Last month I blogged about the newest vulnerability in BASH. This has an official name now “ShellShock” and looks to be exploited in the wild with the botnet Mayhem which is aimed towards Linux systems.
Unfortunately it’s not just web servers which are vulnerable. There’s lots of devices out there which use Linux web servers, from home routers to mobile phones and other devices.
I’d recommend anyone using a Linux based system to do the following tests and check to make sure their system is not vulnerable. Tests for Shellshock Vulnerability