IT Management Begins With Security
SecurityProNews > News > Security News > McAfee Announces Protection From MS05-024
Search:
[ news_security_news ]

McAfee Announces Protection From MS05-024



SecurityProNews
Staff Writer
2005-05-11

SecurityProNews: News RSS Feed Security News RSS Feed


McAfee announced that it provides system protection for the MS05-024 vulnerability as announced by Microsoft Corporation today.

This vulnerability has been reviewed by McAfee AVERT (Anti-virus and Vulnerability Emergency Response Team) security research teams at McAfee. Based on its findings, McAfee AVERT recommends that users confirm the Microsoft product versioning outlined in the bulletin and update as recommended by Microsoft and McAfee, Inc. This includes deploying solutions to ensure protection against the exploits outlined in this advisory.

Microsoft Vulnerability Overview

-- MS05-024 -- Vulnerability in Web View Could Allow Remote Code Execution (894320)

The new bulletin covers one vulnerability in Microsoft Windows that, if exploited, could allow remote code execution. The remote code execution vulnerability exists in the way that Web View in Windows Explorer handles certain HTML characters in preview fields. If a user previews a malicious file, an attacker could execute arbitrary code in the context of the logged on user. However, user interaction is required to exploit this vulnerability.

With McAfee's Risk Management approach, customers can effectively address business priorities and security realities. McAfee's award-winning solutions identify and block known and unknown attacks before they can cause any damage.

McAfee IntruShield will add protection against the vulnerability disclosed in MS05-024. The updated signatures are included in signature sets 1.8.52, 1.9.35 and 2.1.18, and later. The new signature sets will be available for download on May 10, 2005. McAfee IntruShield sensors deployed in in-line mode can be configured with a response action to drop such packets for preventing these attacks.

McAfee Foundstone checks have been created that will detect this vulnerability and will be available in the package released on May 10, 2005.

The McAfee System Compliance Profiler, a component of McAfee ePolicy Orchestrator, is being updated to quickly assess compliance levels of Microsoft security patches included in MS05-024.

As new exploits are discovered, McAfee AVERT will add detection and removal to the DATs.






About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More news_security_news Articles

SecurityProNews: News RSS Feed Security News RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2008 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds