Summary
A number of security vulnerabilities have been identified in the `bash' component of Citrix XenServer. These issues include those known as `Shellshock'
Solution
Apply the hotfix referenced in the advisory
Affected
These issues affect all supported versions of Citrix XenServer up to and including Citrix XenServer 6.2 Service Pack 1.
Detection
Check the installed hotfixes
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Media Server Multiple Remote Security Vulnerabilities
- Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Linux)
- Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Windows)
- Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)