Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Security Vendors Offer Free Zero-Day Tools



 By: Matt Hines
2006-12-07
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
To help IT administrators and users get a better fix on systems vulnerabilities, eEye, Secunia and Sourcefire have all published resources about new software holes and how to scan for existing problems.

Just in time for the holiday season, a trio of security applications makers released free resources aimed at helping businesses and users identify potential software vulnerabilities on their computers.

To help stem the rush of so-called zero-day threats that seek to take advantage of previously undiscovered software flaws and drop malware onto users PCs, applications vendors eEye Digital Security, Secunia and Sourcefire published new information sites and desktop scanning tools intended to help root out program glitches that could lead to future attacks.

eEye of Aliso Viejo, Calif., which markets network security and vulnerability management software, introduced a vulnerability tracking site focused exclusively on tracking emerging flaws, dubbed the Zero-Day Tracker.

The online resource offers detailed information and analysis, along with remediation strategies related to new security vulnerabilities, including some data the company said is not available from any other source.

Operated by the companys eEye Research unit, the Zero-Day Tracker promises to elaborate on individual vulnerabilities independent of other reports. It also aims to separate less serious flaws that could be used to carry out conceptual denial-of-service attacks from vulnerabilities that can be used to deliver more severe malware threats.

eEye officials said that they launched the effort based on the sheer volume of calls they have received about the zero-day problem.

"The increasing proliferation of zero-day vulnerabilities means the previous window of opportunity IT had to secure networks between the release of a software patch and an attack has been slammed shut," Marc Maiffret, chief technology officer at eEye, said in a statement.

"More zero-day security vulnerabilities and attacks are being discovered every day and dealing with them can easily dominate an enterprises IT efforts. As a result, weve been overwhelmed by requests from our customers to give them the information and time they need to protect their networks."

The software maker said it would constantly update the site with new vulnerability data, and offer users the ability to make suggestions regarding flaws that have yet to be detailed on the resource.

Resource Library:

Secunia, of Copenhagen, Denmark, which makes vulnerability management software, launched a free zero-day flaw scanning application labeled Software Inspector to help companies locate potential weak points in their IT infrastructure.

Microsoft issues Word zero-day attack alert. Click here to read more.

Created through the combination of several elements of the companys products, specifically its Secunia File Signatures, and Advisory Intelligence technologies, the Software Inspector promises to detect both missing security patches and insecure versions of programs installed on users computers.

Secunias File Signatures are specialized rules for identifying installed applications and their exact versions on Microsoft Windows based systems, and the form said its complete database currently contains more than 110,000 guidelines for searching for more than 4,000 unique applications and their exact configurations.

Sourcefire, a provider of network intrusion detection software based in Columbia, Md., announced the availability of OfficeCat, a free security tool that promises to help companies identify potential threats in Microsoft Office files.

Unlike products that are used to detect attempts to exploit previously-reported Microsoft vulnerabilities, Sourcefire said that OfficeCat is specifically geared to test if a Windows file contains potential security risks before it is ever opened.

Sourcefire is best known as the creator of the popular open-source intrusion prevention and detection technology known as Snort.

"As security threats continue to evolve, Sourcefire is dedicated to delivering solutions for both commercial users and the open-source community that enable users to protect themselves from attacks against their networks and information," said Matt Watchinski, director of the Sourcefire Vulnerability Research Team.

"OfficeCat fills a unique need among users to identify potential avenues of attack that can significantly impact their network security. As one of the leading network security research organizations, our goal is to provide users with the best possible security backed by the latest discoveries."

In its annual report of the top 20 most serious security issues in the world released in mid-November, research and education specialists SANS Institute ranked zero-day flaws as one of the most pressing issues for enterprise IT administrators.

Along with the increasing professionalism of malicious hackers, zero-day exploits will continue to haunt businesses in 2007, SANS experts said.

"Weve come from a world of disruptive behavior that was easy to see, with the trend moving toward value orientation from criminals who dont want their work to be noticed," said Marc Sachs, director of SANS Internet Storm Center research group.

"The most effective way for them to do that is to use vulnerabilities that targets have no means of patching, or zero-day attacks, and we expect the amount of activity along those lines to continue to increase."

Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at Ryan Naraines eWEEK Security Watch blog.



