Help
FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
Andy_G
Staff
Staff

Created on ‎10-17-2016 06:46 AM Edited on ‎04-06-2022 10:21 AM By Anonymous

Article Id 196203

Technical Note: [Accelops KB] How to patch Vulnerabilities: CVE-2014-6271, CVE-2014-7169

Description

 

Vulnerabilities: CVE-2014-6271, CVE-2014-7169

Here is an explanation of how the vulnerability works:
http://seclists.org/oss-sec/2014/q3/650

 

Steps to Test

1 - Please SSH into the Console of AO (Super, Worker, or Collector) as root

2 - Run the following Command:

  • env x='() { :;}; echo vulnerable' bash -c "echo this is a test"

Affected Output

vulnerable
this is a test

Patch Instructions

1 - cd /etc/yum.repos.d

2 - cp ../yum.repos.d.orig/CentOS-* /etc/yum.repos.d/

  • NOTE:  If the above copy command does not work please run the following:
  • ls -l /etc/yum.repos.d/
  • Make sure CentOS-Base.repo is in this directory
  • If the above file is there - Please move forward to step 3

3 - yum update bash -y

4 - Test Again:  env x='() { :;}; echo vulnerable' bash -c "echo this is a test"

 

Expected results

bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x'

this is a test

 

NOTE: Latest Bash patch will have the following result only:

this is a test

 
Labels:
343
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.