(The Hosting News) – A new security bug has been discovered in the Bash software used by Linux and Unix, a bug that security experts are saying could be worse than “Heartbleed.”
According to Reuters, the bug affects the Bash software used on Unix computer that control access to the command line interface.
Cyber security firm Trail of Bits chief executive Dan Guido says the Bash bug is different than Heartbleed in that Heartbleed allowed hackers to spy on computers where Bash enables hackers the ability to control targeted computer systems.
“The method of exploiting this issues is also far simpler. You can just cut and past a line of code and get good results,” said Guido.
“Using this vulnerability, attackers can potentially take over the operating system, access confidential information, make changes, et cetera,” stated security firm Rapid7’s engineering manager Tod Beardsley. “Anybody with systems using Bash needs to deploy the patch immediately.”
Beardsley noted that on a scale from to 10, the Bash bug is a “10.”
The Department of Homeland Security Emergency Reediness Team stated that Unix operating systems such as Linus and Apple Mac OS X could be affected by the vulnerability.