Printer Friendly

NFR Security Announces Protection against Newly Disclosed Microsoft Windows Vulnerabilities; NFR Security's Sentivist Product Protects against Critical Flaws that allow Attackers to Compromise Windows 2000 Machines.

ROCKVILLE, Md. -- NFR Security, Inc., the leader in Real-Time Threat Protection(TM), today announced that the company is providing its Sentivist intrusion prevention system (IPS) customers with protection for multiple Microsoft vulnerabilities disclosed within the last 24 hours.

Of great importance to users of the Microsoft Window 2000 operating system, NFR Security protects customers against a remote compromise issue in the Microsoft Distributed Transaction Coordinator (MSDTC), which is used by the Microsoft Windows operating system to coordinate transactions such as databases, message queues and file systems across distributed machines. If successfully exploited, this vulnerability can lead to execution of arbitrary code on the target machine and control of the victim system. This exposure is due to an unusual memory allocation method used for certain types of requests sent to the Microsoft Distributed Transaction Coordinator MSRPC service. A malicious user can supply a large length value that can cause the service to overwrite arbitrary memory structures. Default security restrictions limit the effectiveness of this bug under Windows XP and Windows 2003, but Windows 2000 is vulnerable to unauthenticated users if the service is running.

"This is a highly exploitable vulnerability that emphasizes the importance of having real time network based security to protect the network until a patching exercise can be completed," said Darrell Burkey, Director of Product Management of NFR Security.

About NFR Security, Inc.

NFR Security is the leading provider of Real-Time Threat Protection systems that secure business networks against the four primary threat points of today - automated malware, information leakage, vulnerability windows and unsanctioned network changes. Uniquely combining its hybrid detection engine and Dynamic Shielding Architecture, NFR Security delivers highly accurate protection through inline prevention and automation against real time threats. NFR Security serve customers worldwide in corporate enterprises, government agencies, service providers and academic institutions through an extensive worldwide network of channel partners and direct sales. NFR Security is headquartered in Rockville, MD. Additional information about NFR Security can be found at or by calling 1-800-234-4079.
COPYRIGHT 2005 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2005, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

Article Details
Printer friendly Cite/link Email Feedback
Comment:NFR Security Announces Protection against Newly Disclosed Microsoft Windows Vulnerabilities; NFR Security's Sentivist Product Protects against Critical Flaws that allow Attackers to Compromise Windows 2000 Machines.
Publication:Business Wire
Geographic Code:1USA
Date:Oct 13, 2005
Previous Article:EMG Teams with Kopin to Deliver Lightweight Personal Video Eyewear; i-Theater Video Eyewear System Incorporates Kopin Binocular Display Module.
Next Article:ECONCO Signs Distribution Agreement with Richardson Electronics.

Related Articles
Microsoft releases 10 security updates.
Hackers target Microsoft's JPEG flaw.
Internet Security Systems Protects Customers Against Critical Flaw in Microsoft Windows Operating System; Flaw Allows Unauthenticated Remote...
Internet Security Systems Preemptively Protects Customers Against Windows Meta File (WMF) Exploits; ISS Protected Customers a Week Before Microsoft...
TippingPoint Preemptively Protects Customers against Microsoft Vulnerabilities, Including Metafile Vulnerability; Company's Digital Vaccine(R)...
TippingPoint Protects Customers against New Microsoft Vulnerabilities; Company's Digital Vaccine(R) Service Protects Against Microsoft...
Internet Security Systems Protects Customers from Microsoft Flaws and Thwarts Phishing Attempts; ISS Virtual Patch(TM) Technology Protects Customers...
3Com's Zero Day Initiative Uncovers Two Microsoft Vulnerabilities; Provides Customers with Same-Day Protection; 3Com Also Protects Customers Against...
IBM Internet Security Systems shields customers from critical Microsoft vulnerabilities.
Security and products; ISS helps safeguard customers.

Terms of use | Privacy policy | Copyright © 2019 Farlex, Inc. | Feedback | For webmasters