Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy]

From: Sean-Paul Rees (seanat_private)
Date: Mon Sep 27 1999 - 15:43:41 PDT

Next message: Valdis.Kletnieksat_private: "Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"

Previous message: Brock Tellier: "Re: Linux GNOME exploit"
Maybe in reply to: Marc SPARC: "[Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"
Next in thread: Valdis.Kletnieksat_private: "Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 27 Sep 1999, Dan Astoorian wrote:

> A trivial demo program that demonstrates the problem is attached.  (It
> needs no special privileges; run it as an unprivileged user in any
> writable directory.)  The program reports "okay" under Solaris 2.5.1 and
> IRIX 6.5.2, "vulnerable" under RedHat 6.

According to this program,

FreeBSD 3.3-STABLE/i386: Vulnerable
NetBSD 1.4.1/i386: Vulnerable
Debian GNU/Linux 2.2 (kernel 2.2.12)/i386: Vulnerable
Solaris 2.6/sparc: Okay

Cheers,
Sean

Next message: Valdis.Kletnieksat_private: "Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"
Previous message: Brock Tellier: "Re: Linux GNOME exploit"
Maybe in reply to: Marc SPARC: "[Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"
Next in thread: Valdis.Kletnieksat_private: "Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:05:37 PDT