Shellshock exploit

[GoogleCodeExporter]

env x='() { :;}; echo vulnerable' bash -c "echo this is a test"

seems to be vunrible may we please have an update for the firmware its been 6 
months

Original issue reported on code.google.com by toast.ro...@gmail.com on 27 Sep 2014 at 1:57

[GoogleCodeExporter]

http://www.imagebam.com/image/7697ef353947597

the proof and its tested on the latest available firmware on this site

Original comment by toast.ro...@gmail.com on 27 Sep 2014 at 2:01

[GoogleCodeExporter]

so it's not vulnerable.. :)

Original comment by lando...@gmail.com on 27 Sep 2014 at 6:30

[GoogleCodeExporter]

it is since it would have given an indicator of environment issues

Original comment by toast.ro...@gmail.com on 27 Sep 2014 at 7:15

[GoogleCodeExporter]

To clarify: it is NOT vulnerable. Firmware uses BusyBox, which isn't 
vulnerable. If it was, it would echo vulnerable AND this is a test.

Original comment by froodyh...@gmail.com on 28 Sep 2014 at 3:18

[GoogleCodeExporter]

to toast.router:
Even if it is vulnerable, could you please show how are you going to exploit it 
to all of us, please?..

ps: rule #1 - think before you type!

Original comment by d...@soulblader.com on 29 Sep 2014 at 5:59

• Changed state: Invalid

[GoogleCodeExporter]

To all others who just want to post anything --> 
https://code.google.com/p/rt-n56u/issues/detail?id=1342#c4.

And... there is no bash in this firmware ;)

Original comment by d...@soulblader.com on 29 Sep 2014 at 6:41