Revision as of 19:54, 25 September 2014 edit Qwertyus (talk \| contribs) Extended confirmed users 31,640 edits name not given by RH; intro for the general public ← Previous edit		Revision as of 19:57, 25 September 2014 edit undo Qwertyus (talk \| contribs) Extended confirmed users 31,640 edits explanation of severity (do we have an article that this can link to? is there a name for this, like "shell hole" or something?) Next edit →
Line 1: {{current event\|date=September 2014}} '''Shellshock''' is the name of a serious security vulnerability in [[Bash (Unix shell)\|BASH]], a command interpreter used by many [[web server]]s running [[Apache HTTP Server\|Apache]] and/or [[Secure Shell\|SSH]]. Attackers may execute arbitrary commands on affected servers. The vulnerability, was publicly disclosed on 24 September 2014 by Huzaifa Sidhpurwala of [[Red Hat]].<ref>{{Cite web \| author = Huzaifa Sidhpurwala \| title = Bash specially-crafted environment variables code injection attack

Shellshock (software bug): Difference between revisions