Bugtraq mailing list archives

ssh/rsaref bo exploit code

From: core.lists.bugtraq () CORE-SDI COM (Iván Arce)
Date: Thu, 16 Dec 1999 19:08:34 -0300


Well, for all of you  having problems with the diffs posted for the ssh
exploit,
the source distribution of ssh-1.2.27 with the modifications for the
exploit
and a binary for Linux Redhat 6.0 can be obtained from
<ftp://ftp.core-sdi.com/pub/exploits/ssh-rsaref-bo>

Please get that before emailing us with complains about it :)
-ivan

MD5 (README.exploit) = 840dd0e0868812e309c54f11282ba736
MD5 (exploit_key) = 3a7fd975c8c1466dedba02b39d9cc03c
MD5 (ssh-exploit.linux-redhat6.0) = fc805dba06638e410ebff1e18faf23d9
MD5 (ssh-exploit.tgz) = 92eb5f4b431981167a7c2bb3af925057

--
"Understanding. A cerebral secretion that enables one having it to know
 a house from a horse by the roof on the house,
 It's nature and laws have been exhaustively expounded by Locke,
 who rode a house, and Kant, who lived in a horse." - Ambrose Bierce

==================[ CORE Seguridad de la Informacion S.A. ]=========
IvÃ¡n Arce
Presidente
PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836  B25D 207B E78E 2AD1 F65A
email: iarce () core-sdi com
http://www.core-sdi.com
Pte. Juan D. Peron 315 Piso 4 UF 17
1038 Capital Federal
Buenos Aires, Argentina.              Tel/Fax : +(54-11) 4331-5402
Casilla de Correos 877 (1000) Correo Central
===========================================================

--- For a personal reply use iarce () core-sdi com

Current thread:

Re: ssh-1.2.27 exploit, (continued)
- - - Re: ssh-1.2.27 exploit Iván Arce (Dec 13)
    - Re: ssh-1.2.27 exploit Beto (Dec 15)
    - FreeBSD 3.3 xsoldier root exploit Brock Tellier (Dec 15)
    - Xsoldier xploit (was: FreeBSD 3.3 xsoldier root exploit) Spidey (Dec 15)
    - BindView Security Advisory: Vulnerability in Windows NT's SYSKEY feature BindView Security Advisory (Dec 16)
    - Cisco Security Advisory: Cisco Cache Engine Authentication Vulnerabilities security-alert () CISCO COM (Dec 16)
    - Reinventing the wheel (aka "Decoding Netscape Mail passwords") Vanja Hrustic (Dec 15)
    - Re: Reinventing the wheel (aka "Decoding Netscape Mail passwords") John Viega (Dec 16)
    - Re: Reinventing the wheel (aka "Decoding Netscape Mail passwords") Tim Hollebeek (Dec 16)
    - Re: Reinventing the wheel (aka "Decoding Netscape Mail passwords") Aleph One (Dec 16)
    - ssh/rsaref bo exploit code Iván Arce (Dec 16)
    - Re: Reinventing the wheel (aka "Decoding Netscape Mail passwords") Rob Jones (Dec 16)
    - More on Red Hat 6.1 sysklogd David F. Skoll (Dec 19)
    - Security vulnerability in certain wu-ftpd (and derivitives) configurations (fwd) suid (Dec 19)
    - Netscape password scrambling Gary McGraw (Dec 20)
    - Re: Reinventing the wheel (aka "Decoding Netscape Mail passwords") Holger van Lengerich (Dec 20)
    - Microsoft Security Bulletin (MS99-059) Microsoft Product Security (Dec 20)
    - (Possible) Linuxconf Remote Buffer Overflow Vulnerability Elias Levy (Dec 21)
    - Infoseek Ultraseek Remote Buffer Overflow luciano (Dec 16)
    - Re: Infoseek Ultraseek Remote Buffer Overflow Marc (Dec 16)
  - Re: sadmind exploits (remote sparc/x86) Casper Dik (Dec 10)