[ale] Fwd: [Full-Disclosure] Remote root in LSH
Dan Newcombe
Newcombe at mordor.clayton.edu
Fri Sep 19 16:57:30 EDT 2003
Now we just need something like this for qmail and postfix as well to
quell the anti-sendmail crowd. Then we can stop the infighting :)
On Fri, 19 Sep 2003, Jonathan Rickman wrote:
> Gotta love it...
>
> ---------- Forwarded Message ----------
>
> Subject: [Full-Disclosure] Remote root in LSH
> Date: Friday 19 September 2003 08:57
> From: Haggis <haggis at learningshophull.co.uk>
> To: full-disclosure at lists.netsys.com
>
> After reading about a theoretical remote hole in OpenSSH and many
> detractors smugly saying that they weren't vulnerable because they run
> LSH (a free alternative), I'd like to present a working remote root
> exploit against LSH version 1.4.x.
>
> Enjoy.
>
> -------------------------------------------------------
>
>
>
> --
> Jonathan Rickman
> Key ID: 0DF501FF
>
>
More information about the Ale
mailing list