Test your Bash Shell

how to test for vulnerable Bash shell:

Execute the following:

$ env x='() { :;}; echo vulnerable' bash -c "echo this is a test"

on the command line, if it comes back with 

this is a test                

then the system is vulnerable

If the system returns:

 bash: warning: x: ignoring function definition attempt
 bash: error importing function definition for `x'
 this is a test

Then you are safe.

like on my system in this example: shellcode-safe

 

From Red Hat Security Blog: https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/

 

Contact Me at 314-504-3974 (Tony Zafiropoulos) if you need help in deciphering this issue.  Or Contact Us page

 

 

new RedHat Announcement at https://access.redhat.com/announcements/1210053  regarding all 6 Bash Shellcode CVE’s

 

————————-

Advertisements