Determina was a leading provider of enterprise-class host intrusion prevention systems based on breakthrough technology developed at M.I.T. The Determina Vulnerability Protection Suite (VPS) is the first solution that offers Real Time Vulnerability Protection, which delivers the highest levels of security without disrupting business operations. Unlike attack-oriented security technologies, vulnerability protection offers customers the ability to comprehensively address the security and operational issues around security and patching. Determina VPS offers comprehensive vulnerability protection though its two products - Memory Firewall, which provides proactive, zero-day protection for the most dangerous class of vulnerabilities, and LiveShield, which provides precise vulnerability protection in real time.

Interested in what Determina can do...Check out our newest product CoreTrace...

Determina Security Advisory for August 2007 Microsoft Security Bulletins

Aug 14, 2007

UPDATE: As of Monday, August 6th, 2007, Determina was acquired by VMware, and existing Determina customers and partners have been notified. Although VMware will be discontinuing sales of Determina's standalone products and integrating the technology into VMware's products, Determina VPS customers will continue to receive uninterrupted technical support through the end of 2008. We are currently planning to continue delivering security research and advisory services, and we will examine closely what changes might be appropriate to tailoring the structure and content to be relevant to Determina customers and to the broader security community.

Oct 9, 2007

Six new security bulletins were announced by Microsoft on 10/9/2007. The vulnerabilities are summarized below.

Determina VPS Server and VPS Desktop, by default, protect all critical vulnerabilities described in the MS07-055, MS07-056, MS07-057 and MS05-060 bulletins. The vulnerabilities in MS07-058 and MS07-058 are not protected, but their impact is not critical.

Overview

CRITICAL MS07-055 Kodak Image Viewer Memory Corruption Protected by VPS

CRITICAL MS07-056 NNTP Memory Corruption Protected by VPS

CRITICAL MS07-057 Internet Explorer Memory Corruption Protected by VPS

IMPORTANT MS07-058 RPC Authentication Denial of Service Not Protected

IMPORTANT MS07-059 SharePoint Scripting Vulnerability Not Protected

CRITICAL MS07-060 Word Memory Corruption Protected by VPS

CRITICAL:

MS07-055 - Kodak Image Viewer Memory Corruption

There is one critical code execution vulnerability in the Kodak Image Viewer. It can be exploited by a malicious website. Determina VPS Server and VPS Desktop protect this vulnerability.

MS07-056 - NNTP Memory Corruption

There is one critical code execution vulnerability in the NNTP protocol implementation in Outlook Express and Windows Mail. It can be exploited by a malicious website. Determina VPS Server and VPS Desktop protect this vulnerability.

MS07-057 - Internet Explorer Memory Corruption

There is one critical code execution and three non-critical spoofing vulnerabilities in Internet Explorer. These vulnerabilities can be exploited by a malicious website. Determina VPS Server and VPS Desktop protect the critical vulnerability.

MS07-060 - Word Memory Corruption

There is one critical code execution vulnerability in Microsoft Word 2000 and XP. It can be exploited by a malicious website. Determina VPS Server and VPS Desktop protect this vulnerability.

IMPORTANT:

MS07-058 - RPC Authentication Denial of Service

There is one important vulnerability in the RPC service on Windows 2000, XP, 2003 and Vista. It can be exploited remotely and leads to a denial of service. This vulnerability is not protected by Determina VPS.

MS07-059 - SharePoint Scripting Vulnerability

There is one important cross-site scripting vulnerability in SharePoint Services 3.0 and SharePoint Server 2007. It can be exploited by a malicious website. This vulnerability is not protected by Determina VPS.

For more details on the vulnerabilities and recommended Determina remediation actions, please visit the link below

https://www.determina.com/security_center/security_advisories/