CVE - CVE-2014-6271

CVE-ID
CVE-2014-6271	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka "ShellShock." NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20141001 NEW VMSA-2014-0010 - VMware product updates address critical Bash security vulnerabilities URL:http://www.securityfocus.com/archive/1/533593/100/0/threaded EXPLOIT-DB:39918 URL:https://www.exploit-db.com/exploits/39918/ EXPLOIT-DB:40619 URL:https://www.exploit-db.com/exploits/40619/ EXPLOIT-DB:40938 URL:https://www.exploit-db.com/exploits/40938/ EXPLOIT-DB:38849 URL:https://www.exploit-db.com/exploits/38849/ EXPLOIT-DB:37816 URL:https://www.exploit-db.com/exploits/37816/ EXPLOIT-DB:34879 URL:https://www.exploit-db.com/exploits/34879/ EXPLOIT-DB:42938 URL:https://www.exploit-db.com/exploits/42938/ FULLDISC:20141001 FW: NEW VMSA-2014-0010 - VMware product updates address critical Bash security vulnerabilities URL:http://seclists.org/fulldisclosure/2014/Oct/0 MISC:http://lcamtuf.blogspot.com/2014/09/quick-notes-about-bash-bug-its-impact.html MISC:http://packetstormsecurity.com/files/128517/VMware-Security-Advisory-2014-0010.html MISC:http://packetstormsecurity.com/files/128567/CA-Technologies-GNU-Bash-Shellshock.html MISC:http://packetstormsecurity.com/files/128573/Apache-mod_cgi-Remote-Command-Execution.html MISC:http://packetstormsecurity.com/files/137376/IPFire-Bash-Environment-Variable-Injection-Shellshock.html CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=1141597 CONFIRM:https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/ CONFIRM:http://support.novell.com/security/cve/CVE-2014-6271.html CONFIRM:https://www.suse.com/support/shellshock/ CONFIRM:http://support.apple.com/kb/HT6495 CONFIRM:http://www.novell.com/support/kb/doc.php?id=7015701 CONFIRM:https://kb.bluecoat.com/index?page=content&id=SA82 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1021272 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21685749 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21685914 CONFIRM:http://www.novell.com/support/kb/doc.php?id=7015721 CONFIRM:http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html CONFIRM:http://www.vmware.com/security/advisories/VMSA-2014-0010.html CONFIRM:https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10648 CONFIRM:https://support.apple.com/kb/HT6535 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686084 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1021279 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004879 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004897 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004898 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004915 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21685541 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21685604 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21685733 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686131 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686479 CONFIRM:http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096315 CONFIRM:https://support.citrix.com/article/CTX200217 CONFIRM:https://support.citrix.com/article/CTX200223 CONFIRM:https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=isg3T1021361 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686246 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686445 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686494 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21687079 CONFIRM:https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673&src=securityAlerts CONFIRM:http://www.qnap.com/i/en/support/con_show.php?cid=61 CONFIRM:http://www-01.ibm.com/support/docview.wss?uid=swg21686447 CONFIRM:http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 CONFIRM:http://advisories.mageia.org/MGASA-2014-0388.html CONFIRM:https://access.redhat.com/articles/1200223 CONFIRM:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673 CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10085 CONFIRM:http://linux.oracle.com/errata/ELSA-2014-1293.html CONFIRM:http://linux.oracle.com/errata/ELSA-2014-1294.html CONFIRM:https://access.redhat.com/node/1200223 CONFIRM:https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04497075 CONFIRM:https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04518183 APPLE:APPLE-SA-2014-10-16-1 URL:http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html CISCO:20140926 GNU Bash Environmental Variable Command Injection Vulnerability URL:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash DEBIAN:DSA-3032 URL:http://www.debian.org/security/2014/dsa-3032 HP:HPSBGN03117 URL:http://marc.info/?l=bugtraq&m=141216207813411&w=2 HP:HPSBHF03119 URL:http://marc.info/?l=bugtraq&m=141216668515282&w=2 HP:HPSBHF03124 URL:http://marc.info/?l=bugtraq&m=141235957116749&w=2 HP:HPSBST03122 URL:http://marc.info/?l=bugtraq&m=141319209015420&w=2 HP:HPSBGN03138 URL:http://marc.info/?l=bugtraq&m=141330468527613&w=2 HP:HPSBHF03125 URL:http://marc.info/?l=bugtraq&m=141345648114150&w=2 HP:HPSBMU03133 URL:http://marc.info/?l=bugtraq&m=141330425327438&w=2 HP:HPSBGN03141 URL:http://marc.info/?l=bugtraq&m=141383304022067&w=2 HP:HPSBGN03142 URL:http://marc.info/?l=bugtraq&m=141383244821813&w=2 HP:HPSBHF03146 URL:http://marc.info/?l=bugtraq&m=141383353622268&w=2 HP:HPSBMU03143 URL:http://marc.info/?l=bugtraq&m=141383026420882&w=2 HP:HPSBMU03144 URL:http://marc.info/?l=bugtraq&m=141383081521087&w=2 HP:HPSBST03129 URL:http://marc.info/?l=bugtraq&m=141383196021590&w=2 HP:HPSBST03131 URL:http://marc.info/?l=bugtraq&m=141383138121313&w=2 HP:HPSBST03157 URL:http://marc.info/?l=bugtraq&m=141450491804793&w=2 HP:HPSBHF03145 URL:http://marc.info/?l=bugtraq&m=141383465822787&w=2 HP:HPSBMU03165 URL:http://marc.info/?l=bugtraq&m=141577137423233&w=2 HP:HPSBMU03182 URL:http://marc.info/?l=bugtraq&m=141585637922673&w=2 HP:HPSBST03154 URL:http://marc.info/?l=bugtraq&m=141577297623641&w=2 HP:HPSBST03155 URL:http://marc.info/?l=bugtraq&m=141576728022234&w=2 HP:HPSBST03181 URL:http://marc.info/?l=bugtraq&m=141577241923505&w=2 HP:HPSBST03148 URL:http://marc.info/?l=bugtraq&m=141694386919794&w=2 HP:HPSBST03265 URL:http://marc.info/?l=bugtraq&m=142546741516006&w=2 HP:HPSBMU03217 URL:http://marc.info/?l=bugtraq&m=141879528318582&w=2 HP:HPSBMU03245 URL:http://marc.info/?l=bugtraq&m=142358026505815&w=2 HP:HPSBMU03246 URL:http://marc.info/?l=bugtraq&m=142358078406056&w=2 HP:HPSBOV03228 URL:http://marc.info/?l=bugtraq&m=142113462216480&w=2 HP:SSRT101711 URL:http://marc.info/?l=bugtraq&m=142113462216480&w=2 HP:SSRT101742 URL:http://marc.info/?l=bugtraq&m=142358026505815&w=2 HP:SSRT101827 URL:http://marc.info/?l=bugtraq&m=141879528318582&w=2 HP:HPSBGN03233 URL:http://marc.info/?l=bugtraq&m=142118135300698&w=2 HP:SSRT101739 URL:http://marc.info/?l=bugtraq&m=142118135300698&w=2 HP:SSRT101868 URL:http://marc.info/?l=bugtraq&m=142118135300698&w=2 HP:HPSBMU03220 URL:http://marc.info/?l=bugtraq&m=142721162228379&w=2 HP:HPSBST03196 URL:http://marc.info/?l=bugtraq&m=142719845423222&w=2 HP:SSRT101816 URL:http://marc.info/?l=bugtraq&m=142719845423222&w=2 HP:SSRT101819 URL:http://marc.info/?l=bugtraq&m=142721162228379&w=2 HP:HPSBST03195 URL:http://marc.info/?l=bugtraq&m=142805027510172&w=2 MANDRIVA:MDVSA-2015:164 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:164 REDHAT:RHSA-2014:1293 URL:http://rhn.redhat.com/errata/RHSA-2014-1293.html REDHAT:RHSA-2014:1294 URL:http://rhn.redhat.com/errata/RHSA-2014-1294.html REDHAT:RHSA-2014:1295 URL:http://rhn.redhat.com/errata/RHSA-2014-1295.html REDHAT:RHSA-2014:1354 URL:http://rhn.redhat.com/errata/RHSA-2014-1354.html SUSE:SUSE-SU-2014:1223 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00034.html SUSE:SUSE-SU-2014:1260 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00049.html SUSE:openSUSE-SU-2014:1238 