ATLANTA, Sept. 20 /PRNewswire/ -- Exploit Prevention Labs ( http://www.explabs.com ), the leading developer of anti-exploit software, this morning announced that the company's SocketShield product pre-emptively identifies and blocks sites where the latest IE security vulnerability, acknowledged by Microsoft yesterday ( http://www.microsoft.com/technet/security/advisory/925568.mspx ), is being actively exploited by WebAttacker-generated code. This most recent vulnerability has been rated Extremely Critical by security-monitoring service Secunia.
"Even though fully-patched PCs are still vulnerable to these exploits, and will remain so until Microsoft patches the vulnerability next month, SocketShield users are protected," said Roger Thompson, CTO of Exploit Prevention Labs and the company's chief researcher. "We've been tracking WebAttacker for a long time, and are familiar with the way the code is constructed and used. We've developed a generic methodology for detecting exploits using WebAttacker as their foundation."
With two critical unpatched IE flaws discovered in the last two weeks, many Internet Explorer users will remain vulnerable to infection.
"While we strongly recommend users stay up to date with the latest patches, these two recent unpatched IE exploits underscore the importance of maintaining additional layers of anti-exploit defenses," added Thompson. "During this critical vulnerability window -- the time between when a new zero-day exploit is released and Microsoft is able to develop, test and release a patch -- users should take steps to protect themselves with SocketShield."
The company's free LinkScanner online URL scanning service also detects and blocks user access to sites exploited by WebAttacker code.
About SocketShield and LinkScanner
SocketShield (free 30 day trial: http://www.explabs.com/ss/trial.html ) is the industry's first reliable solution to protect Internet users against the growing threat of zero-day and malicious web sites that target vulnerabilities in unpatched Windows software.
SocketShield provides a critical layer of security that complements the defenses provided by traditional security solutions. Firewalls cannot stop exploits, because exploits enter within the trusted communications stream of the user's browser connection. Anti-virus and anti-spyware applications can't protect against exploits because they must wait for the malware code to hit the hard disk in order to detect it, and by that time most exploits have already executed their payload. Patch management systems can't distribute a patch until the application vendor releases it. And patching as a general practice, while critical, often fails because it relies on users taking action of their own volition.
LinkScanner is a free real-time URL scanner that tells users whether a site they intend to visit has been poisoned by an exploit distribution network. LinkScanner is available at http://www.explabs.com/linkscanner/ .
About Exploit Prevention Labs
Founded by information security veterans Bob Bales and Roger Thompson in 2005, Exploit Prevention Labs develops security software to protect against Web-based exploits and malicious web sites. SocketShield, the company's flagship product, provides patent-pending protection against zero-day exploits during the critical risk window between the announcement of a vulnerability and the provision of a patch by the vendor. Exploit Prevention Labs also offers the free LinkScanner URL checker that determines whether or not a web site is distributing exploits. More information about Exploit Prevention Labs and SocketShield may be found on the company's website at http://www.explabs.com .
Media Contact: Tim Shisler/Julie Parayno Dovetail Public Relations 408-395-3600 xpl at dovetailpr.com
Source: Exploit Prevention Labs