Shellshock
Log In or Register to download the BES file, and more.

0 Votes

Description

This will look for the vulnerable version of bash in RHEL 5/6/7 x64 systems. This is fairly simple to modify if you are testing for a different distro or architecture.

Property Details

ID2994719
StatusQA - Ready for Production Level Testing
TitleShellshock
DomainBESC
KeywordsShellshock vulnverable
Added by on 9/28/2014 5:46:26 PM
Last Modified by on 9/28/2014 5:46:26 PM
Counters 2888 Views / 5 Downloads
User Rating 1 star 2 star 3 star 4 star 5 star * Average over 0 ratings. ** Log In or Register to add your rating.

Properties

Bash version
Period Every Report
 
  * Results in a true/false
Show indented relevance
rpm version record of package "bash" of rpm
Vulnerable
Period Every Report
 
  * Results in a true/false
Show indented relevance
((exists package "bash" whose (rpm version record of it < rpm package version record "4.1.2-15.el6_5.2" AND rpm version record of it > rpm package version record "4.1.0-0.el1_0.0" AND architecture of it = "x86_64") of it AND (not exists package "bash" whose (rpm version record of it >= rpm package version record "4.1.2-15.el6_5.2" AND architecture of it = "x86_64") of it)) OR (exists package "bash" whose (rpm version record of it < rpm package version record "3.2-33.el5_11.4" AND rpm version record of it > rpm package version record "3.2-0.el1_0.0" AND architecture of it = "x86_64") of it AND (not exists package "bash" whose (rpm version record of it >= rpm package version record "3.2-33.el5_11.4" AND architecture of it = "x86_64") of it)) OR (exists package "bash" whose (rpm version record of it < rpm package version record "4.2.45-5.el7_0.4" AND rpm version record of it > rpm package version record "4.2.0-0.el1_0.1" AND architecture of it = "x86_64") of it AND (not exists package "bash" whose (rpm version record of it >= rpm package version record "4.2.45-5.el7_0.4" AND architecture of it = "x86_64") of it))) of rpm

Relevance

Used in 1 analsis   * Results in a true/false
Show indented relevance
exists file "/etc/redhat-release"

Sharing

Social Media:
Share this page on Yammer

Comments

Log In or Register to leave comments!