Integrity Clientless Security (ICS) Update 3.7.61.0

Check Point Reference:	CPAI-2006-021
Date Published:	1 Mar 2006
Severity:	Medium
Last Updated:	Thursday 26 April, 2007
Source:	SmartDefense Research Center
Protection Provided by:
Who is Vulnerable?	Microsoft Windows clients
Vulnerability Description	Check Point Integrity ™ Clientless Security (ICS) for Connectra prevents users with potentially harmful software from accessing your network and requires that they conform to the organization?s antivirus and firewall policies. For more information, please refer to Connectra documentation and to ICS administration Guide.  91 new malware signatures were added to ICS version 3.7.61.0. For a full list of the added malware, refer to the Details section (SmarDefense Services subscription required).

  Vulnerability Details   The update includes the following malware:
    Win32.Worm.Bagle.z
    Win32.Trojan.Downloader.Small.rn
    Win32.Worm.Bagle.af
    Qoologic
    Win32.Backdoor.Rbot.gen.2
    Win32.HLLP.Ghostdog.c
    Win32.Worm.Bagle.au
    Win32.Trojan.PSW.QQPass.cp
    Win32.TrojanDropper.Small
    Win32.Net.Worm.Padobot.m
    Win32.Win95.Spaces.1445
    Trojan.Win32.Agent.bi - service
    BO2K.Srv
    Win32.HangUp.6
    Win32.Trojan.Spy.Qukart.s
    Win32.Backdoor.GhostVoice.102
    Win32.HLLW.Bagle.g" ID
    Win32.Backdoor.SubSeven.2_2
    Win32.Backdoor.SdBot.jg
    Win32.Backdoor.Padodor.gen
    CashDeluxe
    Win32.I.Worm.Plage
    Win32.Trojan.Proxy.Agent.da
    Bancos-U.a.1
    Win32.Backdoor.GrayBird.f
    Backdoor.Win32.Codbot.bi - service
    Win32.Bagle.n
    Casino.Installer
    Win32.Trojan.Dropper.PurityScan.g
    The Best Offers Client
    Win32.Worm.Bagle.as
    Win32.TrojanDownloader.Agent.cd
    Win32.Trojan.Downloader.Envolo.b
    Win32.Trojan.Downloader.Agent.cp
    Win32.HLLW.Bropia
    Win32.Backdoor.IrcContact.30
    Win32.Trojan.Nuker.a
    Win32.Parite.A
    Win32.Trojan.Proxy.Mitglieder.av
    Win32.BackDoor.Pigeon.119
    Win32.Banker.ahy.5
    Win32.Banker.aew
    W