McAfee, Inc. announced that it provides coverage for two security vulnerabilities disclosed by Microsoft Corporation. These vulnerabilities have been reviewed by McAfee® Avert® Labs, and based on their findings, McAfee recommends that users confirm the Microsoft product version outlined in the bulletins and update as recommended by Microsoft and McAfee. This includes deploying solutions to ensure protection against the vulnerabilities outlined in this advisory.

McAfee also announced the debut of the McAfee Avert Labs Patch Tuesday webinar.  It is like a one-on-one meeting with an Avert Labs researcher." (The Patch Tuesday webinar will be available later on Tuesday on McAfee's online Threat Center : http://www.mcafee.com/us/threat_center/) . Microsoft Vulnerabilities Overview:

Today's two security bulletins cover a total of two vulnerabilities. Microsoft rates one of the bulletins critical due to its potential for remote code execution. The other is deemed important. With McAfee's Security Risk Management approach, customers can effectively address business priorities and security realities. McAfee's solutions identify and block known and unknown attacks before they can cause damage. McAfee will continue to update its coverage as needed as new exploit vectors are discovered and as new threats emerge.

The McAfee Vulnerability Shield package for McAfee Host IPS customers provides specific protection against common classes of exploits targeted at the vulnerability in Windows URI Handling. The Vulnerability Shield package is deployed through McAfee ePolicy Orchestrator® to agents, protecting systems without a reboot. McAfee IntruShield® provides coverage for the DNS vulnerability through signature sets released today. Coverage for the Windows URI Handling vulnerability has been provided since Oct. 25. McAfee IntruShield sensors deployed in in-line mode can be configured with a response action to drop such packets for preventing these attacks. The McAfee System Compliance Profiler, a component of McAfee ePolicy Orchestrator, is being updated for today's newly disclosed vulnerabilities in Windows URI Handling and DNS to quickly assess compliance levels of the security patches announced today.

The McAfee Foundstone® and McAfee Network Access Control checks are being created to detect the vulnerabilities announced today, and will be available in the packages released today and the day after tomorrow, respectively. These checks are expected to accurately identify if a system is vulnerable in many enterprise environments. McAfee Policy Auditor compliance checks and McAfee Remediation Manager remediations are being created to identify unpatched systems and apply the necessary patches to affected systems for the vulnerabilities in Windows URI Handling and DNS. Updates will be available in the next V-Flash package released today. McAfee Avert Labs maintains one of the top-ranked security threat and research organizations in the world, employing researchers around the globe. The Labs combine world-class malicious code and anti-virus research with intrusion prevention and vulnerability research expertise. McAfee protects customers by providing deep analysis and core technologies that are developed through the combined efforts of its researchers. McAfee Avert Labs continually monitors the Internet for new threats and attack vectors on a daily basis. Whenever possible, we will update our security technologies and coverage as these new threats and vectors emerge.

Related Items:

---

Be first to comment this article

Only registered users can write comments.
Please login or register.