|
|
Foreword
The FortiGuard Global Threat Research Team has released new security content to cover multiple vulnerabilities. The FortiGuard Team has observed 5 active exploitations of these vulnerabilities to date.
For more information, visit the FortiGuard Center at www.fortiguardcenter.com.
Threat Remediation
Fortinet provides coverage for the vulnerabilities described below as of the 2.782 IPS Definitions database update. A brief description of each vulnerability is provided as follows, in order of severity.
Critical ( 18 )
| Adobe.0day.20805 Event ID: 20805 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability protected by the signature which has been released by Fortinet's FortiGuard Labs. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that is currently being investigated by Fortinet's FortiGuard Labs. Reference IDs: |
| Adobe.0day.20807 Event ID: 20807 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability protected by the signature which has been released by Fortinet's FortiGuard Labs. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that is currently being investigated by Fortinet's FortiGuard Labs. Reference IDs: |
| Adobe.0day.20812 Event ID: 20812 |
Release Date: Apr 06, 2010 IPS Definitions DB Version: 2.781 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability protected by the signature which has been released by Fortinet's FortiGuard Labs. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that is currently being investigated by Fortinet's FortiGuard Labs. Reference IDs: |
| Apple.Webkit.Blink.Event.Dangling.Pointer.Code.Execution Event ID: 18297 |
Release Date: Apr 06, 2010 IPS Definitions DB Version: 2.781 |
|
Description: This indicates an attack attempt against a memory corruption vulnerability in Apple Webkit. The vulnerability is caused by an error when the vulnerable software is handling a web page with misused "blink" tag. It may allow remote attackers to execute arbitrary code by sending a crafted web page. Affected Products: Apple Safari 4.0.4 for Windows Apple Safari 4.0.4 Apple Safari 4.0.3 for Windows Apple Safari 4.0.3 Apple Safari 4.0.2 for Windows Apple Safari 4.0.2 Apple Safari 4.0.1 Apple Safari 4 for Windows Apple Safari 4 Beta Apple Safari 4 Beta Apple Safari 4 Reference IDs: |
| Apple.WebKit.CSS.Runin.Attribute.Rendering.Code.Execution Event ID: 18296 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against an arbitrary code execution vulnerability in Apple Webkit. The vulnerability is caused by an error when the vulnerable software handles a malicious "run-in" value to display CSS styles. It allows a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Apple Safari older than version 4.0.5 Reference IDs: |
| HP.OpenView.NNM.Ovsessionmgr.Buffer.Overflow Event ID: 18220 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a buffer overflow vulnerability in HP OpenView Network Node Manager (NNM). The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP POST request. It allows a remote attacker to execute arbitrary code. Affected Products: HP OpenView Network Node Manager 7.50 Windows 2000/XP HP OpenView Network Node Manager 7.50 Solaris HP OpenView Network Node Manager 7.50 Linux HP OpenView Network Node Manager 7.50 HP-UX 11.X HP OpenView Network Node Manager 7.50 HP OpenView Network Node Manager 7.53 HP OpenView Network Node Manager 7.51 HP OpenView Network Node Manager 7.50 HP OpenView Network Node Manager 7.01 Reference IDs: |
| HP.OpenView.NNM.Ovwebsnmpsrv.OVwSelection.Buffer.Overflow Event ID: 18230 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a buffer overflow vulnerability in HP OpenView Network Node Manager (NNM) program ovwebsnmpsrv.exe. The vulnerability is caused by an error when the vulnerable software handles a specially crafted HTTP request. It allows a remote attacker to execute arbitrary code. Affected Products: HP OpenView Network Node Manager 7.50 Windows 2000/XP HP OpenView Network Node Manager 7.50 Solaris HP OpenView Network Node Manager 7.50 Linux HP OpenView Network Node Manager 7.50 HP-UX 11.X HP OpenView Network Node Manager 7.50 HP OpenView Network Node Manager 7.53 HP OpenView Network Node Manager 7.51 HP OpenView Network Node Manager 7.50 HP OpenView Network Node Manager 7.01 Reference IDs: |
