[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] SSH EXPLOIT IN THE WILD

Subject: RE: [cobalt-users] SSH EXPLOIT IN THE WILD
From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
Date: Tue Sep 16 12:36:02 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

HN> Date: Tue, 16 Sep 2003 21:35:14 +0200
HN> From: H.P. Noordam


HN> The freebsd team has released a security warning indicating
HN> that the bug is able to crash the ssh server, but is believed
HN> to be unable to execute code. Does anyone know how the
HN> redhat/cobalt version will behave ?  Crash only, or run code
HN> ...

AFAIK:

It's believed Linux is vulnerable to code execution.  Linux and
FreeBSD have different memory heap implementations, and some
internal management data structures are in harm's way with Linux.


Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 785 865 5885 Lawrence and [inter]national
Phone: +1 316 794 8922 Wichita
_________________________________________________________________
          DO NOT send mail to the following addresses :
  blacklist@xxxxxxxxx -or- alfra@xxxxxxxx -or- curbjmp@xxxxxxxx
Sending mail to spambait addresses is a great way to get blocked.

References:
- RE: [cobalt-users] SSH EXPLOIT IN THE WILD
  - From: H.P. Noordam

Prev by Date: RE: [cobalt-users] SSH EXPLOIT IN THE WILD
Next by Date: Re: [cobalt-users] SSH EXPLOIT IN THE WILD
Previous by thread: RE: [cobalt-users] SSH EXPLOIT IN THE WILD
Next by thread: OT RE: [cobalt-users] Who's been stealing my graphics?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index