Author: Anon Language: text
Description: Bash bug Timestamp: 2014-09-30 04:29:37 +0000
View raw paste Reply
  1. Blown totally out of proportion in regards the structure. Without direct terminal access apart from slack code in cgi scripts maybe php (exploit word press and inject into wordpress cron maybe?)
  2.  
  3. Thats why this is maybe overblown (it takes an exploit to run an exploit, script injection (bad php exec))
  4.  
  5. IMHO it would need an exploit to run the shellshock, Im not so sure on embedded stuff though and mobile (rooted devices, un-monitored app stores)
View raw paste Reply