teedeedubya/bash-fix-exploit

Ansible role to check the CVE-2014-6271 vulnerability

bash-fix-exploit

• A tiny role that checks to see if the CVE-2014-6271 exploit is still valid
• Use at your own risk...
• Read about the exploit here: https://community.rapid7.com/community/infosec/blog/2014/09/25/bash-ing-into-your-network-investigating-cve-2014-6271

Requirements

• Assumes that you're using bash as your shell

Role Variables

• update_bash - defaults to "no". If "yes", then bash will be updated on RedHat based systems

Dependencies

None

Example Playbook

- hosts: all
  sudo: yes
  roles:
    - role: bash-fix-exploit 

License

MIT

Author Information

Tony Welder tony.wvoip@gmail.com