Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Advisories

Check Point Update Service Advisories offer detailed descriptions and step-by-step instructions on how to activate and configure relevant defenses provided by Check Point products. Attack and Threat Protection Advisories are available to Check Point Update Service and NGX SmartDefense subscribers.

Severity Date Check Point
Reference
Industry
Reference
Description

Updated
CPAI-2014-1622 CVE-2014-0322
CVE-2014-0502
CVE-2013-1347
CVE-2014-1776
CVE-2013-2423
CVE-2013-2465
Infinity Exploit Kit Remote Code Execution

Updated
CPAI-2014-1596 CVE-2014-1775
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-1775)

Updated
CPAI-2014-1728   PDF Containing Encrypted Data

Updated
CPAI-2014-1695 CVE-2014-0519
Adobe Flash Player Sandbox Security Bypass (APSB14-14; CVE-2014-0519)

Updated
CPAI-2014-1694 CVE-2014-1806
Microsoft .NET Framework TypeFilterLevel Code Execution (MS14-026; CVE-2014-1806)

Updated
CPAI-2014-1672   Expiro User-Agent

Updated
CPAI-2014-1715 CVE-2007-2189
Web Servers mxBB MX Smartor Remote File Inclusion (CVE-2007-2189)

Updated
CPAI-2014-1714 CVE-2002-1878
Web Servers W-Agora Remote File Inclusion (CVE-2002-1878)

Updated
CPAI-2014-1713 CVE-2006-1503
Web Servers VWar Remote File Inclusion (CVE-2006-1503)

Updated
CPAI-2014-1709 CVE-2007-2969
Web Servers WAnewsletter Remote File Inclusion (CVE-2007-2969)

Updated
CPAI-2014-1707 CVE-2006-3294
Web Servers CBSMS Mambo Remote File Inclusion (CVE-2006-3294)

Updated
CPAI-2014-1704 CVE-2006-4044
Web Servers PHPCodeCabinet Remote File Inclusion (CVE-2006-4044)

Updated
CPAI-2014-1703 CVE-2007-2936
Web Servers Frequency Clock Remote File Inclusion (CVE-2007-2936)

Updated
CPAI-2014-1702 CVE-2007-2317
Web Servers Tosmo Mambo Remote File Inclusion (CVE-2007-2317)

Updated
CPAI-2014-1701 CVE-2007-2364
Web Servers BurnCMS Remote File Inclusion (CVE-2007-2364)

Updated
CPAI-2014-1700 CVE-2006-4644
Web Servers PHPFullAnnu Remote File Inclusion (CVE-2006-4644)

Updated
CPAI-2014-1693   ZmEu Security Scanner

Updated
CPAI-2014-1690   Multiple PHP Servers WeevelyShell Backdoor Command Execution

Updated
CPAI-2014-1686   Multiple PHP Servers DQ99shell Backdoor Command Execution

Updated
CPAI-2014-1684   Multiple PHP Servers C100shell Backdoor Command Execution

Updated
CPAI-2014-1683   Wordpress Timthumb WebShot Vulnerability Code Execution

Updated
CPAI-2014-1682   Multiple PHP Servers C99shell Backdoor Command Execution

Updated
CPAI-2014-1676   Fiesta Exploit Kit Redirection

Updated
CPAI-2014-1675   Web Servers Malicious Encoding Directory Traversal

Updated
CPAI-2014-1673 CVE-2014-1761
Microsoft Word RTF listoverridecount Memory Corruption (MS14-017; CVE-2014-1761)

Updated
CPAI-2014-1670   JPEG Files Containing Suspicious Comments

Updated
CPAI-2014-1668 CVE-2014-3214
ISC BIND Recursive Nameservers Prefetch Denial of Service (CVE-2014-3214)

Updated
CPAI-2014-1664 CVE-2014-0517
Adobe Flash Player and AIR Security Bypass (APSB14-14; CVE-2014-0517)

Updated
CPAI-2014-1661 CVE-2014-0768
Advantech WebAccess SCADA webvact.ocx AccessCode2 Buffer Overflow (CVE-2014-0768)

Updated
CPAI-2014-1659 CVE-2014-0535
Adobe Flash Player and AIR Security Bypass (APSB14-16; CVE-2014-0535)

