Log in

No account? Create an account
Linux Community's Journal
[Most Recent Entries] [Calendar View] [Friends View]

Thursday, March 7th, 2002

Time Event
Users with existing account can get root via OpenSSH 2.0 - 3.0.2
A bug exists in the channel code of OpenSSH versions 2.0 - 3.0.2

Users with an existing user account can abuse this bug to gain root privileges. Exploitability without an existing user account has not been proven but is not considered impossible. A malicious ssh server could also use this bug to exploit a connecting vulnerable client.

Advisory HERE: http://www.pine.nl/advisories/pine-cert-20020301.txt
BB0040 ? Does anybody have one ?
This may not be the place for this but i'm desperate.
Running a Gnet BB0040 DSL modem that has a simple port forwarding
command for port 80. For my apache web server which is behinf the modem after a hub.
nat inbound list: shows:
inbound list
# Interface Port/proto New IP addr Flags
1 ppp_device 80/tcp
BB0040 nat> Operation Mode : G.DMT

This doesn't work ? Any idea's ?

<< Previous Day 2002/03/07
Next Day >>
About LiveJournal.com