SuSE 11.3 Security Update : bash (SAT Patch Number 9740)

This script is Copyright (C) 2014-2016 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

bash has been updated to fix a critical security issue.

In some circumstances, the shell would evaluate shellcode in
environment variables passed at startup time. This allowed code
execution by local or remote attackers who could pass environment
variables to bash scripts. (CVE-2014-6271)

See also :

https://bugzilla.novell.com/show_bug.cgi?id=896776
http://support.novell.com/security/cve/CVE-2014-6271.html

Solution :

Apply SAT patch number 9740.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 77850 ()

Bugtraq ID:

CVE ID: CVE-2014-6271

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now