Vulnerability Development mailing list archives

Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow

From: ".JanusAurelius" <axc () andrew cmu edu>
Date: Sat, 20 Apr 2002 13:08:25 -0400 (EDT)

heh...
 it was there yesterday at about 4.
was in english and had some background and a tarball, instead of the 404 i
got this morning when i checked.
dunno what happened to it after that

.arthur


On Sat, 20 Apr 2002, N|ghtHawk wrote:

On that site:
----
404 - az ?ltalad keresett oldal nem tal?lhat?!

K?rj?k, v?lassz az al?bbi oldalak k?z?l,
vagy a kereso seg?ts?g?vel megpr?b?lhatod megtal?lni az ?ltalad keresett
tartalmat
----

Yeah that makes sense...
Anyone got another link?

N|ghtHawk

-----Oorspronkelijk bericht-----
Van: Marcell Fodor <m.fodor () mail datanet hu>
Aan: vuln-dev () securityfocus com <vuln-dev () securityfocus com>
Datum: vrijdag 19 april 2002 21:00
Onderwerp: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable
buffer overflow




The bug affects servers offering Kerberos TGT
and/or AFS Token passing. The vulnerability can lead
to a root compromise.

more : mantra.freeweb.hu

Marcell Fodor

Current thread:

Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow N|ghtHawk (Apr 20)
- Re: OpenSSH 2.2.0 - 3.1.0 server contains a locally exploitable buffer overflow .JanusAurelius (Apr 20)