Check Point Security Advisory
»Top Protections

Remote Code Execution Vulnerability Discovered in Windows Media Player
Microsoft Security Bulletin MS11-092CVE-2011-3401 )
A remote code execution vulnerability has been reported in Windows Media Player and Windows Media Center. Check Point IPS Software Blade, SmartDefense, and IPS-1 protect networks against this issue. Learn More .

Check Point Protects Networks from Internet Explorer Remote Code Execution Vulnerability
Microsoft Security Bulletin MS11-090CVE-2011-3397 )
A Microsoft Internet Explorer vulnerability has been reported that could allow remote code execution if a user views a maliciously crafted Web page that uses a specific binary behavior in Internet Explorer. Check Point IPS Software Blade, SmartDefense, and IPS-1 provide protection at the network level against this issue. Learn More .

Check Point Protects Against Critical Vulnerability in Adobe Reader and Acrobat
Adobe Security Advisory APSA11-04CVE-2011-2462 )
A critical vulnerability in the Adobe Reader and Acrobat products could cause a crash and potentially allow an attacker to take control of the affected system. This issue is already being exploited in the wild. The Check Point IPS Software Blade provides immediate protection against this vulnerability at the network level. Learn More .

December 13, 2011
In This Advisory
Top Protections
Remote Code Execution Vulnerability Discovered in Windows Media Player
Check Point Protects Networks from Internet Explorer Remote Code Execution Vulnerability
Check Point Protects Against Critical Vulnerability in Adobe Reader and Acrobat
Highlighted Protections
Including Patch Tuesday

Contact Us

IPS Software Blades

Learn About Our Endpoint Security

SmartDefense Microsoft Security Resources

» Highlighted Protections

This table lists Check Point protections for recently disclosed threats. In some cases, Check Point protections against such threats or threat types have been available for some time, and the date listed is the date when the protection became available.

Severity Vulnerability Description Check Point Protection
Issued
Industry Reference Check Point Reference
Number
CriticalCritical Microsoft Windows Media Player DVR-MS Memory Corruption 13-Dec-2011 CVE-2011-3401 CPAI-2011-577
CriticalCritical Microsoft PowerPoint OfficeArt Shape Remote Code Execution 13-Dec-2011 CVE-2011-3413 CPAI-2011-576
CriticalCritical Microsoft Time Remote Code Execution 13-Dec-2011 CVE-2011-3397 CPAI-2011-575
CriticalCritical Microsoft Excel Record Parsing Code Execution 13-Dec-2011 CVE-2011-3403 CPAI-2011-574
CriticalCritical Microsoft Publisher Invalid Pointer Code Execution 13-Dec-2011 CVE-2011-3411 CPAI-2011-569
CriticalCritical Adobe Reader and Acrobat U3D Shading Modifier Memory Corruption 06-Dec-2011 CVE-2011-2462 CPAI-2011-565
CriticalHigh Microsoft PowerPoint Insecure Library Loading Vulnerability 13-Dec-2011 CVE-2011-3396 CPAI-2011-573
CriticalHigh Internet Explorer Insecure Library Loading Code Execution 13-Dec-2011 CVE-2011-2019 CPAI-2011-572
CriticalHigh Microsoft Publisher Malformed File Parsing Memory Corruption 13-Dec-2011 CVE-2011-3412 CPAI-2011-571
CriticalHigh Microsoft Publisher Out-of-bounds Array Index Code Execution 13-Dec-2011 CVE-2011-3410 CPAI-2011-570
CriticalHigh Internet Explorer XSS Filter JavaScript Information Disclosure 13-Dec-2011 CVE-2011-1992 CPAI-2011-568
CriticalHigh Microsoft OLE Property Code Execution 13-Dec-2011 CVE-2011-3400 CPAI-2011-567
CriticalHigh Microsoft Word Access Violation Code Execution 13-Dec-2011 CVE-2011-1983 CPAI-2011-566

More Updates >
Have questions about IPS?
IPS ForumParticipate in the IPS User Forum. The IPS Forum is your space for asking questions regarding all IPS features, and to collaborate with other IPS users, worldwide, on IPS related issues. Check Point employees may monitor the forum and provide information on the issues posted.
Know someone who should be getting the Advisories?

Subscribe to Security Alerts and Advisories

» About the Check Point Update Services
Check Point provides ongoing and real-time updates and configuration information through an update service included with the relevant subscriptions. Updates from Check Point's global Research and Response Centers increase the value of your Check Point products, and minimize threats by providing defenses that can be used before vendor patches are applied throughout your network. For more information, visit www.CheckPoint.com.

Archived Check Point Security Advisories
Read Check Point's Privacy Policy
©2003-2010 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved. 800 Bridge Parkway, Redwood City, CA USA 94065