Third Brigade's Host Intrusion Prevention System Stops Attacks that Could Exploit New Microsoft Vulnerabilities

Share Article

Third Brigade, Inc. announces that customers that have deployed Deep Security, its advanced Host Intrusion Prevention System (HIPS), are protected from attacks that could exploit multiple new Internet Explorer software vulnerabilities disclosed in the December Microsoft security bulletin.

Third Brigade, Inc. (http://www.thirdbrigade.com) today announced that customers that have deployed Deep Security, its advanced Host Intrusion Prevention System (HIPS), are protected from attacks that could exploit multiple new Internet Explorer software vulnerabilities disclosed in the December Microsoft security bulletin.

Two of the four vulnerabilities in Internet Explorer are rated as critical. These vulnerabilities are part of the Microsoft Security Bulletin MS05-054. An attacker who successfully exploited these critical vulnerabilities could take complete control of an affected system. An attacker could then install programs, view, change or delete data, or create new accounts with full user rights.

There are known web sites which take advantage of vulnerability CAN-2005-1790, related to the method Internet Explorer uses for mismatched Document Object Model objects. When a user visits these sites, arbitrary code gets executed that leaves malicious Trojans on the user’s host. Third Brigade customers have been protected from this vulnerability since Nov 23, 2005. Third Brigade customers also received an update to an existing filter that enhances the protection for vulnerability CAN-2005-2831, which is a remote code execution vulnerability in the way Internet Explorer instantiates COM objects that are not intended to be instantiated in Internet Explorer.

Third Brigade customers automatically receive updates with the latest filters that protect against these and other vulnerabilities. Third Brigade Deep Security proactively stops attacks before they impact hosts, helps ensure compliance with industry regulations such as PCI (including Visa CISP, Mastercard SDP), Sarbanes-Oxley, HIPAA, GLBA, FISMA and corporate policies, reduces operating costs, and prevents service disruptions caused by attacks.

For Third Brigade’s security dispatch on today’s Microsoft security bulletins, click here:

http://www.thirdbrigade.com/security/dispatches.html

For more information on the Microsoft security bulletin, click here:

http://www.microsoft.com/technet/security/bulletin/ms05-dec.mspx

For information on Third Brigade Deep Security, click here:

http://www.thirdbrigade.com/products/index.html

About Third Brigade

Third Brigade provides Host Intrusion Prevention Systems (HIPS) to financial services, government, health care, telecommunications and other organizations that need to implement security best practices as part of a defense-in-depth strategy. Our Deep Security solutions give you greater control of your business. They stop attacks before they impact hosts, help ensure compliance with regulations and policies, and maximize the performance of your people, processes and hosts. Unlike others, Third Brigade provides an innovative hybrid approach, a positive security model, proactive defense, and a powerful administrative platform.

For more information, contact:

Kathryn Schwab

Media and Analyst Relations

Third Brigade

(T) 613-599-4505 x3001

(M) 613-858-4407

# # #

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Kathryn Schwab
Third Brigade
613-599-4505 +3001
Email >
Visit website