Exploit for #VU5295 Command injection in Bash

Vulnerability identifier: #VU5295

Vulnerability risk: Critical

CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red]

CVE-ID: CVE-2014-6271

CWE-ID: CWE-77

Exploitation vector: Network

Exploits in database: 47

• August 8, 2023
  • PoCs (Containing PoC's) [Github]
• December 26, 2022
  • CVE-2014-6271 (Shellshock exploit aka CVE-2014-6271) [Github]
• October 12, 2022
  • cve-2014-6271 (cve-2014-6271 (Shellshock) Bash CGI exploit/Bash binary exploit) [Github]
• July 29, 2021
  • shellshock (Shellshock exploit aka CVE-2014-6271) [Github]
• October 8, 2020
  • Qmail SMTP 1.03 - Bash Environment Variable Injection [Exploit-DB]
• April 7, 2020
  • RedStar 3.0 Server - 'BEAM & RSSMON' Command Execution (Shellshock) [Exploit-DB]
  • bash-fix-exploit (Ansible role to check the CVE-2014-6271 vulnerability) [Github]
  • exploit-CVE-2014-6271 () [Github]
  • SwissArmyShellshocker (A multifunctional tool for checking and exploiting the Shellshock(a. k. a. Bashd00r) vulnerabilty. CVE 2014-6271. Created for Python 2.7.13.) [Github]
  • CGIShell (shellshock CVE-2014-6271 CGI Exploit, Use like Openssh via CGI) [Github]
• March 18, 2020
  • shellshock-shell (A simple python shell-like exploit for the Shellschok CVE-2014-6271 bug.) [Github]
  • RIS (CVE-2014-6271 Remote Interactive Shell - PoC Exploit) [Github]
  • Shell-Shock (*CVE-2014-6271* Unix Arbitrary Code Execution Exploit commonly know as Shell Shock. Examples, Docs, Incident Response and Vulnerability/Risk Assessment, and Additional Resources may be dumped here. Enjoy :) --- somhmxxghoul ---) [Github]
  • GNU Bash - Environment Variable Command Injection (Metasploit) [Exploit-DB]
  • Advantech Switch Bash Environment Variable Code Injection (Shellshock) [Metasploit]
  • IPFire Bash Environment Variable Injection (Shellshock) [Metasploit]
  • Pure-FTPd External Authentication Bash Environment Variable Code Injection (Shellshock) [Metasploit]
  • Apache mod_cgi Bash Environment Variable Code Injection (Shellshock) [Metasploit]
  • CUPS Filter Bash Environment Variable Code Injection (Shellshock) [Metasploit]
  • OS X VMWare Fusion Privilege Escalation via Bash Environment Code Injection (Shellshock) [Metasploit]
  • Dhclient Bash Environment Variable Injection (Shellshock) [Metasploit]
  • Qmail SMTP Bash Environment Variable Injection (Shellshock) [Metasploit]
  • GNU Bash - Environment Variable Command Injection (Shellshock) [Exploit-DB]
  • Bash - Environment Variables Code Injection (Shellshock) [Exploit-DB]
  • TrendMicro InterScan Web Security Virtual Appliance - Remote Code Execution (Shellshock) [Exploit-DB]
  • Apache mod_cgi Bash Environment Variable Injection (Shellshock) Scanner [Metasploit]
  • puppet-shellshock (This module determine the vulnerability of a bash binary to the shellshock exploits (CVE-2014-6271 or CVE-2014-7169) and then patch that where possible) [Github]
  • exploit-CVE-2014-6271 (Shellshock exploit + vulnerable environment) [Github]
  • CVE-2014-6271 (Shellshock exploitation script that is able to upload and RCE using any vector due to its versatility.) [Github]
  • CVE-in-Ruby (Exploits written & ported to Ruby - no Metasploit) [Github]
  • Qmail SMTP - Bash Environment Variable Injection (Metasploit) [Exploit-DB]
  • Cisco Unified Communications Manager - Multiple Vulnerabilities [Exploit-DB]
  • Kemp Load Master 7.1.16 - Multiple Vulnerabilities [Exploit-DB]
  • PHP < 5.6.2 - Bypass disable_functions Exploit (Shellshock) [Exploit-DB]
  • Bash CGI - Remote Code Execution (Shellshock) (Metasploit) [Exploit-DB]
  • IPFire - Cgi Web Interface Authenticated Bash Environment Variable Code Injection [Exploit-DB]
  • DHCP Client Bash Environment Variable Code Injection (Shellshock) [Metasploit]
  • IPFire - Bash Environment Variable Injection (Shellshock) (Metasploit) [Exploit-DB]
  • Advantech Switch - Bash Environment Variable Code Injection (Shellshock) (Metasploit) [Exploit-DB]
  • QNAP - Web Server Remote Code Execution via Bash Environment Variable Code Injection (Metasploit) [Exploit-DB]
  • QNAP - Admin Shell via Bash Environment Variable Code Injection (Metasploit) [Exploit-DB]
  • CUPS Filter - Bash Environment Variable Code Injection (Metasploit) [Exploit-DB]
  • Apache mod_cgi - Remote Exploit (Shellshock) [Exploit-DB]
  • Postfix SMTP 4.2.x < 4.2.48 - Remote Exploit (Shellshock) [Exploit-DB]
  • OpenVPN 2.2.29 - Remote Exploit (Shellshock) [Exploit-DB]
  • Pure-FTPd - External Authentication Bash Environment Variable Code Injection (Metasploit) [Exploit-DB]
  • GNU bash 4.3.11 - Environment Variable dhclient Exploit [Exploit-DB]

Vulnerable software:
Bash
Universal components / Libraries / Scripting languages

Vendor: GNU