Vulnerability Description
The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine.
CVSS Score
7.5
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnu | Bash | 4.3 |
Related Weaknesses (CWE)
References
- http://rhn.redhat.com/errata/RHSA-2017-0725.html
- http://www.openwall.com/lists/oss-security/2016/09/16/12Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/16/8Mailing ListPatchThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/18/11Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/19/7Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/20/1Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/27/9Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/09/29/27Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/10/07/6Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/10/10/3Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2016/10/10/4Mailing ListThird Party Advisory
- http://www.securityfocus.com/bid/92999Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2017:1931
- https://bugzilla.redhat.com/show_bug.cgi?id=1377613Issue TrackingPatchThird Party Advisory
- https://security.gentoo.org/glsa/201612-39Third Party Advisory
FAQ
What is CVE-2016-0634?
CVE-2016-0634 is a vulnerability with a CVSS score of 7.5 (HIGH). The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine.
How severe is CVE-2016-0634?
CVE-2016-0634 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-0634?
Check the references section above for vendor advisories and patch information. Affected products include: Gnu Bash.