Attachmate Information for VU#720951

OpenSSL TLS heartbeat extension read overflow discloses sensitive information



Vendor Statement

Some Attachmate products with specific versions are affected by the
CVE-2014-0160 OpenSSL 'Heartbleed' vulnerability when TLS protocol
connections are used.  All affected products now have either new versions
or hot fixes available.

Attachmate maintains the following technical note about affected and
non-vulnerable versions:

In addition, Security Updates technical notes are also available for
Security Updates and Reflection for the Web or Reflection Security Gateway
Security Updates and Reflection
Security Updates and Reflection for Secure IT
Security Updates and EXTRA!
Security Updates and Reflection 2014 or Reflection 2011
Security Updates and INFOConnect
Security Updates and Verastream

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References


There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.