TippingPoint Finds Vulnerability

AUSTIN, Texas -- TippingPoint, a division of 3Com and the leader in intrusion prevention, announced that its TippingPoint™ Intrusion Prevention Systems (IPS) provide complete protection against all vulnerabilities disclosed in the bulletins announced by Microsoft today, including one vulnerability discovered by its own Zero Day Initiative.

Microsoft security bulletin MS06-067 includes fixes for multiple zero day vulnerabilities affecting Microsoft Internet Explorer which typically target end users and can be used to create bot networks. One of the issues was discovered and reported through TippingPoint’s Zero Day Initiative on July 18, 2006. The Zero Day Initiative has uncovered 11 vulnerabilities affecting Microsoft products to date with an additional seven outstanding issues listed at:http://www.zerodayinitiative.com/upcoming_advisories.html.

TippingPoint devices were inoculated against these threats through the Digital Vaccine® service, a remote update service that provides protection against the latest threats. TippingPoint provides vulnerability protection in the form of “virtual software patches” to preemptively protect customers against exploits, malware, and worms.

“Today’s Microsoft bulletins demonstrate a consistent trend of response to zero-day exploits discovered in the wild,” said Dave Endler, director of security research at TippingPoint. “TippingPoint researchers have noticed an increase in malicious activity from Eastern European attackers that leverage these privately discovered vulnerabilities affecting Internet Explorer and Microsoft Office. This growing trend was a strong factor behind the launch of TippingPoint's Zero Day Initiative.”

TippingPoint Technologies Inc.