eEye | Antivirus, Antispyware & Vulnerability Management Solutions - eEye Digital Security Releases Free Scanning Utility to Identify Systems Vulnerable to Plug and Play Flaw

News

eEye Digital Security Releases Free Scanning Utility to Identify Systems Vulnerable to Plug and Play Flaw

Exploit Code Circulating on Internet, Possible Precursor to an Internet-Based Worm

(ALISO VIEJO, CA) August 12, 2005 — eEye Digital Security®, a leading software developer of network security solutions enabling businesses to protect their network infrastructure, today released a free scanning utility for the Plug and Play Service vulnerability, as a means of preemptive protection for a remotely exploitable vulnerability in the Windows platform.

Several instances of proof of concept, or “exploit” code have surfaced, targeting the recently announced Plug and Play Service Vulnerability (MS05-039), originally disclosed on August 9, 2005. If successfully exploited, the vulnerability could allow an attacker to take full control of a remote system and potentially perform malicious tasks. This flaw is similar to other serious vulnerabilities that have been used in the past to create worms such as Blaster and Sasser.

eEye is committed to enhancing security for the Internet community and helping companies maintain a safe computing environment by offering a free scanning tool to facilitate the discovery of vulnerable machines. The Retina® UMPNP Scanner audit tool scans networked systems and detects if any are vulnerable to the vulnerability, allowing administrators to efficiently protect their networks. This audit tool is based on eEye’s award winning Retina® Network Security Scanner product. While this particular tool allows for a quick audit for this vulnerability, the complete Retina product detects over thousands of vulnerabilities to provide ongoing, comprehensive vulnerability assessments for any network.

Existing Retina customers have already received their updated audit package and can scan immediately. For organizations where immediate scanning and patching is not an option, eEye’s Blink Endpoint Vulnerability Prevention solution offers preventive protection from vulnerabilities in the absence of patches.

To download the free tool please visit: http://www.eeye.com/html/resources/downloads/audits/index.html.

About the Retina Enterprise Suite
Retina is integrated into the Retina Enterprise Suite, which also includes the REM Security Management Console. As a fully integrated vulnerability management solution, the Retina Enterprise Suite provides IT administrators with the ability to identify known security vulnerabilities, assist in prioritizing threats for remediation and aggregate information from multiple Retina scanners in a distributed enterprise. Further, the Retina Enterprise Suite delivers a sophisticated workflow integration that allows IT and security departments to work together effectively to optimize resources and mitigate threats. As a result, the Retina Enterprise Suite gives enterprises the means to automate protection strategies that will ensure business continuity. The Retina Enterprise Suite with Retina is available now. Interested parties can learn more at www.eeye.com.

About Blink
Designed to be implemented on individual assets such as servers, PCs and laptops, Blink is the first endpoint product to combine multiple layers of security technologies to protect enterprises from zero-day attacks that leverage yet unknown vulnerabilities within enterprise networks. This comprehensive security solution allows enterprises to defer patching vulnerable machines until regularly scheduled maintenance cycles, thereby saving millions of dollars in business disruption and the associated IT resource drain caused by “panic” patching. Additionally, Blink eliminates the problem of so-called “socially engineered” security threats in which hackers trick individuals into downloading malware or otherwise making their own machines vulnerable to attack. As a result, Blink uniquely protects assets from vulnerabilities, as opposed to only thwarting attacks. For more information on Blink please visit: www.eeye.com/blink

About eEye Digital Security

eEye Digital Security® is pioneering a new class of security products:integrated threat management. This next-generation of security detects vulnerabilities and threats, prevents intrusions, protects all of an enterprise’s key computing resources, from endpoints to network assets to web sites and web applications, all while providing a centralized point of security management and network visibility.eEye’s research team is consistently the first to identify new threats in the wild, and our products leverage that research to deliver on the goal of making network security as easy to use and reliable as networking itself. Founded in 1998 and headquartered in Orange County, California, eEye Digital Security protects more than 9,000 corporate and government organizations worldwide, including half of the Fortune 100. For more information, please visit www.eeye.com

Primary Agency Contact

Victor Cruz
MediaPR
(401) 349-3369 eEye@mediapr.net

EMEA Agency Contact

Ralph Klöwer
INTERFACE Relations
+49 (0) 89-552 688-66 r.kloewer@interface.pr.de