Check Point Advisories

Trojan: Win32.Apptom

Check Point Reference: CPAI-2009-137
Date Published: 15 Jul 2009
Severity: Medium
Last Updated: 15 Jul 2009
Source:
Protection Provided by:

Security Gateway
R77, R76, R75, R71, R70

Who is Vulnerable?
Vulnerability Description Win32.Apptom creates and downloads malicious files on the victim's machine. It exploits a vulnerability in Microsoft Office PowerPoint to spread.

Protection Overview

By enabling this protection, IPS will detect and block the malware based on predefined signatures.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update.For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R77 / R76 / R75 / R71 / R70

  1. In the IPS tab, click Protections and find the Trojan: Win32.Apptom protection using the Search tool and Edit the protection's settings.
  2. Install policy on all modules.

This protection's log will contain the following information:

Attack Name:  Malware Traffic.
Attack Information:  Trojan: Win32.Apptom

This website uses cookies to ensure you get the best experience. More Info Got it, Thanks!