Users of some versions of Protegrity Inc.’s datbabase encryption technology, Secure.Data for Microsoft SQL Server 2000, need to patch their systems. The Stamford, Conn., company late last month put out a patch to cover three buffer-overflow vulnerabilities in Secure.Data’s XPs (extended stored procedures)—procedures that are used to do encryption and decryption on databases. XPs are native database hooks, the code for which is written by Protegrity. Since being informed of the vulnerabilities, the company has tested not only the reported vulnerabilities but also all code, to “make sure this was no longer a problem,” according to Tom McGough, senior product manager at Protegrity, in Stamford, Conn. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.