Advisory: ShellShock Bash Vulnerability

Please be informed that ANTlabs products are not affected by “ShellShock” Bash Vulnerability. This is mainly because our products are appliance-based and do not use bash for console shell access. Administrators use ANTlabs’ own customised shell (that is not subject to the ShellShock Bash vulnerability) to access the command line interface. In addition, these products do not use or permit the execution of CGI scripts.

This advisory is applicable to the following ANTlabs Products:

• SSG 3 / SSG 4
• SG 4
• InnGate 3
• IG 3100
• Tru’Auth
• Tru’Auth CMS
• Tru’IP DNS
• Tru’IP DHCP
• Tru’IP CMS