Huzaifa Sidhpurwala: […] the vulnerability arises from the fact that you can create environment variables with specially-crafted values before calling the Bash shell. These variables can contain code, which gets executed as soon as the shell is invoked. The name of these crafted variables does not matter, only their contents. […] Bash has functions, though … Continue reading Shellshock Security Bug in Bash