McAfee Web Gateway GNU Bash Code Injection (SB10085) (Shellshock)
Critical Nessus Plugin ID 79215
The remote host is affected by a code injection vulnerability known as Shellshock.
The remote host has a version of McAfee Web Gateway (MWG) installed that is affected by a command injection vulnerability in GNU Bash known as Shellshock. The vulnerability is due to the processing of trailing strings after function definitions in the values of environment variables. This allows a remote attacker to execute arbitrary code via environment variable manipulation depending on the configuration of the system.