Security Information

Obtaining Security Information from Network Executive Software, Inc.

Technical security information, including product-specific information about Network Executive Software, Inc. products, is distributed through several channels:

  1. On the Network Executive Software, Inc. Web site at www.netex.com. This site includes product documentation, as well as technical papers, hints, tips, and questions and answers.
  2. Via field notices. Network Executive Software, Inc. distributes information about security vulnerabilities that are important to many customers through field notices. Field notices are posted on Network Executive Software's website (www.netex.com).
  3. In most cases, Network Executive Software, Inc. will not issue a field notice until Network Executive Software, Inc. has identified a practical workaround for the particular security vulnerability. However, there may be instances when Network Executive Software, Inc. may issue a field notice in the absence of a practical work around when the vulnerability has become widely known to the "cracker" community.

    As each security vulnerability case is different, Network Executive Software, Inc. may take alternative actions in connection with issuing security field notices. Network Executive Software, Inc. may determine to accelerate or delay the release of a notice, or not issue a notice at all. Network Executive Software, Inc. does not guarantee that field notices will be issued for any or all security issues that customers may consider significant or that field notices will be issued on any specific timetable.

All aspects of these distribution procedures are subject to change without notice as well as in case-by-case exceptions. No particular level of response is guaranteed for any specific issue or class of issues.

Questions about Network Executive Software, Inc. Security Advisories and Notices:

Network Executive Software, Inc. issues Security Advisories for security issues that directly impact Network Executive Software, Inc. products and action is necessary to repair the Network Executive Software, Inc. product. Network Executive Software, Inc. issues Security Notices for issues that require a response to information posted to a public forum, or recommendations to mitigate general problems affecting network stability.

Security Notices issued by Network Executive Software, Inc. are intended to avoid releasing information that would enable attackers to exploit security vulnerabilities. If certain technical information is not included in a security notice, it may have been omitted for security reasons and will not be released. However, Network Executive Software, Inc.’s Support Department may be contacted for clarification of a Security Advisory or Notice. If you believe that you have found an error or serious omission in a security notice, please contact Support at Network Executive Software immediately.

Current listings of Security Advisories and Notices for Network Executive Software, Inc. products can be found on Network Executive’s website (www.netex.com).

Reporting Security Incidents to Network Executive Software, Inc.

  1. Emergencies: If you are under active security attack, believe that you are about to be attacked, reporting urgent security bugs, or for other security emergencies involving Network Executive Software products, contact Network Executive’s Support Department via telephone at +1 763 694 4350 and identify the call as a “Security Emergency”.
  2. Non-Emergencies: For non-emergencies such as security configuration "how-to" questions, clarifications about security field notices, software update requests, or any other non-security-related issues, contact Network Executive’s Support Department via telephone at +1 763 694 4350, via email at support@netex.com, or via Network Executive’s web problem reporting tool.

Network Executive’s Support Department will engage the appropriate personnel to assist you.

Incident Confidentiality

All Support calls are treated confidentially by Network Executive Software, Inc. All support calls are tracked in a case tracking database, so if you require elevated confidentiality, please inform the person who answers the telephone that your case is sensitive and ask that it not be recorded in the case tracking database. Your case will then be dispatched directly to the appropriate personnel on a "need-to-know" basis within Network Executive Software, Inc.

Network Executive’s email address for problem reporting (support@netex.com) is designed for the reporting of sensitive information, with access by a very limited group of designated Network Executive Software, Inc. personnel who are experienced in handling such matters. Unauthorized Network Executive Software, Inc. personnel are not allowed access to communications sent to it.

Customers are encouraged to encrypt any sensitive information that is sent to Network Executive Software, Inc.

Network Executive Software, Inc. Role in Customer Incidents

Network Executive Software, Inc. plays a supporting role in customer security incidents, offering technical support and expertise. Incident decision-making remains with the customer.

Incident Response Eligibility

Current customers receive incident response assistance for any incident in which a Network Executive Software, Inc. product plays a significant role, regardless of whether there is an identified problem with a Network Executive Software, Inc. product.

Customers receive incident response assistance for any incident involving known or reasonably suspected security vulnerability in a Network Executive Software, Inc. product at no charge.

Network Executive Software, Inc. reserves the right to determine the type and degree of assistance it may offer in connection with any incident, and to withdraw from any incident at any time. Assistance beyond that which is offered at no charge (such as forensics, law enforcement, tracking or tracing attack sources, non-Network Executive Software, Inc. products, or very specialized security skills) may be available on a time-and-materials contract basis at Network Executive Software’s then-current service rates.

Security Software Updates

Current Network Executive Software, Inc. customers should obtain security fixes through the usual update channels, generally via the web/ftp. Current customers can now register to be notified by Network Executive Software by e-mail when updates and security fixes are made available. Interested customers can sign-up on our registration page. Contact Network Executive Software Support if you have problems or questions.

Contact Summary

Security Emergencies:

Contact Network Executive Software’s Support Department via the telephone at +1 763 694 4350 and identify the problem as a “Security Emergency”.

Security Non-Emergencies:

Contact Network Executive Software’s Support Department:

Via telephone at: +1 763 694 4350

Via email at: support@netex.com

Via the web at: Report a Problem


The information in this notice is provided on an "as is" basis and does not imply any kind of guarantee or warranty of any kind. Your use of this information or any linked information is at your own risk. Network Executive Software, Inc. reserves the right to change or update this information without notice at anytime.