| IrfanView.FlashPix.Plugin.Buffer.Overflow Event ID: 15382 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attempt to exploit a buffer overflow vulnerability in the IrfanView FlashPix Plug-In. The FlashPix plugin for IrfanView has a vulnerability which allows remote attackers to execute arbitrary code via a crafted FlashPix (.FPX) file, resulting in a heap based buffer overflow. Affected Products: IrfanView FlashPix Plug-In v3.9.8.0 or prior. Reference IDs: |
| Mozilla.Firefox.WOFF.Heap.Overflow Event ID: 19150 |
Release Date: Mar 29, 2010 IPS Definitions DB Version: 2.776 |
|
Description: This indicates an attack attempt against a buffer overflow vulnerability in Mozilla Firefox. The vulnerability is caused by an error when the vulnerable software handles a malcious font file. It allows a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Mozilla firefox 3.6 and other versions Reference IDs: |
| MS.IE.CSS.Overlapping.Nested.Tags Event ID: 20773 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates an attack attempt against a memory-corruption vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles overlapping nested CSS tags. It may allow a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Internet Explorer 5.01 Internet Explorer 6 Internet Explorer 6 Service Pack 1 Internet Explorer 7 Internet Explorer 8 Reference IDs: |
| MS.IE.HTML.Object.Css.Memory.Corruption Event ID: 20779 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates an attack attempt against a memory-corruption vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles a malicious HTML object. It allows a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Internet Explorer 8 for Windows XP Service Pack 2 and Windows XP Service Pack 3 Internet Explorer 8 for Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 8 for Windows Server 2003 Service Pack 2 Internet Explorer 8 for Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 8 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 Internet Explorer 8 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 Internet Explorer 8 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2** Internet Explorer 8 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2** Internet Explorer 8 in Windows 7 for 32-bit Systems Internet Explorer 8 in Windows 7 for x64-based Systems Internet Explorer 8 in Windows Server 2008 R2 for x64-based Systems** Internet Explorer 8 in Windows Server 2008 R2 for Itanium-based Systems Reference IDs: |
| MS.IE.HTML.Object.Ready.Memory.Corruption Event ID: 20778 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates an attack attempt against a memory-corruption vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles a malicious HTML object. It allows a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Internet Explorer 5.01 Service Pack 4 when installed on Microsoft Windows 2000 Service Pack 4 Internet Explorer 6 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4 Internet Explorer 6 Internet Explorer 6 for Windows XP Service Pack 2 and Windows XP Service Pack 3 Internet Explorer 6 for Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 6 for Windows Server 2003 Service Pack 2 Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 6 for Windows Server 2003 with SP2 for Itanium-based Systems Reference IDs: |
| MS.IE.Incomplete.Element.Memory.Corruption Event ID: 20780 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates a possible attack against a memory-corruption vulnerability in Microsoft Internet Explorer. The vulnerability occurs when the vulnerable software handles certain DOM operations. A remote attacker may exploit this to execute arbitrary code or to cause a denial-of-service condition. Affected Products: Microsoft Internet Explorer versions 5.01 to 8 Reference IDs: |
