Full Disclosure mailing list archives
Re: Remote root in LSH
From: Michael Renzmann <security () dylanic de>
Date: Fri, 19 Sep 2003 20:41:56 +0200
Hi. Jeremiah Cornelius wrote:
After reading about a theoretical remote hole in OpenSSH and many detractors smugly saying that they weren't vulnerable because they run LSH (a free alternative), I'd like to present a working remote root exploit against LSH version 1.4.x. Enjoy.O.K. Already! You rock.
So, can anyone confirm that the patch which was posted sooner today fixes this probllem?
Bye, Mike _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Remote root in LSH Haggis (Sep 19)
- Re: Remote root in LSH Jeremiah Cornelius (Sep 19)
- Re: Remote root in LSH Michael Renzmann (Sep 19)
- Re: Remote root in LSH Jeremiah Cornelius (Sep 19)