[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] openssh remote exploit

To: Darren Reed <avalon@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] openssh remote exploit
From: petard <petard@xxxxxxxxxxxxxxxx>
Date: Tue, 16 Sep 2003 20:07:37 +0000

On Wed, Sep 17, 2003 at 02:41:16AM +1000, Darren Reed wrote:
DR:> In some mail from auto64746@xxxxxxxxxxxx, sie said:
[Offtopic] Really, must we politicise everything?! It is 
more informative and equally gender-neutral to state:
"On <timestamp>, <sender's name/address> wrote:"
[/Offtopic]

DR:> And  I'm sure this will manage to be another remote exploit that
DR:> the OpenBSD team will find a way to not count on their front page.

As far as I can tell, this is another remote exploit that the OpenBSD
team should not count on their front page. It does not appear to be 
exploitable on OpenBSD in any configuration I have here, and no one
I've been in communication with has seen any OBSD boxes compromised.

Do you have any knowledge of a working exploit against OpenBSD?

Regards,

petard

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] openssh remote exploit
  - From: Darren Reed

References:
- Re: [Full-Disclosure] openssh remote exploit
  - From: auto64746
- Re: [Full-Disclosure] openssh remote exploit
  - From: Darren Reed

Prev by Date: [Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-03:12.openssh
Next by Date: Re: [Full-Disclosure] openssh remote exploit
Previous by thread: Re: [Full-Disclosure] openssh remote exploit
Next by thread: Re: [Full-Disclosure] openssh remote exploit
Index(es):
- Date
- Thread