  Reader Comments: Security Vendors Offer Free Zero-Day Tools
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Matt Hines
 


xv㶲 ;^+(}LQR/ٖmYޖEĘ"IʶK?gK3~UxӅ|8gIPBP(@ggOD018̢dw5靿K$mwL9P[ Ϡ^=WZj:@a5NzpDd>J`OS;S  5Ǔ6ޙ1=+SmL}F6\3Ѣeeb ^Pk$ȁ_ ܢ%yHRpERB@Te$oQX}؁䛿Q=2tS6B!|@ X^P~FD;ǎ5~{N?<3τPcw0}dh9 r4=yͰ [Ƌaz.91rx&h Go,gu9"ScO$աUNIp'0:Q#@XS.HTfFԴ;gj5[gb=ױ}ǣ# 3E5L֟GB$fō0)̳X#vR0wcE[#Uֶe5]~3mgE5}NX*Eo~cnh> ;E&sؗY֌`F-S4uPUJZ-r_;ߋWwm8weڳ{2^o];/U-jE2G -;жD^ԢZ贏i\t?59N6 Hw&LT)JJ\,NLCaOlxڽ~X}AFI?j;n׊jA=Tdꡞf1Sd!XI#/YPCf9j'򓹥uo]]^{-o][>ߙecfy 3(?ؕΊgxk_:OO9'9^qřyN0p3 Z\vO^EnXCyCm0MߑRMRr~:\$.?IN,Oȿs`HlDmYܺȑ\Ry+a)(7F`X@7? iP2ML9X@/@ש#W4j5t-Mf #dLi&zh-Aho*KhLru&@Sk~$M cΚb.L2o<|ĿIK _VPJB5)\D7h+ԌRdoF" 2#~B(pHqbNbO|ದyp!jYY6'*taeIUi3[.ϱǍVuBz݋^?uZ^C 8^%g 5F8 ,heݴ%!8WG5MGRŦcWJPsz/jJG'-dj`qaeJݠ#mfywς@utiSMC|>9ևm'!|Аd mxZ.33IXn`vt&hoQpy4ڭ,%_ >< )zNj$ >6(Zχ`jc˦M@B9;ǻޚB<Q]ӡ4|aqjQ]*~h3-w= | wA,߽9#z[LKx GN w (~9-WR;C/0ybA29 EEKy3@ $h5`źmb$w$]Vpp(6ݞH:w@)Kh3ai?eb -d[b~Il eV&vϺZLboD6], S m-MusVE6 Z`L&ǽ3yJV*( Q= <)h6L9m< p 6`M?bn;N %=&^95 ->MGsy68wD&f+Lo>L>hQoĸGF7=ٌi89S@0>A̞P,[Xpn9Y>~pH$зs_n2M- y_*ܼ? b>Ȝ 8C_gM Y!Q OzBnehJJUIY(海 +< +1!Y/ 4zS\ &Δ99IAg ew貟F{_f]ZЬ{A^u 9RiO{4 m{24@Ȱ\k_X5QV(: ,)T aYl`cytE9̆ɨ_-iMtf{jLj&M[_*P?>2eiFߪ%VUVy| ,D0(2n@3MVRQy9:zǎ As,0H;k\O'ht fMH ǏpBa e-&TuTHbp=Pz˸hFq,@XĞ]F KǚO]SEeﴵJM.}5Gl2^Z歰C`V9A`Ng43aJ |Ӛ#Os'])=aT(*JLyclq-Z3r,˹˦ qzN8CL)i@:*C c"Dkj_,/OQϨlE+Jc\Cњ.[Po==>8آ\Q݀+B9w)` N '|h :|#H& ,#Ez .2 ZC0 hsm!X` X+S/V_LQ0(TKnʻhAz X]>L,',@УCkz]W9,#_%hho?^HjX&ZVRp_T*8Y+ :?#UQ@H.Ɂ3;q_S}`1gK6ה `3|xKmK-˰ c.Z$ c?`׊_RwU1SlcSxt( b*jAU[+3^>F]h!.