| MS.IE.Mouse.Event.Handler.Uninitialized.Memory.Corruption Event ID: 20771 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates an attack attempt against a memory-corruption vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles an HTML document with a malicious mouse event handler. It may allow remote attackers to execute arbitrary code by sending a crafted web page. Affected Products: Internet Explorer 6 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4 Internet Explorer 6 Internet Explorer 6 for Windows XP Service Pack 2 and Windows XP Service Pack 3 Internet Explorer 6 for Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 6 for Windows Server 2003 Service Pack 2 Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 6 for Windows Server 2003 with SP2 for Itanium-based Systems Internet Explorer 7 Internet Explorer 7 for Windows XP Service Pack 2 and Windows XP Service Pack 3 Internet Explorer 7 for Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 7 for Windows Server 2003 Service Pack 2 Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 7 for Windows Server 2003 with SP2 for Itanium-based Systems Internet Explorer 7 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 Internet Explorer 7 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 Internet Explorer 7 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 7 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 Reference IDs: |
| MS.IE.Scripts.Loading.HTML.Parsing.Memory.Corruption Event ID: 20775 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates a possible attack against a race-condition memory-corruption vulnerability in Microsoft Internet Explorer. This vulnerability is caused by improper handling of scripts loading and HTML parsing. A remote attacker may exploit this to execute arbitrary code or to cause a denial-of-service condition. Affected Products: Microsoft IE 5.01-IE 8 Reference IDs: |
| MS.IE.Tabular.Control.DataURL.Parameter.Access Event ID: 20776 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a remote code-execution vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles a specially crafted web page. It allows a remote attacker to execute arbitrary code. Affected Products: Microsoft Internet Explorer 6 and previous versions Reference IDs: |
| SAP.MaxDB.Malformed.Handshake.Request.Code.Execution Event ID: 18298 |
Release Date: Apr 06, 2010 IPS Definitions DB Version: 2.781 |
|
Description: This indicates an attack attempt against a memory corruption vulnerability in SAP MaxDB. The vulnerability is caused by an error when the vulnerable software is parsing a malformed client packet. It may allow remote attackers to execute arbitrary code by sending a crafted client request. Affected Products: SAP MaxDB: 7.7.06.09 Reference IDs: |
| Winamp.Impulse.Tracker.Parsing.Buffer.Overflow Event ID: 18977 |
Release Date: Apr 06, 2010 IPS Definitions DB Version: 2.781 |
|
Description: This indicates an attack attempt against a buffer overflow vulnerability in Winamp. The vulnerability is caused by an error when the vulnerable software handles a malicious Impulse Tracker file. It allows a remote attacker to execute arbitrary code via sending a crafted tracker file. Affected Products: Winamp before 5.57 Reference IDs: |
High ( 8 )
| Adobe.0day.20803 Event ID: 20803 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability protected by the signature which has been released by Fortinet's FortiGuard Labs. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that is currently being investigated by Fortinet's FortiGuard Labs. Reference IDs: |
| Adobe.0day.20808 Event ID: 20808 |
Release Date: Apr 05, 2010 IPS Definitions DB Version: 2.780 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability protected by the signature which has been released by Fortinet's FortiGuard Labs. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that is currently being investigated by Fortinet's FortiGuard Labs. Reference IDs: |
| FG-VD-09-030-Microsoft Event ID: 20797 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a Zero-Day vulnerability discovered by the FortiGuard Global Security Research Team. This signature should help mitigate the Zero-Day threat proactively - both prior to, and after an official fix is available from the vendor. Once this official fix is available, further details about our discovery will be made available in an advisory on our FortiGuard Center (http://www.fortiguard.com). This signature and description will also be updated at this point in time. Affected Products: This is a Zero-Day (unpatched) vulnerability that has been discovered by the FortiGuard Global Security Research Team. |
