Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

TippingPoint Provides Zero Day Protection For Microsoft Internet Explorer Vulnerability

  • 14 July, 2005 11:51

<p>TippingPoint’s Digital Vaccine® Service Provides Complete Protection for New Microsoft Bulletins</p>
<p>Sydney, Australia – 14 July 2005 – TippingPoint, a division of 3Com (Nasdaq: COMS) and the leader in intrusion prevention, announced that it preemptively provided customers protection for all vulnerabilities disclosed by Microsoft today. In the case of the critical Internet Explorer (IE) vulnerability, TippingPoint customers were already protected from this zero day vulnerability through specialised IE security filters developed by TippingPoint’s Digital Vaccine team last year, well before the discovery of the vulnerability.</p>
<p>A zero day vulnerability refers to a security flaw for which there is no vendor patch available at the time it is disclosed to the public. This is exacerbated when exploit code targeting the vulnerability gets published, which is what occurred with the IE vulnerability. The vulnerability was disclosed on June 29 through a public security mailing list. It was soon followed by exploit code published on 2 July. Yesterday, reports claimed the exploit code was being used by malicious websites to infect computer systems with Trojans. Microsoft made the IE vulnerability patch available for download on 5 July in a security advisory, and made the patch widely available today by releasing the security bulletin.</p>
<p>“Long before Microsoft released a patch, TippingPointTM Intrusion Prevention Systems (IPS) were completely protecting customers against the IE malicious code,” said Rohit Dhamankar, manager of the Digital Vaccine security research team. “A zero day vulnerability is especially difficult to mitigate in the absence of a patch. In this case, IPS truly is the only method of network protection. TippingPoint’s world-class research team was able to deliver application protection filters last year to preemptively protect customers against these new IE exploits. Our IPS protects against a plethora of new and unknown attacks on a variety of applications through the use of these anomaly and specialised application protection filters.”</p>
<p>The TippingPoint Intrusion Prevention Systems were inoculated against these threats through the Digital Vaccine® service, which provides timely security filters, also known as Virtual Software Patches. TippingPoint’s Digital Vaccine service preemptively defends against zero day attacks targeting vulnerabilities, including those announced in this month’s Microsoft bulletin.</p>
<p>The TippingPoint IPS provides protection for the following bulletins announced by Microsoft today:</p>
<p>(1) MS05-035
Vulnerability in Microsoft Word Could Allow Remote Code Execution
(Rating: Critical)</p>
<p>(2) MS05-036
Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution
(Rating: Critical)</p>
<p>(3) MS05-037
Vulnerability in JView Profiler Could Allow Remote Code Execution
(Rating: Critical)</p>
<p>For more information on the Microsoft vulnerabilities, visit: http://www.microsoft.com/technet/Security/default.mspx</p>
<p>About TippingPoint, a division of 3Com</p>
<p>TippingPoint, a division of 3Com, is the leading provider of network-based intrusion prevention systems. The TippingPoint IPS is the most decorated in its industry. For a full list of awards, visit http://www.tippingpoint.com/products_certifications.html. Our innovative approach offers customers unmatched network-based security with unrivaled economics, ultra-high performance, scalability and reliability. TippingPoint is based in Austin, Texas, and can be contacted through its Web site at www.tippingpoint.com or by telephone at 1-888-TRUE-IPS.</p>
<p>About 3Com Corporation</p>
<p>3Com Corporation (NASDAQ: COMS) is a leading provider of secure, converged voice and data networking solutions for enterprises of all sizes. 3Com offers a broad line of innovative products backed by world class sales, service and support, which excel at delivering business value for its customers. Through its TippingPoint division, 3Com is the leading provider of network-based intrusion prevention systems that deliver in-depth application protection, infrastructure protection, and performance protection for corporate enterprises, government agencies, service providers and academic institutions. For further information, please visit www.3com.com, or the press site www.3com.com/pressbox.</p>
<p>Copyright © 2005 3Com Corporation. 3Com, the 3Com logo and Digital Vaccine are registered trademarks and TippingPoint is a trademark of 3Com Corporation. All other company and product names may be trademarks of their respective holders.</p>
<p>For further information, please contact:
Felicity Harrigan
Red Agency
(+61) 02 9955 7877
felicity.harrigan@redagency.com.au</p>

Most Popular