ByteCrusher Labs’ WindowZones Provides Protection From New Zero-Day Microsoft Windows GDI Vulnerabilities

Share Article

ByteCrusher Labs keeps users of IE safe from the latest animated cursor exploits.

ByteCrusher Labs today confirmed its innovative WindowZones security application provides coverage from exploits of newly announced Microsoft Windows vulnerabilities.

Virus writers and other miscreants utilizing this GDI bug have created malicious web sites and animated cursors, known as ANI files, to infect unsuspecting Internet surfers. Users need only visit an infected site to get burned by this vulnerability. Microsoft has deemed the severity of this vulnerability to be critical and users are at risk of remote code execution.

“This vulnerability was first brought to Microsoft’s attention on December 20th, 2006,” said Allen Nieman, Vice President for ByteCrusher Labs. “Malware exploiting this vulnerability began appearing profusely on March 28th, 2007, and Microsoft issues a patch on April 3rd. Any way you look at it, having alternative, non-signature-based security protection provides a protective layer for users when they need it most. WindowZones users running Internet Explorer in the Safe Zone are protected at day zero and beyond.”

ByteCrusher Labs independently verified that if IE is running in the Safe Zone an exploit of this vulnerability will fail when attempting to add an administrative user account to Windows when a user simply visits a malicious web page. Without WindowZones, IE can leave a user exposed to these types of attacks. ByteCrusher Labs recommends users keep their Windows installations up-to-date with the latest Microsoft patches, including the recently released out-of-cycle patch for this vulnerability.

WindowZones works proactively by giving applications only the rights they need to run. There are no delays in protection, and there are no signature updates required. Users get a first -- and last -- line of defense simply by using WindowZones, virtually eliminating the substantial harm of zero-day attacks.

About ByteCrusher Labs

ByteCrusher Labs develops and publishes innovative software products designed to protect the privacy and security of Windows computer users. ByteCrusher’s first product, WindowZones, provides immediate, zero-day protection to customers worldwide. Learn more by visiting our website at http://www.bytecrusher.com.

Trademarks used within are the property of their respective owners.

Press contact:

Allen Nieman

ByteCrusher Labs

425.270.6211

http://www.bytecrusher.com

# # #

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Allen Nieman
Visit website