Check Point SmartDefense Service Advisories

Check Point SmartDefense Service Advisories http://www.checkpoint.com/defense/advisories/public/index.html The SmartDefense Service provides real-time updates and new attack protection capabilities for Application Intelligence, Web Intelligence, and Network defenses for various products. en-us http://www.checkpoint.com/copyright.html Tue, 19 Aug 2008 06:24:30 PDT August 13, 2008 07:07:59 PDT webmaster@checkpoint.com Check Point Software Technologies Ltd. https://sc1.checkpoint.com/www/images/layout/duke/logo-checkpoint.gif http://www.checkpoint.com/defense/advisories/public/index.html Security Best Practice: Adobe Flash Proxy Auto-Discovery DHCP Traffic Inspection http://www.checkpoint.com/defense/advisories/public/2008/sbp-28-Sep.html 3 Adobe Flash is a multimedia software that is commonly used to create animation, advertisements, and various web page components.
There is a feature in Flash Player 8 that allows auto discovery of an Edge server on a local network. When the connection is created a broadcast is sent on the DHCP port, the Edge server answers the request and the Flash Player reconnects through the edge server.

The SmartDefense DHCP Protocol Enforcement protection is blocking this kind of pseudo-DHCP traffic by default.
The update enables users to allow such traffic without inspection. ]]> Wed, 01 Oct 2008 23:38:04 PDT Update Protection against Macrovision InstallShield Update Service Agent ActiveX Memory Corruption Vulnerability http://www.checkpoint.com/defense/advisories/public/2008/cpai-22-Sep.html 3 Wed, 01 Oct 2008 23:13:03 PDT Update Protection against Trend Micro OfficeScan Server cgiRecvFile Buffer Overflow http://www.checkpoint.com/defense/advisories/public/2008/cpai-30-Sep.html 3 Mon, 06 Oct 2008 00:30:01 PDT Update Protection against Microsoft Windows WRITE_ANDX SMB Processing Denial of Service http://www.checkpoint.com/defense/advisories/public/2008/cpai-28-Sep.html 3 Thu, 02 Oct 2008 02:09:22 PDT Update Protection against Trend Micro OfficeScan objRemoveCtrl ActiveX Control Buffer Overflow Vulnerability http://www.checkpoint.com/defense/advisories/public/2008/cpai-06-Jul.html 3 Wed, 01 Oct 2008 23:23:15 PDT Update Protection against Apache mod_proxy_ftp XSS Vulnerability http://www.checkpoint.com/defense/advisories/public/2008/cpai-05-Octa.html 2 Mon, 06 Oct 2008 13:02:20 PDT Workaround for Windows Media Player Sampling Rate Vulnerability (MS08-054) http://www.checkpoint.com/defense/advisories/public/2008/sbp-31-Aug.html 4 Wed, 01 Oct 2008 23:31:41 PDT Update Protection against GDI+ BMP Integer Overflow Vulnerability (MS08-052) http://www.checkpoint.com/defense/advisories/public/2008/cpai-02-Sep.html 4 Sun, 05 Oct 2008 02:40:35 PDT Update Protection against GDI+ VML Buffer Overrun Vulnerability (MS08-052) http://www.checkpoint.com/defense/advisories/public/2008/cpai-01-Sepb.html 4 Wed, 01 Oct 2008 23:36:29 PDT Update Protection against GDI+ WMF Buffer Overrun Vulnerability (MS08-052) http://www.checkpoint.com/defense/advisories/public/2008/cpai-01-Sepa.html 4 Sun, 05 Oct 2008 01:28:04 PDT