|
|
Re: lug-bg: [Fwd: [Full-Disclosure] **NEW** OpenSSH Vuln Today]
- Subject: Re: lug-bg: [Fwd: [Full-Disclosure] **NEW** OpenSSH Vuln Today]
- From: Plamen Tonev <micro@xxxxxxxxx>
- Date: Wed, 24 Sep 2003 13:20:35 +0300
- Organization: Fadata Ltd.
On Wed, 24 Sep 2003 12:19:33 +0300
Georgi Chorbadzhiyski <gf@xxxxxxxxxxx> wrote:
Da ne govorim che poslednite
> bugove, dosega nikoi ne e dokazal che sa remote exploitable, samo che
> mogat da prichiniat DoS.
Sorry za loshata novina...dnes do 11h beshe taka...no veche ne:
It has been reported that multiple bugs and vulnerabilities exist in
the PAM implementation in the Portable OpenSSH code. At least one
issue has been confirmed exploitable when OpenSSH is configured with
"UsePam" and without "UsePrivilegeSeparation".
Predpolagam che ne e "in the wild" vse oshte ...no vse pak!
Pozdravi, Plamen
--
"When did I realize I was God? Well, I was praying and I suddenly
realized I was talking to myself."
Peter O'Toole.
---------------------------------------------------------------------------
Public PGP key at: http://pgp.mit.edu
pub 1024D/98D3363F 2003/08/16 Plamen Tonev (MiCRoPhoBIC) <micro@xxxxxxxxx>
Key fingerprint = 5D08 C610 0F09 618E 3515 5C87 0F62 3808 98D3 363F
---------------------------------------------------------------------------
Attachment:
pgp8xJOlV0pzF.pgp
Description: PGP signature
|
|
|