Symantec Gateway Security 5000 Series 3.0 Security Update 52

October 09, 2007
Symantec Gateway Security 5000 Series 3.0 Security Update 52

Description

Use the LiveUpdate feature of Symantec Gateway Security to download the security update.

Symantec Gateway Security 5000 Series 3.0 SU 52 adds coverage for the following vulnerabilities and threats:

HTTP Apple QuickTime QTL Code Execution
HTTP DesktopMedia Activity
HTTP Kodak Image Viewer Malformed TIFF Code Exec
HTTP LinkedIn Toolbar ActiveX BO
HTTP Macromedia Flash ActiveX DOS
HTTP MS Outlook ActiveX IE DoS
HTTP MS SharePoint Server XSS
HTTP MS SQL Server SQLDMO Activex BO
HTTP MS VDT DB Designer ActiveX BO
HTTP MS Virtual Machine Prog Exec
HTTP MS Visual Studio VB To VSI ActiveX File Overwrite
HTTP MS XML Core Services Info Disc
HTTP Norton 2004 ISAlert BO
HTTP Sun Java WebStart JNLP BO
HTTP Symantec Norton Ghost Remote DLL BO
HTTP Visual Studio PDWizard ActiveX Code Exec
HTTP Windows Shell User Unauth User Create
HTTP XunLei WebThunder DownURL2 ActiveX File Download
HTTP Yahoo! Messenger CYFT Control GetFile
MS Outlook Express NNTP XHDR DoS
MS RPC NTLM Auth DoS
Samba RPC spoolss SMBRun Cmd Exec
Symantec NetBackup Unauthorized Cmd Exec
UDP Apple Mac OSX mResponder BO

Symantec Gateway Security 5000 Series 3.0 SU 52 provides updated coverage for the following vulnerabilities and threats:

