Printer Friendly
The Free Library
18,914,692 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Agnitum's Outpost Firewall Protects Against Latest Windows Remote Access Vulnerability; Serious Windows Vulnerabilities Are Protected Even Before Microsoft Patch is Out.


ST. PETERSBURG, Russia -- Agnitum Ltd., a leading developer of information security software for home and business users, today announced that its Outpost range of software firewalls fully protects Windows users from the most recent vulnerability found in Microsoft's Remote Desktop software.

As reported by Microsoft in its security advisory (available online at http://www.microsoft.com/technet/security/advisory/904797.mspx), a vulnerability in Remote Desktop Protocol See RDP.

(protocol) Remote Desktop Protocol - (RDP) A Microsoft protocol that provides remote display and input for Windows.

RDP's video driver renders display output by sending packets to the client which translates them into corresponding Microsoft Win32 graphics  (RDP (Remote Desktop Protocol) The presentation services protocol that governs input/output between a Windows terminal client and Windows Terminal Server. It is based on the T.share protocol. See Windows Terminal Server.

(protocol) RDP -

1. ) could lead to denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack.  on an affected computer.

According to according to
prep.
1. As stated or indicated by; on the authority of: according to historians.

2. In keeping with: according to instructions.

3.  Microsoft's early estimates, if a service were enabled on a host computer, an attacker could cause the system to restart. This vulnerability affects all versions of Windows XP The previous client version of Windows. XP was a major upgrade to the client version of Windows 2000 with numerous changes to the user interface. XP improved support for gaming, digital photography, instant messaging, wireless networking and sharing connections to the Internet. , including those already patched with the latest Service Pack 2, a major security update released last summer.

The essence of the vulnerability lies in the way malformed malĀ·formed
adj.
Abnormally or faultily formed.  Remote Desktop requests are handled by the service. Remote Desktop Protocol (RDP) allows users to create a virtual session on their PCs, enabling them to access all data and applications on their PC from another machine. Both Terminal Services The Windows 2000 counterpart of Windows Terminal Server in Windows NT. See Windows Terminal Server.  in Windows 2000 and Windows Server 2003 and Remote Desktop Sharing in Windows XP implement RDP.

The problem with this vulnerability is that an attacker could try to exploit the vulnerability by creating a specially-crafted Remote Desktop request and sending that request to an affected system. Thus, if an attack were successful, receipt of such a malformed Remote Desktop request could cause the vulnerable system to fail in such a way that it could cause a denial of service.

As a workaround (jargon, programming) workaround - A temporary kluge used to bypass, mask or otherwise avoid a bug or misfeature in some system. Customers often find themselves living with workarounds for long periods of time rather than getting a bug fix.  to close the underlying vulnerability until Microsoft releases a patch, users of Agnitum's Outpost Firewall Pro “Outpost” redirects here. For other uses, see Outpost (disambiguation).
Outpost Firewall Pro is a personal firewall package developed by the Russian firm Agnitum. It is available in both paid and freeware versions.  and Outpost Office Firewall can protect their systems by simply configuring the firewall to block TCP (1) (Transmission Control Protocol) The reliable transport protocol within the TCP/IP protocol suite. TCP ensures that all data arrive accurately and 100% intact at the other end.  port 3389.

This action involves closing connections to the RDP local port on your computer using Outpost's Global System and Rawsocket rules tab (for Outpost Office Firewall users, this control is available in the Configuration Editor). Details on how to do this are provided as an Agnitum Security Advisory, available on the company's website at www.agnitum.com/rdp.html, in the document heading "ASA-02-0507-3: RDP vulnerability could lead to computer resets."

Until the vendor fix is released, Windows users are advised to refrain from using Remote Desktop Access functionality wherever possible because of the risk of system sabotage. After the situation is corrected, users may reset their firewalls to the previous state by unblocking port 3389 communications.

"A huge software product like Windows OS will inevitably have errors," said Mikhail Penkovsky, VP Sales and Marketing, Agnitum Ltd. "We are happy to assist our customers in alleviating security threats until such time as the manufacturer is able to deliver a permanent fix. We invite anyone to download a trial version of Outpost from our web site and see for themselves how easy it is to manage this kind of vulnerability."

About Outpost Firewall products

Outpost Firewall Pro (http://www.agnitum.com/products/outpost) for standalone systems and Outpost Office Firewall (http://www.agnitum.com/products/oof) for networked environments provide a comprehensive arsenal of defenses against PC infiltration by denying unauthorized access to remote hackers and protecting against data theft, denial-of-service attacks, privacy violation, Trojan horses, spyware and other malicious code.

About Agnitum

Founded in 1999, Agnitum Ltd. (http://www.agnitum.com) is a leader in security and privacy software for home and office PCs, with more than a million users around the world. Agnitum is committed to delivering and supporting high quality security software products; the company's key offerings are Outpost Firewall Pro, securing home and SOHO Soho (sōhō`, sə–), district of Westminster, London, England, known for its continental restaurants. Once a fashionable quarter, it became popular among writers and artists in the 19th cent.  PCs, and Outpost Office Firewall, providing easy-to-use, reliable endpoint protection for corporate networks.
COPYRIGHT 2005 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2005, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Business Wire
Geographic Code:1USA
Date:Jul 26, 2005
Words:609
Previous Article:Swell in IT and Telecom Technology Spending Follows Growth in U.S. Healthcare Services Vertical.
Next Article:PACCAR Announces Strong Quarterly Financial Results; Company Celebrates Centennial in 2005.
Topics:



Related Articles
Media Alert/Associated Press, Network ICE Protects Against Latest Microsoft Security Flaw.
Users need not fear latest script viruses.(Brief Article)
Imitation cure for the Klez Internet worm. (Security).
Take control of Wi-Fi security: when it comes to Wi-Fi hotspots, such as those offered by coffee houses, hotels, and airports, "public" usually means...
Dasher-B expoits Windows 2000 PC's.(Security News)
Agnitum Analyzes Latest Microsoft Security Initiatives; Security Experts Warn That Introduction of Kernel Patch Protection By Microsoft Threatens...
Agnitum Protects Against MS06-040 Windows Remote Code Execution Vulnerability; Firewall Security Experts at Agnitum Reassure Outpost Firewall Pro...
Agnitum Introduces Outpost Firewall Pro 4.0.
IBM Internet Security Systems shields customers from critical Microsoft vulnerabilities.(Security News and Products)
Migration to Windows Vista is Not Happening in 2007.

Terms of use | Copyright © 2010 Farlex, Inc. | Feedback | For webmasters | Submit articles