How to check your Bash shell is vulnerable or not For Bash Code Injection in Linux

Jai Hind Friends I am DeadManINDIA from 1ND14N H4X0R5 T34M (IHT) here to serve my services.

We are :- EagleShadow,NullPort_Govind,Grey-Noob,SPy-Hunter,Mr.R@66!T,
X-ManINDIA,Karate-Katrina.

love to :- Mom & Dad 

 So friends today i am here to tell you something which i learn new .There are a bug viral in IT market thats called Bash Code Injection vulnerability.So I am tell to you here how to check our bash shell is vulnerable or not .

Lets start :- 

We run this command in our terminal and then we will find some errors .

#    env 'x=() { :;}; echo this is vulnerable' 'BASH_FUNC_x()=() { :;}; echo vulnerable' bash -c "echo test"

if you found this output which is shown in this image then you bash is vulnerable.

Another way to check is this 

run this command in you terminal 
# cd /tmp; rm -f /tmp/echo; env 'x=() { (a)=>\' bash -c "echo date"; cat /tmp/echo

 in this case when you run this command then a file is created in the /tmp/echo  in this file time and date is saved if your bash shell is vulnerable.

Now if you want to fix or patch this vulnerability then update your bash shell. with these versions.   Say Jai Hind or Jai Bharat if this is helpfull for you

Red Hat Enterprise Linux 7	bash-4.2.45-5.el7_0.4	Red Hat Enterprise Linux
Red Hat Enterprise Linux 6	bash-4.1.2-15.el6_5.2	Red Hat Enterprise Linux
	bash-4.1.2-15.el6_5.1.sjis.2	Red Hat Enterprise Linux
	bash-4.1.2-9.el6_2.2	Red Hat Enterprise Linux 6.2 AUS
	bash-4.1.2-15.el6_4.2	Red Hat Enterprise Linux 6.4 EUS
Red Hat Enterprise Linux 5	bash-3.2-33.el5_11.4	Red Hat Enterprise Linux
	bash-3.2-33.el5_11.1.sjis.2	Red Hat Enterprise Linux
	bash-3.2-24.el5_6.2	Red Hat Enterprise Linux 5.6 LL
	bash-3.2-32.el5_9.3	Red Hat Enterprise Linux 5.9 EUS
Red Hat Enterprise Linux 4	bash-3.0-27.el4.4	Red Hat Enterprise Linux 4 ELS

Posted in: Kali linux, Red Hat