BindView RAZOR Team Issues RapidFire Update for New RPC, SMTP Microsoft Vulnerabilities.HOUSTON -- What BindView Corp. (Nasdaq:BVEW BVEW Binary View ) announced today that its RAZOR Rapid Response Team has created security checks for two newly identified critical vulnerabilities. These vulnerabilities compromise remote systems, allowing seamless access by attackers. MS04-029: The Remote Procedure Call (RPC (Remote Procedure Call) A programming interface that allows one program to use the services of another program in a remote machine. The calling program sends a message and data to the remote program, which is executed, and results are passed back to the calling ) protocol allows processes on remote systems to be accessed seamlessly by other systems. The interface for Microsoft's RPC contains a flaw in the API, which allows memory leaks and remote denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. . Attackers are able to read portions of active memory or cause systems to cease responding. BindView has created checks for use with its bv-Control for Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. software. MS04-035: The SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. vulnerability in Windows 2003 affects how DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the lookups respond and could potentially allow remote-code execution. BindView customers on current maintenance contracts running Vulnerability Management solutions that include bv-Control for Windows and bv-Control for Internet Security can take immediate protective action. BindView's RapidFire Update Service provides customers with immediate access to the update via automatic distribution, or customers can download the new updates online at: www.bindview.com/Advisories/ADV_MSFT MSFT Microsoft (stock symbol) MSFT Movimento Sociale Fiamma Tricolore (Italy) MSFT Multi-Stage Fitness Test MSFT Master of Science in Family Therapy MSFT Macalester Students for Fair Trade 04-101304.cfm. Who is at Risk It is recommended that customers refer to the Microsoft Advisory for full details. In general, following are the systems affected by these newly identified vulnerabilities: MS04-029: Organizations using Windows Server NT 4.0 Service Pack 6a and Windows NT Server 4.0 Terminal Server Edition Service Pack 6 systems are vulnerable. Windows 98, ME, 2000, XP and 2003 are not at risk. MS04-035: Organizations at risk include those using Windows XP 64-Bit Edition For the 64-bit version of Windows XP for AMD64/Intel64 systems, see . Microsoft Windows XP 64-bit Edition is a version of Microsoft's Windows XP operating system designed to run on Intel Itanium family of microprocessors in their native IA-64 mode. Version 2003, Windows Server 2003, Windows Server 2003 64-Bit Edition, Exchange Server 2003 and Microsoft Exchange Server Microsoft Exchange Server is a messaging and collaborative software product developed by Microsoft. It is part of the Microsoft Servers line of server products and is widely used by enterprises using Microsoft infrastructure solutions. 2003 Service Pack 1. BindView has created vulnerability checks for use with its bv-Control for Windows and bv-Control for Internet Security software to assist customers in locating compromised systems. Once these systems are identified, customers should proceed with the outlined precautionary measures as quickly as possible. Commentary on the Microsoft Vulnerabilities BindView RAZOR Team experts are available to discuss these new vulnerabilities and share further insight into organizations most at risk, potential outcomes of an attack, as well as additional ways to secure enterprise IT infrastructures. Experts can also discuss the growing number of system vulnerabilities that have been identified in the past few months. About BindView BindView Corporation is a leading provider of proactive business policy, IT security and directory management software. BindView solutions and services enable customers to centralize and automate policy compliance, vulnerability assessment and directory administration across the entire organization. With BindView insight at work(TM), customers benefit from reduced risk and improved operational efficiencies with a verifiable return on investment. More than 20 million licenses have shipped to 5,000 companies worldwide, spanning all major business segments and the public sector. Contact BindView via e-mail at info@bindview.com or visit BindView's Web site at http://www.bindview.com. BindView can also be reached at 1-800-749-8439 or at 1-713-561-4000. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion