jAmEs_shIn

Patching 91x and 95x TIM for a "Shellshock", Bash Code Inject Vulnerability (CVE-2014-6271)

Blog Post created by jAmEs_shIn Employee on Oct 10, 2014

An advisory note as in a techdoc format, Bash Code Injection aka "Shellshock" and CEM TIM and TIMSoft - https://support.ca.com/irj/portal/anonymous/kbtech?searchID=TEC618037&docid=618037&bypass=yes&fromscreen=kbresults has been released recently, but if you cannot wait and want to patch 91x and 95x TIM's, bash-3.2-33.el5_11.4.x86_64.rpm can be used.

 

Related reads:

Red Hat Customer Portal

Bug 1146319 – CVE-2014-7169 bash: code execution via specially-crafted environment (Incomplete fix for CVE-2014-6271)

Resolution for Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271, CVE-2014-71…

Outcomes