Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

New ShellShock vulnerability. Are consumers directly affected? Probably not.


  • Please log in to reply
1 reply to this topic

#1 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,593 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:35 PM

Posted 25 September 2014 - 05:21 PM

A new vulnerability titled CVE-2014-6271 has been discovered in the Bash shell for Unix and Linux operating systems that allows attackers to perform remote code execution on affected computers. What this means, is that an attacker can run any command or program on an affected device, which essentially allows them to take control of it. This is a very serious bug as Bash is estimated to be installed on at least 500 million devices. These devices include computers, routers, printers, print servers, and anything else that may operate off of a version Linux.

Without going into specific details, the attack is performed by creating specially crafted environment variables and passing them to a program that interacts with the Bash shell. Some of the programs that are known to be vulnerable are CGI scripts on web servers, DHCP servers that utilize bash scripts, and authenticated SSH connections. Ultimately, though, any web page that utilizes a program that interacts with this Bash shell could possibly be vulnerable.

At this time there have been patches released for Bash that will fix part of this vulnerability. Unfortunately, the existing patches do not effectively patch it completely and Bash is still vulnerable. Patches should be released soon that resolve this vulnerability altogether. If you use a web server, you should check to see if you have CGI scripts enabled, and if so, disable them or replace them with another method.

For those running Windows, you have nothing to worry about unless you have installed Bash for some reason. For the vast majority of users, this is very unlikely. If you use a Mac then Bash is installed by default and affected by this vulnerability. At the same time, if you are not running a web server on your Apple then you do not have anything to worry about either, but should keep people you don't know off your computer for now. If you have a router that is affected by this vulnerability, you do not have to worry about it if you do not allow external access to the admin console. Most routers do not allow this by default.

So should you be worried? Are your computer affected?

The answer is yes and no. Most consumers' computers will not be directly affected by this vulnerability as their computers typically do not have Bash installed and can be reached remotely over the Internet. On the other hand, many servers that you connect to on the Internet will be affected. This could cause increased risk of your private information being stolen or the computers being hacked. Therefore, be extra careful for the next week or two until system administrators patch their Bash installs to resolve this vulnerability. Even more important, make sure you have an anti-virus program installed and kept up-to-date and keep an eye on your credit report in the event credentials are stolen.


BC AdBot (Login to Remove)

 


#2 NickAu

NickAu

    Bleepin' Fish Doctor


  • Moderator
  • 13,268 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:127.0.0.1 Australia
  • Local time:05:35 AM

Posted 25 September 2014 - 06:06 PM

Read more about this in the Linux section..

Bug in Bash shell creates big security hole on anything with *nix in it


Edited by NickAu1, 25 September 2014 - 07:31 PM.

Arch Linux .
 
 Come join the fun, chat to Bleeping computer members and staff in real time on Discord.
 
The BleepingComputer Official Discord Chat Server!





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users