[Python-Dev] Critical bash vulnerability CVE-2014-6271 may affect Python on *n*x and OSX
marko at pacujo.net
Fri Sep 26 06:31:15 CEST 2014
Steven D'Aprano <steve at pearwood.info>:
> Perhaps I'm missing something, but aren't there easier ways to attack
> os.system than the bash env vulnerability?
The main concern is the cases where you provide a service accessible
through an SSH login and try to sandbox the client with limited
functionality. SSH passes some environment variables on to the service
which can then be used as an XSS vector.
For example, if you wrote an SVN server's SSH front end with Python and
used subprocess.Popen(shell=True) to execute the SVN operations, you
could become a victim.
More information about the Python-Dev