Heartbleed OpenSSL Vulnerability - No Impact to Corero Products
In the light of the recently discovered SSL related security flaw known as ‘Heartbleed’ (OpenSSL 'Heartbleed' vulnerability CVE-2014-0160) Corero Network Security offers the following advisory;
The vulnerability known as ‘Heartbleed’ has been detected in certain versions of the widely-used OpenSSL toolkit. This vulnerability could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory handling in the TLS heartbeat extension.
Immediately after learning of the Heartbleed issue, Corero conducted a review of its actively supported security products including the DDS 5500 and IPS 5500. At this time, we have completed our comprehensive review and have determined that Corero security products do not exhibit the Heartbleed vulnerability.
If you have any questions or concerns please contact Corero Customer Services: 978.212.1500 -> Option 2 or email: Customer.Services@corero.com.