VDB
RHSA-2014%3A1295
RHSA-2014%3A1295
PUBLISHED
Red Hat Security Advisory: bash Shift_JIS security update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:rhel_sjis:6 | bash-doc | 0, 0 |
| Red Hat:rhel_sjis:5 | bash | 0, 0 |
| Red Hat:rhel_sjis:6 | bash | 0, 0 |
| Red Hat:rhel_sjis:6 | bash-debuginfo | 0, 0 |
| Red Hat:rhel_sjis:5 | bash-debuginfo | 0, 0 |
Exploit Intelligence
- Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi (github-poc)
- Exploitation of "Shellshock" Vulnerability. Remote code execution in Apache with mod_cgi (github-poc)
- its simple Shellshock exploit (github-poc)
- its simple Shellshock exploit (github-poc)
- Reflyzal106/Cve-2014-Error-What-Is-The-Cve-2014-6271-Bash-Vulnerability (github-poc)
- Reflyzal106/Cve-2014-Error-What-Is-The-Cve-2014-6271-Bash-Vulnerability (github-poc)
- "A professional walkthrough of HTB: Shocker. Demonstrates remote directory fuzzing to discover CGI scripts, manual exploitation of the Shellshock vulnerability (CVE-2014-6271), and privilege escalation via misconfigured Sudo Perl permissions using GTFOBins vectors." (github-poc)
- "A professional walkthrough of HTB: Shocker. Demonstrates remote directory fuzzing to discover CGI scripts, manual exploitation of the Shellshock vulnerability (CVE-2014-6271), and privilege escalation via misconfigured Sudo Perl permissions using GTFOBins vectors." (github-poc)
- Pentesting caja negra: Shellshock (CVE-2014-6271) + Log4Shell (CVE-2021-44228). Escalada a root. Informe ejecutivo y técnico (github-poc-repo)
- Pentesting caja negra: Shellshock (CVE-2014-6271) + Log4Shell (CVE-2021-44228). Escalada a root. Informe ejecutivo y técnico (github-poc-repo)
…and 217 more exploits
Timeline
- Sep 24, 2014 CVE Published
- Jan 17, 2015 PoC Published
- Jan 28, 2026 CVE Updated
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2014:1295 advisory
- https://access.redhat.com/security/updates/classification/#critical article
- https://access.redhat.com/articles/1200223 article
- https://bugzilla.redhat.com/show_bug.cgi?id=1141597 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1295.json advisory
- https://access.redhat.com/security/cve/CVE-2014-6271 report
- https://access.redhat.com/security/vulnerabilities/shellshock article
- https://www.cve.org/CVERecord?id=CVE-2014-6271 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-6271 advisory
- https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack article
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog article