[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Upcoming OpenSSH vulnerability

To: misc@openbsd.org
Subject: Re: Upcoming OpenSSH vulnerability
From: Rémi Guyomarch <rguyom@pobox.com>
Date: Tue, 25 Jun 2002 09:08:16 +0200
Content-Disposition: inline
References: <200206242100.g5OL0BLJ019128@cvs.openbsd.org>
User-Agent: Mutt/1.2.5.1i

On Mon, Jun 24, 2002 at 03:00:10PM -0600, Theo de Raadt wrote:
> There is an upcoming OpenSSH vulnerability that we're working on with
> ISS.  Details will be published early next week.
> 
> However, I can say that when OpenSSH's sshd(8) is running with priv
> seperation, the bug cannot be exploited.

Does it means that this bug can be exploited when sshd is running with
"PermitRootLogin yes" ?

-- 
Rémi

Follow-Ups:
- Re: Upcoming OpenSSH vulnerability
  - From: Pedro Bastos <pbastos@rdc.puc-rio.br>
- Re: Upcoming OpenSSH vulnerability
  - From: Theo de Raadt <deraadt@cvs.openbsd.org>

References:
- Upcoming OpenSSH vulnerability
  - From: Theo de Raadt <deraadt@cvs.openbsd.org>

Prev by Date: Re: Worship the fish...
Next by Date: Re: Samsung m-1210
Prev by thread: Re: Upcoming OpenSSH vulnerability
Next by thread: Re: Upcoming OpenSSH vulnerability
Index(es):
- Date
- Thread