BindView First to Provide Security Solution that Defends Against BIND Vulnerabilities; New bv-Control RapidFire Update Available for Download from BindView Web Site.Business/Technology Editors
HOUSTON--(BUSINESS WIRE)--Jan. 30, 2001
BindView Corporation (NASDAQ NASDAQ
in full National Association of Securities Dealers Automated Quotations
U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : BVEW BVEW Binary View ), a leading provider of IT administration and security management solutions, announced today it has made available free software that not only identifies the buffer overflow A common cause of malfunctioning software. If the amount of data written into a buffer exceeds the size of the buffer, the additional data will be written into adjacent areas, which could be buffers, constants, flags or variables. security flaw in the Berkeley Internet Name Daemon Pronounced "dee-mun" as in the word "demon," it is a Unix program that executes in the background ready to perform an operation when required. Functioning like an extension to the operating system, a daemon is usually an unattended process that is initiated at startup. (BIND) server, but also offers instructions for closing the threat created as a result of the vulnerability. The security solution is only available via a RapidFire Update to BindView's bv-Control for Internet Security software that scans for hundreds of security vulnerabilities, including the newly discovered threat to BIND servers. The RapidFire Update, as well as a trial version of bv-Control for Internet Security, is available immediately at BindView's Web site at www.bindview.com/downloads/form.cfm.
The CERT Coordination Center The CERT Coordination Center was created by DARPA in November 1988 after the Morris worm struck. It is a major coordination center in dealing with internet security problems. at Carnegie Mellon University Carnegie Mellon University, at Pittsburgh, Pa.; est. 1967 through the merger of the Carnegie Institute of Technology (founded 1900, opened 1905) and the Mellon Institute of Industrial Research (founded 1913). and the Covert Labs at PGP (Pretty Good Privacy) A data encryption program from PGP Corporation, Palo Alto, CA (www.pgp.com). Published as freeware in 1991 and widely used around the world for encrypting e-mail messages and securing files, PGP is available for commercial use and as freeware for Security jointly announced the discovery of a vulnerability in the BIND server, software that is a core part of the Domain Name System (DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the ), and results in remote attackers gaining full access to the computer, including any DNS databases resident on the server. Attackers can leverage this access into more sophisticated attacks or simply use the DNS server as a springboard for future attacks.
BindView's elite security team, the RAZOR Team, developed a RapidFire Update, the first security solution that addresses this new vulnerability. The RapidFire Update detects vulnerable versions of BIND and instructs users on how to close this very serious security hole.
BindView's bv-Control for Internet Security finds and closes security holes that hackers use to break into servers, workstations and other network devices. The product is part of the bv-Control Security Management Suite that provides internal and external auditing, assessment and analysis capabilities. Its innovative RapidFire mechanism allows new security checks to be automatically, securely, and immediately added as new vulnerabilities surface. This mechanism, combined with ease of use and the robust functionality of the product, help ensure a safer networked computing environment.
"This latest vulnerability threatens every Internet user and puts every corporate network at risk," said Eric Pulaski, chief technology officer at BindView. "BindView's security team understands the urgency in developing and providing immediate solutions that can protect IT networks. We are very pleased that the RAZOR Team was the first to develop a solution that addresses these vulnerabilities."
About BindView Corporation
BindView, the leader in the vulnerability assessment market, provides software solutions which enhance business performance by helping to ensure the integrity of the IT infrastructure. BindView's comprehensive software offerings secure and simplify the management and administration of network operating systems, directories and related applications. By enabling corporate IT professionals to effectively leverage their existing technologies, BindView's award-winning products play a critical role in achieving business goals. More than 10 million licenses of BindView's solutions have been shipped worldwide to approximately 5,000 companies, including more than 75 of the Fortune 100 and 24 of the largest 25 U.S. banks. Contact BindView via e-mail at email@example.com or visit BindView's World Wide Web site at http//www.bindview.com. BindView can also be reached at (800) 749-8439 or at (713) 561-4000.
Editors Note: BindView(R), the BindView logo, and the BindView product names used in this document are trademarks of BindView Development Corporation, which may be registered in one or more jurisdictions. The names of products of other companies mentioned in this document, if any, may be the registered or unregistered trademarks of the owners of the products.
Statements in this news release not based on historical fact are "forward-looking" statements pursuant to the safe harbor Safe Harbor
1. A legal provision to reduce or eliminate liability as long as good faith is demonstrated.
2. A form of shark repellent implemented by a target company acquiring a business that is so poorly regulated that the target itself is less attractive. provisions of the Private Securities Litigation Reform Act The Private Securities Litigation Reform Act of 1995 (PSLRA) implemented several significant substantive changes affecting certain cases brought under the federal securities laws, including changes related to pleading, discovery, liability, class representation and awards fees and of 1995. Actual results could differ materially because of factors such as, for example, the risks associated with competition within the network management software industry, with rapid technological change, and with BindView's development of and the market's acceptance of new products. Other such factors include the risk factors and other matters described from time to time in BindView's Form 10-K Form 10-K
A report required by the SEC from exchange-listed companies that provides for annual disclosure of certain financial information.
See 10-K. filings, Form 10-Q Form 10-Q
See 10-Q. filings, and other periodic filings with the Securities and Exchange Commission.