Shellshock Continues: More Vulnerabilities Discovered

Shellshock

Security administrators are still busy chasing down patches for Shellshock, the Bash vulnerability that hit the web last week.


Bash is a system software used by millions of computers, so the vulnerability opens up the possibility that an attacker could execute arbitrary commands on any machine running it.



The biggest target is web servers; for now, average users don't have much to fear. But as security researchers look into aspects of the Bash codebase, more dangerous vulnerabilities are starting to crop up.


Google's Michal Zalewski, also known as "lcamtuf", has found two additional common vulnerabilities and exposures (CVE) in the Bash parser in the last few days alone. Read more...


More about Security, Tech, Apps Software, Bash, and Shellshock

Comments