Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-6271 PoC — GNU Bash 远程代码执行漏洞

Source
https://github.com/Aruthw/CVE-2014-6271
Associated Vulnerability
Title:GNU Bash 远程代码执行漏洞 (CVE-2014-6271)
Description:GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka "ShellShock." NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix.
Readme
# CVE-2014-6271
File Snapshot

 [4.0K]  /data/pocs/00fa8faa9c9710736f7c5ceb2c13ae54ed766c0f
├── [4.0K]  Code
│   ├── [  42]  apt.sh
│   ├── [6.0K]  CVE.patch
│   ├── [ 611]  shellpoc.py
│   └── [ 776]  shell_shocker.py
├── [4.0K]  image
│   ├── [ 44K]  1.png
│   ├── [ 21K]  2.png
│   ├── [ 43K]  3.png
│   ├── [ 28K]  4.png
│   ├── [ 74K]  5.png
│   ├── [ 71K]  6.png
│   ├── [ 50K]  7.png
│   └── [ 31K]  8.png
├── [  15]  README.md
└── [6.4K]  漏洞攻防实训_CVE-2014-6271.md

2 directories, 14 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →