Check Point IPS Security Update

Recommended Profile Updates

ADDED PROTECTIONS

Acunetix Web Vulnerability Scanner NEW!

Check Point Reference CPAI-2015-0260

Acunetix is a vulnerability scanning product.
This protection will detect and block use of this scanner.

Adobe Flash Player Double Free (APSB15-03; CVE-2015-0312) NEW!

Industry Reference CVE-2015-0312 | Check Point Reference CPAI-2015-0113

A double free memory vulnerability has been reported in Adobe Flash Player.
This protection will detect and prevent attacks trying to exploit this vulnerability.

Adobe Flash Player Heap Buffer Overflow (APSB15-04; CVE-2015-0323) NEW!

Industry Reference CVE-2015-0323 | Check Point Reference CPAI-2015-0204

A heap buffer overflow vulnerability has been reported in Adobe Flash Player.
This protection will detect and block attempts to transfer malformed SWF files

Adobe Flash Player Memory Corruption (APSB15-04; CVE-2015-0321) NEW!

Industry Reference CVE-2015-0321 | Check Point Reference CPAI-2015-0180

A memory corruption vulnerability has been reported in Adobe Flash Player.
This protection will detect and block the transferring of malformed SWF files

CCMPlayer Stack based Buffer Overflow (CVE-2011-5170) NEW!

Industry Reference CVE-2011-5170 | Check Point Reference CPAI-2015-0246

A stack buffer overflow vulnerability has been reported in CCMPlayer 1.
This protection will detect and block attempts to exploit this vulnerability.

Corel Multiple Products Multiple Insecure Library Loading (CVE-2014-8393) NEW!

Industry Reference CVE-2014-8393 | Check Point Reference CPAI-2015-0205

Multiple insecure library loading vulnerabilities have been reported in multiple Corel products.
This protection will detect and block attempts to exploit this vulnerability.

Dell ScriptLogic Asset Manager GetClientPackage SQL Injection (CVE-2015-1605) NEW!

Industry Reference CVE-2015-1605 | Check Point Reference CPAI-2015-0222

An SQL Injection vulnerability exists in Dell ScriptLogic Asset Manager.
This protection will detect and block attempts to exploit this vulnerability.

HP Universal CMDB JMX Console Authentication Bypass (CVE-2014-7883) NEW!

Industry Reference CVE-2014-7883 | Check Point Reference CPAI-2015-0208

An authentication bypass vulnerability exists in HP Universal CMDB.
This protection will detect and block attempts to exploit this vulnerability.

ManageEngine Multiple Products FailOverHelperServlet copyfile Information Disclosure (CVE-2014-7863) NEW!

Industry Reference CVE-2014-7863 | Check Point Reference CPAI-2015-0206

An information disclosure vulnerability exists in ManageEngine OpManager, Applications Manager and IT360.
This protection will detect and block attempts to exploit this vulnerability.

MC-SQLR Reflected Denial of Service NEW!

Check Point Reference CPAI-2015-0248

The SQL Server Resolution Protocol (MC-SQLR) is an application-layer request/response protocol that facilitates connectivity to a database server.
this protection will detect and block multiple requests sent to the server via other servers over a short period of time.

OpenSSL DTLS dtls1_buffer_record Denial of Service (CVE-2015-0206) NEW!

Industry Reference CVE-2015-0206 | Check Point Reference CPAI-2015-0053

A denial of service vulnerability has been reported in OpenSSL.
This protection will detect and block attempts to exploit this vulnerability.

OpenSSL ssl23_get_client_hello Function Denial of Service (CVE-2014-3569) NEW!

Industry Reference CVE-2014-3569 | Check Point Reference CPAI-2015-0029

A denial of service vulnerability exists in the OpenSSL library compiled with no-ssl3.
This protection will detect and block attempts to exploit this vulnerability.

Persistent Systems Radia Client Automation Command Execution (CVE-2015-1497) NEW!

Industry Reference CVE-2015-1497 | Check Point Reference CPAI-2015-0235

A command execution vulnerability exists in Persistent Systems Radia Client Automation.
This protection will detect and block attempts to exploit this vulnerability.

PHP Date Time Object Unserialize Memory Corruption (CVE-2015-0273) NEW!

