Bugtraq mailing list archives

SSHD Exploit

From: jfoutts () APOLLO GTI NET (Justin Foutts)
Date: Sun, 1 Nov 1998 17:05:07 -0500


On a system I administer I found a program named sshdwarez.c in one of my
user's home directories.  Upon further inspection I found that this was
the source code of an x86/Linux remote buffer overflow exploit for sshd
versions 1.2.26 and below.  I have tested this exploit on a number of my
systems and have obtained remote root access on each one.  I will not post
this exploit as it could give crackers a tool to gain unauthorized access
to systems.  I STRONGLY recommend that everyone upgrade their versions of
sshd as soon as possible.

Thanks!
Justin

Current thread:

X11 cookie hijacker Pavel Kankovsky (Nov 02)
- SSHD Exploit Justin Foutts (Nov 01)
- ISS Security Advisory: BMC PATROL File Creation Vulnerability X-Force (Nov 02)
- Re: X11 cookie hijacker David Dawes (Nov 02)
  - Re: X11 cookie hijacker Alan Cox (Nov 03)
  - Re: X11 cookie hijacker Olaf Kirch (Nov 05)
- [rootshell] Security Bulletin #25 Aleph One (Nov 03)
- Re: X11 cookie hijacker Willy TARREAU (Nov 04)
- Re: X11 cookie hijacker Casper Dik (Nov 04)
- <Possible follow-ups>
- Re: X11 cookie hijacker der Mouse (Nov 04)
  - Regarding the reported DOS against the internal interface of a WatchGuard Rapid Response (Nov 04)
  - IE 4.x does not appear to save custom security settings John Schultz (Nov 04)

(Thread continues...)