{"id":9971,"date":"2014-09-29T11:55:24","date_gmt":"2014-09-29T03:55:24","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=9971"},"modified":"2014-09-29T11:56:07","modified_gmt":"2014-09-29T03:56:07","slug":"shellshockbash%e6%bc%8f%e6%b4%9e%e6%94%bb%e6%93%8a%e6%8c%81%e7%ba%8c%e5%87%ba%e9%96%98%e6%9c%80%e6%96%b0%e6%94%bb%e6%93%8a-%e9%87%9d%e5%b0%8d%e4%b8%ad%e5%9c%8b%e9%87%91%e8%9e%8d%e6%a9%9f%e6%a7%8b","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=9971","title":{"rendered":"Shellshock\/Bash\u6f0f\u6d1e\u653b\u64ca\u6301\u7e8c\u51fa\u9598!!\u6700\u65b0\u653b\u64ca \u91dd\u5c0d\u4e2d\u570b\u91d1\u878d\u6a5f\u69cb"},"content":{"rendered":"<p>\u770b\u8d77\u4f86<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9961\">Shellshock\/ Bash \u6f0f\u6d1e<\/a>\u653b\u64ca\u771f\u6b63\u5730\u958b\u9580\u51fa\u9598\u4e86\u3002\u6211\u5011\u5df2\u7d93\u5831\u5c0e\u904e\u4e0d\u540c\u7684\u653b\u64ca\u4f86\u5229\u7528Bash\u6f0f\u6d1e\uff0c\u5f9e<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/bash-bug-vulnerability-used-in-botnet-attacks\/\">\u50f5\u5c4d\u7db2\u8def\u653b\u64ca<\/a>\u5230<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-continues-to-make-waves-with-active-irc-bot\/\">IRC\u50f5\u5c4d\u6a5f\u5668\u4eba<\/a>\u90fd\u6709\u3002<\/p>\n<p>\u8da8\u52e2\u79d1\u6280\u4e5f\u767c\u73fe\u4e86<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-updates-bashlite-ccs-seen-shellshock-exploit-attempts-in-brazil\/\">\u5728\u5df4\u897f\u770b\u5230\u5229\u7528Shellshock\u6f0f\u6d1e\u4f86\u5617\u8a66\u9032\u884c\u653b\u64ca<\/a>\u3002\u770b\u8d77\u4f86\u9019\u4e9b\u653b\u64ca\u610f\u5716\u4e26\u4e0d\u50c5\u9650\u65bc\u8a72\u570b\u5bb6\u3002\u6211\u5011\u770b\u5230\u53e6\u4e00\u6ce2\u7684Shellshock\u6f0f\u6d1e\u653b\u64ca \u2013 \u9019\u6b21\u662f\u91dd\u5c0d\u4e2d\u570b\u7684\u91d1\u878d\u6a5f\u69cb\u3002<\/p>\n<p><a href=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-9948\" src=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret.jpg\" alt=\"red alret \u7d05\u8272\u8b66\u6212 \u8cc7\u5b89\/\u75c5\u6bd2\u6f0f\u6d1e\u8b66\u544a\" width=\"960\" height=\"960\" srcset=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret.jpg 960w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret-150x150.jpg 150w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret-300x300.jpg 300w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret-768x768.jpg 768w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret-600x600.jpg 600w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/red-alret-800x800.jpg 800w\" sizes=\"(max-width: 960px) 100vw, 960px\" \/><\/a><\/p>\n<p>\u8da8\u52e2\u79d1\u6280\u7684\u00a0<a href=\"https:\/\/www.trendmicro.tw\/tw\/enterprise\/security-risk-management\/deep-discovery\/\">Deep