Meltdown and Spectre Side-Channel Vulnerability Guidance

For the US-Cert information alert see:

Alert (TA18-004A)
Meltdown and Spectre Side-Channel Vulnerability Guidance

 

The following information is in regards to the impact of the Forum Sentry product.

======================
Forum Sentry Hardware Appliances
======================
The Forum Sentry hardware appliances run the proprietary ForumOS.  This is a certified, hardened, Linux OS.  There is no shell or OS level access exposed with the ForumOS and thus no ability to install or run an application within the ForumOS (which is the only way to exploit these vulnerabilities).

======================
Forum Sentry Virtual Appliances
======================
The Forum Sentry virtual appliances are virtual instantiations of the ForumOS (OVA file) that run on VMware technology. There is no shell or OS level access exposed with the ForumOS and thus no ability to install or run an application within the ForumOS (which is the only way to exploit these vulnerabilities).  The VMware architecture hosting the Forum Sentry virtual appliances may be impacted but this is outside the scope of the Forum Sentry product. Even if the underlying architecture is compromised, the ForumOS itself is not vulnerable.

======================
Forum Sentry AMI
======================
The Forum Sentry AMIs for AWS EC2 are virtual instantiations of the ForumOS that run within the AWS EC2 infrastructure. There is no shell or OS level access exposed with the ForumOS and thus no ability to install or run an application within the ForumOS (which is the only way to exploit these vulnerabilities).  The AWS EC2 architecture hosting the Forum Sentry AMI may be impacted but this is outside the scope of the Forum Sentry product. Even if the underlying architecture is compromised, the ForumOS itself is not vulnerable.

======================
Forum Sentry Software Instances
======================
The Forum Sentry software instances are ports of the Forum Sentry product that run on a host OS (Windows, Linux, or Solaris).  Forum Sentry runs as a service on the host OS, not within the secure ForumOS.  The management of the host OS is outside the responsibility of Forum Systems.  The host OS should be inspected and patched on a regular basis to prevent known vulnerabilities.

0 Comments

Article is closed for comments.