The Bourne Again Shell (commonly known as Bash) contains a vulnerability that attackers can exploit to format an environment variable, allowing them to specify arbitrary commands and perform remote code execution.
Shellshock is a critical vulnerability in GNU's Bash shell that gives attackers access to run remote commands on a vulnerable system via a specially crafted command. The vulnerability affects versions 1.14 to the most recent version 4.3. CVE-2014-6271 has been assigned for this issue.
Detection for in-the-wild samples exploiting this vulnerability has been added as Backdoor:Linux/ShellShock.A in database update Hydra 2014-09-26_01. The Threat Description page can be found here: Backdoor:Linux/ShellShock.
This advisory will be updated as more information becomes available.
Note: Products and platforms not listed in this advisory are NOT affected by Shellshock.
The following products/platforms are affected and are already patched.
Product/Platform | Requires User Action? (Y/N) | Remarks |
---|---|---|
F-Secure Messaging Security Gateway 6.3.0 – 7.5.0 | Yes | Verify that patch has been installed in the appliance. |
F-Secure Protection Service for Email 6.3.0 – 7.5.0 | Yes | Verify that patch has been installed in the appliance. |
The following products/platforms are not affected but require user interaction.
Product/Platform | Remarks |
---|---|
F-Secure Linux Security |
|
F-Secure Internet Gatekeeper |
|
F-Secure Internet Gatekeeper Virtual Appliance (IGK VA) |
|
F-Secure Scanning Reputation Server Virtual Appliance (SRS VA) |
|
Date Issued: 2014-09-30
Date Last Modified: 2014-09-30