Intralinks Update on the Bash Bug
The Bash Bug exists in the Bash command shell, a widely used application, and could potentially allow an attacker to load malware on a system or steal data.
27 September 2014
Many of you will have read news reports about the Shellshock/Bash Bug, a vulnerability that affects any Unix-based computer, including those running Mac OS X or Linux. The Bash Bug exists in the Bash command shell, a very widely used application, and could potentially allow an attacker to load malware on a system or steal data, among other things.
Intralinks is currently investigating the impact of the Bash Bug on our environment. To date, we have determined that all Internet-accessible systems containing customer data are not vulnerable. As a precaution, we are taking steps to prevent attack traffic reaching the Intralinks Platform, and we are identifying, patching and mitigating any potential issues.
We are aware that our external content distribution provider was vulnerable to the Bash Bug. However, they have informed us that they completed all patching to their systems prior to the public announcement of the vulnerability.
At the moment, Intralinks customers need take no action.
The Intralinks security team continues to evaluate this issue and expects to have an update by Monday, September 29th.