Sourcefire Vulnerability Research Team Protects Users from Latest Microsoft Windows Remote Code Execution Vulnerability

COLUMBIA, Md.–(BUSINESS WIRE)–Open source innovator and SNORT^® creator, Sourcefire, Inc. (Nasdaq:FIRE), a leader in network intrusion prevention, today announced that the Sourcefire Vulnerability Research Team (VRT) has delivered new rules to protect Sourcefire customers and Snort users from the critical Microsoft Windows Remote Code Execution vulnerability announced today.

“With today’s protection, Sourcefire is continuing our commitment to delivering zero-day protection to the latest vulnerabilities,” said Matt Watchinski, Director of the Sourcefire Vulnerability Research Team. “The VRT is continuously researching threats and creating coverage to protect our users – both on Microsoft Tuesdays and every other day of the month. Sourcefire’s combination of proactive protection and leading-edge solutions provides our customers and Snort users with the ability to secure their most critical assets, often before new threats are even identified.”

Following Microsoft’s disclosure earlier today, the Sourcefire VRT created, tested and delivered Snort rules designed to detect and block attacks targeting the Microsoft vulnerability identified in Microsoft Security Bulletin MS08-001. This critical security update resolves two privately reported vulnerabilities in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Sourcefire’s new rules are included in the latest Sourcefire Security Enhancement Update (SEU) released today.

About the Sourcefire VRT

The Sourcefire VRT is a group of leading edge intrusion detection and prevention experts working to proactively discover, assess and respond to the latest trends in hacking activities, intrusion attempts and vulnerabilities. This team is also supported by the vast resources of the open source Snort community, making it the largest group dedicated to advances in the network security industry.

About Sourcefire

Sourcefire, Inc. (Nasdaq:FIRE), Snort creator and open source innovator, is a world leader in Enterprise Threat Management (ETM) solutions. Sourcefire is transforming the way Global 2000 organizations and government agencies manage and minimize network security risks with its 3D Approach – Discover, Determine, Defend – to securing real networks. The Sourcefire 3D™ System is the first to unify IPS, NBA, NAC and Vulnerability Assessment technologies under the same management console. This ETM approach equips customers with an efficient and effective layered security defense – protecting network assets before, during and after an attack. Through the years, Sourcefire has been consistently recognized for its innovation and industry leadership by customers, media and industry analysts alike – with more than 30 awards and accolades. Today, the names Sourcefire and founder Martin Roesch have grown synonymous with innovation and network security intelligence. For more information about Sourcefire, please visit http://www.sourcefire.com.