BufferShield: Prevent Exploitations of a Buffer Overflow

<body> <font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular"> <h1 align="left">BufferShield 1.01e</h1> </font> <p align="left"><font face="Arial"> <a href="pics/english/BuffShld.htm" target="_blank"><font size="2">BufferShield</font></a> <font size="2"> is a security tool for Windows®, capable<br> of detecting and preventing the exploitation of buffer<br> overflows, responsible for the majority of security<br> related problems faced today.</font></font> <p align="left"><font size="2" face="Arial"> Upon detection it creates an entry within the event log <br> and optionally terminates the application in question, <br> preventing the execution of potentially malicious code.<br> <br> Buffer overflows are commonly used by hackers to<br> introduce malicious code into your systems. For <br> example the Zotob, Sasser or LovSan / MSBlaster virus<br> used such a buffer overflow to attack remote systems.<br> Click <a href="sites/I_Overflow.html"> here</a> for a more detailed explanation on how a<br> buffer overflow can be exploited.<br> <br> BufferShield uses similar technologies, implemented<br> by the <a target="_blank" href="http://pax.grsecurity.net/">PaX</a> project to protect the Linux platform from<br> buffer overflows.  </font> <p align="left"><font size="2" face="Arial"> The commercial version of BufferShield is the only<br> product available for Microsoft platforms allowing the<br> definition of a protection scope, specifying which<br> applications or services should or should not be<br> protected. Additionally the protection scope allows<br> the exclusion of certain memory ranges that should<br> be excluded. This is necessary because some<br> applications actually generate dynamic code on the<br> stack or heap and attempt to execute it afterwards,<br> being detected by BufferShield as an attempted<br> exploitation of a buffer overflow. </font> <p align="left"><font size="2" face="Arial">BufferShield's key features:</font></p> <ul> <li> <p align="left"><font size="2" face="Arial">Detects code execution on the stack, default<br> heap, dynamic heap, virtual memory and data<br> segments</font></li> <li> <p align="left"><font size="2" face="Arial">Can terminate applications in question if a<br> buffer overflow was detected</font></li> <li> <p align="left"><font size="2" face="Arial">Reports to the Windows® event log in<br> case of any detected overflows</font></li> <li> <p align="left"><font size="2" face="Arial">Allows the definition of a protection scope to<br> either protect only defined applications or to<br> exclude certain applications or memory ranges<br> from being protected</font></li> </ul> <p align="left"><font size="2" face="Arial">Opposed to the commercial version of BufferShield,<br> protecting all running applications and services,<br> the freely available version is only protecting the<br> following applications:</font></p> <ul> <li> <p align="left"><font size="2" face="Arial">Microsoft Internet Explorer</font></li> <li> <p align="left"><font size="2" face="Arial">Opera</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Outlook Express</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Outlook<br>  </font></li> </ul> <p align="left"><font size="2" face="Arial">BufferShield supports the following operating<br> systems:</font></p> <ul> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® NT 4.0 Workstation</font></li></font> <font face="Arial" size="2"> <li> <p align="left">Microsoft Windows® NT 4.0 Server</li> <li> <p align="left">Microsoft Windows® NT 4.0 Server Enterprise Edition</li> <li> <p align="left">Microsoft Windows® NT 4.0 Terminal Server Edition</li></font> <font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular"> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® 2000 Professional</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® 2000 Server</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® 2000 Advanced Server</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® XP Professional</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® XP Home Edition</font></li> <li> <p