In April 2014 a Security Advisory was issued by the OpenSSL project notifying the public of a serious vulnerability in the encryption software used by a large number of companies. (For detailed information, visit http://heartbleed.com/.) Exacq Technologies took immediate action to assess how its products might be affected by this vulnerability.
<br>
The exacqVision S-Series uses Ubuntu 12.04 with the version of OpenSSL that could be affected. However, the vulnerability exists only if you have installed the exacqVision Web Service on your S-Series system and you are using SSL connections on the exacqVision web server, which is not the default configuration. If you have manually set up that configuration, complete the following procedure to ensure you do not have any issues. (If you are not using SSL in the web server, this procedure is optional.
<br>
Affected Versions
All exacqVision S-Series Servers manufactured before Apr 10, 2014 (including S-Series Version A, S-Series Version B-1 B-2)
Files affected: openssl, libssl1.0.0
<br>
S-Series Version B-1 and B- 2 with a Desktop
- Visit https://exacq.com/files.
Username: evsupport
Password: evsupport - Click on the Heartbleed folder and download the two files to the Desktop. Alternately, you can download them to a portable drive and save them to the server.
- Double-click each file to install.
- If you see a message stating that a newer repository is available, click OK to continue the installation.
- After the installations are complete, delete the files from the Desktop.
If you have configured SSH connections to the computer, the next time you connect you will get a Security Warning message. This is expected, and the script will update the server’s SSH keys.