Blue Lane Technologies announces inline patch for Windows server vulnerability

Published 14 August 2006

Blue Lane today announced the imediate availability of an inline patch that eliminates a critical RPC protocol vulnerability in the Windows Server Service.

A stitch in time saves nine, but sometimes the hole is so big you need a patch. Blue Lane Technologies announced today the immediate availability of an inline patch for its PatchPoint system that elimates a critical RPC protocol vulnerability in the Windows Server Service. Last week, Microsoft released it’s MS06-040 patch, but customers with older versions of Microsofft Windows, or those with lengthy and arduous patch implementation procedures, remain vulnerable.

Based in Cupertino, California, Blue Lane solves the dilemma of “patch now or patch later” by providing the industry’s “first inline patch proxy for enterprise servers that fixes application-specific vulnerabilities at the root cause by checking for the same conditions and applying the same corrective action as the software vendor security patch.” Unlike traditional patches, no software is installed. Instead, customers are protected almost instantaneously by changes within the network.

read more in this press release; for more on the technical issues involved, read this US-CERT report and this Microsoft Security bulletin