vKey is exposed to heartbleed since it is based upon Ubuntu 12.04 which uses OpenSSL 1.0.1e. The heartbleed exploit has been resolved in OpenSSL 1.0.1g (released Apr. 7).
The heartbleed exploit is only a risk for vDM (vKey Device Manager) and in cases where end-users initiate the vKey shared desktop and screen help desk function. This function relies on OpenVPN software which uses OpenSSL.
DLS Technology Corporation has completed integration of OpenSSL 1.0.1g for vDM. DLS Technology is in process of releasing a base software update for all vKey Devices. To assist vKey customers in deploying this update, DLS Technology is in process of testing a browser-based update. vKey customers will be advised of how to receive and deploy the vKey OS patch.
- Email Us
Call Us @ 888.297.1225
Mon - Fri 09:00-17:00 EST