SmartDefense Security Advisory

Microsoft Movie Maker Project File Handling Buffer Overflow Vulnerability (MS10-016)

Industry Reference:CVE-2010-0265.

A buffer overflow vulnerability has been identified in Microsoft Movie Maker. Microsoft Movie Maker is a video creating/editing software, that contains features such as effects, transitions, titles/credits, audio track, and timeline narration. A remote attacker could exploit this issue via a malformed Movie Maker project (.mswmm) file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Movie Maker project (.mswmm) files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-048.

Microsoft Excel EntExU2 Record Memory Corruption Vulnerability (MS10-017)

Industry Reference:CVE-2010-0257.

A memory corruption vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-041.

Microsoft Excel Sheet Object Type Confusion Vulnerability (MS10-017)

Industry Reference:CVE-2010-0258.

A remote code execution vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-042.

Microsoft Excel MDXTUPLE and MDXSET Records Heap Overflow Vulnerabilities (MS10-017)

Industry References:CVE-2010-0260, CVE-2010-0261.

Multiple heap overflow vulnerabilities have been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit these issues via a malformed Excel file. Successful exploitation of these vulnerabilities may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
CPAI-2010-043.

Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability (MS10-017)

Industry Reference:CVE-2010-0262.

A memory corruption vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-045.

Microsoft Excel XLSX File Parsing Code Execution Vulnerability (MS10-017)

Industry Reference:CVE-2010-0263.

A remote code execution vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

Security Gateway R70: A new protection is now available.
CPAI-2010-046.

Microsoft Excel DbOrParamQry Record Parsing Code Execution Vulnerability (MS10-017)

Industry Reference:CVE-2010-0264.

A remote code execution vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. This protection will detect and block the transferring of malformed Excel files over HTTP.

IPS-1 & IPS-1 NGX R65: A new protection is now available.
Security Gateway R70: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-047.

Improvements have been made to the following protections:

Adobe Flash Player Subvert Domain Sandbox (APSB10-06)
CPAI-2010-039.

Microsoft Rich Textbox Control Arbitrary File Overwrite
CPAI-2008-018

Oracle Database Server Network Authentication AUTH_SESSKEY Buffer Overflow
CPAI-2009-274



.

March 9, 2010

IPS Software Blade

Buy Now

Guidelines

Forums

SmartDefense Microsoft Security Resources
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065