Discovery<\/a>\u00a0\u5075\u6e2c\u5230\u6b64\u985e\u653b\u64ca\u610f\u5716\uff0c\u4e26\u4e14\u767c\u73fe\u653b\u64ca\u8005\u662f\u60f3\u8981\u5617\u8a66\u591a\u500b\u5c6c\u65bc\u8a72\u6a5f\u69cb\u7684 IP \u5730\u5740\u662f\u5426\u5177\u6709\u6b64 Shellshock\u6f0f\u6d1e\uff0c\u4e5f\u5c31\u662f CVE-2014-06271\u3002\u9032\u4e00\u6b65\u7684\u5206\u6790\u986f\u793a\u6709\u4e09\u500b\u88ab\u6e2c\u7684IP\u5730\u5740\u53ef\u80fd\u6709\u6b64\u6f0f\u6d1e\uff0c\u56e0\u70ba\u653b\u64ca\u8005\u8a66\u5716\u57f7\u884c\u6307\u4ee4\u300c\/bin\/uname \u2013a\u300d\u3002\u6307\u4ee4\u300cuname\u300d\u6703\u986f\u793a\u7cfb\u7d71\u8cc7\u8a0a\uff0c\u5305\u62ec\u4f5c\u696d\u7cfb\u7d71\u5e73\u53f0\u3001\u6a5f\u5668\u985e\u578b\u548c\u8655\u7406\u5668\u8cc7\u8a0a\u3002<\/p>\n<p>\u4e4d\u4e00\u770b\uff0c\u88ab\u53d6\u5f97\u7cfb\u7d71\u8cc7\u8a0a\u53ef\u80fd\u4e26\u7121\u5bb3\u8655\u3002\u4f46\u5982\u540c<a href=\"https:\/\/blog.trendmicro.com.tw\/?cat=1761\">\u8da8\u52e2\u79d1\u6280\u90e8\u843d\u683c<\/a>\u5728\u4e4b\u524d\u7684\u6587\u7ae0\u4e2d\u63d0\u904e\uff0c\u8cc7\u8a0a\u6536\u96c6\u53ef\u80fd\u662f\u70ba\u4e86\u6e96\u5099\u66f4\u591a\u7834\u58de\u6027\u8a08\u756b\u7684\u6307\u6a19\u3002\u9019\u6307\u4ee4\u53ef\u4ee5\u70ba\u66f4\u5927\u898f\u6a21\u548c\u66f4\u5177\u7834\u58de\u6027\u7684\u653b\u64ca\u958b\u9053\u3002<\/p>\n<p>\u5617\u8a66\u653b\u64ca\u7684\u6642\u9593\u5f88\u6709\u610f\u601d\uff0c\u56e0\u70ba\u4e2d\u570b\u9ec3\u91d1\u9031\u5047\u671f\u662f\u5f9e10\u67081\u65e5\u958b\u59cb\u3002\u6240\u4ee5\u9019\u6a23\u7684\u5617\u8a66\u5f88\u53ef\u80fd\u662f\u5728\u6b64\u5047\u671f\u9593\u6240\u9032\u884c\u653b\u64ca\u7684\u8d77\u59cb\u968e\u6bb5\uff0c\u56e0\u70ba\u7db2\u8def\u7cfb\u7d71\u7ba1\u7406\u54e1\u5c07\u5728\u9019\u6bb5\u6642\u5019\u96e2\u958b\u3002<\/p>\n<p><a href=\"https:\/\/www.trendmicro.com.tw\/edm\/Tracking.asp?id=2651&amp;name=20110916\">\u8da8\u52e2\u79d1\u6280<\/a>\u6b63\u5728\u4e0d\u65b7\u5730\u76e3\u8996\u53ef\u80fd\u5229\u7528\u00a0<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9961\">Shellshock\/Bash \u6f0f\u6d1e<\/a>\u00a0\u7684\u653b\u64ca\uff0c\u540c\u6642\u78ba\u4fdd\u4f7f\u7528\u8005\u548c\u7d44\u7e54\u5728\u73fe\u5be6\u4e16\u754c\u4e2d\u514d\u53d7\u6b64\u985e\u5a01\u8105\u653b\u64ca\u3002\u8da8\u52e2\u79d1\u6280\u7684 <a href=\"https:\/\/www.trendmicro.tw\/tw\/enterprise\/security-risk-management\/deep-discovery\/\">Deep Discovery<\/a>\u00a0\u63d0\u4f9b\u4e86\u7db2\u8def\u5c64\u9762\u7684\u80fd\u898b\u5ea6\u548c\u5a01\u8105\u60c5\u5831\uff0c\u4ee5\u5075\u6e2c\u548c\u56de\u61c9\u91dd\u5c0d\u6027\u653b\u64ca\u53ca\u9032\u968e\u5a01\u8105\u3002\u00a0<!