ActiveSearch Search Activity
Adbars Search Activity
Adblock Redirect Activity
Adblock Update Activity
Alexa User Info Tracking
AwStats Logfile Input Validation Vul
Biborb Directory Traversal
CWSIEFEATS Data Transfer
Ebates Moemoney Popup Activity
Ebates Moemoney Tracking Activity
Elitebar Control Information Activity
Elitebar Update Activity
FTP GD Graphics PngLib BO
FTP Generic Command Overflow
HTML WinHelp Item BO
HTTP A.I-Pifou Choix_langue.PHP Dir Trav
HTTP Abe Timmerman zml.cgi File Disc.
HTTP ABXToolbar Activity
HTTP AltaVista DirTraversal
HTTP Anaconda Directory Traversal
HTTP Anacondaclip Directory Traversal
HTTP AngelineCMS loadkernel File Include
HTTP Annex Ping CGI DoS
HTTP ANS PL CGI Dir. Traversal
HTTP Armada Traversal
HTTP Athena Web Registration Cmd Exec.
HTTP AtomicBoard Dir Traversal
HTTP Auktion CGI Dir. Traversal
HTTP AWSTATS LoadPlugin Cmd Exec
HTTP AWSTATS Logfile Cmd Exec
HTTP AWSTATS Plugin Cmd Exec
HTTP AWStats Remote Cmd Exec
HTTP BadBlue MFCISAPI Cmd BO
HTTP BB Hist CGI Dir. Traversal
HTTP BB HostSvc Dir. Traversal
HTTP BizDB Command Execution
HTTP BookedSpace Activity
HTTP BroadcastPC Activity
HTTP Bytes shopper.cgi Dir. Traversal
HTTP Cacti Graph Image Remote Exec
HTTP CakePHP Dir Trav
HTTP CDomainFree Rte File Exec.
HTTP CGI Count BO
HTTP CGI Rec. Mailreader nph-mr.cgi
HTTP CGI Recursion End MailMan Cmd Exec
HTTP CGI Recursion MultiHTML
HTTP CGIEmail BO
HTTP CGIForum Dir. Traversal
HTTP Cloisterblog Journalpl Dir Trav
HTTP Comm. Link Pro login.cgi Cmd Exec
HTTP CoolWebSearch Activity 2
HTTP Cruiseworks Cws Doc Dir. Trav
HTTP Cruiseworks Cws.exe Doc BO
HTTP csSearch.cgi Cmd. Exec.
HTTP CSVForm Shell Escape
HTTP Dell TrueMobile Remote Cred Reset
HTTP DirectAnimation KeyFrame Heap BO
HTTP DirectoryPro Directory Traversal
HTTP DownloadPlus Activity
HTTP EasyDynamicPages Config File Incl.
HTTP EasyGuppy Printfaq.PHP Dir Trav
HTTP Embed Tag NPDSPlay DLL BO
HTTP Etheni File Include
HTTP EzMeeting BO
HTTP Farsinews Dir Traversal
HTTP FileSeek CGI Script Remote Cmd Exec
HTTP FlashEnhancer Activity
HTTP FormMail Cmd Exec
HTTP Gallery File Include
HTTP Gallery Main.PHP Dir Trav
HTTP GD Graphics PngLib BO
HTTP Guestbook CGI Dir. Traversal
HTTP HappyMall Member Cmd Exec
HTTP HappyMall Normal Cmd Exec
HTTP Home Free Dir Traversal
HTTP HP Jetadmin setinfo.hts Dir. Trav
HTTP ht://Dig Config File Include
HTTP htdig File Disclosure
HTTP htdig File Path Disclosure
HTTP Hyperseek 2000 Dir. Traversal
HTTP iCat carbo.dll Dir. Traversal
HTTP IdeaBox Remote File Include
HTTP idq.dll Directory Traversal
HTTP Iebar Activity
HTTP IEDriver Popup Activity
HTTP IEHlpr CCNNLC Update Activity
HTTP IEHlpr Register Activity
HTTP INL Ulog-PHP Sql Injection
HTTP Interactive Story Dir Traversal
HTTP ION CGI Dir. Traversal
HTTP iPlanet Directory Traversal
HTTP IRIX webdist CGI Cmd Exec
HTTP iXmail CGI Dir. Traversal
HTTP Jammail Jammail.pl Cmd Execution
HTTP JRun CGI Directory Traversal
HTTP K-COLLECT csv_db.cgi Cmd. Exec
HTTP Kebi Academy Directory Traversal
HTTP Kerio MailServer Username BO
HTTP Kietu File Include
HTTP LedgerSMB Dir Trav
HTTP listrec.pl Command Exec
HTTP Look2me Activity
HTTP LoveFreeGames Activity
HTTP Mantis Remote Script Execution
HTTP Margoc Activity
HTTP MartinHamilton File Disclosure
HTTP MatrixSearch Activity
HTTP McAfee Subscription Mgr Active BO
HTTP MDAC RDS Dataspace Rem Code Exec.
HTTP Microburst uStorekeeper Cmd Exec
HTTP MiniVend CMD Exec
HTTP MondoSearch Source Disclosure
HTTP MoneyGainer Download Activity
HTTP MRTG Directory Traversal
HTTP MS BizTalk DTA RemoteExec
HTTP MS CMS Information Disclosure
HTTP MS IE CHM Cross-Domain Redirect
HTTP MS IE FTP Proto Hndlr Loc File Disc
HTTP MS IE Help CTRL Local Zone Bypass
HTTP MS IE VML Fill Method BO
HTTP MS IFRAME JOB Share Redirect
HTTP MS IIS ASP Source Disclosure
HTTP MS IIS Showcode ASP Request
HTTP MS Publisher Malform File Code Exec
HTTP MS showhelp CHM Download Attempt
HTTP MS Visio Malformed File Code Exec
HTTP MS WMS ActiveX Remote Code Exec
HTTP MSIE CreateTextRange Code Exec
HTTP MSIE IsComponentInstalled BO
HTTP MSIE VML RecolorInfo Code Exec
HTTP Netref 4 Cat 4 Dir. Traversal
HTTP Nortel CGIProc Access
HTTP Novell AccessMgr IssueInstat XSS
HTTP Nucleus Common.PHP File Include
HTTP NX5Linkx SQL Injection
