Amendment to Ixia ATI Update 3.3.223518
We have rebuilt Ixia ATI Update 3.3.223518 and added a Strike to cover CVE-2014-6271. This is the new Bourne Again Shell vulnerability, branded Shellshock. The current Strike covers exploitation via HTTP CGI, we have provided variations that use different headers. Most PoC’s in the field rely solely on the User-Agent header, this Strike will utilize User-Agent, Accept, Accept-Language, Cache-Control, and Connection header fields.
Any customer wanting to test and validate newly defined signatures/updates from their security vendor can download the ATI update here:
We’re working on supplying further services for exploitation, like DNS, SSH, and will share those in an upcoming ATI.
xia ATI Update 3.3.223518