Re: bash bug threat

To: debian-knoppix@lists.debian.org
Subject: Re: bash bug threat
From: Sean Alexandre <sean@alexan.org>
Date: Fri, 26 Sep 2014 07:39:59 -0400
Message-id: <[🔎] 20140926113959.GA7596@tuzo>
In-reply-to: <[🔎] 947316f0-302c-4eac-b653-f811f48d17e9@email.android.com>
References: <[🔎] CFCB825966B54C65A5F314F5E10234B3@Quad> <[🔎] CAO4+coaQBy7foHg+8D-3+-fjcKmRECbgBKuON8GPZoyiWVK9Pw@mail.gmail.com> <[🔎] 947316f0-302c-4eac-b653-f811f48d17e9@email.android.com>

DHCP clients are vulnerable on networks with malicious DHCPD responses. The
responses don't even need to come from an actual DHCPD server, and can come
from another client on the network. DHCP on clients typically runs as root,
so this gives root access.

Shellshock DHCP RCE Proof of Concept
https://www.trustedsec.com/september-2014/shellshock-dhcp-rce-proof-concept/

Hacker News discussion:
https://news.ycombinator.com/item?id=8369443

On Fri, Sep 26, 2014 at 09:42:30AM +0200, Klaus Knopper wrote:
> The bash environment variable bug has, to the best of my knowledge and after
> reading the reports and experimenting, NO practical relevance to Knoppix and
> no other end user Linux distribution, even when running apache or sshd.

Reply to:

References:
- bash bug threat
  - From: "Jim Pritchett" <jpritchett1@charter.net>
- Re: bash bug threat
  - From: Harshad Joshi <firewalrus@gmail.com>
- Re: bash bug threat
  - From: Klaus Knopper <debian-knoppix@knopper.net>

Prev by Date: Re: bash bug threat
Next by Date: Re: Discussion? (Re: Knoppix 7.4.x CD)
Previous by thread: Re: bash bug threat
Next by thread: Standby issues on 7.4.1
Index(es):
- Date
- Thread