The ShellShock Bug
Impact: High
Description
Shellshock, also known as Bashdoor is a bug in Unix Bash shell that allows an attacker to execute arbitrary commands and gain unauthorized access using Bash.
Recommendation
Upgrade the Bash to the latest stable version.
References
- Wikipedia: Shellshock (software bug)
- CVE-2014-6271
- CVE-2014-7169
- CVE-2014-6277
- CVE-2014-6278
- OWASP 2017-A9
- OWASP 2021-A6
- CWE-77
- OWASP 2017-A1
- OWASP 2021-A3
- CWE-20
👉 You might also like:
Drupal 'Drupalgeddon2' Remote Code Execution - CVE-2018-7600
Joomla! 1.5 < 3.4.5 RCE - CVE-2015-8562
Apache 2.4.49 Path Traversal and RCE - CVE-2021-41773, CVE-2021-42013
WordPress Plugin Wpfilemanager 6.8 RCE - CVE-2020-25213
Last updated on June 08, 2021