Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Advisories

Check Point Update Service Advisories offer detailed descriptions and step-by-step instructions on how to activate and configure relevant defenses provided by Check Point products. Attack and Threat Protection Advisories are available to Check Point Update Service and NGX SmartDefense subscribers.

Severity Date Check Point
Reference
Industry
Reference
Description

Updated
CPAI-2014-1704 CVE-2006-4044
Web Servers PHPCodeCabinet Remote File Inclusion (CVE-2006-4044)

Updated
CPAI-2014-1703 CVE-2007-2936
Web Servers Frequency Clock Remote File Inclusion (CVE-2007-2936)

Updated
CPAI-2014-1702 CVE-2007-2317
Web Servers Tosmo Mambo Remote File Inclusion (CVE-2007-2317)

Updated
CPAI-2014-1701 CVE-2007-2364
Web Servers BurnCMS Remote File Inclusion (CVE-2007-2364)

Updated
CPAI-2014-1700 CVE-2006-4644
Web Servers PHPFullAnnu Remote File Inclusion (CVE-2006-4644)

Updated
CPAI-2014-1693   ZmEu Security Scanner

Updated
CPAI-2014-1690   Multiple PHP Servers WeevelyShell Backdoor Command Execution

Updated
CPAI-2014-1686   Multiple PHP Servers DQ99shell Backdoor Command Execution

Updated
CPAI-2014-1684   Multiple PHP Servers C100shell Backdoor Command Execution

Updated
CPAI-2014-1683   Wordpress Timthumb WebShot Vulnerability Code Execution

Updated
CPAI-2014-1682   Multiple PHP Servers C99shell Backdoor Command Execution

Updated
CPAI-2014-1676   Fiesta Exploit Kit Redirection

Updated
CPAI-2014-1675   Web Servers Malicious Encoding Directory Traversal

Updated
CPAI-2014-1673 CVE-2014-1761
Microsoft Word RTF listoverridecount Memory Corruption (MS14-017; CVE-2014-1761)

Updated
CPAI-2014-1670   JPEG Files Containing Suspicious Comments

Updated
CPAI-2014-1668 CVE-2014-3214
ISC BIND Recursive Nameservers Prefetch Denial of Service (CVE-2014-3214)

Updated
CPAI-2014-1664 CVE-2014-0517
Adobe Flash Player and AIR Security Bypass (APSB14-14; CVE-2014-0517)

Updated
CPAI-2014-1661 CVE-2014-0768
Advantech WebAccess SCADA webvact.ocx AccessCode2 Buffer Overflow (CVE-2014-0768)

Updated
CPAI-2014-1659 CVE-2014-0535
Adobe Flash Player and AIR Security Bypass (APSB14-16; CVE-2014-0535)

Updated
CPAI-2014-1658   RIG Exploit Kit Website Redirection

Updated
CPAI-2014-1656 CVE-2014-0536
Adobe Flash Player Memory Corruption (APSB14-16; CVE-2014-0536)

Updated
CPAI-2014-1652 CVE-2014-2210
CA ERwin Web Portal ConfigServiceProvider Remote File Creation (CVE-2014-2210)

Updated
CPAI-2014-1651 CVE-2014-0429
Oracle Java awt_setPixels Information Disclosure (CVE-2014-0429)

Updated
CPAI-2014-1649 CVE-2014-3457
SAP Sybase Event Stream Processor esp_parse Remote Code Execution (CVE-2014-3457)

Updated
CPAI-2014-1641 CVE-2014-0766
Advantech WebAccess SCADA webvact.ocx NodeName2 Buffer Overflow (CVE-2014-0766)

Updated
CPAI-2014-1635 CVE-2014-0765
Advantech WebAccess SCADA webvact.ocx GotoCmd Buffer Overflow (CVE-2014-0765)

Updated
CPAI-2014-1687 CVE-2013-2465
LightsOut/Hello Exploit Kit (CVE-2013-2465)

Updated
CPAI-2014-1680 CVE-2014-2787
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2787)

Updated
CPAI-2014-1679 CVE-2014-1765
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-1765)

Updated
CPAI-2014-1677 CVE-2014-2804
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2804)

