Shellshock – am I vulnerable?
If I have a VPS and just connect to it using SSH - am I vulnerable ?
or am I vulnerable through my home router ? I have no idea about the firmware on it. Is it possible that shellshock might have an effect on it ?
in short - what sort of use cases I should worry about ? I have not seen anybody explaining possible attack vectors about this thing yet... anybody have an idea ?
2 comments
[ 2.4 ms ] story [ 9.6 ms ] threadTo other posters. This vulnerability is so trivial (it creates a function in an environment variable), not some kind of sophisticated buffer overflow etc., that I wonder if this was once a bash feature.
Any comments?
Supposing that there's no uPNP enabled, no government trojans on it, and no script kiddies on your subnet.