Palo Alto Networks™, the leader in next-generation firewalls, today announced that its Threat Research Team has discovered a vulnerability rated as “important” in severity in Microsoft’s Patch Tuesday security bulletin published today.
Microsoft credits Palo Alto Networks’ Threat Research Team for finding an elevation of privilege vulnerability (CVE: CVE-2009-1122) that could allow an attacker to bypass an authentication requirement to access content on a Microsoft IIS Server. The vulnerability is due to the lack of proper checks on the URL in a WebDAV request, leading to a bypass on IIS directories.
Palo Alto Networks’ next-generation firewalls are unique in the industry in their ability to see and control applications, users and content – not just ports, IP addresses and packets. Traditional port-blocking firewalls do not have the content intelligence to identify a possible exploit such as this, which can allow an attacker to bypass authentication controls on private IIS directories using a specially crafted requested URL in the WebDAV extension.
The Palo Alto Networks Threat Research Team is active in the research community, aggressively pursuing both new vulnerability research and mitigation of all types of threats. Leveraging its expert understanding of today’s applications, threats and how vulnerabilities get exploited, the team is a consistent contributor in support of Microsoft’s Patch Tuesday releases.
Palo Alto Networks’ next-generation firewalls are the industry’s most powerful firewall products, enabling enterprises to see and control applications, users and content – not just ports, IP addresses and packets. This is a critical need for enterprises’ management of risk as industry studies continue to show enterprises lack visibility into and control of application traffic due to the outdated functionality of legacy security technology.1 Palo Alto Networks’ next-generation firewalls enable enterprises to create granular, business-relevant security policies and safely control new enterprise and consumer applications as business enablers instead of the block-or-nothing approach offered by traditional port-blocking firewalls.
About Palo Alto Networks
Palo Alto Networks™ is the leader in next-generation firewalls, enabling unprecedented visibility and granular policy control of applications and content – by user, not just IP address – at up to 10Gbps with no performance degradation. Based on patent-pending App-ID™ technology, Palo Alto Networks firewalls accurately identify and control applications – regardless of port, protocol, evasive tactic or SSL encryption – and scan content to stop threats and prevent data leakage. Enterprises can for the first time embrace Web 2.0 and maintain complete visibility and control, while significantly reducing total cost of ownership through device consolidation. For more information, visit www.paloaltonetworks.com.
Note 1 – “Application Usage and Risk Report,” Palo Alto Networks, April 20, 2009.
###
Palo Alto Networks, the Palo Alto Networks Logo and App-ID are trademarks of Palo Alto Networks, Inc. in the United States. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners.