Industry Reference CVE-2015-0273 | Check Point Reference CPAI-2015-0234

A code execution vulnerability has been reported in PHP.
This protection will detect and block attempts to exploit this vulnerability.

Schneider Electric Multiple Products IsObjectModel RemoveParameter Stack Buffer Overflow (CVE-2014-9200) NEW!

Industry Reference CVE-2014-9200 | Check Point Reference CPAI-2015-0213

A code execution vulnerability exists in multiple Schneider Electric products.
This protection will detect and block attempts to exploit this vulnerability.

Symantec Encryption Management Server Database Backup Command Injection (CVE-2014-7288) NEW!

Industry Reference CVE-2014-7288 | Check Point Reference CPAI-2015-0203

A command-injection vulnerability has been reported in Symantec Encryption Management Server.
This protection will detect and block attempts to exploit this vulnerability.

WordPress Contact Form DB Plugin Cross-Site Scripting (CVE-2015-2040) NEW!

Industry Reference CVE-2015-2040 | Check Point Reference CPAI-2015-0251

A cross-site scripting vulnerability has been reported in WordPress Contact Form DB Plugin.
This protection will detect and block attempts to exploit this vulnerability.

WordPress DesignFolio-Plus Theme Arbitrary File Upload NEW!

Check Point Reference CPAI-2015-0250

An unauthorized file upload vulnerability has been reported in WordPress DesignFolio-Plus Theme.
This protection will detect and block attempts to exploit this vulnerability.

Wordpress Reflex Gallery Plugin Arbitrary File Upload NEW!

Check Point Reference CPAI-2015-0249

An unauthorized file upload vulnerability has been reported in Wordpress Reflex Gallery Plugin.
This protection will detect and block attempts to exploit this vulnerability.

WordPress WooCommerce Plugin Cross-Site Scripting (CVE-2015-2069) NEW!

Industry Reference CVE-2015-2069 | Check Point Reference CPAI-2015-0241

A cross-site scripting vulnerability has been reported in WordPress WooCommerce plugin.
This protection will detect and block attempts to exploit this vulnerability.

Zend PHP Advanced Local File Inclusion NEW!

Check Point Reference CPAI-2015-0127

This vulnerability class creates a new method for attackers for exploiting file inclusion vulnerabilities.
This protection will detect and block attempts to exploit this vulnerability.

Zend PHP Auto Loading Mechanism Local File Inclusion NEW!

Check Point Reference CPAI-2015-0126

This vulnerability is due to unexpected behavior of the Auto-Loading mechanism in the PHP language.
This protection will detect and block attempts to exploit this vulnerability.

UPDATED PROTECTIONS

CPAI-2013-022 Adobe Acrobat Reader Hybrid File Cross-Site Scripting (APSB13-02; CVE-2013-0624)

CPAI-2014-2292 Adobe Flash Player Memory Corruption (APSB14-24; CVE-2014-8440)

CPAI-2015-0190 Adobe Flash Player Null Pointer Dereference Vulnerability (APSB15-04; CVE-2015-0328)

CPAI-2015-0169 Adobe Flash Player Type Confusion Code Execution (APSB15-04; CVE-2015-0317)

CPAI-2010-267 Adobe Reader and Acrobat TTF SING Table Buffer Overflow (APSA10-02) (CVE-2010-2883)

CPAI-2011-565 Adobe Reader and Acrobat U3D Shading Modifier Memory Corruption (APSA11-04) (CVE-2011-2462)

CPAI-2014-2257 Advanced Deface Page Maker Tool

CPAI-2013-085 Eurograbber

CPAI-2014-2302 Fast Wordpress Index Changer

CPAI-2014-2297 Joomla and Wordpress Mass Defacer Tool

CPAI-2015-0116 Microsoft Internet Explorer Memory Corruption (MS15-009; CVE-2015-0053)

CPAI-2008-035 Microsoft Office Web Components Multiple Buffer Overflows (MS08-017; CVE-2009-2496; CVE-2009-2493; CVE-2009-1534)

CPAI-2014-2224 MySQL Into OutFile SQL Injection

CPAI-2010-432 Orbitals.com Orbital Viewer .orb Stack Buffer Overflow (CVE-2010-0688)

