ahlam1399
12-17-2014, 01:52 PM
Un*****ed QNAP NAS Devices Exploited Through Shellshock Vulnerability
http://i1-news.softpedia-static.com/images/fitted/340x180/Un*****ed-QNAP-NAS-Devices-Exploited-Through-Shellshock-Vulnerability.jpgAlthough a fix against the Shellshock bug has been released, many network attached storage (NAS) devices remain vulnerable to the glitch in the Bash command processor for Linux and Unix systems, cybercriminals still relying on it to take control of the devices.
The attack aims at QNAP NAS devices that have **t been immunized against Shellshock and relies on a simple method to achieve the compromise.
Common attack vector is used
It targets the “/cgi-bin/authLogin.cgi” file, which launches th... (read more (http://spd.rss.ac/aHR0cDovL25ld3Muc29mdHBlZGlhLmNvbS9uZXdzL1VucGF0Y2 hlZC1RTkFQLU5BUy1EZXZpY2VzLUV4cGxvaXRlZC1UaHJvdWdo LV**ZWxsc2hvY2stVnVsbmVyYWJpbGl0eS00Njc2Nzguc2h0bW w=))
http://i1-news.softpedia-static.com/images/fitted/340x180/Un*****ed-QNAP-NAS-Devices-Exploited-Through-Shellshock-Vulnerability.jpgAlthough a fix against the Shellshock bug has been released, many network attached storage (NAS) devices remain vulnerable to the glitch in the Bash command processor for Linux and Unix systems, cybercriminals still relying on it to take control of the devices.
The attack aims at QNAP NAS devices that have **t been immunized against Shellshock and relies on a simple method to achieve the compromise.
Common attack vector is used
It targets the “/cgi-bin/authLogin.cgi” file, which launches th... (read more (http://spd.rss.ac/aHR0cDovL25ld3Muc29mdHBlZGlhLmNvbS9uZXdzL1VucGF0Y2 hlZC1RTkFQLU5BUy1EZXZpY2VzLUV4cGxvaXRlZC1UaHJvdWdo LV**ZWxsc2hvY2stVnVsbmVyYWJpbGl0eS00Njc2Nzguc2h0bW w=))