Good morning, 23.20.60.138.
Today is friday the 18th of August 2017. The time is 07:02:17 and it's week number 33.

(2014-09-25) Status for the Shellshock vulnerability

I'm investigating the possible impact of the latest critical vulnerability found in the Bash command parser on The ERICADE Network. There are no indications of any successful attack so far. I will report back as soon as possible with the status...

As the servers do not accept SSH-connections from any host directly from the Internet, I consider the risk at this time to be low to medium.

Here are some links covering the subject:
http://blog.erratasec.com/2014/09/bash-shellshock-bug-is-wormable.html

https://community.qualys.com/blogs/securitylabs/2014/09/24/bash-remote-code-execution-vulnerability-cve-2014-6271

https://news.ycombinator.com/item?id=8361574


Posted: 2014-09-25 by Erik Zalitis
Changed: 2014-09-25 by Erik Zalitis

News archive