Apple releases three patches to address vulnerabilities in Bash, commonly known as Shellshock. If exploited, Shellshock could allow an attacker to execute commands on the targeted host. OS X users are at risk if they’ve enabled remote login for all users, including guests. Older versions of OS X, Lion or earlier, that have enabled Apache, PHP, or other scripting environment are also at risk. Experts from the SANS Institute have offered some essential advice for addressing Shellshock within your organization. The full details are available here.”]
Source: https://www.csoonline.com/article/2689216/apple-publishes-patch-for-shellshock-vulnerability.html