Not sure if this belongs in the hacking section - Mods, feel free to move this somewhere else more appropriate:
On my iPad 4 Jailbroken on IOS 7.0.4, It appears that the system is vulnerable to the shellshock exploit. When SSHing into a terminal session, this command:
env x='() { :;}; echo vulnerable' bash -c 'echo this is a test'
Returns:
vulnerable
this is a test
This command:
env X="() { :;} ; echo vulnerable" /bin/sh -c "echo stuff"
Returns:
vulnerable
stuff
I've changed the root and mobile passwords for general security.
My question is: Is this a vulnerability in theory only, or can some malicious program or process actually take advantage of this?
Does being jailbroken make an iPad more vulnerable than stock iPads?
Thanks
On my iPad 4 Jailbroken on IOS 7.0.4, It appears that the system is vulnerable to the shellshock exploit. When SSHing into a terminal session, this command:
env x='() { :;}; echo vulnerable' bash -c 'echo this is a test'
Returns:
vulnerable
this is a test
This command:
env X="() { :;} ; echo vulnerable" /bin/sh -c "echo stuff"
Returns:
vulnerable
stuff
I've changed the root and mobile passwords for general security.
My question is: Is this a vulnerability in theory only, or can some malicious program or process actually take advantage of this?
Does being jailbroken make an iPad more vulnerable than stock iPads?
Thanks