1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. OS Attack: GNU Bash CVE-2014-6271

OS Attack: GNU Bash CVE-2014-6271

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts of leveraging a vulnerability in GNU Bash which could lead to remote code execution.

Additional Information

GNU Bash is an sh-compatible shell.

GNU Bash is prone to a remote code execution vulnerability. Specifically, this issue occurs due to an error in the bash functionality that evaluates specially formatted environment variables passed to it from another environment. An attacker can exploit this issue to override or bypass restrictions to the environment to execute shell commands.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • GNU Bash through 4.3
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube