We have been hearing of an issue since the recent release of an update to address a DNS spoofing vulnerability, MS08-037, discussed in KB951748. After application of the update, affected systems can experience problems with applications that rely on DNS name resolution. For example, a user on an affected system would not be able to browse the Internet.
The cases we have seen so far have involve ZoneAlarm software and Check Point Endpoint Security (previously named Check Point Integrity).
There are updates available for the ZoneAlarm products affected as well as interim workarounds posted at the following link at the ZoneAlarm site:
Check Point has updates available for its Endpoint Security and Integrity products as well. These updates and additional information may be found at this link:
We recommend updating the Check Point or ZoneAlarm software to correct the problem. We do not recommend not installing or uninstalling the update described in security bulletin MS08-037. Please read the bulletin to learn more about this vulnerability:
More information about the vulnerabilities corrected in this update may be found here:
– Mike Platts