| VID |
14097 |
| Severity |
40 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.oracle.com/technetwork/topics/security/alert-cve-2014-7169-2303276.html
https://www.digitalocean.com/community/tutorials/how-to-protect-your-server-against-the-shellshock-bash-vulnerability
* Platforms Affected:
GNU Bash 3.0
GNU Bash 3.1
GNU Bash 3.2
GNU Bash 4.0
GNU Bash 4.1
GNU Bash 4.2
GNU Bash 4.3 |
| Recommendation |
<CentOS, RedHat, Fedora>
Update bash by following command.
sudo yum update bash
<Ubuntu, Debian>
Update bash by following command.
sudo apt-get install bash
<Solaris>
Apply the appropriate patch, as listed in vendor security advisory at http://www.oracle.com/technetwork/topics/security/alert-cve-2014-7169-2303276.html |
| Related URL |
CVE-2014-6271,CVE-2014-7169 (CVE) |
| Related URL |
70137 (SecurityFocus) |
| Related URL |
(ISS) |
|
