Vulnerabilities that permit remote network attacks against ubiquitous software components are the nightmares of security professionals. On 24 September the presence of a new vulnerability, CVE-2014-6271 in Bash shell allowing remote code execution was disclosed. The danger is that in some circumstances the Bash shell environment variables may be set across a privilege boundary allowing a system or user with low privileges to execute arbitrary code. The vulnerability affects Bash versions up to, and including 4.3. This affects many implementations of Linux and may also concern electronic devices that include Bash to provide scripting functionality.”]
Source: https://blog.talosintelligence.com/2014/09/another-major-vulnerability-bashes.html