Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-7543

Опубликовано: 19 янв. 2017
Источник: debian
EPSS Низкий

Описание

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
bashfixed4.4-1package
bashfixed4.3-11+deb8u1jessiepackage

Примечания

  • https://www.openwall.com/lists/oss-security/2016/09/26/9

  • Default shell is dash which is not vulnerable, but bash in Jessie and

  • Wheezy are affected.

  • Fixed by (4.3): https://ftp.gnu.org/pub/gnu/bash/bash-4.3-patches/bash43-048

EPSS

Процентиль: 29%
0.00101
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-7543

CVSS3: 8.4
ubuntu
почти 9 лет назад

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

redhat логотип

CVE-2016-7543

CVSS3: 7
redhat
около 9 лет назад

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

nvd логотип

CVE-2016-7543

CVSS3: 8.4
nvd
почти 9 лет назад

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

github логотип

GHSA-6xh6-xvh9-w4h5

CVSS3: 8.4
github
больше 3 лет назад

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

suse-cvrf логотип

openSUSE-SU-2018:1419-1

suse-cvrf
больше 7 лет назад

Security update for bash

EPSS

Процентиль: 29%
0.00101
Низкий