Shellshock Bash Bug Vulnerability Patching and Checking

A newly discovered bug allows attackers to cause vulnerable versions of Bash to execute arbitrary commands. This can allow an attacker to gain unauthorized access to a computer system.

To find out if your server / system is vulnerable, login to terminal and run the following command line:
env x='() { :;}; echo vulnerable' bash -c 'echo hello'

If you are vluenrable, you will get the following output:
vulnerable
hello

If you are not vulnerable, you will receive the following output:
bash: warning: x: ignoring function definition attempt bash: error importing function definition for `x' hello

The only way to patch your servers against this bug is to update your current system package to the latest version.
Here is how to update your system:
Run the command yum clean all then run yum update

To check your current system package, run the command rpm -qa bash
  • 165 Users Found This Useful
Was this answer helpful?

Related Articles

Disable SSH Password Authentication on Server.

It is recommended to disable SSH password authentication on your server to enhance security once...

Disable SSH Password Authentication on Server.

It is recommended to disable SSH password authentication on your server to enhance security once...

Secure your servers against POODLE vulnerability for cPanel servers.

On October 14, 2014 Google has discovered a vulnerability in SSL V3.0 called POODLE that allows...

How to secure your browser against POODLE vulnerability.

On October 14, 2014 Google has discovered a vulnerability in SSL V3.0 called POODLE that allows...

How to update your system using yum

Connect to your server via SSH as root.Run the following command linesyum clean allyum...