Symantec intrusion prevention signatures not updating
A security policy enforcement layer which prevents the exploitation of a known vulnerability.The virtual patch works since the security enforcement layer analyzes transactions and intercepts attacks in transit, so malicious traffic never reaches the web application.This is usually due to the extensive regression testing required after code changes.
It has been known by many different names including both External Patching and Just-in-time Patching. What is important is that you understand exactly what a virtual patch is.
Many organizations are facing the harsh reality that poor contractual language oftentimes does on cover “secure coding” issues but only functional defects.