| NetCat.Exec.Mode.Client.Request.Buffer.Overflow Event ID: 15019 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates a vulnerability in Netcat 1.1 for Windows NT. The vulnerability is caused by a stack overflow when handling a client request. It allows remote attackers to execute arbitrary code by sending a long string when NetCat is running with the -e option. Affected Products: Netcat 1.1 for NT. Reference IDs: |
| Novell.eDirectory.SOAP.Request.Parsing.DoS Event ID: 18257 |
Release Date: Mar 30, 2010 IPS Definitions DB Version: 2.777 |
|
Description: This indicates an attack attempt against a denial of service vulnerability in Novell eDirectory. The vulnerability is caused by an error when the vulnerable software handles multiple malformed "RemoteSubscribe" requests . It allows a remote attacker to execute arbitrary code via sending a crafted web page. Affected Products: Novell eDirectory Reference IDs: |
| Skype.URI.Handling.Information.Disclosure Event ID: 18290 |
Release Date: Mar 30, 2010 IPS Definitions DB Version: 2.777 |
|
Description: This indicates an attack attempt against an information disclosure vulnerability in Skype. The vulnerability is caused by an error when the URI handler handles a specially crafted "/Datapath" argument. It allows a remote attacker to gain access to sensitive information (e.g. chat logs and call history). Affected Products: Skype versions prior to 4.2.0.1.55 (v4.2 hotfix #1) Reference IDs: |
| Skype.URI.Processing.Arbitrary.XML.File.Deletion Event ID: 18291 |
Release Date: Mar 30, 2010 IPS Definitions DB Version: 2.777 |
|
Description: This indicates an attack attempt against an arbitrary file deletion vulnerability in Skype. The vulnerability is caused by an error when the URI handler handles a specially crafted "skype-plugin:" protocol. It allows a remote attacker to delete any XML file. Affected Products: Skype versions prior to 4.2.0.1.55 Reference IDs: |
| Yahoo.Player.YPL.Buffer.Overflow Event ID: 18444 |
Release Date: Apr 01, 2010 IPS Definitions DB Version: 2.779 |
|
Description: This indicates an attack attempt against a buffer overflow vulnerability in Yahoo Player. The vulnerability is caused by an error when the vulnerable software handles a malicious .ypl file. It allows a remote attacker to execute arbitrary code via sending a crafted .ypl file. Affected Products: Yahoo Player versions 1.5.01.409 and 1.0 Reference IDs: |
Medium ( 2 )
| MS.IE.Iframe.Javascript.Information.Disclosure Event ID: 20774 |
Release Date: Mar 31, 2010 IPS Definitions DB Version: 2.778 |
|
Description: This indicates an attack attempt against an information-disclosure vulnerability in Microsoft Internet Explorer. The vulnerability is caused by an error when the vulnerable software handles a specially crafted web page. It allows scripts to gain access to a browser window in another domain or Internet Explorer zone. Affected Products: Microsoft Internet Explorer 8 and previous versions Reference IDs: |
| MS.Windows.HTML.Help.File.Processing.Code.Execution Event ID: 18289 |
Release Date: Mar 30, 2010 IPS Definitions DB Version: 2.777 |
|
Description: This indicates an attack attempt against a code execution vulnerability in Microsoft Windows. The vulnerability is caused by an error when the vulnerable software is parsing a malicious HTML Help File. It may allow remote attackers to execute arbitrary code by tricking a user to open a crafted ".chm" file. Affected Products: Windows XP SP3 fully patched Windows 2000 SP4 Reference IDs: |
Top of Section
Enhanced Coverage
The FortiGuard Threat Research team updates security content as new vectors of exploitation are discovered. The table below details the security content enhanced with this release.
Critical ( 22 )
High ( 9 )
| Event Name | Revision Notes |
|---|---|
| FG-VD-10-003-Adobe | Previous name: "Adobe.0day.20808" |
| HTTP.Content.Length.Header.Buffer.Overflow | Previous name: "Opera.Content.Length.Header.Buffer... |
| Mozilla.Firefox.Layout.Memory.Corruption | Default_action updated to 'drop' Previous name: "Mozilla.Firefox.Layout.Crash" |
| MS.Word.Object.Pointer.Code.Execution | Default_action updated to 'drop' |
| MyPhPim.Calendar.PHP3.Cal.ID.Parameter.SQL.Injection | Default_action updated to 'drop' |
| NetWin.SurgeMail.Webmail.Server.Page.Parameter.Format.String | Default_action updated to 'drop' |
| Oracle.TimesTen.Format.String | Default_action updated to 'drop' |
| VEGO.Web.Forum.Theme.ID.SQL.Injection | Default_action updated to 'drop' |