Updated
CPAI-2014-1658   RIG Exploit Kit Website Redirection

Updated
CPAI-2014-1656 CVE-2014-0536
Adobe Flash Player Memory Corruption (APSB14-16; CVE-2014-0536)

Updated
CPAI-2014-1652 CVE-2014-2210
CA ERwin Web Portal ConfigServiceProvider Remote File Creation (CVE-2014-2210)

Updated
CPAI-2014-1651 CVE-2014-0429
Oracle Java awt_setPixels Information Disclosure (CVE-2014-0429)

Updated
CPAI-2014-1649 CVE-2014-3457
SAP Sybase Event Stream Processor esp_parse Remote Code Execution (CVE-2014-3457)

Updated
CPAI-2014-1641 CVE-2014-0766
Advantech WebAccess SCADA webvact.ocx NodeName2 Buffer Overflow (CVE-2014-0766)

Updated
CPAI-2014-1635 CVE-2014-0765
Advantech WebAccess SCADA webvact.ocx GotoCmd Buffer Overflow (CVE-2014-0765)

Updated
CPAI-2014-1645 CVE-2014-0767
Advantech WebAccess SCADA webvact.ocx AccessCode Buffer Overflow (CVE-2014-0767)

Updated
CPAI-2014-1706 CVE-2014-2415
Oracle Data Quality PostcardPreviewInt onclose Untrusted Pointer Dereference (CVE-2014-2415)

Updated
CPAI-2014-1698 CVE-2014-0528
Adobe Acrobat and Reader Memory Corruption (APSB14-15; CVE-2014-0528)

Updated
CPAI-2014-1699 CVE-2014-2418
Oracle Data Quality FileChooserDlg onChangeDirectory Untrusted Pointer Dereference (CVE-2014-2418)

Updated
CPAI-2014-1689   HP Release Control Authenticated Privilege Escalation

Updated
CPAI-2014-1644 CVE-2014-2417
Oracle Data Quality DscXB onloadstatechange Untrusted Pointer Dereference (CVE-2014-2417)

Updated
CPAI-2014-1687 CVE-2013-2465
LightsOut/Hello Exploit Kit (CVE-2013-2465)

Updated
CPAI-2014-1680 CVE-2014-2787
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2787)

Updated
CPAI-2014-1679 CVE-2014-1765
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-1765)

Updated
CPAI-2014-1677 CVE-2014-2804
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2804)

Updated
CPAI-2014-1667 CVE-2014-2795
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2795)

Updated
CPAI-2014-1666 CVE-2014-2797
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2797)

Updated
CPAI-2014-1665 CVE-2014-2801
Microsoft Internet Explorer Memory Corruption (MS14-037; CVE-2014-2801)

Updated
CPAI-2014-0868 CVE-2014-0282
Microsoft Internet Explorer Memory Corruption (MS14-035; CVE-2014-0282)

Updated
CPAI-2014-1655 CVE-2013-0140
CVE-2013-0141
McAfee ePolicy Orchestrator Remote Code Execution (CVE-2013-0140; CVE-2013-0141)

Updated
CPAI-2014-1650 CVE-2014-3789
Cogent DataHub Web Server GetPermissions.asp Command Injection (CVE-2014-3789)

Updated
CPAI-2014-1648 CVE-2014-2416
Oracle Data Quality DateTimeWrapper onchange Remote Code Execution (CVE-2014-2416)

Updated
CPAI-2014-1646 CVE-2014-2856
Apple CUPS Web Interface URL Handling Cross-Site Scripting (CVE-2014-2856)

Updated
CPAI-2014-1643   Microsoft Internet Explorer Crafted URL Remote Code Execution

Updated
CPAI-2014-1642 CVE-2014-0521
Adobe Reader Javascript API Information Disclosure (APSB14-15; CVE-2014-0521)

Updated
CPAI-2014-1639   eScan Web Management Console Command Injection

Updated
CPAI-2014-1638   Simple E-Document upload Remote Code Execution

Updated
CPAI-2014-1637 CVE-2013-4152
CVE-2013-6429
CVE-2014-0002
Multiple Products XML System External Entity Information Disclosure (CVE-2013-4152; CVE-2013-6429; CVE-2014-0002)

Archives