--more--><\/p>\n<p>\u4f7f\u7528\u8005\u53ef\u4ee5\u900f\u904e\u6211\u5011\u7684\u4e3b\u52d5\u5f0f\u96f2\u7aef\u622a\u6bd2\u6280\u8853\u4f86\u53d7\u5230\u4fdd\u8b77\uff0c\u80fd\u5920\u5075\u6e2c\u60e1\u610f\u8edf\u9ad4\u548c\u5c01\u9396\u6240\u6709\u76f8\u95dc\u60e1\u610f\u7db2\u5740\u3002\u8da8\u52e2\u79d1\u6280\u900f\u904e\u4e0b\u5217\u7684\u89e3\u6c7a\u65b9\u6848\u4f86\u4fdd\u8b77\u4f7f\u7528\u8005\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/www.trendmicro.tw\/tw\/enterprise\/security-risk-management\/deep-discovery\/\">Deep Discovery<\/a>\u00a0\u898f\u5247\uff1a1618 \u2013 Shellshock HTTP REQUEST<\/li>\n<li>DPI\u898f\u5247\uff1a1006256 \u2013 GNU Bash Remote Code Execution Vulnerability<\/li>\n<li>\u5075\u6e2cCVE-2014-6271-SHELLSHOCK_REQUEST<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p>\u5176\u4ed6\u60f3\u8981\u6aa2\u67e5\u81ea\u5df1\u662f\u5426\u53d7\u5230\u5f71\u97ff\u7684\u4f7f\u7528\u8005\u53ef\u4ee5\u53c3\u8003\u6211\u5011\u7684<a href=\"https:\/\/www.trendmicro.com\/us\/security\/shellshock-bash-bug-exploit\/index.html\">\u514d\u8cbbShellshock\u9632\u8b77<\/a>\u3002\u6211\u5011\u9084\u767c\u4f48\u4e86<a href=\"https:\/\/www.trendmicro.com\/us\/security\/shellshock-bash-bug-exploit\/personal-device-tools\/index.html\">\u700f\u89bd\u5668\u64f4\u5145\u5957\u4ef6\u548c\u8a2d\u5099\u6383\u63cf\u5668<\/a>\u4ee5\u4fdd\u8b77\u4f7f\u7528\u8005\u7684\u700f\u89bd\u5668\u548c\u8a2d\u5099\u4f86\u9632\u6b62<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9961\">Shellshock\/bash \u6f0f\u6d1e<\/a>\u6240\u5e36\u4f86\u7684\u98a8\u96aa\u3002\u9019\u4e9b\u5de5\u5177\u53ef\u4ee5\u6383\u63cf\u8a2d\u5099\u4ee5\u5075\u6e2c\u662f\u5426\u53d7\u5230\u8a72\u6f0f\u6d1e\u5f71\u97ff\u3002<\/p>\n<p>&nbsp;<\/p>\n<p>\u60f3\u77e5\u9053\u66f4\u591a<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9961\">Shellshock\/bash \u6f0f\u6d1e<\/a>\u7684\u8a73\u7d30\u8cc7\u8a0a\uff0c\u53ef\u4ee5\u95b1\u8b80\u6211\u5011\u7684\u5176\u4ed6\u6587\u7ae0\uff1a<\/p>\n<ul>\n<li><a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9929\">Bash\u6f0f\u6d1e\u5c0e\u81f4Shellshock\uff1a\u9019\u662f\u4ec0\u9ebc\uff0c\u5c0d\u4f60\u6709\u4ec0\u9ebc\u5f71\u97ff<\/a><\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9955\">Bash\u6f0f\u6d1e\uff08Shellshock\uff09\u653b\u64ca\u73fe\u8eab\uff0c\u53ef\u767c\u52d5 DDoS \u653b\u64ca<\/a><\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-how-bad-can-it-get\/\">Shellshock \u2013 \u5b83\u6709\u591a\u7cdf\u7cd5\uff1f<\/a><\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/bash-bug-vulnerability-used-in-botnet-attacks\/\">Shellshock\u6f0f\u6d1e\u88ab\u7528\u5728\u50f5\u5c4d\u7db2\u8def<\/a><\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-updates-bashlite-ccs-seen-shellshock-exploit-attempts-in-brazil\/\">Shellshock \u66f4\u65b0\uff1a\u51fa\u73feBASHLITE