Are Teradici products affected by the Ghost vulnerability (CVE-2015-0235)? (15134-2551)
Important: If you are unable to access the sign-in link or if the page navigation seems broken, force refresh your browser's cache. From Windows and Linux browsers, use Ctrl+F5. From Mac browsers, use +Shift+R.

Are Teradici products affected by the Ghost vulnerability (CVE-2015-0235)? (15134-2551)

The Ghost vulnerability only applies to the Teradici Management Console 1.x. Ubuntu has released a fix for CVE-2015-0235 (Ghost vulnerability). Concerned Management Console (MC) administrators should follow the steps below to update their MC.

Teradici recommends that you always perform a MC database backup prior to updating.

  1. Log into the MC virtual appliance using Secure Shell (SSH) or directly into the console.
    • To log into the console use Alt-F1 to change to TTY1. This TTY has a login prompt.
  2. Use the root user and password. - Note: The MC root ID and password can be found in the MC 1.10.2 Manual section 3.6
  3. Stop the PCoIP MC service with - sudo /etc/init.d/pcoveripmc stop
    • When prompted use the root password. (see MC User Guide)
  4. Update the available package version list with sudo apt-get update
  5. Install the specific update packages to resolve the Ghost vulnerability with - sudo apt-get install --only-upgrade libc-bin
    • If prompted click "y" to install the upgraded packages.
  6. Restart the virtual appliance with - sudo shutdown -r now

See also: PCoIP Management Console User Guide

Was this answer helpful?YesNo

Knowledge Base

Topic Information
  • Topic #: 15134-2551
  • Date Created: 01/30/2015
  • Last Modified Since: 01/01/2018
  • Viewed: 610