We began auditing our systems for potential vulnerabilities as soon as the Heartbleed exploit became public knowledge.
The vast majority of our products and systems, including ServiceCEO Web Edition, run on Microsoft Internet Information Server, which does not use OpenSSL and thus is not vulnerable to Heartbleed. (The reporting layer of ServiceCEO runs on a different web server, but we verified that it was not vulnerable).
Our hosting provider (Sungard) has issued a statement that they have patched all vulnerable systems.
Two tools that Marathon Data Systems uses internally were vulnerable and have since been patched.For more information about the issue, please visit www.heartbleed.com