more useful options | |
PerlMonks |
Re^2: The importance of avoiding the shellby ikegami (Patriarch) |
on Sep 29, 2014 at 06:44 UTC ( [id://1102320]=note: print w/replies, xml ) | Need Help?? |
I think ssh can specify the value for TERM, making ssh an attack vector if you can get it to execute sh/bash (directly or indirectly). But the new vulnerability is worse because it can be *any* env var, and CGI will gladly populate env vars with values of the attacker's choice for him. Any CGI script that executes bash is a dead easy attack vector. Attackers have been scanning for a CPanel script that shells out.
In Section
Meditations
|
|