| Details | |
|---|---|
| Alert Id | 10048 |
| Alert Type | Active |
| Status | beta |
| Risk | High |
| CWE | 78 |
| WASC | 31 |
| Technologies Targeted | All |
| Tags |
OWASP_2017_A09 OWASP_2021_A06 WSTG-V42-INPV-12 |
Summary
The server is running a version of the Bash shell that allows remote attackers to execute arbitrary code
Solution
Update Bash on the server to the latest versionOther Info
References
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271
- http://www.troyhunt.com/2014/09/everything-you-need-to-know-about.html