Meltdown and Spectre Vulnerabilities -- Sidewinder
- Article Number: 000014992
- Products: Sidewinder, Sidewinder Appliances, Sidewinder Control Center, Sidewinder Control Center Appliances, Sidewinder Control Center Virtual Appl, Sidewinder Virtual Appliance
- Version: 8.3, 7.0, 5.3
- Last Published Date: July 10, 2018
Hotfix and Information About Other Fixes
The following patches are available to resolve these vulnerabilities:
Sidewinder download information:
7.0.1.03E16 and 8.3.2E154 prevent execution of programs not published by Forcepoint by disallowing binaries of type "scrp" from being executed, which a rogue administrator (Admn) could have done previously. Scripts are still allowed with type "scrp". The patch also provides detection of a Meltdown attack in progress, killing the offending program and auditing that the attack occurred. This patch has no performance impact.
If you are running Sidewinder or Control Center on VMware, please be sure to apply the VMware patches as well.
Sidewinder E-Patch download information:
User name : atl-963845ro
User password : 34bT4hF3AFJn
Server name : csftp.us.stonesoft.com
Control Center 5.3.2P13: Available from https://support.forcepoint.com/ClickToDownload?version=5.3.2&name=Sidewinder%20Control%20Center