NFR Security Announces Protection against Newly Disclosed Microsoft Windows Vulnerabilities; NFR Security's Sentivist Product Protects against Critical Flaws that allow Attackers to Compromise Windows 2000 Machines.
Of great importance to users of the Microsoft Window 2000 operating system, NFR Security protects customers against a remote compromise issue in the Microsoft Distributed Transaction Coordinator (MSDTC), which is used by the Microsoft Windows operating system to coordinate transactions such as databases, message queues and file systems across distributed machines. If successfully exploited, this vulnerability can lead to execution of arbitrary code on the target machine and control of the victim system. This exposure is due to an unusual memory allocation method used for certain types of requests sent to the Microsoft Distributed Transaction Coordinator MSRPC service. A malicious user can supply a large length value that can cause the service to overwrite arbitrary memory structures. Default security restrictions limit the effectiveness of this bug under Windows XP and Windows 2003, but Windows 2000 is vulnerable to unauthenticated users if the service is running.
"This is a highly exploitable vulnerability that emphasizes the importance of having real time network based security to protect the network until a patching exercise can be completed," said Darrell Burkey, Director of Product Management of NFR Security.
About NFR Security, Inc.
NFR Security is the leading provider of Real-Time Threat Protection systems that secure business networks against the four primary threat points of today - automated malware, information leakage, vulnerability windows and unsanctioned network changes. Uniquely combining its hybrid detection engine and Dynamic Shielding Architecture, NFR Security delivers highly accurate protection through inline prevention and automation against real time threats. NFR Security serve customers worldwide in corporate enterprises, government agencies, service providers and academic institutions through an extensive worldwide network of channel partners and direct sales. NFR Security is headquartered in Rockville, MD. Additional information about NFR Security can be found at www.nfr.com or by calling 1-800-234-4079.
|Printer friendly Cite/link Email Feedback|
|Comment:||NFR Security Announces Protection against Newly Disclosed Microsoft Windows Vulnerabilities; NFR Security's Sentivist Product Protects against Critical Flaws that allow Attackers to Compromise Windows 2000 Machines.|
|Date:||Oct 13, 2005|
|Previous Article:||EMG Teams with Kopin to Deliver Lightweight Personal Video Eyewear; i-Theater Video Eyewear System Incorporates Kopin Binocular Display Module.|
|Next Article:||ECONCO Signs Distribution Agreement with Richardson Electronics.|