|
|
Log in / Subscribe / Register

bash: code execution

bash: code execution

Posted Oct 5, 2016 13:30 UTC (Wed) by nix (subscriber, #2304)
Parent article: bash: code execution

Note: Chet pointed out that this is not $HOSTNAME; it is the result of gethostname(). An attacker who can set the HOSTNAME environment variable cannot exploit this, only someone who can force the system to set its hostname to $(bad stuff) can do so.

to post comments

bash: code execution

Posted Oct 5, 2016 17:58 UTC (Wed) by flussence (guest, #85566) [Link] (1 responses)

Could a rogue DHCP server and common client be used to turn this into remote code execution?

bash: code execution

Posted Oct 5, 2016 22:52 UTC (Wed) by nix (subscriber, #2304) [Link]

Yes, only I'd not be surprised to find that a rogue DHCP server can do this *anyway*. dhclient is not the most secure piece of software ever written, alas.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds