Bash shell contains a flaw that may allow a malicious user to run arbitrary commands embedded in the path to the current working directory. The issue is triggered when (PS1) contains '\w' or '\W', and the prompt is displayed the commands will be executed. It is possible that the flaw may allow malicious command execution resulting in a loss of integrity.

Upgrade to version 2.x or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): replace '\w' with '$PWD', and '\W' with '${PWD##*/}'.

• Bugtraq ID: 119
• CVE ID: 1999-0491 (see also: NVD) 1999-1383 (see also: NVD)
• ISS X-Force ID: 3531
• Other Advisory URL: ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-008.0.txt http://www.dataguard.no/bugtraq/1996_3/0503.html
  http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.9904202114070.6623-100000@smooth.Operator.org
• Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=87602167419868&w=2
  http://seclists.org/lists/bugtraq/1999/Apr/0217.html

• Shadow - shadowOperator.org -