WelcomeEnterpriseSmall BusinessHome & Home OfficePartnersAbout Symantec
February 24, 2009
Symantec Endpoint Protection - Security Update 96

Description

Use the LiveUpdate feature of Symantec Endpoint Protection to download the security update.

The signature update changes specified below correspond to a new IPS engine update provided to increase threat protection within the SEP product.

Security Update 96 adds coverage for the following vulnerabilities and threats:
  • HTTP XMPlay Playlist ASX BO
  • TCP CA ARCserve Backup BO
  • HTTP Adobe SWF Remote Code Exec
  • HTTP DivX Player Subtitle BO
  • RDP rdesktop Integer Underflow
  • HTTP VUPlayer M3U UNC Buffer Overflow
  • HTTP Cain and Abel Malformed File BO
  • HTTP Realtek Media Player Playlist BO
  • HTTP W32 Waledac Activity
  • HTTP MW6 Technologies Barcode ActiveX BO
  • HTTP Trojan Bankpatch.C Activity
  • HTTP MSIE7 Uninitialized Memory Code Exec
  • IRC Suspicious Executable File Download

Security Update 96 provides updated coverage for the following vulnerabilities and threats:
  • MS RPCSS Attack (2)
  • MS RPCSS Attack (3)
  • HTTP DirectAnim ComObj CodeExec (CLSID)
  • HTTP MovieMaker ComObj CodeExec (CLSID)
  • HTTP Kaspersky Sysinfo File Exfilt Inst.
  • HTTP Kaspersky Kl File Exfilt Inst.
  • HTTP Rediff Toolbar ActiveX DoS
  • HTTP BlooMooWeb Activex File Overwrite
  • HTTP RIM Blackberry TeamOn Import BO
  • HTTP MS Outlook ActiveX IE DoS
  • HTTP Morovia BarCode ActiveX File Overwrite
  • HTTP DeWizardX ActiveX File Overwrite
  • HTTP Leadtools SDK ActiveX File Overwrite
  • HTTP EDraw Office Viewer ActiveX File Delete
  • HTTP Zenturi PogramChecker DownloadUrl ActiveX File Overwrite
  • HTTP TEC-IT TBarCode ActiveX File Overwrite
  • HTTP Novell Extend Dir ActiveX Comm Exec
  • HTTP NCTAudio2 Studio ActiveX File Overwrite
  • HTTP Avax Vector ActiveX File Overwrite
  • HTTP HP Digital Imaging HPQVWOCX ActiveX Overwrite
  • HTTP Nonnoi ASP BarCode ActiveX File Overwrite
  • HTTP Data Dynamics Activebar File Overwrite
  • HTTP Data Dynamics Abar File Overwrite
  • HTTP Winzip ActiveXControl KillBit
  • HTTP Clever Internet Suite Overwrite
  • HTTP ArgoSoft Mail Server ActiveX File Overwrite
  • HTTP VMWare IntraProcessingLog File Overwrite
  • HTTP Chilkat ASP String ActiveX File Overwrite
  • HTTP MSIE TLI App ActiveX Code Exec
  • HTTP MS VB PD Wizard ActiveX Code Exec
  • HTTP EDraw Office Viewer ActiveX File Overwrite
  • HTTP Intuit QuickBooks Online ActiveX BO
  • HTTP MS VS Lib. ActiveX File Overwrite
  • HTTP MW6 Tech QRCode ActiveX File Overwrite
  • HTTP Cowon jetAudio ActiveX Dir Trav.
  • HTTP ebCrypt ActiveX File Overwrite
  • HTTP MS XML Core Services Info Disc
  • HTTP Pegasus ImagXpress ActiveX File Overwrite
  • HTTP MS Visual Foxpro Cmd Exec
  • HTTP PBEmail ActiveX File Overwrite
  • HTTP EDraw Flowchart ActiveX Overwrite
  • HTTP HP Info Center ActiveX Code Exec
  • HTTP HP Software Update ActiveX BO
  • HTTP Gateway CWebLaunchCtl ActiveX File Overwrite
  • HTTP MS Rich TextBox ActiveX File Overwrite
  • HTTP Macrovision ActiveX File Overwrite
  • HTTP MailBee Objects ActiveX File Overwrite
  • HTTP Chilkat Mail ActiveX File Overwrite
  • HTTP Chilkat FTP ActiveX File Overwrite
  • HTTP MSIE COM Object Memory Corruption
  • HTTP Suspicious Executable Image Download
  • HTTP HxTocCtrl ActiveX Code Exec
  • HTTP IBiz EBanking Active File Overwrite
  • HTTP Chilkat HTTP ActiveX File Overwrite
  • HTTP Malicious Toolkit Variant Activity 2
  • HTTP Zune Software ActiveX File Overwrite
  • HTTP HP Software Update ActiveX File Overwrite
  • HTTP Kantaris SSA File BO
  • HTTP MS Speech API ActiveX
  • HTTP BackWeb ActiveX KillBit
  • HTTP BlackIce ActiveX Download Activity
  • HTTP MS Img Logger ActiveX File Overwrite
  • HTTP PeachTree ActiveX File Overwrite
  • HTTP Chilkat XML ActiveX Unsafe Method
  • HTTP Chilkat IMAP ActiveX File Overwrite
  • HTTP AutoDesk DWF Viewer AX Program Exec
  • HTTP Autodesk DWF Viewer File Overwrite
  • HTTP GdPicture Pro ActiveX File Overwrite
  • HTTP Acrobat PDF Suspicious File Download
  • HTTP DB Software Lab ActiveX File Overwrite
  • HTTP FlexCell ActiveX File Overwrite

Security Update 96 removes coverage for the following vulnerabilities and threats:
  • HTTP Chunked Encoding Negative Length BO
  • SMB Trans2Open Overflow (1)
  • SMB Trans2Open Overflow (2)
  • SMB MS Windows GDI+ JPEG Overflow
  • HTTP ASP.NET App Folder Info. Disc.
  • HTTP MS IE Embed Src BO



Last modified on: Tuesday, 24-Feb-09 11:29:17