PT-2016-4347 · Gnu+4 · Bash+4

Andrej Nemec

Published

2016-09-16

Updated

2018-10-18

CVE-2016-0634

CVSS v3.1

7.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions bash version 4.3

Description The issue allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine, due to the expansion of 'h' in the prompt string.

Recommendations For bash version 4.3, consider restricting access to the vulnerable hostname variable until a patch is available. As a temporary workaround, avoid using the hostname variable in the prompt string to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CESA-2017_0725

CESA-2017_1931

CVE-2016-0634

MGASA-2016-0393

OPENSUSE-SU-2018_1419-1

RHSA-2017:0725

RHSA-2017:1931

RHSA-2017_0725

RHSA-2017_1931

SUSE-SU-2016:2872-1

SUSE-SU-2017:0302-1

SUSE-SU-2017:2699-1

SUSE-SU-2017:2700-1

SUSE-SU-2017_0302-1

SUSE-SU-2018:1398-1

SUSE-SU-2018:1398-2

SUSE-SU-2018_1398-1

SUSE-SU-2018_1398-2

USN-3294-1

Affected Products

Centos

Red Hat

Suse

Ubuntu

Bash

PT-2016-4347 · Gnu+4 · Bash+4

CVE-2016-0634

Weakness Enumeration

Related Identifiers

Affected Products

References · 54