|
Newsroom /
Technology
/
Technology
/
Corero Protects Its Customers From 'Apache Killer' DoS Exploit
Corero Protects Its Customers From 'Apache Killer' DoS Exploit
Company’s Intrusion Prevention Systems Mitigate Threats to Apache Server, The World’s Most Widely Used Web Server.
Hudson,
MA,
United States of America
(prbd.net)
08/09/2011
Hudson, MA, Thursday - September 08, 2011 -- Corero Network Security (CNS:LN), a leading global provider of Network Intrusion Prevention Systems (IPS) and Distributed Denial of Service (DDoS) Defense Systems, notified customers that it protects them from the ‘Apache Killer’ denial of service (DoS) exploit with its IPS 5500 products. ‘Apache Killer’ exploits a vulnerability found in the Apache Web Server software. Although hundreds of DoS vulnerabilities have been discovered in commercial and open-source software so far in 2011, this particular vulnerability is significant since Apache Server is the world’s most popular web server, with nearly 66 percent of the market or nearly 200 million web sites in use, according to Netcraft.
Corero’s IPS 5500 provides proactive protection for the Apache Killer exploit as a result of its two-tiered "PVM+DVM" Stateful Protocol Analysis (SPA) implementation. In this case, the IPS 5500 HTTP Protocol Validation Module (PVM) detects and blocks attempts to cause the denial of service condition on the Apache servers. No new signatures were required for this protection which was built in to Corero’s IPS solutions.
"Our IPS solution is unique in that it is purpose built to protect not only against traditional flood-based DDoS and new application layer attacks but also attacks like the Apache Killer. We safeguard our customers’web servers from Apache Killer denial of service exploits that can be caused by just a very small number of network transactions," said Mike Paquette, chief strategy officer, Corero Network Security.
For more information on Corero’s IPS products, visit: http://www.corero.com .
About Corero’s IPS Solution:
The IPS 5500 EC-Series and ES-Series products are Corero’s most advanced generation family of Intrusion Prevention Systems. It is designed to deliver non-disruptive protection against constantly evolving threats. It provides maximum security for critical IT assets while allowing full access to legitimate users and applications.
The IPS 5500 EC/ES offers proactive protection against threats while patches are being tested and deployed. It provides:
* Improved security posture through acceptable application usage enforcement
* Regulatory compliance through protection of confidential data
* Protection against theft of intellectual property due to undesired access
* Reduction in IT hours devoted to fixing/remediating systems infected by viruses, botnet programs, and other malware
*Reduction of downtime from DDoS attacks and botnet threats.
About Corero Network Security:
Corero Network Security (CNS:LN), formerly Top Layer Security, is a leading global provider of Network Intrusion Prevention Systems (IPS) and Distributed Denial of Service (DDoS) Defense Solutions (DDS) that enable enterprise organizations to protect their critical on-line assets against risks associated with network-borne cyber threats.
Corero has been consistently recognized through the years for its product innovation and leadership by customers, media and industry analysts alike. Corero is headquartered in Massachusetts, U.S. with sales and services support worldwide. For more information please visit: http://www.corero.com .
Press & Media Contact:
Tiffany Darmetko or Brenna Hagy
Schwartz Communications, Inc
Hudson, MA
+1 781-684-0770
Corero@schwartzcomm.com
http://www.corero.com
About
Xceedium is the leading provider of Zero Trust Access Control solutions. The Xceedium GateKeeper is being used by large and mid-sized enterprises, as well as leading federal government agencies to meet their stringent security and compliance needs. This world-class technology allows organizations to control access to their network based on who the user is, and contains the user to explicit resources, eliminating the risk of allowing un-trusted third parties and privileged users on their networks
|