$Remote Code Execution Vulnerability in Bash 4.3 via '\h' Expansion$

Remote Code Execution Vulnerability in Bash 4.3 via '\h' Expansion

CVE-2016-0634 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine.

Learn more about our User Device Pen Test.