Security

How to fix Shellshock bash vulnerability

0

On Sep 24, 2014, a GNU Bash vulnerability with name of Shellshock or the “Bash Bug”, was disclosed. the vulnerability allows remote attackers to execut code given certain conditions by passing strings of code following environment variable assignments

You can find more details about the vulnerability on CVE-2014-6271 and CVE-2014-7169

 

Check System Vulnerability

On any system that is running bash you may check the ShellShock vulnerability by running the following command :

env VAR='() { :;}; echo Bash is vulnerable' bash -c "echo Bash Test"
“echo Bash is vulnerable” is where the remote attacker can inject malicious commands , if you see the following command your Bash is vulnerable and you need to update it .

Bash is vulnerable
Bash Test

 

Otherwise , if you’re not seeing “Bash is vulnerable” as output of command ,your version of bash is not vulnerable .

(more…)

Critical Vulnerability in Windows RDP

0

Hello All, This is a notice of an active security alert which could pose a threat to your server with operating system of Microsoft Windows. Please see the alert below: “Yesterday, during Microsoft’s Patch Tuesday they announced a patch for a critical vulnerability in Windows Remote Desktop. If exploited, the vulnerability would allow anyone to remotely run commands on your server. This bug affects all versions of Windows (XP – 7/2008 R2) If you have a server or workstation running RDP please patch it now. There currently is no known exploit, but Microsoft believes there will be one in the next 30 days. However, it is very likely there will be something sooner. A temporary fix is to enable NLA (Network Layer Authentication). This would require the attacker to have valid login credentials, however if successfully exploited the remote commands would run as the SYSTEM user and not the user authenticated.” The patch is available from Windows Update and there are manual patches linked below. http://technet.microsoft.com/en-us/security/bulletin/ms12-020 http://blogs.technet.com/b/srd/archive/2012/03/13/cve-2012-0002-a-closer-look-at-ms12-020-s-critical-issue.aspx   Thank you for your review.

Go to Top