Sam -
NFR Sentivist has protected against this and its variants for several weeks
(0-day, as they say), and we have just updated our signature set to be even
more precise. Here's the marketing goo on it:
http://www.nfr.com/news/detail.php?id=398
http://computerworld.com.sg/ShowPage.aspx?pagetype=2&articleid=3265&pubid=3&
issueid=78
-MAB
> -----Original Message-----
> From: Sam Evans [mailto:wintrmte_at_gmail.com]
> Sent: Wednesday, January 04, 2006 5:43 PM
> To: focus-ids_at_securityfocus.com
> Subject: WMF and IPS products?
>
> I am curious if any of the major IPS vendors are able to successfully
> protect workstations from downloading malicious WMF content?
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
Received on Jan 11 2006
Intro
