6 matches found
CVE-2014-6271
CVE-2014-6271 (Shellshock) affects GNU Bash up to 4.3, enabling remote code execution by processing trailing strings after function definitions in environment variables. Exploitation vectors include OpenSSH ForceCommand, mod_cgi/mod_cgid in Apache, DHCP client scripts, and other environment-passi...
CVE-2014-7169
CVE-2014-7169 affects GNU Bash up to 4.3, where parsing of function definitions in environment variables can be exploited to run commands or impact other attributes across privilege boundaries (notably via ForceCommand in OpenSSH sshd and via mod_cgi/mod_cgid in Apache, as well as DHCP client scr...
CVE-2014-6278
CVE-2014-6278 affects GNU Bash up to 4.3 bash43-026, where parsing of function definitions inside environment variable values is flawed, enabling remote arbitrary command execution across privilege boundaries. Documented vectors include ForceCommand in OpenSSH sshd, mod_cgi/mod_cgid in Apache, an...
CVE-2014-6277
CVE-2014-6277 affects GNU Bash up to version 4.3 with the patch level bash43-026. It abuses how Bash parses function definitions inside environment variables, enabling remote code execution or denial of service via crafted environments that cross privilege boundaries (e.g., across sshd ForceComma...
CVE-2014-7186
Technical details about CVE-2014-7186 are not provided in the connected documents. Monitor for updates.
CVE-2014-7187
Technical details for CVE-2014-7187 are not publicly available in the provided documents; monitor for updates.