BroadWeb Corp. Immediate Reaction Against the Recent Microsoft Vulnerability Exploit.

The Zotob worm exploits the Plug-and-Play buffer overflow vulnerability as described in the Microsoft Security Bulletin (MS05-039) on August 9, 2005. The worm opens a backdoor on the compromised system as well as starts an FTP server. The worm also disrupts the regular anti-virus update downloads to the infected system. The latest worm variant has the added capability of sending spam and infected emails massively throughout the entire network frame. BSST’s remedial signature policies were able to proactively protect BroadWeb Corporation’s business customers prior to the release of the exploit code and helping to identify and block the attacks before they could cause damage to systems and networks.

“This newest form of exploit which targets the MS05-039 Plug-and-Play vulnerability has set the new record as the vulnerability-to-worm transformation rate that we have ever seen.” Said Dr. Terence Liu, CTO at BroadWeb Corp. “In the past, according to our experience, the fastest exploits that ever came out was the Sasser worm which launched massively eighteen days after the release of vulnerability by Microsoft. However, it only took four days after the vulnerability announcement by Microsoft for new exploits to come out.” “It is clearly seen that the increased sophistication & technologies utilized by internet hackers are growing at an enormous rate. BSST’s ability to provide zero-day, immediate automatic signature patch release clearly demonstrates the company’s commitment to staying ahead of both known and unknown threats and continually keeping our customers’ networking system secure”, said Mr. Freddy Chu, team manager of BSST at BroadWeb Corp.