eEye Digital Security » News

News

eEye Digital Security Alerts Enterprises of Microsoft NT 4.0 Vulnerability

eEye's Award-Winning Endpoint Security Software Blink is Available to Protect Vulnerable Systems

(ALISO VIEJO, CA) March 10, 2005 — eEye Digital Security®, a leading network security software company enabling businesses to protect and manage their network infrastructure, today alerted its customers and security administrators worldwide of a vulnerability within Microsoft's NT 4.0 Operating System (OS). Designed to fix a Windows vulnerability that eEye discovered in February 2005, Microsoft disclosed and released a patch for this vulnerability on Tuesday, March 8, 2005. However, no public announcement was made – this patch was only disclosed and made available to those enterprises that had paid for ongoing support for the NT 4.0 OS. For further information and a technical description of this vulnerability, as well as analysis, please visit:
http://www.eeye.com/html/research/advisories/AD20050208.html

"Given NT 4.0's enormous installed base, the majority of which are running critical applications, we believe enterprises should evaluate alternatives to patching as soon as possible," stated Firas Raouf, eEye's chief operating officer. "Financial services systems, medical devices and self-serve airline check-in counters are just some of the examples of the types of systems that have been vulnerable over the last few days. eEye's Blink endpoint security software already protects our existing customers and provides enterprises with a viable alternative to expensive support contracts."

With hundreds of thousands of installations around the world, NT 4.0 is a server OS for large enterprises, representing 15 to 20 percent of all Windows servers (Gartner Group, February 2005). In the absence of a Microsoft support contract for NT 4.0, enterprises should evaluate an endpoint security product that can protect against such vulnerabilities. Those organizations that have deployed Blink, eEye's award-winning endpoint security software, are already protected from this exploit and can postpone patching to regularly scheduled maintenance cycles.

About Blink
Designed to be implemented on individual assets such as servers, PCs and laptops, Blink is the first endpoint product to combine multiple layers of security technologies to protect enterprises from zero-day attacks that leverage yet unknown vulnerabilities within enterprise networks. This comprehensive security solution allows enterprises to defer patching vulnerable machines until regularly scheduled maintenance cycles, thereby saving millions of dollars in business disruption and the associated IT resource drain caused by "panic" patching. Additionally, Blink eliminates the problem of so-called "socially engineered" security threats in which hackers trick individuals into downloading malware or otherwise making their own machines vulnerable to attack. As a result, Blink uniquely protects assets from vulnerabilities, as opposed to only thwarting attacks. For more information on Blink please visit:
http://www.eeye.com/html/Products/Blink/

About eEye Digital Security

eEye Digital Security® is pioneering a new class of security products:integrated threat management. This next-generation of security detects vulnerabilities and threats, prevents intrusions, protects all of an enterprise’s key computing resources, from endpoints to network assets to web sites and web applications, all while providing a centralized point of security management and network visibility.eEye’s research team is consistently the first to identify new threats in the wild, and our products leverage that research to deliver on the goal of making network security as easy to use and reliable as networking itself. Founded in 1998 and headquartered in Orange County, California, eEye Digital Security protects more than 9,000 corporate and government organizations worldwide, including half of the Fortune 100. For more information, please visit www.eeye.com

About eEye Digital Security

Primary Agency Contact

EMEA Agency Contact

Corporate Contact