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00040.html SUSE:openSUSE-SU-2014:1254 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00044.html SUSE:SUSE-SU-2014:1287 URL:http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00004.html SUSE:openSUSE-SU-2014:1308 URL:http://lists.opensuse.org/opensuse-updates/2014-10/msg00023.html SUSE:openSUSE-SU-2014:1310 URL:http://lists.opensuse.org/opensuse-updates/2014-10/msg00025.html SUSE:openSUSE-SU-2014:1226 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00037.html SUSE:SUSE-SU-2014:1212 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00028.html SUSE:SUSE-SU-2014:1213 URL:http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00029.html UBUNTU:USN-2362-1 URL:http://www.ubuntu.com/usn/USN-2362-1 CERT:TA14-268A URL:http://www.us-cert.gov/ncas/alerts/TA14-268A CERT-VN:VU#252743 URL:http://www.kb.cert.org/vuls/id/252743 JVN:JVN#55667175 URL:http://jvn.jp/en/jp/JVN55667175/index.html JVNDB:JVNDB-2014-000126 URL:http://jvndb.jvn.jp/jvndb/JVNDB-2014-000126 BID:70103 URL:http://www.securityfocus.com/bid/70103 SECUNIA:59737 URL:http://secunia.com/advisories/59737 SECUNIA:61641 URL:http://secunia.com/advisories/61641 SECUNIA:61676 URL:http://secunia.com/advisories/61676 SECUNIA:61700 URL:http://secunia.com/advisories/61700 SECUNIA:59907 URL:http://secunia.com/advisories/59907 SECUNIA:61283 URL:http://secunia.com/advisories/61283 SECUNIA:61485 URL:http://secunia.com/advisories/61485 SECUNIA:61503 URL:http://secunia.com/advisories/61503 SECUNIA:61552 URL:http://secunia.com/advisories/61552 SECUNIA:61565 URL:http://secunia.com/advisories/61565 SECUNIA:61603 URL:http://secunia.com/advisories/61603 SECUNIA:61633 URL:http://secunia.com/advisories/61633 SECUNIA:61643 URL:http://secunia.com/advisories/61643 SECUNIA:61654 URL:http://secunia.com/advisories/61654 SECUNIA:61703 URL:http://secunia.com/advisories/61703 SECUNIA:61711 URL:http://secunia.com/advisories/61711 SECUNIA:61715 URL:http://secunia.com/advisories/61715 SECUNIA:60947 URL:http://secunia.com/advisories/60947 SECUNIA:61188 URL:http://secunia.com/advisories/61188 SECUNIA:58200 URL:http://secunia.com/advisories/58200 SECUNIA:60034 URL:http://secunia.com/advisories/60034 SECUNIA:60055 URL:http://secunia.com/advisories/60055 SECUNIA:60193 URL:http://secunia.com/advisories/60193 SECUNIA:60325 URL:http://secunia.com/advisories/60325 SECUNIA:61065 URL:http://secunia.com/advisories/61065 SECUNIA:61128 URL:http://secunia.com/advisories/61128 SECUNIA:61129 URL:http://secunia.com/advisories/61129 SECUNIA:61287 URL:http://secunia.com/advisories/61287 SECUNIA:61312 URL:http://secunia.com/advisories/61312 SECUNIA:61313 URL:http://secunia.com/advisories/61313 SECUNIA:61328 URL:http://secunia.com/advisories/61328 SECUNIA:61442 URL:http://secunia.com/advisories/61442 SECUNIA:61471 URL:http://secunia.com/advisories/61471 SECUNIA:61550 URL:http://secunia.com/advisories/61550 SECUNIA:61780 URL:http://secunia.com/advisories/61780 SECUNIA:61816 URL:http://secunia.com/advisories/61816 SECUNIA:61855 URL:http://secunia.com/advisories/61855 SECUNIA:61857 URL:http://secunia.com/advisories/61857 SECUNIA:60024 URL:http://secunia.com/advisories/60024 SECUNIA:60063 URL:http://secunia.com/advisories/60063 SECUNIA:60044 URL:http://secunia.com/advisories/60044 SECUNIA:60433 URL:http://secunia.com/advisories/60433 SECUNIA:61291 URL:http://secunia.com/advisories/61291 SECUNIA:61873 URL:http://secunia.com/advisories/61873 SECUNIA:62312 URL:http://secunia.com/advisories/62312 SECUNIA:62343 URL:http://secunia.com/advisories/62343 SECUNIA:62228 URL:http://secunia.com/advisories/62228 SECUNIA:61542 URL:http://secunia.com/advisories/61542 SECUNIA:61547 URL:http://secunia.com/advisories/61547 SECUNIA:59272 URL:http://secunia.com/advisories/59272
Assigning CNA
N/A
Date Entry Created
20140909	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20140909)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org