ShellShock Communication

On September 24, 2014, vulnerability in the Unix Bash Shell was announced.

Its official designation is CVE-2014-6271, but it has been widely advertized in the media as “ShellShock”.
In the aftermath of the announcement, similar bugs have been found and logged as CVE-2014-7169, CVE-2014-7186 and CVE-2014-7187. Bash is used as a command line interpreter on many UNIX, Linux and Mac OS X operating systems.

After the announcement of the vulnerability, Agfa Healthcare has performed an assessment of its products, services and IT infrastructure and performed corrective actions where needed. No evidence of exploit was discovered.
At this moment, Agfa Healthcare products and hosted websites are not vulnerable to the ShellShock bug.

For more information about ShellShock, please visit the following resource: ShellShock vulnerability summary CVE-2014-6271 (NIST) at http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271

polygon_security_business