align="left"><font size="2" face="Arial">Microsoft Windows® 2003 Server Standard Edition</font></li> <font face="Arial" size="2"> <li> <p align="left">Microsoft Windows® 2003 Small Business Server</li> <li> <p align="left">Microsoft Windows® 2003 Server Enterprise Edition</li> <li> <p align="left">Microsoft Windows® 2003 Server Web Edition</li> <li> <p align="left">Microsoft Windows® 2003 Datacenter Edition<br>   </font> </li> </ul> <p align="left"><font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular" size="2">Existing client base:</font></p> <ul> <li> <p align="left"><font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular" size="2"> <a href="sites/I_BuffShld_Ref.html">Some of our reference Customers...</a></font><br>  </li> </ul> <p align="left"><font size="2">Downloads</font><font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular" size="2">:</font></p> <font size="2"> <table border="0" cellpadding="4" cellspacing="2" width="366"> <tr> <td width="82" align="left"> <p align="center"><font size="2"> <a href="flyer/BufferShield.pdf" target="_blank"> <img src="images/Adobe/pdficon.gif" border="0" alt="PDF Description" width="32" height="32"></a></font></p> </td> <td align="left" width="258"> <p align="left"> <a href="flyer/BufferShield.pdf" target="_blank"> <font size="2">Product description</font></a></p> </td> </tr> <tr> <td width="82" align="left"> <p align="center"> <font size="2" face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular"> <a href="flyer/BufferShield.pdf" target="_blank"> <img src="pics/docu_scription.gif" border="0" alt="Buffer Overflow Protection Compared" width="32" height="32"></a></font></td> <td align="left" width="258"> <p align="left"> <a href="sites/I_BuffShldComp2.htm" target="_blank"> <font size="2">Competitive Analysis</font></a></p> </td> </tr> <tr> <td width="82" align="left"> <p align="center"><font size="2"> <a href="sites/D_BuffShld.html"> <img src="pics/download_scription.gif" border="0" alt="Download Trial" width="32" height="32"></a></font></p> </td> <td align="left" width="258"> <p align="left"> <a href="sites/D_BuffShld.html"> <b>Download</b></a><b><a href="sites/D_BuffShld.html"> 30 day trial...</a></b></p> </td> </tr> <tr> <td width="82" align="left"> <p align="center"><font size="2"> <a href="sites/D_BuffShldFree.html"> <img src="pics/download_scription.gif" border="0" alt="Download Free" width="32" height="32"></a></font></p> </td> <td align="left" width="258"> <p align="left"> <a href="sites/D_BuffShldFree.html"> <font size="2">Download feature limited free edition...</font></a></p> </td> </tr> <tr> <td width="82" align="left"> <p align="center"> </p> </td> <td align="left" width="258"> </td> </tr> <tr> <td width="82" align="left"> <p align="center"> </p> </td> <td align="left" width="258"> Linux related information:</td> </tr> <tr> <td width="82" align="left"> <p align="center"><font size="2"><a href="http://pax.grsecurity.net/" target="_blank"> <img src="images/PENGUIN.GIF" border="0" align="left" width="75" height="35" alt="Linux Pax"></a></font></p> </td> <td align="left" width="258"> <p align="left"><a href="http://pax.grsecurity.net/" target="_blank"> <font size="2">PaX - Hardening Linux</font></a></p> </td> </tr> </table> </font> <p align="center"><font face="Arial,Neuer Web-Zeichensatz,Helvetica,Geneva,Swiss,SunSans-Regular" size="2"> <br> Customers and 30-day trial participants can rely<br> on our experienced product support, available 24 / 7<br> using our live support chat or by contacting us by<span lang="de"> </span>email<span lang="de">.<br> </span> The live support chat requires that<span lang="de"> </span>ActiveScript <span lang="de"> (Internet Explorer) </span>or JavaScript <span lang="de">(others) </span>is enabled.<br>  <br> <a target="_blank" href="http://sys-manage.dnsalias.com/Support/livehelp.php?department=3&pingtimes=30"> <img src=http://sys-manage.dnsalias.com/Support/image.php?department=3 border=0 alt="Support Chat" > </a> </font> <p align="center">  <br> <font face="Arial" size="3">Resellers and VARs wanted, please <a href="mailto:sales@sys-manage.com">contact</a> us. </font></body>