Breaking News: eEye Digital Security Uncovers Dangerous Vulnerabilities in Microsoft Windows ASN.Business Editors/High-Tech Writers ALISO VIEJO, Calif.--(BUSINESS WIRE)--Feb. 10, 2004 eEye's Retina(R) Network Security Scanner Software that analyzes a network to determine its exposure to unwanted intruders. Also called "vulnerability scanners," such products check client PCs, servers, routers, firewalls, network appliances, system software and applications for vulnerabilities that include open ports, trapdoors, Detects and Remediates ASN (1) (Autonomous System Number) A unique identifier of an autonomous system on the Internet. Of the 65 thousand ASNs available, more than 30 thousand have been assigned to ISPs and NSPs. ISPs usually have only one ASN, but NSPs may have more than one. Vulnerability eEye(R) Digital Security, a leading developer of enterprise security software solutions, today announced its research team uncovered two critical vulnerabilities relating to relating to relate prep → concernant relating to relate prep → bezüglich +gen, mit Bezug auf +acc Microsoft's Windows(R) Abstract Syntax Notation One In telecommunications and computer networking, Abstract Syntax Notation One (ASN.1) is a standard and flexible notation that describes data structures for representing, encoding, transmitting, and decoding data. (ASN.1). ASN is the method through which the syntax of messages to be exchanged between peer applications is defined, independent of local representation. These critical security flaws affect unpatched Windows NT (Windows New Technology) A 32-bit operating system from Microsoft for Intel x86 CPUs. NT is the core technology in Windows 2000 and Windows XP (see Windows). Available in separate client and server versions, it includes built-in networking and preemptive multitasking. , 2000, XP and Windows Server See Windows Server 2008, Windows Server 2003, Windows Home Server, Windows 2000 and Windows NT. 2003 machines. eEye's research team discovered these vulnerabilities as early as July 2003 and worked with Microsoft to develop a remediation solution. Either of these ASN vulnerabilities could allow an attacker to overwrite (1) A data entry mode that writes over existing characters on screen when new characters are typed in. Contrast with insert mode. (2) To record new data on top of existing data such as when a disk record or file is updated. heap memory with arbitrary data allowing for the execution of malicious code. Both of these flaws can be detected and subsequently exploited remotely and have the potential to cause serious damage if not immediately remediated. Ironically, the security-related functionality in Windows is especially adept at rendering a machine vulnerable to an attack. Since the ASN library is widely used by Windows security subsystems, the vulnerability is exposed through an array of authentication protocols. This makes these vulnerabilities more dangerous than previous flaws that spawned Nimda, Code Red and Sapphire worms. eEye and Microsoft have released detailed advisories to alert Windows users of the need to immediately remediate vulnerable machines on their networks. "eEye's research team is in constant search of new vulnerabilities in order to improve network security and stay a step ahead of malicious attacks that disrupt business and result in financial loss," said Marc Maiffret Marc Maiffret is the co-founder of eEye Digital Security along with Firas Bushnaq. He is currently serving as Chief Technology Officer, where he is responsible for both high-level product strategy, as well as setting the eEye research agenda. , chief hacking officer of eEye Digital Security eEye Digital Security is a company that specialises in analysis and prevention of security vulnerabilities in software. Founded by Firas Bushnaq and Marc Maiffret in 1997, the company has been credited by Microsoft with bringing a number of security vulnerabilities to their . "With these new findings of potentially catastrophic vulnerabilities, it is imperative that organizations immediately apply the appropriate patches to ensure their systems are secure." Retina(R) Network Security Scanner customers are already protected against this vulnerability. It is imperative that users scan their networks for vulnerable machines and follow the remediation instructions provided by Retina. eEye Digital Security is a leading contributor to network security research. For more information about upcoming advisories, visit www.eeye.com/html/Research/Upcoming/index.html. For more information about eEye's research team, please visit www.eeye.com/research. For more information on Retina Network Security Scanner, please visit www.eeye.com/html/Products/Retina/index.html. For information on the ASN vulnerabilities, please refer to eEye's advisories: www.eeye.com/html/Research/Advisories/AD20040210.html www.eeye.com/html/Research/Advisories/AD20040210-2.html About eEye's Research Team eEye's research team is recognized as a leader in network security -- having detected dozens of high-severity vulnerabilities and worms in the past few years, including the Code Red, Sapphire and RPC (Remote Procedure Call) A programming interface that allows one program to use the services of another program in a remote machine. The calling program sends a message and data to the remote program, which is executed, and results are passed back to the calling DCOM (Distributed Component Object Model) Formerly Network OLE, it is Microsoft's technology for distributed objects. DCOM is based on COM, Microsoft's component software architecture, which defines the object interfaces. vulnerabilities. With unparalled security expertise, eEye's research team is regarded as one of the foremost authorities on vulnerability discovery and has built upon this heritage to deliver the industry's most comprehensive enterprise vulnerability assessment and remediation management solutions. About eEye Digital Security eEye Digital Security is a leading developer of network security products and an active contributor to network security research and education. eEye offers several award-winning solutions including Enterprise Vulnerability Assessment, Remediation Management and Intrusion Prevention. eEye products protect the networks and digital assets of thousands of corporate and government entities in over 40 countries including Citigroup, Prudential, AT&T Wireless and Ernst & Young. For more information, visit www.eeye.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion