- Hint for key: CVE-2014-6271
-
Look up the CVE # on the NVD Database (or Google) to find it refers to the Shellshock vulnerability. Realize that "Blaise de Vigenere" created the Vigenere cipher. Use a Vigenere Decoder with the key “shellshock”.
-
Decoded text: Shellshock, also known as Bashdoor, is a family of security bugs in the Unix Bash shell. Shellshock could enable an attacker to cause Bash to execute arbitrary commands and gain unauthorized access to many Internet-facing services, such as web servers, that use Bash to process requests.flag is Shelldoyouwrong but put it in ctf format. Flag: jctf{Shelldoyouwrong}
You receive a cryptic message leaving you shell-shocked. Your butler Alberto hands you a note that says “You'll need this CVE-2014-6271 to find the key!”
He runs away while fresh hashbrowns fall out of his pockets. The rest is up to you.