C&amp;C\u548cShellshock\u6f0f\u6d1e\u653b\u64ca\u5728\u5df4\u897f<\/a><\/li>\n<li><a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-continues-to-make-waves-with-active-irc-bot\/\">Shellshock\u6301\u7e8c\u9020\u6210IRC\u50f5\u5c4d\u6a5f\u5668\u4eba\u7684\u51fa\u73fe<\/a><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p>\u4f7f\u7528\u8005\u4e5f\u53ef\u4ee5\u53c3\u8003\u6211\u5011\u7684\u7dda\u4e0a\u6587\u7ae0 \u2013 <a href=\"https:\/\/blog.trendmicro.com.tw\/?p=9961\">\u95dc\u65bcShellshock\u6f0f\u6d1e\uff1a\u300cBash\u81ed\u87f2\u300d\u57fa\u790e<\/a>\uff0c\u5feb\u901f\u7c21\u6613\u7684\u6982\u8ff0\u4e86Shellshock\u5230\u5e95\u662f\u4ec0\u9ebc\u548c\u5b83\u70ba\u4ec0\u9ebc\u5f71\u97ff\u9019\u9ebc\u5927\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"https:\/\/www.trendmicro.com.tw\/edm\/Tracking.asp?id=2651&amp;name=20110916\">\u8da8\u52e2\u79d1\u6280<\/a>\u6703\u6301\u7e8c\u63d0\u4f9b\u95dc\u65bc\u6b64\u6f0f\u6d1e\u7684\u66f4\u65b0,\u4f7f\u7528\u8005\u53ef\u4ee5\u7684<a href=\"https:\/\/blog.trendmicro.com.tw\/?cat=1761\">\u5230\u9019\u88e1<\/a>\u4f86\u7372\u5f97\u6700\u65b0\u8cc7\u8a0a\u3002<\/p>\n<p><a href=\"https:\/\/blog.trendmicro.com.tw\/?cat=1761\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-9933\" src=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/Bash-Shell-TM940x312_0926.jpg\" alt=\"Bash Shell TM940x312_0926\" width=\"940\" height=\"312\" srcset=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/Bash-Shell-TM940x312_0926.jpg 940w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/Bash-Shell-TM940x312_0926-300x99.jpg 300w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/Bash-Shell-TM940x312_0926-600x199.jpg 600w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2014\/09\/Bash-Shell-TM940x312_0926-800x266.jpg 800w\" sizes=\"(max-width: 940px) 100vw, 940px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>\uff20\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/shellshock-exploit-attempts-continue-in-china\/\">Shellshock Exploit Attempts Continue in China<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u770b\u8d77\u4f86Shellshock\/ Bash \u6f0f\u6d1e\u653b\u64ca\u771f\u6b63\u5730\u958b\u9580\u51fa\u9598\u4e86\u3002\u6211\u5011\u5df2\u7d93\u5831\u5c0e\u904e\u4e0d\u540c\u7684\u653b\u64ca\u4f86\u5229\u7528Bash\u6f0f\u6d1e\uff0c [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":9933,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[1761,1762,156,179],"tags":[1770,2365],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/9971"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9971"}],"version-history":[{"count":0,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/9971\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/media\/9933"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9971"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9971"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9971"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}