Panda Antivirus Appliance Also Protects Against the IIS WebDAV Component Vulnerability
Panda Antivirus Appliance, the new high performance, integrated hardware and software solution from Panda Software, protects against any attempt to exploit the vulnerability affecting the WebDAV component in Microsoft’s Internet Information Server.
This recently discovered security problem could allow an attacker to cause a buffer overflow, by sending specially-crafted requests, with an HTTP header including a URL over 65KB, to the Internet Information Server. This could lead to an attacker running arbitrary code with maximum privileges.
However, as Panda Antivirus Appliance scans at TCP/IP level, it can block suspicious files, preventing exploits of this vulnerability. The Panda Software solution has also been designed to block HTTP headers over 40KB.
This means that Panda Antivirus Appliance is capable of blocking a wide range of attacks exploiting vulnerabilities based on oversized headers. Similarly, Panda Antivirus Appliance’s interception system was adapted to block attacks from the SQLSlammer worm which caused a recent epidemic exploiting a vulnerability in SQL Servers.
Panda Antivirus Appliance users that want to ensure they are protected against this vulnerability, even without installing the Microsoft patch, should update the Appliance using the “Update Now” option in the “Automatic Updates” section of the web console. This button is only activated when the Appliance detects an available update, which it is programmed to do every 12 hours. In this section users can also see how long is left before the Appliance next searches for these updates.
About Panda Software
Panda Software (