OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow

From: Marcell Fodor (m.fodorat_private)
Date: Fri Apr 19 2002 - 05:48:21 PDT

Next message: Knud Erik Højgaard: "weird IE6 crash"

Previous message: Steve Maks: "Where does the hole lie?"
Next in thread: Marcell Fodor: "Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow"
Reply: Marcell Fodor: "Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) The bug affects servers offering Kerberos TGT and/or AFS Token passing. The vulnerability can lead to a root compromise. more : mantra.freeweb.hu Marcell Fodor

Next message: Knud Erik Højgaard: "weird IE6 crash"
Previous message: Steve Maks: "Where does the hole lie?"
Next in thread: Marcell Fodor: "Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow"
Reply: Marcell Fodor: "Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 19 2002 - 12:02:26 PDT