Security teams must remember that Shellshock and other flaws are not gone even though theyve disappeared from media headlines. Some systems, due to age, end of life, or a vendors incompetence, still remain unpatched today. The more you have to patch, the longer it will take, and the more it costs to do so. How can infosec teams reduce the cumulative side effects from new vulnerabilities? Here are five suggestions:Ensure that your organization has a vulnerability assessment.”]
Source: https://www.darkreading.com/application-security/shellshock-s-cumulative-risk-one-year-later