[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] OpenSSH exploit

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] OpenSSH exploit
From: Adam Dyga <adeon@xxxxx>
Date: Tue, 16 Sep 2003 22:53:25 +0200

| Is there a complete list of vulnerable versions of OpenSSH including
| the 2.x branches?  In other words how far back does this issue go?

Just compare buffer_append_space() function in buffer.c in all versions you 
are interested in...

-- 
Greets
adeon

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] OpenSSH exploit
  - From: Ray Slakinski

Prev by Date: [Full-Disclosure] Re: Contents of Full-Disclosure digest...
Next by Date: Re: [Full-Disclosure] new ssh exploit?
Previous by thread: Re: [Full-Disclosure] OpenSSH exploit
Next by thread: RE: [Full-Disclosure] IE Object Type Validation Vulnerability Exp loit
Index(es):
- Date
- Thread