Signature Detail

Short Name	DHCP:SERVER:GNU-BASH-CMD-EXE
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	DHCP
Keywords	GNU Bash Environment Variable Handling Command Execution DHCP Vector
Release Date	2014/09/30
Update Number	2424
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DHCP: GNU Bash Environment Variable Handling Command Execution DHCP Vector

This signature detects attempts to exploit a known vulnerability against GNU Bash. The vulnerability is due to a failure in handling environment variables. A remote attacker can exploit this vulnerability by interacting with an application that uses Bash environment variables whose content is determined by input read from the network such as a DHCP client. If an attacker can control the value of an environment variable, then command execution can be achieved in the context of the application using the environment variable.

References

BugTraq: 70103
CVE: CVE-2014-6271
CVE: CVE-2014-7169

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

DHCP: GNU Bash Environment Variable Handling Command Execution DHCP Vector

References