The recently disclosed “Bash Bug” or “Shellshock” vulnerability that affects most versions of Linux, Unix, and Mac OS X operating systems is the latest threat to set IT security teams scrambling to protect their systems.
Disclosed to the world on Sept. 24, the GNU Bash Remote Code Execution Vulnerability (CVE-2014-6271) could be exploited to execute code and take over a machine.
Attackers can leverage the vulnerability to attack a variety of devices and web servers and take over the operating system, make changes or perform other actions.
Related: What We Know About Shellshock So Far, and Why the Bash Bug Matters
Symantec has put together the video below which demonstrates the threatening vulnerability in action and answers many important questions.
There have already been reports of limited, targeted attacks targeting the vulnerability and some in the security community believe this bug could be worse than Heartbleed.
Related: Bash ‘Shellshock’ Vulnerability Under Attack
Related: What We Know About Shellshock So Far, and Why the Bash Bug Matters