[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] OpenSSH exploit

To: ray@xxxxxxxx
Subject: Re: [Full-Disclosure] OpenSSH exploit
From: itojun@xxxxxxxxxx (Jun-ichiro itojun Hagino)
Date: Wed, 17 Sep 2003 09:07:01 +0900 (JST)

> Is there a complete list of vulnerable versions of OpenSSH including 
> the 2.x branches?  In other words how far back does this issue go?

        as far as i see buffer.c issue goes back to revision 1.1 (= import
        from tatu's original ssh).

itojun

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] OpenSSH exploit
  - From: Ray Slakinski

Prev by Date: Re: [Full-Disclosure] OpenSSH exploit
Next by Date: Re: [Full-Disclosure] IE Object Type Validation Vulnerability Exploit
Previous by thread: Re: [Full-Disclosure] OpenSSH exploit
Next by thread: Re: [Full-Disclosure] OpenSSH exploit
Index(es):
- Date
- Thread