[ale] Fwd: [Full-Disclosure] Remote root in LSH
Jonathan Rickman
jonathan at xcorps.net
Fri Sep 19 14:45:29 EDT 2003
Gotta love it...
---------- Forwarded Message ----------
Subject: [Full-Disclosure] Remote root in LSH
Date: Friday 19 September 2003 08:57
From: Haggis <haggis at learningshophull.co.uk>
To: full-disclosure at lists.netsys.com
After reading about a theoretical remote hole in OpenSSH and many
detractors smugly saying that they weren't vulnerable because they run
LSH (a free alternative), I'd like to present a working remote root
exploit against LSH version 1.4.x.
Enjoy.
-------------------------------------------------------
--
Jonathan Rickman
Key ID: 0DF501FF
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lsh_exploit.c
Type: text/x-csrc
Size: 7444 bytes
Desc: not available
More information about the Ale
mailing list