Remediating Shellshock with IBM Endpoint Manager

Have you been affected by the software bug Shellshock? If so, here's how you can use IBM Endpoint Manager to quickly respond and remediate impacted endpoints.

Before you can respond, you first need to identify every system within your organization (on and off your network) that is affected by this vulnerability. IBM Endpoint Manager can very quickly determine which endpoints - servers, workstations and others - are vulnerable to Shellshock and are running a vulnerable version of the Bash shell. 

Once the vulnerable endpoints have been identified, IBM Endpoint Manager can rapidly apply patches across multiple operating systems impacted by Shellshock. Affected systems include UNIX, Linux, Mac OSX, Solaris, CentOS 5 and 6, RHEL 5 and 6, zLinux, SLE 11 and SLE 11 System z and Ubuntu. Not only is Endpoint Manager fast, it's effective with a 98 percent first pass patch success rate.

Endpoint Manager provides security policy compliance support for more than 100 platforms out of the box. This means you only need one solution to respond to Shellshock across your entire environment. In addition, Endpoint Manager provides real-time visibility into the status of your endpoints and confirmation to the administrator that the patch has been applied successfully. 

As the first line of defense against various attack points, Endpoint Manager minimizes exposure and vulnerabilities. Additionally, Endpoint Manager helps ensure endpoints stay in compliance with your security policy. And by automating remediation, Endpoint Manager helps you close the security loop by supporting the response phase of IBM's Threat Protection.

Want to learn more about IBM Endpoint Manager and how it combats advanced threats? Read the IBM white paper or leave me a comment below. 

The Dynamix IBM Security team contributed to this blog post.

Add new comment