Security Notice Regarding Heartbleed Bug

Security Notice Regarding Heartbleed Bug

Recent news stories have discussed a widespread security flaw known as “Heartbleed.” Laurel Bridge Software takes security issues very seriously. We have verified that our servers are not vulnerable to this issue. Our product line similarly is not vulnerable.

A note for users of Compass™

Compass uses the Windows implementation of SSL/TLS and is not impacted by the recent OpenSSL heartbeat buffer overrun vulnerability (CVE-2014-0160). If you have assigned security certificates that may have been stolen via other applications, then, as a precaution, we recommend replacing such certificates. If you use Compass to communicate with other systems not under your control you may wish to ask if they use OpenSSL and if they have this vulnerability.

2017-12-26T17:28:44+00:00April 9th, 2014|