Critical: This X-Press Update™ product enhancement (XPU), featuring Virtual Patch ™ technology, contains 22 new events, for new Critical vulnerabilities in Microsoft's Plug and Play services and Microsoft's print spooler service and 1 new blocking response. Also in this XPU are 13 security content updates. This XPU also contains events for Brightstor backup agents, XML, VoIP and SCADA. For information regarding the critical vulnerabilities, please see the X-Force Advisory http://xforce.iss.net/xforce/alerts/id/202 and the X-Force Alert http://xforce.iss.net/xforce/alerts/id/203.


Checks:

RiskVulnIDCheck NameCategory
Low11835PAM_Configuration_ErrorProtocol Signature
High19320BrightStor_Discovery_OverflowUnauthorized Access Attempt
High20042HTTP_Lotus_Domino_Date_OverflowUnauthorized Access Attempt
Low20185SIP_Version_Not2Suspicious Activity
Medium20305Email_Executable_ContentSuspicious Activity
High20617XML_IE_InfoBar_BypassUnauthorized Access Attempt
High21194XML_RPC_PHP_CmdExecUnauthorized Access Attempt
High21195HTTP_Smuggling_Apache_ChunkedUnauthorized Access Attempt
High21346Zlib_Inflate_Table_BOUnauthorized Access Attempt
Low21407RDP_Login_Read_OverflowDenial of Service
High21416FTP_Reatle_BackdoorUnauthorized Access Attempt
Low21534SIP_Long_Method_NameProtocol Signature
Low21545SIP_Unknown_Method_NameProtocol Signature
Medium21573Scada_DNP_BroadcastRequestDenial of Service
Low21574Scada_DNP_ColdRestartDenial of Service
Low21575Scada_DNP_DisableUnsolResponsesDenial of Service
Low21577Scada_DNP_StopApplicationDenial of Service
Low21578Scada_DNP_WarmRestartDenial of Service
High21604MSRPC_Spoolss_OverflowUnauthorized Access Attempt
High21656BrightStor_BackupAgent_OverflowUnauthorized Access Attempt
High21701Image_JPEG_IE_Size_OverflowUnauthorized Access Attempt
High21701Image_JPEG_IE_Component_OverflowUnauthorized Access Attempt

If you are an existing customer or partner, and you wish to download X-Press Updates from our download center, click here.