2X Remote Application Server versions 10.6 and 11.0 Updated to Address OpenSSL CVE-2014-0160 (Heartbleed Bug) By Sean Bianco on | 0
DALLAS, TX, April 14, 2014 - 2X Software, a global leader in virtual desktop and application delivery solutions, announced today that it has finalized its patch for the Heartbleed bug (vulnerability CVE-2014-0160) for its enterprise customers using 2X Remote Application Server versions 10.6 and 11.0.
According to the US Cert Alert (TA14-098A) that was documented on April 8, 2014, this vulnerability in OpenSSL could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory handling in the heartbeat extension.
“Our customers’ information security has always been our top priority, and we’ve assessed this vulnerability and applied patches to key 2X Remote Application Server in versions 10.6 and version 11.0, preventing any exploitation of this vulnerability for our customers.”
Given the severity of the SSL bug, 2X Software strongly recommends that customers install this update as soon as possible. While there haven’t been any credible reports of any criminals using this vulnerability, delaying the installation could leave your data vulnerable to being harvested.
Paul Gafa, CTO
About 2X Software
2X Software is a global leader in virtual desktop and application delivery, remote access and cloud computing solutions. Thousands of enterprises worldwide trust in the reliability and scalability of 2X products. 2X offers a range of solutions to make every company’s shift to cloud computing simple and affordable.
For additional information, visit www.2x.com or contact Giorgio Bonuccelli by email Giorgio.Bonuccelli@2x.com, phone 866-970-6262.