| VLC.Media.Player.SMB.Win32AddConnection.Buffer.Overflow | Default_action updated to 'drop' |
Medium ( 11 )
| Event Name | Revision Notes |
|---|---|
| Apple.CUPS.CupsdDoSelect.Remote.Code.Execution | Default_action updated to 'drop' |
| Axigen.POP3.Service.Remote.Format.String | Detection Enhanced |
| Best.Software.SalesLogix.View.ID.Parameter.SQL.Injection | Default_action updated to 'drop' |
| Mozilla.Firefox.XSL.Parsing.Remote.Memory.Corruption | Default_action updated to 'drop' |
| MS.GdiPlus.Dll.EMF.GpFont.SetData.Stack.Overflow | Default_action updated to 'drop' |
| MS.IE.XMLHttpRequest.Http.Header.Overwritten | Default_action updated to 'drop' |
| MS.Windows.PnP.DoS | Default_action updated to 'pass' Detection Enhanced |
| Nabopoll.Web.Poll.Package.Blind.SQL.Injection | Default_action updated to 'drop' |
| NetWin.SurgeMail.Webmail.Headers.Buffer.Overflow | Previous name: "CGI.Webmail.Headers.Buffer.Overflo... |
| Oracle.Database.Server.CREATE_TABLES.SQL.Injection | Default_action updated to 'drop' |
| Rdesktop.Remote.Memory.Corruption | Detection Enhanced |
Low ( 1 )
| Event Name | Revision Notes |
|---|---|
| Best.Software.SalesLogix.Database.Credentials.Disclosure | Default_action updated to 'drop' Severity updated to 'medium' |
Top of Section
Active Exploitation
The FortiGuard Threat Research team uses globally distributed probes to monitor exploit activity. Vulnerabilities can be classified as active and given a magnitude level. The magnitude level is the rate of activity across the probes. The value of the magnitude is set to low, medium or high.
The table below lists the vulnerabilities discussed in this bulletin (specifically new and enhanced detection) and their corresponding exploit activity magnitude. The data below is as of this writing.
Critical ( 3 of 24 )
High ( 1 of 8 )
| Event Name | Active Exploitation Observed | Magnitude |
|---|---|---|
| Adobe.0day.20803 | No | n/a |
| Adobe.0day.20808 | No | n/a |
| FG-VD-09-030-Microsoft | No | n/a |
| NetCat.Exec.Mode.Client.Request.Buffer.Overflow | Yes | Low |
| Novell.eDirectory.SOAP.Request.Parsing.DoS | No | n/a |
| Skype.URI.Handling.Information.Disclosure | No | n/a |
| Skype.URI.Processing.Arbitrary.XML.File.Deletion | No | n/a |
| Yahoo.Player.YPL.Buffer.Overflow | No | n/a |
Medium ( 1 of 5 )
| Event Name | Active Exploitation Observed | Magnitude |
|---|---|---|
| Axigen.POP3.Service.Remote.Format.String | No | n/a |
| MS.IE.Iframe.Javascript.Information.Disclosure | No | n/a |
| MS.Windows.HTML.Help.File.Processing.Code.Execution | No | n/a |
| MS.Windows.PnP.DoS | Yes | Low |
| Rdesktop.Remote.Memory.Corruption | No | n/a |
Top of Section
Document History
| Revision Date | Version Number | |
|---|---|---|
| Monday, April 12, 2010 | 1 | Initial Documentation. |
About Fortinet ( www.fortinet.com )
Fortinet is the pioneer and leading provider of ASIC-accelerated unified threat management, or UTM, security systems, which are used by enterprises and service providers to increase their security while reducing total operating costs. Fortinet solutions were built from the ground up to integrate multiple levels of security protection--including firewall, antivirus, intrusion prevention, VPN, spyware prevention and anti-spam -- designed to help customers protect against network and content level threats. Leveraging a custom ASIC and unified interface, Fortinet solutions offer advanced security functionality that scales from remote office to chassis-based solutions with integrated management and reporting. Fortinet solutions have won multiple awards around the world and are the only security products that are certified in six programs by ICSA Labs: (Firewall, Antivirus, IPSec, SSL, Network IPS, and Anti-Spyware). Fortinet is privately held and based in Sunnyvale, California.
Disclaimer
Although Fortinet has attempted to provide accurate information in these materials, Fortinet assumes no legal responsibility for the accuracy or completeness of the information. Please note that no Fortinet statements herein constitute or contain any guarantee, warranty or legally binding representation. All materials contained in this publication are subject to change without notice, and Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice.
Top of page
