TippingPoint Provides Protection Two Years Prior to Disclosure of Latest Microsoft Zero Day Vulnerability.AUSTIN, Texas -- TippingPoint, the leader in intrusion prevention See IPS and IDS. , today announced that its TippingPoint(TM) Intrusion Prevention Systems (IPS (1) (Inches Per Second) The measurement of the speed of tape passing by a read/write head or paper passing through a pen plotter. (2) (IPS) (Intrusion Prevention S ) provided preemptive pre·emp·tive or pre-emp·tive adj. 1. Of, relating to, or characteristic of preemption. 2. Having or granted by the right of preemption. 3. a. , zero day protection two years prior to the discovery and disclosure of a new Microsoft Windows See Windows. (operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. buffer overflow A common cause of malfunctioning software. If the amount of data written into a buffer exceeds the size of the buffer, the additional data will be written into adjacent areas, which could be buffers, constants, flags or variables. vulnerability that exists in the handling of certain malformed mal·formed adj. Abnormally or faultily formed. "Animated Cursor A screen pointer that makes a small amount of movement. In Windows, animated cursors have an .ANI extension. " files. According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. the Microsoft Security Advisory KB935423, the vulnerability affects Windows 2000, XP, and 2003 as well as Vista. In December 2004, TippingPoint released security filters through its Digital Vaccine((c)) service to update its customers' Intrusion Prevention Systems with protection against file format anomalies for Windows Animated Cursor, Bitmap, and Icon files. Today, one of those filters continues to provide preemptive protection for the new zero day attack, discovered on March 28, 2007, exploiting a new Microsoft Windows Animated Cursor vulnerability. The new vulnerability is being exploited in the wild by a large number of Web sites that are hosting the exploit code. Users are compromised when they click on a link in spam E-mail that is not requested. Also known as "unsolicited commercial e-mail" (UCE), "unsolicited bulk e-mail" (UBE), "gray mail" and just plain "junk mail," the term is both a noun (the e-mail message) and a verb (to send it). messages that re-directs them to these malicious sites. Microsoft is expected to release a patch for the vulnerability today. Prior to the release of a patch, there is very little an organization can do to prevent a zero day attack. TippingPoint Intrusion Prevention Systems provide vulnerability-based protection. Because TippingPoint protects the underlying vulnerability, one security filter can protect against several different types of exploits. In addition to offering vulnerability-based protection, TippingPoint also offers protocol anomaly A deviation from the standard protocol. An intrusion detection system (IDS) may look for protocol anomalies in order to identify attacks without a signature. Protocol anomalies reduce false positives with well-understood protocols, but may cause false positives with poorly understood or and statistical anomaly-based protection so that it can block or throttle malicious behavior. "We believe TippingPoint Intrusion Prevention Systems offer far more advanced protection than any other IPS due to the skill and vulnerability expertise of our security researchers and Zero Day Initiative research network," said Rohit Dhamankar, senior manager of security research for TippingPoint's DVLabs. "This is yet another success story where we've been able to provide the most timely and accurate vulnerability protection for our customers, far in advance of an emerging threat that exploits the vulnerability. Over the last year alone, TippingPoint has provided preemptive IPS protection before a patch was available for Microsoft vulnerabilities a staggering 22 times." TippingPoint's DVLabs is the premier research organization for vulnerability analysis In information operations, a systematic examination of an information system or product to determine the adequacy of security measures, identify security deficiencies, provide data from which to predict the effectiveness of proposed security measures, and confirm the adequacy of such and discovery, ensuring customers have the best preemptive protection for vulnerabilities and zero day issues. This is evidenced by the fact that TippingPoint has the largest vulnerability research team in the world, made up of over 500 Zero Day Initiative researchers, who have discovered the following vulnerabilities: http://www.zerodayinitiative.com/advisories.html; and TippingPoint's own internal research team, who have also made significant vulnerability discoveries: http://www.tippingpoint.com/security/published_advisories.html. Currently, TippingPoint is working responsibly with Microsoft to address 10 non-disclosed, unpatched vulnerabilities: http://www.zerodayinitiative.com/upcoming_advisories.html. For more information on the Microsoft vulnerability, please visit: http://www.microsoft.com/technet/security/advisory/935423.mspx. About TippingPoint, a division of 3Com TippingPoint, the leader in intrusion prevention systems (IPS), provides the IPS-secured network, which delivers attack control, access control, and application control. Its foundation is the TippingPoint IPS, the most decorated in its industry with unparalleled performance and security, as evidenced by nearly 35 awards. For a full list, visit: http://www.tippingpoint.com/products_certifications.html. The IPS obtains evergreen protection from the Digital Vaccine service, powered by DVLabs, the largest body of security researchers in the world. DVLabs is made up of expert internal researchers and over 400 Zero Day Initiative researchers. For more information on TippingPoint, please visit: www.tippingpoint.com or call 1-888-TRUE-IPS. About 3Com Corporation 3Com Corporation (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : COMS COMS 3Com Corporation (stock symbol) COMS Certified Orientation and Mobility Specialist COMS Continuous Opacity Monitoring Systems COMS City of Manchester Stadium (UK) ) is a leading provider of secure, converged voice and data networking solutions for enterprises of all sizes. 3Com offers a broad line of innovative products backed by world class sales, service and support, which excel at Verb 1. excel at - be good at; "She shines at math" shine at excel, surpass, stand out - distinguish oneself; "She excelled in math" delivering business value for its customers. Through its TippingPoint division, 3Com is the leading provider of network-based intrusion prevention systems that deliver in-depth application protection, infrastructure protection, and performance protection. 3Com also owns H3C Technologies Co., Limited (H3C), a China-based provider of network infrastructure products. H3C brings innovative and cost-effective product development and manufacturing and a strong footprint in one of the world's most dynamic markets. For further information, please visit www.3com.com, or the press site www.3com.com/pressbox. Copyright (c) 2007 3Com Corporation. 3Com, the 3Com logo and Digital Vaccine are registered trademarks and TippingPoint is a trademark of 3Com Corporation or its subsidiaries. All other company and product names may be trademarks of their respective holders. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion