Re: SSH-1.2.27 & RSAREF2 exploit

From: Speed (speedat_private)
Date: Wed Dec 15 1999 - 13:07:11 PST

Next message: Iván Arce: "Re: SSH-1.2.27 & RSAREF2 exploit"

Previous message: Matus \: "Re: IRCnet IRCD 2.0x Reboot Bug"
Maybe in reply to: Iván Arce: "SSH-1.2.27 & RSAREF2 exploit"
Next in thread: Iván Arce: "Re: SSH-1.2.27 & RSAREF2 exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

However, don't be complacent because this particular exploit is not Kid
Tested.  A quite functional exploit of this vulnerability has been around
since at least 1998 (and that is only to my knowledge).

Moral of the story: patch your system or get rid of sshd 1.2.2x

On Tue, 14 Dec 1999, [iso-8859-1] Iván Arce wrote:

> The exploit is more or less "script-kid-proof" since if it doesnt work a
> bit of
> debugging, coding and probably crypto skills are needed to make it work.

Next message: Iván Arce: "Re: SSH-1.2.27 & RSAREF2 exploit"
Previous message: Matus \: "Re: IRCnet IRCD 2.0x Reboot Bug"
Maybe in reply to: Iván Arce: "SSH-1.2.27 & RSAREF2 exploit"
Next in thread: Iván Arce: "Re: SSH-1.2.27 & RSAREF2 exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:21:19 PDT