ShellShock (BashBug) Security
Monday 29th September 2014 at 12:13pm by Daniel O
What is being discussed as A "deadly serious” bug is currently affecting millions of servers & computers. The bug is present on any unix based systems this includes and is not limited to linux distributions, apple computers and imbedded devices. The bug has existed for more than 20 years but was not found till a a security team at Red Hat discovered it.
The bug has been named Shellshocked it can be utilised by malicious hackers to gain control over remote computer systems. This is disastrous news for any one that has computers that are accessible/connected to the internet such as governments, banks and the military.
Many patches have been released recently that were meant to resolve the security flaw, but these according to security experts/researches are “incomplete” and do not fully resolve the issue. Shell shocked is rated the maximum CVSS score of 10/10 for impact and ease of exploitability.
For a detailed description of the bug visit: CVE-2014-6271 and CVE-2014-7169.
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7169
Two Superior is taking great effort to keep all our servers up to date with the latest patches to mitigate this security vulnerability effecting any of our clients. If you have any questions or concerns feel free to get in contact with us!
Comments
More News
Monday 29th June 2015 - We are pleased to announce the new Harbron Recruit website is now live! Harbron Recruit got in touch with us recently, as they wanted their Wordpress site moving to a bespoke platform and also wanted to extend their site with custom functionality.
Tuesday 28th April 2015 - Just as your screens and internet connections leap into the future, so should your website!
Thursday 23rd April 2015 - Google has now released it’s new mobile search algorithm and has released a handy tool to help you check your website.
Wednesday 15th April 2015 - Sometimes you find that your web browser just doesn’t have that certain feature that you want. Extensions and plugins have come to the rescue, but are the extensions or plugins you have installing from a trusted source?
Friday 10th April 2015 - Quite often when we need to write a large amount of code to complete a particular task we’ll first look to see if someone has already written an open source library which we can use instead of spending hours or days writing something that will do that same thing.