Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



IDS: RE: WMF and IPS products?

RE: WMF and IPS products?

From: Murat Korkmaz <m.korkmaz_at_determina.com>
Date: Thu, 5 Jan 2006 13:31:58 -0800

Hi Sam,

I am not sure what you are referring to with "protecting from
downloading malicious WMF content". The most proper way to do it would
be through signature based systems and it is known fact that all the
signature based systems were bypassed during this and other similar
vulnerabilities.

You will see that Determina VPS Memory Firewall technology provides
zero-day protection for this vulnerability, preventing the end systems
from running any single instruction of the malicious code on the
affected system.

Please check out our web site at www.determina.com for more technical
info and product details

Thanks,
Murat

-----Original Message-----
From: Sam Evans [mailto:wintrmte_at_gmail.com]
Sent: Wednesday, January 04, 2006 2:43 PM
To: focus-ids_at_securityfocus.com
Subject: WMF and IPS products?

I am curious if any of the major IPS vendors are able to successfully
protect workstations from downloading malicious WMF content?

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
Received on Jan 11 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos