CVE-2014-6277
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized memory access, and untrusted-pointer read and write operations) via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271 and CVE-2014-7169.
EPSS 86.75% · 99.4th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | bash | 0, 4.3-1ubuntu2, 4.3-2ubuntu1 |
Exploit Intelligence
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- cve-2010-0426 (github-poc)
- cve-2010-0426 (github-poc)
…and 95 more exploits
Timeline
- Sep 25, 2014 CVE Published
- Sep 25, 2014 PoC Published
- Sep 27, 2014 PoC Published
- Oct 14, 2014 PoC Published
- Oct 28, 2014 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 21, 2025 EPSS Score
- Mar 22, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 16, 2025 EPSS Score
- Apr 17, 2025 EPSS Score
References
- https://ubuntu.com/security/CVE-2014-6277 third-party-advisory
- http://lcamtuf.blogspot.ca/2014/09/bash-bug-apply-unofficial-patch-now.html third-party-advisory
- http://www.openwall.com/lists/oss-security/2014/09/27/5 third-party-advisory
- https://twitter.com/lcamtuf/status/515755449203687425 third-party-advisory
- http://seclists.org/fulldisclosure/2014/Oct/9 third-party-advisory
- http://lcamtuf.blogspot.ca/2014/10/bash-bug-how-we-finally-cracked.html third-party-advisory
- https://ubuntu.com/security/notices/USN-2380-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2014-6277 third-party-advisory
- Vulnérabilité dans GNU bash advisory