- ProductsDRAGON ENTERPRISEComodo introduced a new approach to endpoint protection, engineered to solve the issue of legacy security solutions.PLATFORM PRODUCTS
-
Impenetrable cybersecurity without sacrificing usability
-
Gain detailed visibility into all your endpoints activities
-
Reduce the attack surface to remediate and patch
-
Fortify mobile devices that exit and enter your network
-
Keep endpoints safe from known threat signatures
-
Setup device network and security policies quickly
TECHNOLOGY & PROCESS-
Patented to ensure absolute isolation from threats
-
Insights from deep web and dark web to eliminate risk
-
Our pioneered approach has shifted the industry
-
100% trust an all files at lightning speeds
-
- ServicesWORLDWIDE SERVICESNo one can stop zero-day malware from entering your network, but Comodo can prevent it from causing any damage. Zero Trust. Zero Breaches. Zero damage.THREAT SERVICES
-
Retain experts to investigate an incident to start remediation
-
Our experts closely monitor changes to your environment 24x7x365
-
Cybersecurity experts will continuously hunt suspicious endpoint activity
SUPPORT, DEPLOY, MAINTAIN-
Ensure your installations are properly deployed
-
Trouble with maintaining your products? Get help now
-
Align your success with optimal security performance
-
- Tools
- For HomeFOR HOMEWEB BROWSERBROWSER ADD-ONS & EXTENSIONS
- Partners
- ResourcesRESOURCE DISCOVERYComodo introduced a new approach to add managed cybersecurity and endpoint protection to your customers benefit, right into your existing programs.KNOWLEDGE BASETHREAT LABS
- Company
The latest news from Comodo
- Trusted by:
Microsoft buffer overflow issue still open 2 years on!
One of the most prolific attack mechanisms used by hackers – buffer overflow attacks, still remains open 2 years after the initial discovery by Trustix Engineers.
New York, 30th April 2004. Almost 2 years after its initial discovery by Trustix Engineers, a critical buffer overflow vulnerability from Microsoft still remains open. The vulnerability should have been fixed in SP1 for Windows XP and SP4 for Windows 2000. However, it has since been confirmed on fully patched systems running Windows XP and Windows 2000 and remains open still.
The Linux world at large recently attacked a report released by the Forrester Group “Is Linux More Secure Than Windows?” as misleading. The report focused on “how quickly serious vulnerabilities get fixed” which as this open issue clearly shows, is measured in years for Microsoft.
The vulnerability is caused by a boundary error, which can be triggered via Internet Explorer and Windows Explorer when connecting to a file server. This can be exploited to cause a buffer overflow by setting up a malicious share with an overly long name (about 300 bytes) containing no lower case characters. Successful exploitation may potentially allow execution of arbitrary code on a user’s system but requires that the user is either tricked into connecting to a malicious file server, visit a malicious website, or follow a specially crafted link.
“The flaw was first notified to Microsoft in early 2002 and they said that the flaw needed to be fixed in a service pack instead of a hotfix.” comments Rodrigo Gutierrez, a member of the Trustix Team that discovered the issue. “Last week while doing vulnerability research for a customer, I re-discovered the vulnerability and found out that it wasn’t properly patched“
Trustix, provides of the worlds most secure Linux Operating System – Trustix™ OS – Enterprise Server, designed specifically to meet the requirements of the rapidly expanding Enterprise Server market. Whilst focusing on stability, security, reliability and protection against stack-smashing / buffer overflow attacks it also incorporates the industry’s leading fully automatic secure update engine SWUP™.
About Comodo
The Comodo companies provide the infrastructure that is essential in enabling e-merchants, other Internet-connected companies, software companies, and individual consumers to interact and conduct business via the Internet safely and securely. The Comodo companies offer PKI SSL, Code Signing, Content Verification and Email Certificate; award winning PC Security software; Vulnerability Scanning services for PCI Compliance; secure e-mail and fax services.
Continual innovation, a core competence in PKI, and a commitment to reversing the growth of Internet-crime distinguish the Comodo companies as vital players in the Internet’s ongoing development. Comodo secures and authenticates online transactions and communications for over 200,000 business customers and 3,000,000 users of our desktop security products.
For additional information on Comodo – Creating Trust Online® visit Comodo.com
For more information, reporters and analysts may contact:
Comodo Email: media-relations@comodo.com Office: +1 (888) 266-6361