Heartbleed bug: IL2 Shop insecure?

[sturmkraehe]

Do we know if the shop and forum of this site is secure from the heartbleed bug inside OpenSSL?

 

http://heartbleed.com/

[FuriousMeow]

Forum isn't SSL. The SSL side of the site, the web developer would have to answer.

[taleks]

NB: I'm not security engineer and this is not official response from 1C-777.

 

All payments in IL-2 Shop are handled by payment providers such as PayPal or authorize.net.

PayPal have stated that it is not vulnerable to CVE-2014-0160, see here.

I've not found any authorize.net's press-release, but they say in twitter https://twitter.com/authorizenet they are not affected.

IL2 Shop site authentication - AFAIK - is not based on OpenSSL as well.

 

Game client uses OpenSSL, but not the versions 1.0.1x/1.0.2x, which are affected by this security bug.