Check Point IPS Software Blade provides network protection against this issue in the latest IPS update. Learn More .

November 8, 2011
In This Advisory
Top Protections
Check Point Protects Networks Against Vulnerability Being Exploited by the Duqu Malware
Remote Code Execution Vulnerability Discovered in Microsoft Windows Mail and Meeting Space Applications
Check Point Provides Network Protection Against Adobe Photoshop Remote Code Execution Vulnerability
Highlighted Protections
Including Patch Tuesday

Contact Us

IPS Software Blades

Learn About Our Endpoint Security

» Highlighted Protections

This table lists Check Point protections for recently disclosed threats. In some cases, Check Point protections against such threats or threat types have been available for some time, and the date listed is the date when the protection became available.

Severity Vulnerability Description Check Point Protection
Issued
Industry Reference Check Point Reference
Number
CriticalCritical Microsoft Windows Messenger Service Buffer Overrun Code Execution 08-Nov-2011 CAN-2003-0717 CPAI-2011-516
CriticalCritical Microsoft Windows Negotiate SSP Code Execution 08-Nov-2011 CAN-2004-0119 CPAI-2011-514
CriticalCritical Web Servers SSL Flooding Denial of Service 06-Nov-2011 - CPAI-2011-505
CriticalHigh Web Servers HTTP Flooding Denial of Service 01-Nov-2011 - CPAI-2011-504
CriticalHigh Microsoft Windows SMB Unchecked Buffer Denial of Service 08-Nov-2011 CAN-2002-0724 CPAI-2011-511

More Updates >
Have questions about IPS?
IPS ForumParticipate in the IPS User Forum. The IPS Forum is your space for asking questions regarding all IPS features, and to collaborate with other IPS users, worldwide, on IPS related issues. Check Point employees may monitor the forum and provide information on the issues posted.
Know someone who should be getting the Advisories?

Subscribe to Security Alerts and Advisories

» About the Check Point Update Services
Check Point provides ongoing and real-time updates and configuration information through an update service included with the relevant subscriptions. Updates from Check Point's global Research and Response Centers increase the value of your Check Point products, and minimize threats by providing defenses that can be used before vendor patches are applied throughout your network. For more information, visit www.CheckPoint.com.

Archived Check Point Security Advisories
Read Check Point's Privacy Policy
©2003-2010 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved. 800 Bridge Parkway, Redwood City, CA USA 94065