Alex Howells wrote:
Probably not and I can't think anyone hiding a 0-day is going to
release it for this. Sorry.
No 0-day needed here, Lenny does not have security updates, so all I need is
some PoC code already released in the last few months...
Paul Schmehl wrote:
Ask the hosting company
It's a firewalled LAN machine that had the VNC port open for a while, but
it's not hosted by a provider, my customer has it under its desk (yes, ok,
it's not really mine, but my customer doesn't even know what a computer
is). I can access it now with ssh through a tunnel, that's all I have.