1. /
  2. Security Response/
  3. Security Updates Detail

Symantec Enterprise Security Manager - Network Assessment Content Update 2009.01.01

January 30, 2009

Description

Description

This update for Symantec ESM Network Assessment detects and reports eleven additional vulnerabilities.

Use the LiveUpdate feature of Symantec ESM Network Assessment to download this security update.

Note: As per End of Life product support policy for ESM Network Assessment, the Network Assessment Content Update 2009.01.01 is the last update on ESM 6.5. No further Network Assessment Content Updates will be provided after this update.

Please refer to the following link for the End of Life product support policy for ESM Network Assessment:
http://service1.symantec.com/support/intrusiondetectkb.nsf/854fa02b4f5013678825731a007d06af/3ab055c90b7b3763882574d0006cf72d?OpenDocument

Vulnerability

Bugtraq ID Vulnerability Name
7385 Microsoft Windows SMB Credential Reflection Vulnerability
32634 Microsoft Windows GDI WMF Integer Overflow Vulnerability
32637 Microsoft Windows GDI File Size Parameter Heap Overflow Vulnerability
32586 Microsoft Internet Explorer HTML Objects Remote Code Execution Vulnerability
32593 Microsoft Internet Explorer Deleted Object Access Remote Code Execution Vulnerability
32595 Microsoft Internet Explorer Embedded Object Remote Code Execution Vulnerability
32596 Microsoft Internet Explorer Navigation Method Remote Code Execution Vulnerability
32721 Microsoft Internet Explorer XML Handling Remote Code Execution Vulnerability
31179 Microsoft Windows WRITE_ANDX SMB Processing Remote Denial Of Service Vulnerability
33121 Microsoft Windows SMB NT Trans Request Buffer Overflow Vulnerability
33122 Microsoft Windows SMB NT Trans2 Remote Code Execution Vulnerability
* Signature names may have been updated to comply with an updated IPS Signature naming convention. See http://www.symantec.com/business/support/index?page=content&id=TECH152794&key=54619&actp=LIST for more information.
Last modified on: January 30, 2009
Security Response Blog
The State of Spam