Check Point Software Technologies has launched its SmartDefense Services, which protects Check Point users of VPN-1 NGX R65 and R62, VSX NGX R65, and IPS-1 NGX R65 from a new Microsoft Server service zero-day exploit.
SmartDefense Services subscribers can gain immediate protection against the vulnerability well before deploying the patch provided by Microsoft.
Due to an issue with the Windows Server service, it improperly handles crafted Remote Procedure Call (RPC) requests. A remote unauthenticated attacker could exploit the issue by creating a malicious RPC request and sending it to a vulnerable system, granting the attacker complete control of the system. The vulnerability could potentially be used to create an exploit that would propagate as a worm, said Check Point.
Check Point SmartDefense provides intrusion prevention capabilities that are integrated into Check Point gateways. SmartDefense is updated by SmartDefense services, which provide ongoing and real-time updates and configuration advisories for defenses and security policies, added Check Point.
Oded Gonda, vice president of network security products at Check Point, said: By enabling the protection, SmartDefense will detect and block malformed RPC requests sent to vulnerable systems. The protection demonstrates Check Point’s commitment to providing total security against zero-day threats to customers through SmartDefense Services.