August 1, 2001

Code Red Worm Scare Underscores the Need for Current, Automated Security Solutions

Security Analyzer Enables Customers to Detect and Eliminate the Vulnerability that the Code Red Worm Exploits; Provides On-Going Protection

Press Release

SAN JOSE, Calif.

In the aftermath of the Code Red scare, NetIQ Corporation (Nasdaq: NTIQ), a leading provider of e-business infrastructure management and intelligence solutions, today announced a free 14-day trial license of NetIQ Security Analyzer 4.0. Security Analyzer enables IT administrators to detect the vulnerability that the Code Red worm exploits and apply corrective action. The product may be downloaded from NetIQ's corporate Web site at

"The recent attack by the Code Red worm emphasizes the importance of deploying an automated security solution that maintains currency and provides automated protection of critical systems," said Tom Kemp, senior vice president of products at NetIQ. "NetIQ's Security Analyzer helps you secure your corporate systems and networks by automatically detecting the latest known security vulnerabilities and provides extensive reports and guidance on how to address them."

Unlike a virus, which spreads when a user opens an email attachment, the Code Red worm spreads itself without human intervention. By implementing NetIQ Security Analyzer, IT administrators are immediately notified of security vulnerabilities and given recommendations to fix problem areas, including recommendations to apply fixes and patches to the operating system. In the case of the Code Red worm, those users working with Microsoft IIS 4.0 or Microsoft IIS 5.0 enabled on Windows NT 4, Windows 2000 Professional, Server, Advanced Server and DataCenter Server, and beta versions of Windows XP are vulnerable to the worm. Microsoft has recommended that all enterprises running these servers review MS01-033 located at:

About Security Analyzer

Security Analyzer is an award-winning multi-platform vulnerability scanning and assessment product that discovers and identifies fixes by providing more than 2,300 tests for Microsoft Windows 9x, Windows NT, Windows 2000, Sun Solaris and Red Hat Linux. Systems are analyzed on demand or at scheduled intervals. The results are used to generate comparative reports, recommend security fixes and prioritize responses. For more information about NetIQ Security Analyzer, please go to

About NetIQ

NetIQ Corporation (Nasdaq: NTIQ) is a leading provider of e-business infrastructure management and intelligence for all the components of an organization's e-business infrastructure?from back-end servers, networks and directories to front-end web servers and applications. The company is headquartered in San Jose, Calif., with development and operational personnel in Houston, Texas; Raleigh, N.C.; Bellevue, Wash.; and Portland, Ore. For more information, please visit NetIQ's web site or call (408) 856-3000.

Let's Talk

Welcome, Want to talk to someone? Call our Sales team or request a call and we'll get right back to you.

  • Sales: (888) 323-6768

For support information, please visit Technical Support.

Amy Sachrison
Media and Analyst Relations

Phone: (713) 418-5368