topic Endpoint Security / SandBlast Agent E83.11 – Protection for critical DNS vulnerability – SIGRed in Endpoint https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-SandBlast-Agent-E83-11-Protection-for-critical/m-p/91531#M3056 <P>Hi all,</P> <P>We are happy to announce the release of Endpoint Security Client E83.11.</P> <P>E83.11 introduces protection for a critical DNS vulnerability, discovered by Check Point research and released today - CVE-2020-1350.</P> <P>This is a vulnerability in the Windows DNS server affecting Windows Server versions 2003 to 2019. If exploited, it allows Domain Administrator rights over the server and compromises the entire corporate infrastructure.</P> <P>This attack got CVSS score 10.0 – indicating the highest possible severity!</P> <P>SandBlast Agent Endpoint is the first Endpoint Protection which provides full protection against this threat.</P> <P>&nbsp;</P> <P>For the full details of our investigation into CVE-2020-1350 vulnerability, visit our research blog at <A href="https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin:-exploiting-a-17-year-old-bug-in-windows-dns-servers/" target="_blank">https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin:-exploiting-a-17-year-old-bug-in-windows-dns-servers/</A></P> <P>&nbsp;</P> <P>See&nbsp;<A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk168034" target="_blank">sk168034</A>&nbsp;for more information on the E83.11&nbsp;release.</P> <P>&nbsp;</P> <P>B Safe,</P> <P>Guy A</P> Tue, 14 Jul 2020 19:23:22 GMT Guy_Avnet 2020-07-14T19:23:22Z Endpoint Security / SandBlast Agent E83.11 – Protection for critical DNS vulnerability – SIGRed https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-SandBlast-Agent-E83-11-Protection-for-critical/m-p/91531#M3056 <P>Hi all,</P> <P>We are happy to announce the release of Endpoint Security Client E83.11.</P> <P>E83.11 introduces protection for a critical DNS vulnerability, discovered by Check Point research and released today - CVE-2020-1350.</P> <P>This is a vulnerability in the Windows DNS server affecting Windows Server versions 2003 to 2019. If exploited, it allows Domain Administrator rights over the server and compromises the entire corporate infrastructure.</P> <P>This attack got CVSS score 10.0 – indicating the highest possible severity!</P> <P>SandBlast Agent Endpoint is the first Endpoint Protection which provides full protection against this threat.</P> <P>&nbsp;</P> <P>For the full details of our investigation into CVE-2020-1350 vulnerability, visit our research blog at <A href="https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin:-exploiting-a-17-year-old-bug-in-windows-dns-servers/" target="_blank">https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin:-exploiting-a-17-year-old-bug-in-windows-dns-servers/</A></P> <P>&nbsp;</P> <P>See&nbsp;<A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk168034" target="_blank">sk168034</A>&nbsp;for more information on the E83.11&nbsp;release.</P> <P>&nbsp;</P> <P>B Safe,</P> <P>Guy A</P> Tue, 14 Jul 2020 19:23:22 GMT https://community.checkpoint.com/t5/Endpoint/Endpoint-Security-SandBlast-Agent-E83-11-Protection-for-critical/m-p/91531#M3056 Guy_Avnet 2020-07-14T19:23:22Z