GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka ShellShock. NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Detections

Analytics

Qnap QTS Bash OS Command Injection (CVE-2014-6271)

critical Tenable OT Security Plugin ID 502519

Version 1.4

Version 1.3

Version 1.2

Version 1.1

Version 1.4 Oct 18, 2024, 9:34 AM CEA reference Plugin Feed: 202410180934
Version 1.3 Oct 17, 2024, 5:44 PM CISA reference Plugin Feed: 202410171744
Version 1.2 Oct 17, 2024, 7:13 AM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploit framework core" set to "True") Exploit attributes ("Exploit framework metasploit" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202410170713
Version 1.1 Oct 16, 2024, 7:31 PM New Plugin Feed: 202410161931