[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] new ssh exploit?

To: Andreas Gietl <a.gietl@xxxxxxxxxx>
Subject: Re: [Full-Disclosure] new ssh exploit?
From: Florian Weimer <fw@xxxxxxxxxxxxx>
Date: Tue, 16 Sep 2003 23:59:58 +0200

Andreas Gietl <a.gietl@xxxxxxxxxx> writes:

> does privilege separation prevent the bug from being exploited?

This question is a bit premature.  There is no obvious way to exploit
this bug, so it's hard to give an answer.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] new ssh exploit?
  - From: Michael 'Moose' Dinn

References:
- [Full-Disclosure] new ssh exploit?
  - From: christopher neitzert
- Re: [Full-Disclosure] new ssh exploit?
  - From: phlox
- Re: [Full-Disclosure] new ssh exploit?
  - From: Andreas Gietl

Prev by Date: Re: [Full-Disclosure] iDEFENSE Security Advisory 09.16.03: Remote Root Exploitation of Default Solaris sadmind Setting
Next by Date: [Full-Disclosure] [Announcement] New Weekly Security Vulnerability List (fwd)
Previous by thread: Re: [Full-Disclosure] new ssh exploit?
Next by thread: Re: [Full-Disclosure] new ssh exploit?
Index(es):
- Date
- Thread