Only a few months after the wave of panic unleashed by Heartbleed, a new security flaw, known as Bash bug or Shellshock , threatens to jeopardize all devices connected to the network, from large servers to webcams.
This security flaw allows malicious code execution in the bash shell commonly -having been consulted through the command prompt on PC or Mac Terminal application for take control of the operating system and access confidential information . He “active” error when additional code is added within the lines of Bash code.
This vulnerability could affect both devices Unix and Linux , as the hardware running Mac OS X . According to Ars Technica, a test version 10.9.4 (Mavericks) Mac OS X proved that this system has “a vulnerable version of Bash.”
The software company Red Hat open source warned that “ a lot of programs running the Bash shell in the background.” This new vulnerability could mean a serious problem for both major digital companies, such as Internet business for a small scale.
Security expert Robert Graham has warned that a failure Bash larger than Heartbleed because “the bug interacts with other software in unexpected ways” because of the “huge percentage “software that interacts with the shell.
” We will never be able to catalog all the software that is vulnerable to error Bash , “says Graham. “While systems known (such as your web server) have patches, unpatched systems remain unknown, as we saw with Heartbleed: six months later, hundreds of thousands of systems remain vulnerable.”
Now you can read articles on Google Currents ITespresso: Subscribe
No comments:
Post a Comment