In the news recently, there is a vulnerability that was identified with UNIX and LINUX operating systems using the BASH command shell. This vulnerability called "Shellshock" can allow a remote attacker to run commands on remote servers without an account. This puts these systems at risk.
Operating Systems Affected
· MAC OS X (running server software such as a web server)
Windows Operating systems are not affected by this exploit.
CTS has done a preliminary assessment of CTS-managed infrastructure and has started to apply vendor patches to all at risk systems. Patches will be applied to assist with detecting and blocking the vulnerability.
WHAT YOU NEED TO DO:
If you run one of the operating systems listed above, please contact your vendor regarding Shellshock or the CVE-2014-7169 exploit to obtain information on how to secure your system.
If you would like further information, please visit: http://www.cnet.com/news/bigger-than-heartbleed-bash-bug-could-leave-it-systems-shellshocked/