HackFest Series: "Is it safe yet" or SSH Buffer Overflows and You
Lisa Kachold
lisakachold at obnosis.com
Thu Oct 30 00:25:09 MST 2008
SSH buffer overflow exploit - season to taste:
http://www.milw0rm.org/exploits/6804
History:
OpenSSH Challenge Response Buffer Overflow: http://www.securityfocus.com/bid/5093
Report 2001 - updated last Nov 05 2007 02:45PM
Other boundary exploits, kerberos, auth and encryption exploits and overflows exist making encroachment via SSH trivial.
Security Vulnerabilities per OpenSSH version: http://www.openssh.com/security.html
Check your configuration options against known exploits for your version of SSH!
http://wapedia.mobi/en/Obnosis | http://en.wiktionary.org/wiki/Citations:obnosis | Obnosis.com (503)754-4452
Laugh at this MSN Footer
_________________________________________________________________
When your life is on the go—take your life with you.
http://clk.atdmt.com/MRT/go/115298558/direct/01/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.PLUG.phoenix.az.us/pipermail/plug-discuss/attachments/20081030/116fce6b/attachment.htm
More information about the PLUG-discuss
mailing list