GNU Bash Environment Variable Command Injection Vulnerability CVE-2014-6278

  Severity: CRITICAL
  CVE Identifier: CVE-2014-6278
  Advisory Date: SEP 30, 2014

  DESCRIPTION

This remote code execution vulnerability exists in the way the Bash shell handles functions. When successfully exploited, remote attackers may execute commands on the vulnerable system.

  OTHER INFORMATION