NNSquad - Network Neutrality Squad
[ NNSquad ] Bug in Bash shell creates big security hole on anything with *nix in it
Bug in Bash shell creates big security hole on anything with *nix in it
Could allow attackers to execute code on Linux, Unix, and Mac OS X
(Ars): http://arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/
"The bug, discovered by Stephane Schazelas, is related to how Bash
processes environmental variables passed by the operating system or by
a program calling a Bash-based script. If Bash has been configured as
the default system shell, it can be used by network-based attackers
against servers and other Unix and Linux devices via Web requests,
secure shell, telnet sessions, or other programs that use Bash to
execute scripts."
- - -
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Founder:
- Network Neutrality Squad: http://www.nnsquad.org
- PRIVACY Forum: http://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility: http://www.pfir.org/pfir-info
Member: ACM Committee on Computers and Public Policy
I am a consultant to Google -- I speak only for myself, not for them.
Lauren's Blog: http://lauren.vortex.com
Google+: http://google.com/+LaurenWeinstein
Twitter: http://twitter.com/laurenweinstein
Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________
nnsquad mailing list
http://lists.nnsquad.org/mailman/listinfo/nnsquad