![]() ![]() With Heartbleed, somebody could grab credentials of a user and do what they wanted with it however, the bug only allowed an attacker to steal data. The Shellshock vulnerability ( CVE-2014-6271, CVE-2014-7169) has been compared to Heartbleed, partly because the software at the heart of the “Shellshock” bug, known as Bash, is also widely used in web servers and other types of computer equipment. The Shellshock flaw affects the Bash shell used across many Unix-based systems including Mac OS X and variants of Linux. Security experts are saying this vulnerability is as dangerous, if not more so, than the Heartbleed flaw found in OpenSSL software-an encryption service used by around two-thirds of websites to protect information sent to and from web pages-back in April. A flaw in the “Bash” shell-the command line interpreter for Unix-based systems including Linux and Mac OS X-has sent server administrators scrambling to patch their systems. The vulnerability is called Shellshock, and it has rocked the security industry to its core. We highly advise that you secure your Mac immediately. ![]() Find the OS X bash Update 1.0 for users of Mavericks, Mountain Lion and Lion from Apple. Posted in the Intego Mac Security Blog on September 26th, 2014 by Derek ErwinĪpple has now issued the patch for the bug for Mac OS X users. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |