Full Disclosure: Re: OpenSSH exploit

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: OpenSSH exploit

From: Adam Dyga <adeon () o2 pl>
Date: Tue, 16 Sep 2003 22:53:25 +0200


| Is there a complete list of vulnerable versions of OpenSSH including
| the 2.x branches?  In other words how far back does this issue go?

Just compare buffer_append_space() function in buffer.c in all versions you 
are interested in...

-- 
Greets
adeon

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

OpenSSH exploit Ray Slakinski (Sep 16)
- Re: OpenSSH exploit christopher neitzert (Sep 16)
- Re: OpenSSH exploit Jun-ichiro itojun Hagino (Sep 16)
- Re: OpenSSH exploit Adam Dyga (Sep 16)