Burak w openssh?

Jakub Bogusz qboosh at pld.org.pl
Tue Jan 7 00:13:20 CET 2003 

On Mon, Jan 06, 2003 at 10:48:54PM +0100, Tomek Orzechowski wrote:
> http://www.7thguard.net/news.php?id=2564

News już uaktualniony jak widzę.

> openssh-3.5pl1 wyląduje w updates, czy jak?
> Na razie trochę ciepło mi się zrobiło i nie myślę logicznie, więc czekam
> na odzew (nie tylko wasz) i... buduję pakiety na jutro rano.

----- Forwarded message from Global InterSec Research <lists at globalintersec.com> -----

Mailing-List: contact bugtraq-help at securityfocus.com; run by ezmlm
Precedence: bulk
List-Id: <bugtraq.list-id.securityfocus.com>
List-Post: <mailto:bugtraq at securityfocus.com>
List-Help: <mailto:bugtraq-help at securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-unsubscribe at securityfocus.com>
List-Subscribe: <mailto:bugtraq-subscribe at securityfocus.com>
X-Sender: ??
X-Mailer: UNKNOWN
Date: Mon, 06 Jan 2003 20:05:32 +0000
To: bugtraq at securityfocus.com
From: Global InterSec Research <lists at globalintersec.com>
Subject: Re: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS


As some may have gathered, the advisory recently posted by mmhs at hushmail.com 
was indeed a fake, intended to highlight several unclear statements made in GIS2002062801. 

The advisory in question is currently being updated with more detailed information and will be 
re-posted at: http://www.globalintersec.com/adv/openssh-2002062801.txt as soon as it becomes 
available.

Note that the kbd-init flaw described in GIS2002062801 was proven to be exploitable in our lab
although not all evidence to demonstrate this was provided in the original advisory. A mistake
was made in the original advisory draft, where chunk content data was shown, rather than the
entire corrupted malloc chunk. This will be amended in the revision.

Also note that to our knowledge there are currently no known, exploitable flaws in OpenSSH 3.5p1, 
due to its use of PAM as suggested by mmhs at hushmail.com. It is almost certain that the posted
bogus advisory was also intended to cause alarm amongst communities using OpenSSH, through
miss-information.


Global InterSec LLC.

----- End forwarded message -----

-- 
Jakub Bogusz    http://www.cs.net.pl/~qboosh/

More information about the pld-devel-pl mailing list