Skip navigation

Reading, UK – 15 May, 2007 – Stonesoft Corporation, an innovative provider of integrated network security and business continuity solutions, announces that the new StoneGate IPS versions 4.0 and later are capable of detecting and blocking attacks that use the new evasion technique reported by CERT Coordination Center (CERT/CC).

According to the CERT/CC vulnerability note published on 15 May 2007, the new evasion technique is used for bypassing intrusion detection/prevention systems that scan HTTP traffic. The attacker can bypass security controls of an IDS/IPS using encoded data with HTTP POST method. If the IDS/IPS does not decode Fullwidth Unicode encoded HTTP POST request data, an attack will not be detected and can cause damage within the web server.

“The new StoneGate IPS contains very effective normalisation for HTTP client requests”, says Mika Rautila, Chief Technology Officer at Stonesoft. “IPS protects corporate networks quickly and without downtime. Bringing down business-critical services for maintenance means lost revenue, but with StoneGate IPS, security vulnerabilities can be patched without the need for unscheduled maintenance breaks.”

The StoneGate™ secure connectivity solution comprises of a Firewall and an Intrusion Prevention System (IPS). The StoneGate IPS, comprising of an IDS (Intrusions Detection System) and an IPS, defends the network proactively by detecting malicious packets within regular network traffic and blocking them before any damage occurs. Implementing StoneGate IPS expands the defence further within networks enabling comprehensive, multi-dimensional network security. StoneGate Firewall and IPS work together to provide intelligent defence throughout the enterprise network.


For more information:

For more details please contact Elissa Fry or Sally Forge
Prompt Communications on behalf of Stonesoft
Tel: 020 8996 1650 / Out of hours: 07780 687813
efry@prompt-communications.com / sforge@prompt-communications.com

or

Mika Rautila
Chief Technology Officer
Stonesoft Corporation
Tel. +358 9 476 711
Email: mika.rautila@stonesoft.com


About Stonesoft
Stonesoft Corporation (OMX: SFT1V) is an innovative provider of integrated network security and business continuity. Stonesoft is a global company focused on enterprise level customers requiring advanced network security and always-on business connectivity with low TCO, best price-to-performance ratio, and highest ROI. StoneGate™ Security Platform unifies firewall, VPN and IPS, blending network security, end-to-end availability and award-winning load balancing into a unified and centrally managed system for distributed enterprises. Founded in 1990, Stonesoft Corporation has corporate headquarters in Helsinki, Finland and Americas headquarters in Atlanta, Georgia. For more information, visit www.stonesoft.com.

This press release was distributed by ResponseSource Press Release Wire on behalf of Prompt Communications Ltd in the following categories: Computing & Telecoms, for more information visit http://pressreleasewire.responsesource.com/about.