Fortify integrates intellectual property from the Secure Software acquisition

Fortify Software announced the release of a major update to the Fortify Secure Coding Rulepacks. The update includes the integration of intellectual property obtained from Fortify’s acquisition of Secure Software as well as coverage of critical vulnerabilities, such as JavaScript Hijacking, that pose a growing threat to modern software systems.

Specifically, this rulepack update:

– Incorporates intellectual property from the Secure Software CodeAssure Knowledgebase
– Detects the use of Ajax frameworks that are vulnerable to JavaScript Hijacking, including versions of Google Web Toolkit (GWT), Direct Web Remoting (DWR) and Microsoft ASP.NET AJAX (Atlas)
– Provides detailed remediation advice to help developers secure Web 2.0 applications
– Increases security coverage specific to Java 1.5 and the java.security package
– Includes a variety of enhancements for software written in C and C++, including superior support for the GLib, Microsoft Windows, Pthread, and Sun RPC APIs