Updated
CPAI-2014-1667 CVE-2014-2795
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2795)

Updated
CPAI-2014-1666 CVE-2014-2797
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2797)

Updated
CPAI-2014-1665 CVE-2014-2801
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2801)

Updated
CPAI-2014-0868 CVE-2014-0282
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-0282)

Updated
CPAI-2014-1655 CVE-2013-0140
CVE-2013-0141
McAfee ePolicy Orchestrator Remote Code Execution (CVE-2013-0140; CVE-2013-0141)

Updated
CPAI-2014-1650 CVE-2014-3789
Cogent DataHub Web Server GetPermissions.asp Command Injection (CVE-2014-3789)

Updated
CPAI-2014-1648 CVE-2014-2416
Oracle Data Quality DateTimeWrapper onchange Remote Code Execution (CVE-2014-2416)

Updated
CPAI-2014-1646 CVE-2014-2856
Apple CUPS Web Interface URL Handling Cross-Site Scripting (CVE-2014-2856)

Updated
CPAI-2014-1643   Microsoft Internet Explorer Crafted URL Remote Code Execution

Updated
CPAI-2014-1642 CVE-2014-0521
Adobe Reader Javascript API Information Disclosure (APSB14-15; CVE-2014-0521)

Updated
CPAI-2014-1639   eScan Web Management Console Command Injection

Updated
CPAI-2014-1638   Simple E-Document upload Remote Code Execution

Updated
CPAI-2014-1637 CVE-2013-4152
CVE-2013-6429
CVE-2014-0002
Multiple Products XML System External Entity Information Disclosure (CVE-2013-4152; CVE-2013-6429; CVE-2014-0002)

Updated
CPAI-2014-1636 CVE-2013-4152
CVE-2013-6429
CVE-2014-0002
Multiple Products XML Public External Entity Information Disclosure (CVE-2013-4152; CVE-2013-6429; CVE-2014-0002)

Updated
CPAI-2014-1634 CVE-2008-5191
SePortal staticpages SQL Injection (CVE-2008-5191)

Updated
CPAI-2014-1628 CVE-2013-0232
ZoneMinder Video Server packageControl Command Execution (CVE-2013-0232)

Updated
CPAI-2014-1621 CVE-2002-0649
Microsoft SQL 2000 Slammer Worm Denial of Service (CVE-2002-0649)

Updated
CPAI-2014-1620   Eppler Software WebTester install2.php Script Command Execution

Updated
CPAI-2014-1600 CVE-2014-0520
Adobe Flash Player Sandbox Security Bypass (APSB14-14; CVE-2014-0520)

Updated
CPAI-2014-1556 CVE-2014-2525
LibYAML Scanner yaml_parser_scan_uri_escapes Heap Buffer Overflow - ver2 (CVE-2014-2525)

Updated
CPAI-2014-1482 CVE-2014-2525
LibYAML Scanner yaml_parser_scan_uri_escapes Heap Buffer Overflow (CVE-2014-2525)

Updated
CPAI-2014-1632 CVE-2011-3026
libpng png_decompress_chunk Integer Overflow - ver 2 (CVE-2011-3026)

Updated
CPAI-2014-1630 CVE-2014-1510
CVE-2014-1511
Mozilla Multiple Products WebIDL Remote Code Execution (CVE-2014-1510; CVE-2014-1511)

Updated
CPAI-2014-1629 CVE-2014-3120
ElasticSearch search Remote Code Execution (CVE-2014-3120)

Updated
CPAI-2014-1623   PHP print Remote Shell Command Execution

Updated
CPAI-2014-1625 CVE-2014-3470
OpenSSL Anonymous ECDH Denial of Service (CVE-2014-3470)

Updated
CPAI-2014-1624 CVE-2007-0936
Microsoft Visio Packed Object Parsing Memory Corruption - ver 2 (CVE-2007-0936)

Updated
CPAI-2014-1610 CVE-2014-1805
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-1805)

Updated
CPAI-2014-1591 CVE-2014-1800
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-1800)

Updated
CPAI-2014-1590 CVE-2014-1766
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-1766)

Archives