I think many vendors are providing impressive solutions to guard against WMF vulnerability.
But check out this interesting offering by Third Brigade Inc. They are providing freely downloadable, standalone HIPS distribution which specifically claims to guard against WMF vulnerability. I installed it and tested it against public exploits. It works well and normalized the network traffic, it also seems to have a Ilfak-style local patch. http://www.thirdbrigade.com/company/Media/pressrelease/01052006.html Thanks, Pukhraj On 1/5/06, Sam Evans <[EMAIL PROTECTED]> wrote: > I am curious if any of the major IPS vendors are able to successfully > protect workstations from downloading malicious WMF content? > ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------
