风险等级: 緊急
  CVE标识符: : CVE-2014-6277
  建议日期 : 2014年9月27日

  描述

This remote code execution vulnerability exists in the parsing of function definitions in GNU Bash through 4.3 bash43-026 does not properly parse function. When exploited successfully, it may allow remote attackers to execute arbitrary code or cause a denial of service.

  解决方案

  Trend Micro Deep Security DPI Rule Number: 1006256
  Trend Micro Deep Security DPI Rule Name: 1006256 - GNU Bash Remote Code Execution Vulnerability

  其他(tā)信息

Shellshock
Shellshock: A Technical Report
About the Shellshock Vulnerability: The Basics of the "Bash Bug"
Trend Micro products and the Shellshock – Linux Bash Vulnerability (Bash Bug) [CVE-2014-6271 and CVE-2014-7169]
Get FREE protection for Shellshock