Full Disclosure mailing list archives

Re: openssh remote exploit

From: Blue Boar <BlueBoar () thievco com>
Date: Tue, 16 Sep 2003 15:41:54 -0700

Darren Reed wrote:

No.  Does a vulnerability need an exploit before it becomes a hole ?

A programming error needs to be exploitable before it can be conclusivelycalled a vulnerability or a hole. One doesn't need to create an exploitfor it to be exploitable, but it rather nicely answers the question,doesn't it? It also often helps clarify what class of vulnerability it is.

None of which is news to you, you've been around a long time. Are youbaiting trolls or what?


                                        BB

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: openssh remote exploit, (continued)
- - Re: openssh remote exploit Diode Trnasistor (Sep 16)
  - Re: openssh remote exploit Darren Reed (Sep 16)
    - RE: openssh remote exploit Edward W. Ray (Sep 16)
    - Re: openssh remote exploit Darren Reed (Sep 16)
    - Re: openssh remote exploit Mike Griffin (Sep 16)
    - Re: openssh remote exploit KF (Sep 16)
    - Re: openssh remote exploit Henning Brauer (Sep 16)
    - Re: openssh remote exploit Peter Busser (Sep 19)
    - Re: openssh remote exploit petard (Sep 16)
    - Re: openssh remote exploit Darren Reed (Sep 16)
    - Re: openssh remote exploit Blue Boar (Sep 16)
    - Re: openssh remote exploit Richard Johnson (Sep 17)
    - Re: openssh remote exploit petard (Sep 17)
    - Re: openssh remote exploit Shawn McMahon (Sep 17)
    - Re: openssh remote exploit Richard Johnson (Sep 17)
    - AMDPatchB & InstallStub Michael Linke (Sep 17)
    - Re: AMDPatchB & InstallStub phlox (Sep 17)
    - AW: AMDPatchB & InstallStub Michael Linke (Sep 17)
    - Re: AW: AMDPatchB & InstallStub Jordan Wiens (Sep 17)
    - SV: AMDPatchB & InstallStub Peter Kruse (Sep 17)
    - AW: AMDPatchB & InstallStub Michael Linke (Sep 17)

(Thread continues...)