Check Point SmartDefense Protects Customers From The Latest Microsoft RPC Vulnerabilities; Class-Based Attack Protection Approach Defeats Threats.Business Editors/High-Tech Writers REDWOOD CITY Redwood City, city (1990 pop. 66,072), seat of San Mateo co., W Calif., on San Francisco Bay; inc. 1868. Manufactures include commmunications, electrical, electronic, and medical equipment. , Calif.--(BUSINESS WIRE)--Sept. 12, 2003 Check Point Software Technologies Ltd. (Nasdaq:CHKP CHKP Check Point Software Technologies Ltd. (stock abbreviation, AMEX) ), the worldwide leader in securing the Internet, today announced that its SmartDefense(TM) active defense solution protects customers against the three latest reported Microsoft Remote Procedure Call (RPC (Remote Procedure Call) A programming interface that allows one program to use the services of another program in a remote machine. The calling program sends a message and data to the remote program, which is executed, and results are passed back to the calling ) vulnerabilities. The SmartDefense Active Update released in April 2003, automatically protected customers against variants exploiting the Microsoft RPC service -- including the July 2003 LovSan/Blaster worm that exploited a weakness in the Windows 2000 and Windows XP The previous client version of Windows. XP was a major upgrade to the client version of Windows 2000 with numerous changes to the user interface. XP improved support for gaming, digital photography, instant messaging, wireless networking and sharing connections to the Internet. operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. . Remote Procedure Call (RPC) is a protocol used by the Windows operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. , which is installed on a large number of PCs worldwide. RPC provides an inter-process communication mechanism that allows a program running on one computer to access services on another computer. An exploitation of this vulnerability could potentially allow an attacker to gain control of a computer, delete data and install unwanted programs. Class-Based Attack Protection SmartDefense is based on Check Point's patented Stateful Inspection and Application Intelligence technologies, and blocks not only specific attacks, but also entire categories or "classes" of attacks. Check Point provides this unique level of protection by enforcing the proper and expected usage of protocols, such as RPC, and does not rely on signatures. Traditional signature-based defenses are reactive because they require knowledge of the exact characteristics of an attack in order to create a defense signature. Validate Expected Usage of Protocols Check Point's Application Intelligence technology has the capability to determine whether data within protocols adheres to expected usage. In other words Adv. 1. in other words - otherwise stated; "in other words, we are broke" put differently , even if a communication stream complies with a protocol standard, the way in which the protocol is being used may be inconsistent with what is expected. Defense Mechanisms Users of Check Point FireWall-1(R) NG with Feature Pack 3 who have applied the DCE-RPC DCE-RPC Distributed Computing Environment/Remote Procedure Call advisory (CPAI-2003-11) protection, available since April 2003, have defenses that proactively protect against these current vulnerabilities and the Blaster/LovSan worm. About Check Point SmartDefense Check Point's revolutionary SmartDefense actively protects organizations from known and unknown network and application attacks by using intelligent security technology to immediately detect, prevent and respond to attack attempts. SmartDefense blocks attacks by type and class using Check Point's patented Stateful Inspection and innovative Application Intelligence(TM) technologies, as well as provides a single, centralized console to deliver real-time information on attacks as well as attack detection, blocking, logging, auditing and alerting. SmartDefense is included in Check Point Next Generation with Application Intelligence product suite, and works in conjunction with an ongoing subscription service, Active Update, delivered by Check Point to ensure that the latest information on and defenses for new and emerging attacks is available to users. About Check Point Software Technologies Check Point Software Technologies is the worldwide leader in securing the Internet. It is the confirmed market leader of both the worldwide VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. and firewall markets. Through its Next Generation product line, the company delivers a broad range of Perimeter, Internal and Web security solutions that protect business communications and resources for corporate networks and applications, remote employees, branch offices and partner extranets. Extending the power of the Check Point solution is its Open Platform for Security (OPSEC (OPerations SECurity) The U.S. military term for concealing critical information as part of a counterintelligence plan. A form of "security by obscurity," OPSEC determines what information adversaries can obtain or piece together from observation and to provide measures for ), the industry's framework and alliance for integration and interoperability with "best-of-breed" solutions from over 350 leading companies. Check Point solutions are sold, integrated and serviced by a network of 2,500 Check Point partners in 149 countries. For more information, please call us at 800-429-4391 or 650-628-2000, or visit us on the Web at http://www.checkpoint.com or at http://www.opsec.com. Check Point, the Check Point logo, Application Intelligence, Cluster XL, ConnectControl, FireWall-1, FireWall-1 GX, FireWall-1 SecureServer, FireWall-1 SmallOffice, FireWall-1 VSX (Verification Suite for X/Open) A testing procedure from X/Open that verifies compliance with their endorsed standards. VSX3 has over 5,500 tests for compliance with XPG3. See XPG. VSX - Verification Suite for X/open. , FireWall-1 XL, FloodGate-1, INSPECT, INSPECT XL, IQ Engine, Meta IP, MultiGate, Open Security Extension, OPSEC, Provider-1, SecureKnowledge, SecureXL, SiteManager-1, SmartCenter, SmartCenter Pro, SmartDashboard, SmartDefense, SmartLSM, SmartMap, SmartView, SmartView Monitor, SmartView Reporter, SmartView Status, SmartView Tracker, SVN SVN Subversion (version control system) SVN Slovenia (international traffic code) SVN Social Venture Network SVN South Vietnam SVN Secure Virtual Network SVN Supervised Visitation Network , UAM UAM Universidad Autónoma de Madrid (Spain) UAM Universidad Autonoma Metropolitana (México) UAM Uniwersytet im. , User-to-Address Mapping, UserAuthority, VPN-1 Accelerator Card, VPN-1 Net, VPN-1 Pro, VPN-1 SecureClient, VPN-1 SecuRemote, VPN-1 SecureServer, VPN-1 SmallOffice, and VPN-1 VSX are trademarks, service marks, or registered trademarks of Check Point Software Technologies Ltd. or its affiliates. All other product names mentioned herein are trademarks or registered trademarks of their respective owners. The products described in this document are protected by U.S. Patent Nos. 5,606,668, 5,835,726, and 6,496,935 and may be protected by other U.S. Patents, foreign patents, or pending applications. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion