On Monday 15 September 2003 22:45, phlox wrote: does privilege separation prevent the bug from being exploited?
> yes there is a vuln for 3.6p1. > I believe there is a patch for buffer.c, dont know if its publicly > available? > > -phlox > > ----- Original Message ----- > From: "christopher neitzert" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Monday, September 15, 2003 9:02 AM > Subject: [Full-Disclosure] new ssh exploit? > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html -- e-admin internet gmbh Andreas Gietl tel +49 941 3810884 Ludwig-Thoma-Strasse 35 fax +49 (0)1805/39160 - 29104 93051 Regensburg mobil +49 171 6070008 PGP/GPG-Key unter http://www.e-admin.de/gpg.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