־3 X@P A6+8SU,5_\RO-xzGs8'ԿA X{AMzʮ~RYEG?voqi@^5`Č؇^gm/JRҚO"KAG^320"C;wF!z¬I~ q?ot레6RqMxތ9"yea@WIlJhLhh_/Qm(}gnLZ[u7up]8ý?,td+atx/ V$85ѣ4 H\ks3o)AD1& /jhxU-%Pm2hSIpg=HٚIyusl,On?jTSc\o e<1A\_&lAn+㧐gsC/wܒ; k@X;V-(7OT0p2^=u lYVSk嬙fwṛ:u߀&?@q}cAHNo\KHG~pkj VgT(`uVDj)~9HÞ1|M}Yy^46(S Oc ʌLfЮ%Hz֮oLspI['ML UxZ˕2~2s b 7$J\QGQ>=͠1p Ju<1{H>Jc->Iurd*WTHz$ :{RTcke`WPF4`W&s\x&\_{3Ƌ(bo(Q^rSW"6wD<7Ϩ3}Nb4PG teWՄθ4;f̬9[IgYyڤiD@kXJ3dFVTXI0UI-VR} =2`U}/*\&IvSf﩮utGD0|h^%usgCUJR#0阆8zAr^)ݣ,zr_.|arRUn8L3Az vBs9A<" Uxhm Rٟ8sɖBz%EDOCVjgX&1W+ˬڼ f@48&ov;vvj01@ EE@j߱?% ?/E ?PX1"NJE]))l{їN<dO퇧/vݽ8|HZg( ^-;,5.aš_I_tH`Uʼn4?pC-tΪ2e'A)pQ >rfW͓銿ð Na嵀unG4>/ėt+~/ZR1~R`&!=ypqңU4*$yy|hq\3)6MF" 0Sjt՟6Q B@I˸tNZWY0z!BZMUe z EYע Bp(`$X)XAU:ݻ 0qJh"g:AE;)~ڰOn`e>!G[yRb}b%&h8W߅u^4~xr)LZBŒ,,êJVuwjGڶ'#'<Nb/9BG,&@~ ܳ,:];W__lz|oQM2Gz17Oq;f=;0GsX>q췡v`ϓ;~\[ܕS44aq*ufX%gCÙj(&I\tyo]ŗarԂcAIj#Q 6j 2}'':P"i!u]jK<|R*TxvBM= =;2SeZq4~Io溎 D4wv5?;ySPbZ}:nrp'`9~1e=!#bue Va|rK@DRktosCpƄP =®<;iBl}c[XYRakx9S*u{RX"Ȓ@xn|)PiK -C FQF$)I'b r&$sP)$Sx[eMRImʗΗh4!D̂tC02ך+z &]j>8r :aЉμa_>bt4Ȗ SZٔ_KϯX'\Q¬Khƴ/+tͶ}55gHp־0heL}eVۖ4n;~:VM٨lֶ. dsrtD%L9CiK! ([gCyG融ms1M4 3 fϗDƪX.OAuұ3ugl Z9ˎcII+H`G$*ىsOMi?¨+cT4RZ^5h}qwwwwV+5^X_)9-&Nb6&+w a WdoVc=MlBԲQjdo8t^.:iŖ¹6޺c7$|#n2p-FF8exnًCiK-|e!ٛ]3.abכ?m0MQmlXqA~! Eh"G´tՀ ui!+1xQGxȶ!$0foRH4vRY9}lL##[8bW(D5 @Q򎶬 ,Mb21 0^ |nS- 't~UqU\i*r:&2T¡3*ѓxklaq p;_BN;sXTJj ȑ[vA JK6&Iz&Y֟rkk")^-^Be/| ˑ{[xp5:*SMoP!Jigf57NMc6.{M_Pso&`lV(T=~\UQ׿f=:unR Y,ffGbp,ʼny볹ݫ{c ~P2oO3@84kI/N$8&wGpƊ8e[Y3@◆ : ,Í #%]D/.ޮcbV>&:E ~83o^,R7BʾIje^lĦe-'I4b'ʹ]X,hILÑ@usTa9# DxEn~x(0lY7w-u3.NdãEzmV xbY+ ZH'*t=jhDФJ xfjRCX()r Pc0uؑZ}r̶\';Ol ,TOಈVuζ|?~RI/V)[g@ kH}9q[,kG JŘ&_K~G<8p0l˖C/0Ƹl44Q:JsܰM wE&p{{i/)1~H+k&8vә-':/0ڱ]stKW3>н3B[sl^?js{-CIqeY\ 66Ƕ(lks!.04%蜜ifMPDsnj8TJo J}z%rk1f㍸=0R)>*1Xrt1І]3-'|ɈVs%L.