Internet Security Systems Preemptively Protects Customers Against Windows Meta File (WMF) Exploits; ISS Protected Customers a Week Before Microsoft Released a Patch, Also Discovered Additional Vulnerable Applications.ATLANTA -- Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. Systems, Inc. (ISS ISS See Institutional Shareholder Services (ISS). ) (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : ISSX ISSX Internet Security Systems Inc. (stock abbreviation, AMEX) ) today announced that the company preemptively protected customers from the latest Windows Meta File vulnerability patched today by Microsoft. Before this vulnerability was announced, customers of ISS' host-based security products were shielded from it by the company's buffer overflow A common cause of malfunctioning software. If the amount of data written into a buffer exceeds the size of the buffer, the additional data will be written into adjacent areas, which could be buffers, constants, flags or variables. exploit prevention technology. Using a multi-layered security approach and unique Virtual Patch(TM) technology, which allows companies to protect against software flaws before affected vendors release patches, ISS was also able to provide customers with network-based protection for this vulnerability when it was first announced. With a multi-layered security solution including intrusion prevention See IPS and IDS. , anti-virus and buffer overflow protection, ISS is the only security vendor that has been able to provide companies with effective protection for this vulnerability in the absence of a patch from Microsoft. "With so many unpatched machines open to exploitation for over a week, we expect that the repercussions repercussions npl → répercussions fpl repercussions npl → Auswirkungen pl of this issue will be quite serious," said Chris Rouland, chief technology officer of Internet Security Systems. "Due to the ease with which this flaw can be exploited, the hacker world has no doubt been using it as a means to grow existing bot (1) (roBOT) A program used on the Internet that performs a repetitive function such as posting a message to multiple newsgroups or searching for information or news. Bots are used to provide comparison shopping. Bots also keep a channel open on the Internet Relay Chat (IRC). networks to perpetuate future crimes and offenses such as targeted DoS attacks, Trojan and spyware propagation, identity theft and corporate espionage." The Windows Picture and Fax viewer Windows Picture and Fax Viewer is an image viewer. It is a part of the Windows XP and Windows Server 2003 operating systems. It is capable of viewing JPG, BMP, PNG, GIF, WMF, EMF and TIFF format files. is the default application used to handle files with the .wmf extension in most Microsoft Windows See Windows. (operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. . Windows installations are vulnerable to this flaw in their default configurations. Although an attack on this vulnerability requires some level of user interaction, it is possible to trick users into following hyperlinks or opening malicious attachments that contain exploit material. Other methods of attack may also be employed, such as embedding the link in JavaScript or some other method that will automatically download the file without the user's knowledge. Successful exploitation of the flaw would grant an attacker the privileges of the user viewing the image, up to and including administrative privileges. In addition to the Windows Picture and Fax viewer, ISS' X-Force(R) research and development team has discovered additional attack vectors for applications including Microsoft Word, Excel, PowerPoint, Access and Publisher. Microsoft Office documents as well as other formats like Macromedia Flash have been confirmed vulnerable and are likely to be used as malicious code delivery vehicles. This vulnerability, complete with multiple infection vectors, has been observed in the wild and is known to be used in several worms and in spyware. By focusing on vulnerabilities rather than known exploits, X-Force allows ISS to offer security that protects organizations from Internet threats before they impact business assets. By leveraging X-Force security research, a multi-layered security approach and ISS' Virtual Patch technology, ISS' Proventia(R) security products automatically patch vulnerabilities and protect critical assets from Internet attacks until organizations are able to obtain, test and apply patches from affected vendors. The ISS X-Force alerts on this vulnerability can be found at: http://xforce.iss.net/xforce/alerts/id/211 http://xforce.iss.net/xforce/alerts/id/212 ISS strongly advises that companies apply the official Microsoft patch released today. Microsoft's security bulletin addressing this vulnerability can be found at: http://www.microsoft.com/technet/security/current.aspx For more information on ISS' preemptive pre·emp·tive or pre-emp·tive adj. 1. Of, relating to, or characteristic of preemption. 2. Having or granted by the right of preemption. 3. a. protection offerings, please visit: http://www.iss.net/proof/preemptiveprotection/ About Internet Security Systems, Inc. Internet Security Systems, Inc. (ISS) is the trusted expert to global enterprises and world governments, providing products and services that protect against Internet threats. An established world leader in security since 1994, ISS delivers proven cost efficiencies and reduces regulatory and business risk across the enterprise. ISS products and services are based on the proactive security intelligence conducted by ISS' X-Force(R) research and development team - the unequivocal world authority in vulnerability and threat research. Headquartered in Atlanta, Internet Security Systems has additional operations throughout the Americas, Asia, Australia, Europe and the Middle East. For more information, visit the Internet Security Systems Web site at www.iss.net or call 800-776-2362. Internet Security Systems and Virtual Patch are trademarks and X-Force and Proventia are registered trademarks of Internet Security Systems, Inc. All other companies and products mentioned are trademarks and property of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion