Severe BASH Vulnerability discovered in Unix based systems.
-
Wednesday, 24th September, 2014
-
21:13pm
The Holodyn team has patched all of our client servers in response to the recent threat reported today to the Red Hat team. We strongly recommend that anyone responsible for the security of a Unix / Linux based web serer check and patch their copy of BASH if necessary.
Learn more about the vulnerability here:
https://access.redhat.com/node/1200223Red Hat has been made aware of a vulnerability affecting all versions of the bash package as shipped with Red Hat products. This vulnerability CVE-2014-6271 could allow for arbitrary code execution. Certain services and applications allow remote unauthenticated attackers to provide environment variables, allowing them to exploit this issue.
Check if you are vulnerable from a command prompt by executing:
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
Patch your system using the YUM package managerL
yum clean all
yum -y update bash
