bash

2014-09-25

Page content

Author: kikadf
Vulnerable: 4.2_045-4
Unaffected: 4.2_045-5arcturus1

Stephane Chazelas discovered a vulnerability in bash, the GNU Bourne-Again Shell, related to how environment variables are processed. In many common configurations, this vulnerability is exploitable over the network, especially if bash has been configured as the system shell.

CVEs:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271