Shellshock
Customers have asked if our products are vulnerable to this exploit. Here is a summary.
Presentation Recorders: No. The “bash” program is not used. We use the “ash” shell from the BusyBox process and this is not vulnerable.
Presentation Servers: All Presentation Servers are configured to do automatic updates, and new versions of “bash” should already be installed unless the server is not connected to the internet. All Cloud servers have been updated with a non-vulnerable “bash”.
Telepresenter M4: The current release uses a vulnerable version of “bash”. We are researching if any scripts are used that could be exploited. Most activity requires a valid login and is thus protecting the unit from malicious attack. Users should update as soon as a new revision is released.
Hank