Forum latest

Security App Protects Against Windows Attack!
General
Written by Daniel   
Tuesday, 03 April 2007 09:33
Security App Protects Against Windows Attack
DarkReading

APRIL 2, 2007 | eEye Digital Security 's timing couldn't be better: Starting today it's offering the latest version of its Blink Personal Internet Security consumer product for free, which comes with antivirus and anti-spyware as well as its standard personal firewall/vulnerability assessment package. The freebie software also comes with a bonus -- defense against the latest Windows zero-day exploit, which gives an attacker full control of an infected system. eEye late last week released one of the first temporary patches for the new .ANI exploit, which has been gathering steam over the past few days.



The zero-day attacks are being staged mainly from host systems in China and had spread to over 100 Websites as of this morning, according to Websense, and have prompted Microsoft to release an off-cycle, critical patch tomorrow, and ZERT to release a patch on Friday. The exploit, which embeds a malicious .ANI file in a Webpage, requires that a user visit the infected Website, or open a bad Microsoft Office file. Some researchers have observed worm-like behavior, and note that it's not limited to animated cursors but is also showing up in JPG files on Websites.

eEye's patch prevents the exploit from working, but according to ZERT, it does not fix the flawed copy routine that's at the heart of the problem, and could "break third-party applications that use animated cursors within their own program directories," according to ZERT's advisory. ZERT says its patch goes further.

Meanwhile, eEye in November began offering the previous version of Blink Personal -- personal firewall and VA tool -- as a freebie. Ross Brown, CEO of eEye, says his company added its AV and anti-spyware technology to provide an easier-to-use and smaller footprint option for consumers than what's currently out there for them.... More

Comments in the Forums 

 
Don't Click Here Don't Click Here Either