View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
July 6, 2009

SonicWALL deploys new IPS signatures

To protect against the Microsoft Windows IE vulnerability

By CBR Staff Writer

SonicWALL, a secure network infrastructure company, has deployed Intrusion Prevention (IPS) signatures in its Gateway AV/IPS technology to address the flaws in Windows IE.


According to the company, anyone who visits a site that has been hacked due to the IE vulnerability could be at risk. Exploiting a component of Microsoft DirectShow, hackers are able to create HTML pages with malicious JavaScript parsed in an IE browser to infect users’ computers without their knowledge. The URL JavaScript is used to find an instance of the vulnerable control and feed it with a malformed image, likely to be logo.gif, causing it to crash and execute the malcode.


Boris Yanovsky, vice president of vulnerability research team at SonicWALL, said: While Microsoft is working to develop a patch update for this, there is a significant window of opportunity for hackers to exploit the vulnerability and infect PC’s without the user’s knowledge.”


He further said: “We expect to see social networking sites such as Facebook, Flickr and Twitter being leveraged to infect large numbers of computers worldwide. It’s critical to protect our customers, so our gateway threat prevention services automatically defend against exploits of the Internet Explorer vulnerability.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.