UPDATE – Bash Vulnerability for Conferencing Services

Dear Conferencing Customer:

Conferencing Support continues to address the Bash vulnerability. We have inventoried and assessed our infrastructure to identify potential areas of concern, implemented a process for gathering information from our suppliers and are in the process of patching/upgrading the affected systems, applications and devices. Our assessments and scans are ongoing, and, as a precautionary measure, we continue to maintain an increased level of monitoring and surveillance of our infrastructure designed to mitigate this risk.

The following services provided by and supporting Conferencing, such as e-Meetings, MyMeetings, Conferencing Web Services Foundation, Instant Meeting Web Moderator, Internet Audio Gateway for WebEx and API integration sites, were resolved the evening of October 3rd.

The gateway associated with Open Video Communications (OVC) service is targeted for remediation in the very near future. We will advise you once this action has been taken.

Other backend Conferencing systems were remediated on the evening of October 9^th even though they posed no customer facing impact.

Further, Cisco and Microsoft have notified Conferencing Support of a security advisory for Bash issues related to the Cisco WebEx suite of products and the Microsoft® Office Live Meeting product. Cisco has provided a website where you can track their on-going updates below. Microsoft has reported that while they continue to research this issue they do not believe Microsoft Live Meeting to be impacted as it is strictly a Windows based service.

The Cisco advisory is available at the following link:

•   • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash

Microsoft has provided the following links for more information:

•   • http://www.techradar.com/news/software/operating-systems/bash-vulnerability-all-you-need-to-know-1266890

If you have any further questions or concerns, don’t hesitate to contact your Conferencing account manager for further information.

Customer questions for net conferencing products are being directed to Conferencing Support at nettech@verizon.com or 866-449-0701. Also, you may submit your inquiry via the following Contact Us link HOST: ndcmmmp02/127.0.0.1