>OeBѺǠ1<<]Gn4w#\CP |¸-C7OR,߫Vw>@2<>wWW|Y$ m[Њ=coKI XPpMW)j-F/|T3/b=3-Ѩ#^{>xAn1K= o~{@r q,F-D||z['AU}H?Km1Ghb#3FzP0\Ǎu>'yo]*<>wfMd=ד:Lr9a]6'{;'6g<9`(LBtg0Os.}lŃu/ِ O6)B|1[GB(W9Ĝ#M>S^o]j"1"'pp\`sr8@K$$L*2&Bs859|_zLiunOKZ&9a k(E$+ Mj E>gٕa)豢 ߺcoSwV7ʟXz+i+* 9I͑;}^n)^G| LBz،\;1sD 9^&9jHQ}ow/Q{ǭ} \MG٪;Gݓ//Uk|j%^rФo%ucFW(Q~Wˏ͌.w3ʑO'c(?^_~ 9֗͠sI>(3EF9\c/ Y_~3ldOd,@N};@N}:'g'?; D3(?@?2;P( ..n~fK /3޿23/(O_23*>g9~P~U{uF$)cf5/qvJ(keK " SV9,.N3kP(Xi7Zee\~ y/{'sg#k{\WKI0ntEճKT3cn%:@ba/! c|U$X2M*#(78%Y}M#htoĶ.b!Iy=0?%Mu{1پWߕ\*ܢ}:QO1]ȜHW0fY k9|,y|e8Nt7<1W }^f>6? V!t{r*%n ۍx9 xL| ~iMnڧ[Dpqk;ُϋGkwՕƊ |3/߆zHڟ'<+;q>xP[ЙqvޢD)+Fyk@Lg<}e\76v {xuCZWeC=gz}yPW4MdBgpX`$fZ gޥ8 a箨%g`4!J {0"q`j@L ;J}UW*[)WJr WE{DD(QTY)ȅ*[ ~`" *s>P`24UJ` Pz!J1 4c֭dK1BDO"׏ ѱ F]We",d 'ݢȗጽNۯXC R1 1@eN*q0*r6d%Q<783`6>&m\ʠaC7ao/XbKZ;c`\;o=4gjY }by0\9KhmV=ȾwF=Ck6%x-7:\Adhn2&23Mť{:o\x| "e*sMvQ!f Nؒ1bQURۨWyɑr"9<;$} F(r>t^D`iBЗt4s,HEFΘ ;`5q&f\cd/07i̯ZLi'%GZO,i_cErd9GUZQ%M5"f߬=/5X^u[>Fgxp1kN϶{3]95+wh/O!NE:ؚk'B ?1}v)3vyԡD@z_ & $Ҵ)n}Lˌ%4n_OsӞݳ]c 6{Nzs̄0Qxb|?I+_zl x QhϡI'; <0qno{$>}T.q 5sEEאE,&J  B8ɄN`'9}Ǧ e48W, {+2‡_j /E݉cEi_c̈́xsp&kf&}#Km^ƨz16IϐR(D~ƠC)e hD,D*9"[o %P)`wt_Ow. $Cb9G8]! MAE3`A^U>0)n9i3Y"7EPީ_\4R*4$NSxsEz?3& |خ;Oq^Gdd9f7cxY_ԕU`7g#~"VœA6p8C3`ܐ}lI5COx r:Y )6%O~0qGĦ2C|R2OepvR ?93'-rxgsµƋ@DqD'.bMשfŧSW<2oJP'jdV@8̝ -ӟ~H׶I$`:Vږ+zYL1e~}=3ӲG(q",@zP݌`y%K@44{-E6Y[D,5Rb:(G-zk|FXKc&&ı`=br8Lte4QS|J)Km)轋ȝgz^4}j}XC`*#F"%hw2b5_yfϸȅv0,#ֿŠN|]張t1NE_:mv_xH%L=C= aF']f(FRqO\|j8(>wb345?~~8ŠҜ%!tNZi B"Ew<9i_|HVzv`ol3 gs7*Р~oQWԲZIG3HZ\֓ZaZR۝wߺ"f/On6%c(|NVKI+^ͦG(Ds+q>tgLp -ͱeRZ`l/Z6v|)