Full Disclosure mailing list archives

Re: [Rumor] SSH 0-day

From: Anderson Kaiser <alpkaiser () gmail com>
Date: Wed, 8 Jul 2009 17:58:12 -0300

2009/7/8 Martin Spinassi <martins.listz () gmail com>:

Hi list,


I've been reading around (openssh mailing list, some forums, etc.) a
rumor about a 0-day exploit in openssh. Does anybody knows if there is
*really* something like this in the wild?


Cheers


Martin


This attack sounds more like a brute-force attack than a 0-day. You
can see it in the original post.


-- 
Anderson Kaiser
alpkaiser () gmail com
Linux User #: 426240

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

[Rumor] SSH 0-day Martin Spinassi (Jul 08)
- Re: [Rumor] SSH 0-day Ben Rosenberg (Jul 08)
- Re: [Rumor] SSH 0-day Anderson Kaiser (Jul 08)
  - Re: [Rumor] SSH 0-day frank^2 (Jul 08)
- <Possible follow-ups>
- Re: [Rumor] SSH 0-day Kaspar Mendev (Jul 09)
  - Re: [Rumor] SSH 0-day James Matthews (Jul 09)
    - Re: [Rumor] SSH 0-day Charles Majola (Jul 09)
    - Re: [Rumor] SSH 0-day Kevin Wilcox (Jul 09)
    - [Rumor] SSH 0-day Kevin Wilcox (Jul 09)
- Re: [Rumor] SSH 0-day Digital Jihad (Jul 10)