OpenSSH channel_lookup() off by one exploit

From: Morgan (morgan@sexter.com)
Date: 03/28/02

• Previous message: pokleyzz sakamaniaka: "postnuke v 0.7.0.3 remote command execution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Morgan" <morgan@sexter.com>
To: <bugtraq@securityfocus.com>, <vuln-dev@securityfocus.com>
Date: Wed, 27 Mar 2002 22:23:51 -0500

OpenSSH 2.9* Proof of Concept exploit..

note to moderator: read LICENCE agreement.

---

• application/x-compressed attachment: osshchan.tgz

---

• Previous message: pokleyzz sakamaniaka: "postnuke v 0.7.0.3 remote command execution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > bugtraq  > 2002-03