Shellshock - What Is It And How To Protect?

[rugk 397]

A serious software vulnerability called the “Bash Bug” or “Shellshock” has just come to light and it affects a wide range of computers and digital devices, many of which will need to be fixed to prevent them leaking information or being taken over by malicious persons.

The official name of this vulnerability is the GNU Bash Remote Code Execution Vulnerability (CVE-2014-6271) and it is a serious one, on a par with Heartbleed [...]

 

What to do about Shellshock Bash bug on Mac OS X, web servers, routers, and more - WeLiveSecurity

What is Shellshock and does ESET protect me from it? - ESET knowledgebase

Edited September 29, 2014 by rugk

[rugk 397]

Okay, there also are some threats that seems to exploit ShellShock.

https://twitter.com/avtestorg/status/515880094360170498

 

According to AV-Test ESET detects this trojan as Linux_DDoS.M.

Edited September 29, 2014 by rugk

[Miyagi 19]

Thank you rugk and ESET for keeping us safe!

[rugk 397]

Yeah you're welcome.

 

Now there is also a complete Wikipedia article about it: https://en.wikipedia.org/wiki/Shellshock_%28software_bug%29

Edited September 29, 2014 by rugk