CPAI-2014-1569 SQL Servers Time-based SQL Injection

CPAI-2009-402 Sun MySQL mysql_log Format String (CVE-2009-2446)

CPAI-2014-2339 Wordpress Ajax Store Locator Arbitrary File Download

CPAI-2014-0983 WordPress Backdoor iz Parameter Passthru - Ver2 (CVE-2007-1277)

CPAI-2014-1276 WordPress Complete Gallery Manager Plugin Arbitrary Code Execution - Ver2 (CVE-2013-5962)

CPAI-2014-2207 Wordpress Download Manager Plugin Arbitrary File Upload (CVE-2008-3362)

CPAI-2015-0201 WordPress Easing Slider Plugin Cross-Site Request Forgery (CVE-2015-1436)

CPAI-2015-0140 WordPress FancyBox Plugin Code Injection (CVE-2015-1494)

CPAI-2014-1783 WordPress Gmedia Gallery Shell Upload

CPAI-2015-0202 WordPress Google Doc Embedder Plugin Cross-Site Scripting (CVE-2015-1879)

CPAI-2015-0176 WordPress Holding Pattern Theme Arbitrary File Upload (CVE-2015-1172)

CPAI-2013-1690 WordPress HTTP Brute Force Login Attempt

CPAI-2015-0189 WordPress Image Metadata Cruncher Plugin Cross Site Request Forgery (CVE-2015-1614)

CPAI-2014-1758 WordPress MailPoet Newsletters Unauthenticated File Upload (CVE-2014-4725)

CPAI-2014-2003 Wordpress Mini Mail Dashboard Widget Remote File Inclusion

CPAI-2015-0179 WordPress Mobile Domain Plugin Cross Site Request Forgery (CVE-2015-1581)

CPAI-2014-1660 WordPress OptimizePress Theme File Upload Remote Code Execution

CPAI-2015-0160 Wordpress Photo Gallery Plugin Unrestricted File Upload (CVE-2014-9312)

CPAI-2014-1165 WordPress Pingback Distributed Denial of Service

CPAI-2014-1055 WordPress Plugin AdRotate SQL Injection (CVE-2014-1854)

CPAI-2013-1896 WordPress Plugin Google Document Embedder Arbitrary File Disclosure (CVE-2012-4915)

CPAI-2015-0177 WordPress Redirection Page Plugin Cross Site Request Forgery (CVE-2015-1580)

CPAI-2008-379 WordPress RSS feed Generator self_link HTTP_HOST Cross-Site Scripting (CVE-2008-5278)

CPAI-2015-0143 Wordpress Shopping Cart Plugin Unrestricted File Upload (CVE-2014-9308)

CPAI-2014-2305 WordPress Slider Revolution Plugin Local File Inclusion

CPAI-2015-0195 WordPress Slimstat Plugin SQL Injection

CPAI-2015-0156 Wordpress Survey And Poll Plugin SQL Injection (CVE-2015-2090)

CPAI-2014-2469 WordPress Symposium Plugin Unauthenticated Shell Upload (CVE-2014-10021)

CPAI-2014-1683 Wordpress Timthumb WebShot Vulnerability Code Execution

CPAI-2014-2040 Wordpress Top Quark Architecture Arbitrary File Upload Code Execution (CVE-2012-3814)

CPAI-2015-0007 WordPress VideoWhisper Live Streaming Integration Plugin Unrestricted File Upload (CVE-2014-1905)

CPAI-2013-1844 Wordpress W3 Total Cache PHP Code Execution

CPAI-2015-0159 WPScan WordPress Security Scanner

CPAI-2014-1179 w3af Security Scanner

CPAI-2013-3508 W3-Total-Cache Wordpress-plugin Username and Hash Extract (CVE-2012-6077)

Other Updates

UPDATED PROTECTIONS

CPAI-2006-080 ART Files (CVE-2006-2378)

CPAI-2015-0245 Microsoft Exchange Forged Meeting Request Spoofing (MS15-026; CVE-2015-1631)

CPAI-2015-0231 Microsoft SharePoint User Name XSS (MS15-022; CVE-2015-1633)