Main Vulnerability Database Exploits ID:865 - Exploit for Command injection in Bash - CVE-2014-7169

ID:865 - Exploit for Command injection in Bash - CVE-2014-7169

Published: March 18, 2020

Vulnerability identifier: #VU5294

Vulnerability risk: Critical

CVE-ID: CVE-2014-7169

CWE-ID: CWE-77

Exploitation vector: Remote access

Vulnerable software:
Bash

Link to public exploit:

https://www.exploit-db.com/exploits/35115/

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary commands on the target system.

The weakness exists due to an incomplete fix related to malformed function definitions in the values of environment variables. By using multiple attack vectors (DHCP, HTTP, SIP, FTP, and SMTP) involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, a remote attacker can inject and execute arbitrary commands.This vulnerability exists due to incomplete fix for vulnerability #1 (CVE-2014-6271).

Exploitation example:

env X='() { (a)=>\' bash -c "echo date"; cat echo

Successful exploitation may allow an attacker to gain complete control over vulnerable system.

Note: this vulnerability was being actively exploited.

Remediation

Update GNU Bash to version 4.3 bash43-027.

ID:865 - Exploit for Command injection in Bash - CVE-2014-7169

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human