New Threats for Mac, Windows, and Android! A brand new vulnerability has been discovered that will have widespread impacts. The vulnerability, known as, is found in Bash, the dominant shell for Unix and Linux (default), and can also be found in Mac OS X, some Windows server deployments, and even Android. It enables remote code injection of arbitrary commands without authentication, which can then allow malicious code execution that could be used to take over an operating system, access confidential data, or set the stage for future attacks. more information from NIST here: web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271 web.nvd.nist.rsvp1/s1dbaahsqiDk NIST rates this a 10 (out of 10) on the severity score, based on the fact that it is widespread and common, easy to execute an attack (low complexity) and requires no authentication when exploiting Bash via CGI scripts. Any organisation or user that has bash enabled on a server, desktop, or device is affected by this vulnerability. This includes the over 500 million web servers on the Internet today. As well, end-users’ accessing web sites or services being run on affected servers are vulnerable to their personal and business information falling into the wrong hands. As always Make sure you have the latest updates for your computer and server operating systems, Internet Security, and of course backups!
Posted on: Fri, 26 Sep 2014 14:46:21 +0000
Trending Topics
Recently Viewed Topics
© 2015