Yealink Forums

Full Version: CVE-2014-6271 ShellShock Bash Exploit
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pretty sure Yealink is using Busybox like virtually all other embedded devices, and since it's not a bash shell (it's "sh") it's not vulnerable. Google busybox shellshock for details.
Hi All,

Since Bash model are not applied to Yealink phones all Yealink phone models are not vulnerable to the shellshock issue.

We will release an announcement later.

Regards,
James
Reference URL's