FIL-49-2014: Technology Alert: GNU Bourne-Again Shell (Bash) Vulnerability
FDIC Subscriptions sent this bulletin at 09/29/2014 04:21 PM EDTFinancial Institution Letter
Technology Alert: GNU Bourne-Again Shell (Bash) Vulnerability | FIL-49-2014 9/29/2014 |
Summary: |
The FDIC, as a member of the Federal Financial Institutions Examination Council (FFIEC), is issuing the attached alert advising financial institutions of a material security vulnerability with Linux and Unix operating systems that could allow an attacker to gain control of a bank's servers remotely. The vulnerability is commonly known as the GNU Bourne-Again Shell (Bash) or "Shellshock" vulnerability. Statement of Applicability to Institutions with Less than $1 Billion in Total Assets: This Financial Institution Letter (FIL) applies to all FDIC-supervised institutions. |
Suggested Distribution:
FDIC-Supervised Banks (Commercial and Savings)
Complete Financial Institution Letter: http://www.fdic.gov/news/news/financial/2014/fil14049.html
The FDIC does not send unsolicited e-mail. If this publication has reached you in error, or if you no longer wish to receive this service, please unsubscribe.