Check Point Advisories

Preemptive Protection against Microsoft Office File Parsing Buffer Overflow (MS13-051; CVE-2013-1331)

Check Point Reference: CPAI-2013-1856
Date Published: 4 Jun 2013
Severity: High
Last Updated: Saturday 20 April, 2024
Source: CVE-2013-1331
Protection Provided by:

Security Gateway
R70

  • R71
  • R75

    		•
    Who is Vulnerable? Microsoft Office 2003 Service Pack 3
    Microsoft Office for Mac 2011
    Vulnerability Description A remote code execution vulnerability has been reported in Microsoft Office.

    Protection Overview

    This protection will detect and block attempts to exploit these vulnerabilities.

    No update is required to address this vulnerability

    Users are protected against this vulnerability if the Microsoft Windows GDIplus PNG Chunk Processing Integer Overflow (MS09-062) protection found in the Protection section of CPAI-2009-424 has been applied.

    Security Gateway R75 / R71 / R70

    1. In the IPS tab, click Protections, find the Microsoft Windows GDIplus PNG Chunk Processing Integer Overflow (MS09-062) protection using the Search tool and double-click on the protection. 
    2. In the Protection Details window, select the required profile and click on Edit. Choose the protection's Action (Override IPS Policy with: Prevent/Detect), and apply Additional Settings. 
    3. Configure the protection to your requirements. 
    4. Install policy on all modules.

      5. SmartView Tracker will log the following entries:

      Attack Name: Content Protection Violation
      Attack Information: Microsoft Windows GDIplus PNG tEXt chunk processing integer overflow (MS09-062)

    ×
      Feedback
    This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
    OK