[Cialug] Shellshock Bash Remote Code Execution Vulnerability
Jeffrey Ollie
jeff at ocjtech.us
Thu Sep 25 13:13:39 CDT 2014
On Thu, Sep 25, 2014 at 1:01 PM, Scott Yates <Scott at yatesframe.com> wrote:
> Thanks Paul, that makes more sense and gives me more to go on.
>
> Side note: Are they REALLY just blankly accepting client side input and
> stuffing them into environment variables? Almost feels like a SQL
> injection attack but on bash.
>
Yes, they don't seem to explicitly say so, but at least one method for
remotely triggering the bug is that mod_cgi on Apache takes the values of
various HTTP headers and stuffs them into environment variables.
--
Jeff Ollie
More information about the Cialug
mailing list