Notified:  October 21, 2002 Updated: April 30, 2003

Status

Affected

Vendor Statement

ScriptLogic Corporation does not agree with CERT/CC’s assessment and does not consider this to be a vulnerability. Additionally, ScriptLogic has never received any reports from customers regarding this alleged vulnerability in any version of the software. ScriptLogic agrees with CERT’s assessment that version 4.14 of ScriptLogic does not contain this alleged vulnerability. ScriptLogic encourages all customers to use the most current version of the software. The current version is available for download at the ScriptLogic web support center located at http://www.scriptlogic.com/support/scriptlogic/sl40/default.asp.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.