Re: Remote exploits in OpenSSH's sshd 1.2.33?
- From: comphelp@xxxxxxxxx (Todd H.)
- Date: 10 Nov 2006 02:12:48 -0600
"Felix E. Klee" <fk@xxxxxxxxx> writes:
Are there any known remote exploits in OpenSSH's sshd 1.2.33? (yes, it's
a very *old* version)
In general: Where do I find a list of remote exploits in OpenSSH?
Gotta do some sifting, but
http://www.securityfocus.com/vulnerabilities
will get you vulnerabilities that are applicable to a given version.
Select openssh as the vendor , openssh as the title, 1.2.3 as version
and you get
OpenSSH Challenge-Response Buffer Overflow Vulnerabilities
2002-06-24
http://www.securityfocus.com/bid/5093
SSH CRC-32 Compensation Attack Detector Vulnerability
2001-02-08
http://www.securityfocus.com/bid/2347
PKCS #1 Version 1.5 Session Key Retrieval Vulnerability
2001-02-06
http://www.securityfocus.com/bid/2344
--
Todd H.
http://www.toddh.net/
.
- Follow-Ups:
- Re: Remote exploits in OpenSSH's sshd 1.2.33?
- From: Felix E. Klee
- Re: Remote exploits in OpenSSH's sshd 1.2.33?
- References:
- Remote exploits in OpenSSH's sshd 1.2.33?
- From: Felix E. Klee
- Remote exploits in OpenSSH's sshd 1.2.33?
- Prev by Date: Re: chroot SFTP ONLY
- Next by Date: Re: Remote exploits in OpenSSH's sshd 1.2.33?
- Previous by thread: Remote exploits in OpenSSH's sshd 1.2.33?
- Next by thread: Re: Remote exploits in OpenSSH's sshd 1.2.33?
- Index(es):
Relevant Pages
|
|
