TippingPoint Discovers Issue in Microsoft Bulletin, Protects Customers from Vulnerabilities Disclosed and Patched Today.Company's Zero Day Initiative Researcher Finds Flaw in Microsoft Internet Explorer See Internet Explorer. AUSTIN, Texas -- TippingPoint, a division of 3Com and the leader in intrusion prevention See IPS and IDS. , announced that its TippingPoint[TM] Intrusion Prevention Systems (IPS (1) (Inches Per Second) The measurement of the speed of tape passing by a read/write head or paper passing through a pen plotter. (2) (IPS) (Intrusion Prevention S ) provide complete protection against all vulnerabilities disclosed in the bulletins announced by Microsoft today, including one vulnerability discovered by its own Zero Day Initiative. Microsoft security bulletin MS06-067 includes fixes for multiple zero day vulnerabilities affecting Microsoft Internet Explorer which typically target end users and can be used to create bot (1) (roBOT) A program used on the Internet that performs a repetitive function such as posting a message to multiple newsgroups or searching for information or news. Bots are used to provide comparison shopping. Bots also keep a channel open on the Internet Relay Chat (IRC). networks. One of the issues was discovered and reported through TippingPoint's Zero Day Initiative on July 18, 2006. The Zero Day Initiative has uncovered 11 vulnerabilities affecting Microsoft products to date with an additional seven outstanding issues listed at: http://www.zerodayinitiative.com/upcoming_advisories.html. TippingPoint devices were inoculated against these threats through the Digital Vaccine[R] service, a remote update service that provides protection against the latest threats. TippingPoint provides vulnerability protection in the form of "virtual software patches" to preemptively protect customers against exploits, malware (MALicious softWARE) Software designed to destroy, aggravate and otherwise make life unhappy. See crimeware, virus, worm, logic bomb, macro virus and Trojan. , and worms. "Today's Microsoft bulletins demonstrate a consistent trend of response to zero-day exploits An attack that takes place immediately after a security vulnerability is announced. If a user discovers a vulnerability, it might wind up on one or two blogs, and the news travels fast. If a software vendor finds it, the tendency is to keep it under wraps until it has a patch to fix it. discovered in the wild," said Dave Endler, director of security research at TippingPoint. "TippingPoint researchers have noticed an increase in malicious activity from Eastern European attackers that leverage these privately discovered vulnerabilities affecting Internet Explorer Microsoft's Web browser, which comes with Windows starting with Windows 98. Commonly called "IE," versions for Mac and Unix are also available. Internet Explorer is the most widely used Web browser on the market. It has also been the browser engine in AOL's Internet access software. and Microsoft Office Microsoft's primary desktop applications for Windows and Mac. Depending on the package, it includes some combination of Word, Excel, PowerPoint, Access and Outlook along with various Internet and other utilities. . This growing trend was a strong factor behind the launch of TippingPoint's Zero Day Initiative." The goal of the Zero Day Initiative is to enable the responsible disclosure of vulnerabilities in order to make technology more secure for users and businesses. A zero day vulnerability is one that is unknown or one that has been publicly disclosed without a corresponding patch. Through the program, 3Com rewards security researchers for responsibly informing 3Com of newly discovered zero day vulnerabilities. TippingPoint notifies the affected vendor so a patch can be developed, and the researcher agrees to keep the information confidential until the patch is issued to mitigate risks to affected organizations. In addition to protecting all users from zero day threats by ensuring information is kept confidential until a patch is issued, TippingPoint's customers are protected against zero day attacks through security filters delivered through the Digital Vaccine service. The TippingPoint IPS provides protection for the following security bulletins announced by Microsoft today: (1) MS06-066 Vulnerabilities in Client Service for Netware Could Allow Remote Code Execution CVE-2006-4688, CVE-2006-4689 (Rating: Important) (2) MS06-067 Cumulative Security Update for Internet Explorer CVE-2006-4687, CVE-2006-4446, CVE-2006-4777 (Rating: Critical) (3) MS06-068 Vulnerability in Microsoft Agent Microsoft Agent is a technology developed by Microsoft which employs animated characters, text-to-speech engines, and speech recognition software to enhance interaction with computer users. Thus it is an example of an embodied agent. Could Allow Remote Code Execution CVE-2006-3445 (Rating: Critical) (4) MS06-069 Vulnerabilities in Macromedia Flash Player Could Allow Remote Code Execution CVE-2006-3014, CVE-2006-3311, CVE-2006-3587, CVE-2006-3588, CVE-2006-4640 (Rating: Critical) (5) MS06-070 Vulnerability in Workstation Service Could Allow Remote Code Execution CVE-2006-4691 (Rating: Critical) (6) MS06-071 Vulnerability in Microsoft XML XML in full Extensible Markup Language. Markup language developed to be a simplified and more structural version of SGML. It incorporates features of HTML (e.g., hypertext linking), but is designed to overcome some of HTML's limitations. Core Services The introduction to this article provides insufficient context for those unfamiliar with the subject matter. Please help [ improve the introduction] to meet Wikipedia's layout standards. You can discuss the issue on the talk page. Could Allow Remote Code Execution CVE-2006-5745 (Rating: Critical) For more information on the Microsoft vulnerabilities, please visit: http://www.microsoft.com/technet/security/bulletin/ms06-nov.mspx. About TippingPoint, a division of 3Com TippingPoint, a division of 3Com, is the leading provider of network-based intrusion prevention systems. The TippingPoint IPS is the most decorated in its industry. For a full list of awards, visit http://www.tippingpoint.com/products_certifications.html. Our innovative approach offers customers unmatched network-based security with ultra-high performance, scalability and reliability. TippingPoint is based in Austin, Texas, and can be contacted through its Web site at www.tippingpoint.com or by telephone at 1-888-TRUE-IPS. About 3Com Corporation 3Com Corporation (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : COMS COMS 3Com Corporation (stock symbol) COMS Certified Orientation and Mobility Specialist COMS Continuous Opacity Monitoring Systems COMS City of Manchester Stadium (UK) ) is a leading provider of secure, converged voice and data networking solutions for enterprises of all sizes. 3Com offers a broad line of innovative products backed by world class sales, service and support, which excel at Verb 1. excel at - be good at; "She shines at math" shine at excel, surpass, stand out - distinguish oneself; "She excelled in math" delivering business value for its customers. Through its TippingPoint division, 3Com is the leading provider of network-based intrusion prevention systems that deliver in-depth application protection, infrastructure protection, and performance protection. 3Com also is the majority owner of Huawei-3Com Co., Ltd. (H-3C), a China-based joint venture formed by 3Com and Huawei in November 2003. H-3C brings innovative and cost-effective product development and manufacturing and a strong footprint in one of the world's most dynamic markets. For further information, please visit www.3com.com, or the press site www.3com.com/pressbox. Copyright [c] 2006 3Com Corporation. 3Com, the 3Com logo and Digital Vaccine are registered trademarks and TippingPoint is a trademark of 3Com Corporation or its subsidiaries. All other company and product names may be trademarks of their respective holders. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion