APM: Critical Exploit

Wed Jun 26 17:27:13 CDT 2002

On Wed, Jun 26, 2002 at 10:57:16AM -0500, Wayne Walker wrote:
> OK,
> There is a critical exploit in ssh.  I don't know details, I heard it as
> a rumor yesterday.

openssh, actually.
http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20584

openbsd finally had to change their motto!

-- 
<BLINK> ;for (74,1970500640,1634627444,1751478816,1348825708,543711587,
1801810465){for($x=1<<1^1;$x>=1>>1;$x--) {$q=hex ff,$r=oct($x=~s,\d,$&*
10,e,$x),$x/=1/.1,$q<<=$r,$s.=chr (($_&$q)>>$r),$t++}}while($= ||= !$|)
{$o=$o?$?:$/;$|=1;print $o?$s:$"x$t if$;;print"\b"x$t;sleep 1} </BLINK>