3 matches found
CVE-2014-6271
CVE-2014-6271 (Shellshock) affects GNU Bash up to 4.3, enabling remote code execution by processing trailing strings after function definitions in environment variables. Exploitation vectors include OpenSSH ForceCommand, mod_cgi/mod_cgid in Apache, DHCP client scripts, and other environment-passi...
CVE-2014-7169
CVE-2014-7169 affects GNU Bash up to 4.3, where parsing of function definitions in environment variables can be exploited to run commands or impact other attributes across privilege boundaries (notably via ForceCommand in OpenSSH sshd and via mod_cgi/mod_cgid in Apache, as well as DHCP client scr...
CVE-2013-5455
Summary: IBM SmartCloud Provisioning 2.1 before FP3 IF0001 is vulnerable to an unaffordable remote-authenticated command that can delete or modify virtual-system deployments via the deployer.virtualsystems CLI (example: delete). The issue affects the CLI (not GUI) and can be triggered by commands...