[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Re: new openssh exploit in the wild! isFAKE AS SH@!

To: <adam@xxxxxxxxxxx>, "Full Disclosure" <full-disclosure@xxxxxxxxxx>
Subject: RE: [Full-Disclosure] Re: new openssh exploit in the wild! *isFAKE AS SH@!*
From: "Chris Eagle" <cseagle@xxxxxxxxxxxx>
Date: Fri, 19 Sep 2003 10:52:14 -0700

> Probably a scriptkiddie or some random idiot. The fun part was
> it came up totally different offsets then i mean TOTALLY different
> each time you ran it and if you gave it a offset it would "work"
> no matter what. For those people who ran it.. change all your 
> passwords. :)
> 
> /Adam

That is because all the "offset" calculator does is call rand()

Chris

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- Re: [Full-Disclosure] Re: new openssh exploit in the wild! * isFAKE AS SH@!*
  - From: Adam Balogh

Prev by Date: Re: [Full-Disclosure] idea
Next by Date: Re: [Full-Disclosure] new virus:
Previous by thread: Re: [Full-Disclosure] Re: new openssh exploit in the wild! * isFAKE AS SH@!*
Next by thread: [Full-Disclosure] [OpenPKG-SA-2003.041] OpenPKG Security Advisory (sendmail)
Index(es):
- Date
- Thread

RE: [Full-Disclosure] Re: new openssh exploit in the wild! *isFAKE AS SH@!*

RE: [Full-Disclosure] Re: new openssh exploit in the wild! isFAKE AS SH@!