[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] ssh remote root exploit :-(

Subject: [ale] ssh remote root exploit :-(
From: jonathan at xcorps.net (Jonathan Rickman)
Date: Tue, 25 Jun 2002 17:26:07 -0400 (EDT)


Everyone should be aware that this new version does not fix the
vulnerability. It only reduces the risk since the attacker can only
gain access to the sshd account due to the new priveledge separation
feature. This could still ruin your day if your system is miles away and
ssh is your only means of accessing it.

Just a reminder not to get too comfortable yet :)


-- 
Jonathan Rickman
X Corps Security
http://www.xcorps.net


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

Prev by Date: [ale] ssh remote root exploit :-(
Next by Date: [ale] ssh remote root exploit :-(
Previous by thread: [ale] ssh remote root exploit :-(
Next by thread: [ale] ssh remote root exploit :-(
Index(es):
- Date
- Thread