2 Replies Latest reply on Sep 26, 2014 6:11 AM by Bill Robinson

    What is the CVE-2014-6271 bash vulnerability, and how do I fix it?

      Need to know below details ASAP:


      1) How does the exploit affect BBSA?


      use below script to check vulnerability


      env x='() { :;}; echo vulnerable' bash -c 'BBSA says hello'

      2) Does it effect any install scripts of the BBSA installers in any way ?

      3) Can BBSA deployment be used to exploit this vulnerability by injecting script code to capture environment variables ?

      4) Can this vulnerability be discovered using BBSA compliance module ?

      5) Need ready to deploy vulnerability fix packages (bladelogic zip kits) from BMC to distribute on the target servers as soon as the fix is available.