Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: openssh remote exploit

From: Darren Reed <avalon () caligula anu edu au>
Date: Wed, 17 Sep 2003 06:49:30 +1000 (Australia/ACT)
In some mail from petard, sie said:


On Wed, Sep 17, 2003 at 02:41:16AM +1000, Darren Reed wrote:
DR:> In some mail from auto64746 () hushmail com, sie said:
[Offtopic] Really, must we politicise everything?! It is 
more informative and equally gender-neutral to state:
"On <timestamp>, <sender's name/address> wrote:"


I've been using "sie" for more likely longer than you have been using
the Internet so :-P


[/Offtopic]

DR:> And  I'm sure this will manage to be another remote exploit that
DR:> the OpenBSD team will find a way to not count on their front page.

As far as I can tell, this is another remote exploit that the OpenBSD
team should not count on their front page. It does not appear to be 
exploitable on OpenBSD in any configuration I have here, and no one
I've been in communication with has seen any OBSD boxes compromised.

Do you have any knowledge of a working exploit against OpenBSD?


No.  Does a vulnerability need an exploit before it becomes a hole ?

Darren

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: