3Com’s Security Team Discovers MS Zero Day Vulnerabilities
3Com and its TippingPoint division has announced that its security research team discovered three critical Microsoft vulnerabilities. Additionally, 3Com’s Zero Day Initiative (ZDI) discovered two additional critical Microsoft vulnerabilities in Internet Explorer that were also fixed.
3Com claims upon validating the vulnerabilities, it reported the issues to Microsoft, which in turn applied the necessary resources to address the vulnerabilities and issue patches.
The vulnerabilities -- CVE-2006-3357, CVE-2006-3086, CVE-2006-3638, discovered by members of the TippingPoint Security Research Team (TSRT), allow remote attackers to execute arbitrary code on vulnerable installations of the Microsoft Windows operating system upon visiting a malicious website. The critical Internet Explorer vulnerabilities --CVE-2006-3450, CVE-2006-3451, discovered through the ZDI Program, also allows remote attackers to execute arbitrary code if a malicious website is visited by a victim.
3Com claims that its customers using the TippingPoint Intrusion Prevention Systems (IPS) were preemptively protected against potential zero day attacks targeting the vulnerabilities through its Digital Vaccine update service.
print
save
email
comment
Copyright @ 2004 Software & Support Media
Powered By Media Teknologi Informasi Corp.
Privacy PolicyTerms of Use
