Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-6271 PoC — GNU Bash 远程代码执行漏洞

Source
https://github.com/teedeedubya/bash-fix-exploit
Associated Vulnerability
Title:GNU Bash 远程代码执行漏洞 (CVE-2014-6271)
Description:GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka "ShellShock." NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix.
Description
Ansible role to check the CVE-2014-6271 vulnerability
Readme
# bash-fix-exploit

- A tiny role that checks to see if the CVE-2014-6271 exploit is still valid
- Use at your own risk...
- Read about the exploit here: https://community.rapid7.com/community/infosec/blog/2014/09/25/bash-ing-into-your-network-investigating-cve-2014-6271 
## Requirements

- Assumes that you're using bash as your shell

## Role Variables

- update_bash - defaults to "no". If "yes", then bash will be updated on RedHat based systems

## Dependencies

None

## Example Playbook

```yaml
- hosts: all
  sudo: yes
  roles:
    - role: bash-fix-exploit 
```

## License

MIT

## Author Information

Tony Welder
tony.wvoip@gmail.com
File Snapshot

 [4.0K]  /data/pocs/934a7d7bd71c6ccb7dea9e89e6961b906238aceb
├── [4.0K]  defaults
│   └── [  69]  main.yml
├── [1.1K]  LICENSE
├── [4.0K]  meta
│   └── [ 289]  main.yml
├── [ 646]  README.md
├── [4.0K]  tasks
│   └── [ 422]  main.yml
└── [  57]  test.yml

3 directories, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →