(Add Vul: Bash) CVE-2014-7169

2025-06-21 18:30:07 +00:00 · 2017-11-09 17:22:48 +08:00 · 2017-11-09 17:22:48 +08:00 · 2c5ef5cbeb
commit 2c5ef5cbeb
parent 89c75139cc
1 changed files with 39 additions and 0 deletions
--- a/_posts/2016-06-30-b_bash_shellshock2_CVE-2014-7169.md
+++ b/_posts/2016-06-30-b_bash_shellshock2_CVE-2014-7169.md
@ -0,0 +1,39 @@
+---
+layout: post
+title: "Bash ShellShock CVE-2014-7169(破壳2)"
+date: 2016-06-30 02:35:30 +0800
+image: '/assets/img/'
+description: 'Bash ShellShock CVE-2014-7169(破壳2)'
+main-class: 'hole'
+color: '#B31917'
+tags:
+- Bash
+- Command-Execution
+categories:
+- Bash
+twitter_text: 'Bash ShellShock CVE-2014-7169(破壳2)'
+introduction: 'Bash ShellShock CVE-2014-7169(破壳2)'
+---
+
+### 说明
+
+CVE-2014-6271 补丁未修复完全，可绕过
+
+### 获取环境:
+
+1. 拉取镜像到本地
+ ```bash
+$ docker pull medicean/vulapps:b_bash_shellshock2
+ ```
+
+2. 启动环境
+ ```bash
+$ docker run -d -p 80:80 medicean/vulapps:b_bash_shellshock2
+ ```
+ > `-p 80:80` 前面的 80 代表物理机的端口，可随意指定。 
+
+### 使用与利用
+
+访问 `http://你的 IP 地址/cgi-bin/poc.cgi`
+
+> 待补充