HTTP O'Reilly webfind.exe BO
HTTP O2Php Oxygen SQL Injection
HTTP OfferAgent Ad Popup Activity
HTTP OfferAgent Install Request
HTTP Perldesk Sql Injection
HTTP PHP mlog Remote File Access
HTTP PHP MySQL Banner Exchange File Inc.
HTTP PHP MySQL Banner Exchange SQL Inj.
HTTP PHP Website Index Dir Traversal
HTTP PHP-Address Remote File Include
HTTP PHPBB URL Decode SQL Injection
HTTP PHPBB Viewtopic Cmd. Exec
HTTP PHPMyFAQ Directory Traversal
HTTP PhpNuke Search Module SQL Injection
HTTP PHPOutsourcing Prod.PHP Cmd Exec.
HTTP phpPhotoAlbum Dir Trav
HTTP PHProjekt File Include
HTTP Psunami Bulletin Board Cmd Exec.
HTTP QuickSearch Activity
HTTP Quicktime RTSP URI BO
HTTP RaXnet Cacti PHP File Include
HTTP Remote File Inc BlNews
HTTP Remote File Inc. Invision Board
HTTP Remote File Include (@Lex)
HTTP Remote File Include (Achievo)
HTTP Remote File Include (AWOL)
HTTP Remote File Include (Blackboard)
HTTP Remote File Include (DCP Portal)
HTTP Remote File Include (Mantis)
HTTP Remote File Include (MediaWiki)
HTTP Remote File Include (OCPortal)
HTTP Remote File Include (OSCommerce)
HTTP Remote File Include (Pivot)
HTTP Remote File Include (SIRGNU)
HTTP Remote File Include (W-Agora)
HTTP Remote File Include 4nAlbum
HTTP Remote File Include Basilix
HTTP Remote File Include Informix
HTTP Remote File Include Mambo
HTTP Remote File Include myphpPageTool
HTTP Remote File Include PMachine
HTTP Remote SQL Inject Battleaxe
HTTP Remote SQL Injection IMP
HTTP Remote SQL Injection InstaBoard
HTTP Remote SQL Injection issProtect
HTTP RRDBrowse File Parameter Dir. Trav
HTTP SalesLogix SQL Injection
HTTP Saxopress URL Param Dir Trav.
HTTP SendTemp Dir. Traversal
HTTP SGI InfoSearch fname Exec
HTTP SGLMerchant Dir. Traversal
HTTP SilverPlatter WebSPIRS File Disc.
HTTP Six WebBoard File Disclosure
HTTP Sojourn Directory Traversal
HTTP Squid Proxy cachemgr CGI Request
HTTP Super Site Searcher Cmd Exec.
HTTP SurfSideKick Installation Activity
HTTP Surfsidkick Info Upload
HTTP Sygate Policy Mgr SQL Injection
HTTP TalentSoft WebPlus Dir. Traversal
HTTP Tarantella TTAWebTop.CGI
HTTP Technote Parameter File Disclosure
HTTP Thinking Arts Dir Traversal
HTTP Truegalerie Unauth Admin Access
HTTP TrustInPopups Activity
HTTP ttCMS News hdr.php File Inclusion
HTTP ttCMS/Forum Remote File Inc.
HTTP Vanish Activity
HTTP vBulletin PHP misc.php Code Exec
HTTP Virt Prog VP-ASP SQL Injection
HTTP VMWare ActiveX Control BO
HTTP W32.Mixor Worm Activity
HTTP Web Phorum Backdoor
HTTP WebCart Cmd Execution
HTTP Webchat defines.php File Include
HTTP Webcom Guest Template File Access
HTTP Webext Install Activity
HTTP Webfroot Shoutbox Dir. Traversal
HTTP web_store.cgi Dir. Traversal
HTTP WikkiTikkiTavi Remote File Include
HTTP Winpup Activity
HTTP Wordit Logbook.pl Cmd Exec
HTTP Wordpress PHP File Include
HTTP WorldSearch Activity
HTTP WP-DB Backup Wordpress Dir Trav.
HTTP WPS wps_shop.cgi Cmd Exec
HTTP Xaraya Dir. Traversal
HTTP XMLHTTP SetRequestHeader Exec
HTTP XSTAT PHPInfo Disclosure
HTTP XunLei WebThunder ActiveX Download
HTTP YaBB Dir. Traversal
HTTP Yahoo Voice Chat ActiveX BO
HTTP Zentrack Index.php File Include
HTTP Zentrack index.php Info Disc.
HTTP ZQuest Activity
IEPlugin Activity
Incredifind Redirect Activity
Infostealer Snifula.B HTTP Activity
Instafinder Reporting Mistyped URL
InvisionBoard SQL Injection
ISearch Mistyped URL Hijack Attempt
ISTBar Fav Menu Porn Site Request
LinkMaker Activity
Linux Whois Exec
Look2ME Updates
LXR Cross Ref. Linux Directory Trav.
MediaWiki Language Option PHP Code Exec
MedLoad Logging Activity
MS ASN1 Integer Overflow TCP
MS DHCP MAC Exec DoS
NaviHelper Update Activity
NFS GD Graphics PngLib BO
PHP Rocket Add-in Directory Traversal
PurityScan Notification Activity
RSA Agent WebRedirect BO
ShopAtHome Agent Installation Activity
ShopAtHome Agent Registration
SuperSpider Hijack Activity
SurfSideKick AutoUpdate Activity
Tafbar Install File Request
ypo3 Translations.PHP File Disclosure
Way-Board File Disclosure
Webfroot Shoutbox Remote File Include
Websearch Configuration Request
WhenU Installation Activity
WhenU Update Events
WordPress SQL Injection (HTTP)
Yahoo Conference Login
Yahoo IM Activity
Yahoo IM Conference Invite
Yahoo IM File Transfer
Yahoo IM Login
Yahoo Ping

Last modified on: Thursday, 11-Oct-07 03:51:20