Intrusion Prevention System (IPS) firmware upgrade is effective in blocking 'Kaminsky' exploit when combined with DNS patch.

NitroSecurity, Inc., a provider of network and information security solutions, today announced that it has developed a IPS solution that eliminates the threat of DNS Cache Poisoning. The company says that through research with the Rochester Institute of Technology (RIT), it has demonstrated that its IPS, combined with the DNS server patch, provides protection against the exploit that is nearly 100 percent effective.

It explains that the DNS exploit presents a challenge in regard to protection and simply blocking the vulnerability via a IPS detection signature would prevent access to the DNS altogether. Therefore, it is crucial to have a broad solution that not only blocks the exploit, but does not compromise the functionality of the DNS. Working with RIT, NitroSecurity has validated a solution to actively detect and block the DNS exploit while still allowing the DNS to function properly, it adds.

"The recent attention the DNS vulnerability has garnered is highly important since companies need to know it's out there and how they can protect against it. IPS solutions are widely deployed throughout the industry to combat many vulnerabilities," said Michael Leland, chief technology officer, NitroSecurity. "However, the DNS exploit requires more than just a signature-based IPS solution. Nitro's IPS is capable of rate/threshold-based signatures, blacklisting and stateful firewall functions -- all components that, when used in conjunction, can dramatically improve the protection for DNS servers."