{"id":9988,"date":"2014-09-27T11:15:22","date_gmt":"2014-09-27T03:15:22","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=9988"},"modified":"2014-09-30T11:32:17","modified_gmt":"2014-09-30T03:32:17","slug":"shellshock%e6%8c%81%e7%ba%8c%e9%80%a0%e6%88%90irc%e6%a9%9f%e5%99%a8%e4%ba%ba%e7%9a%84%e5%87%ba%e7%8f%be","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=9988","title":{"rendered":"Shellshock\u6301\u7e8c\u9020\u6210IRC\u6a5f\u5668\u4eba\u7684\u51fa\u73fe"},"content":{"rendered":"

\u6108\u4f86\u6108\u591a\u653b\u64ca\u5229\u7528\u6b64Shellshock\/ Bash \u6f0f\u6d1e<\/a> !!<\/strong><\/p>\n

\u5728\u6b64\u6f0f\u6d1e\u88ab\u5831\u5c0e\u5f8c\u50c5\u50c5\u5e7e\u500b\u5c0f\u6642\uff0c\u6240\u5e36\u4f86\u7684\u60e1\u610f\u8edf\u9ad4<\/a>\uff08\u5982ELF_BASHLITE.A<\/a>\uff09\u5c31\u51fa\u73fe\u5728\u5a01\u8105\u60c5\u52e2\u4e2d\u3002\u5176\u4ed6\u7684\u6703\u5e36\u4f86\u7684\u60e1\u610f\u7a0b\u5f0f\u50cf\u662fPERL_SHELLBOT.WZ<\/a>\u548cELF_BASHLET.A<\/a>\u4e5f\u5728\u771f\u5be6\u4e16\u754c\u4e2d\u51fa\u73fe\uff0c\u6709\u80fd\u529b\u53bb\u57f7\u884c\u547d\u4ee4\uff0c\u5f9e\u800c\u5371\u5bb3\u7cfb\u7d71\u6216\u4f3a\u670d\u5668\u3002<\/p>\n

\u9664\u4e86\u6703\u5e36\u4f86\u9019\u4e9b\u60e1\u610f\u8edf\u9ad4\uff0c\u4e5f\u6709\u91dd\u5c0d\u5df2\u77e5\u6a5f\u69cb\u9032\u884cDDoS\u653b\u64ca<\/a>\u7684\u5831\u544a\u3002\u7d93\u904e\u6211\u5011\u7684\u8abf\u67e5\uff0c\u6211\u5011\u767c\u73fe\u5230\u5728\u5df4\u897f\u6709\u6f0f\u6d1e\u653b\u64ca<\/a>\u7684\u51fa\u73fe\uff0c\u53bb\u6e2c\u8a66\u76ee\u6a19\u4f3a\u670d\u5668\u662f\u5426\u6709\u6f0f\u6d1e\u3002\u9019\u610f\u5473\u8457\u5e55\u5f8c\u7684\u653b\u64ca\u8005\u53ef\u80fd\u662f\u60f3\u8981\u6536\u96c6\u60c5\u5831\uff0c\u4e00\u65e6\u4ed6\u5011\u53d6\u5f97\u6240\u9700\u8981\u7684\u8cc7\u8a0a\uff0c\u5c31\u53ef\u80fd\u53bb\u9032\u884c\u63a5\u4e0b\u4f86\u7684\u653b\u64ca\uff0c\u9032\u800c\u53bb\u6ef2\u900f\u5165\u4ed6\u5011\u7684\u76ee\u6a19\u7db2\u8def\u3002<\/p>\n

\u8da8\u52e2\u79d1\u6280<\/a>\u7684\u7814\u7a76\u4eba\u54e1\u6b63\u5728\u4e0d\u65b7\u5730\u76e3\u8996\u53ef\u80fd\u5229\u7528Shellshock\/ Bash \u6f0f\u6d1e<\/a><\/strong>\u3002\u6839\u64da\u8da8\u52e2\u79d1\u6280<\/a>\u7684\u8abf\u67e5\uff0c\u767c\u73fe\u6709\u6d3b\u8e8d\u4e2d\u7684IRC\u6a5f\u5668\u4eba\uff08\u7db2\u969b\u7db2\u8def\u4e2d\u7e7c\u804a\u5929\uff09\u6703\u53bb\u5229\u7528Bash\u6f0f\u6d1e\u3002\u8da8\u52e2\u79d1\u6280\u5c07\u6b64\u6a5f\u5668\u4eba\u5075\u6e2c\u70baPERL_SHELLBOT.CE<\/a>\u3002\u53d7\u611f\u67d3\u7684\u7cfb\u7d71\u6703\u900f\u904e\u7aef\u53e35190\u9023\u5230IRC\u4f3a\u670d\u5668\uff0cus[\u9ede]bot[\u9ede]nu\uff0c\u52a0\u5165IRC\u983b\u9053 \u2013 #bash\u3002\u63a5\u8457\u5b83\u6703\u7b49\u5f85\u4f86\u81ea\u9060\u7aef\u653b\u64ca\u8005\u7684\u547d\u4ee4\u3002\u5b83\u53ef\u4ee5\u9032\u884c\u4e0b\u5217\u6307\u4ee4\uff1a<\/p>\n

 <\/p>\n