The Shellshock Bug - Unintended Consequences in Reuse of Software
Published on September 29, 2014
Last week a serious, remotely exploitable vulnerability was discovered in the widely deployed Bourne Again Shell (BASH)*.
The vulnerability exists already for a long time (now), and is present due mainly to wrong standard configuration and enabling of unnecessary features.
The technical background is analysed by ENISA in a new flash note.
*BASH: a command line interpreter. It is factually present in every Linux- and Mac-System in the internet, as well as in many embedded devices and home routers.
Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!
News items:
http://www.enisa.europa.eu/media/news-items/news-wires/RSS
PRs:
http://www.enisa.europa.eu/media/press-releases/press-releases/RSS