mubix
commented
9 years ago I didn't see a proof of concept in the post. Was one posted somewhere?
Open ghost opened 9 years ago
mubix
commented
9 years ago I didn't see a proof of concept in the post. Was one posted somewhere?
Hi,
the legacy "FreePBX ARI Framework module/Asterisk Recording Interface (ARI)" is vulnerable to shellshock:
http://community.freepbx.org/t/cve-2014-6271-shellshock-bash-exploit/24431