Twenty Year Anniversary
Showing 1 - 1 of 1 RSS Feed

Files

adv_ssh1crc.txt
Posted Feb 9, 2001
Authored by Michal Zalewski | Site razor.bindview.com

Razor Bindview Advisory - A remote root vulnerability exists in the crc32 compensation attack detector (deattack.c) of most ssh daemon installations (F-SECURE, OpenSSH, SSH from ssh.com, OSSH). Insufficient range control calculations (16-bit unsigned variable is used instead of 32-bit, which causes integer overflow) in the detect_attack() function leads to table index overflow bug. This effectively allows an attacker to overwrite arbitrary portions of memory. The altered memory locations affect code that is executed by the daemon with uid 0, and this can be leveraged to obtain general root access to the system. This is fixed in OpenSSH 2.3.0, ossh-1.5.8, and SSH-2.4.0.

tags | remote, overflow, arbitrary, root
MD5 | c54b7076bfc79421c5985ff3b7b65cb7
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Oracle Releases Patch To Address Over 300 Security Issues
Posted Oct 17, 2018

tags | headline, linux, database, flaw, patch, oracle
LibSSH Flaw Leaves Thousands Of Servers At Risk Of Hijacking
Posted Oct 17, 2018

tags | headline, hacker, flaw, cryptography
GreyEnergy Targets Critical Infrastructure Companies
Posted Oct 17, 2018

tags | headline, government, malware, cyberwar, scada
Investigation Expanded Into Bogus Net Neutrality Comments
Posted Oct 17, 2018

tags | headline, government, usa, fraud
Personal Records Of 30,000 US Department Of Defense Workers Swiped By Miscreants
Posted Oct 16, 2018

tags | headline, hacker, government, privacy, usa, data loss, cyberwar, military
Anthem Agrees To Pay $16 Million In Data Breach Privacy Settlement
Posted Oct 16, 2018

tags | headline, privacy, data loss
Microsoft Co-Founder Paul Allen Dies At 65
Posted Oct 16, 2018

tags | headline, microsoft
The Donald Daters Trump Dating App Exposed Its Users Data
Posted Oct 16, 2018

tags | headline, privacy, data loss
Facebook Says 14 Million People Got Their Location Data And Private Search History Stolen
Posted Oct 15, 2018

tags | headline, hacker, privacy, data loss, identity theft, facebook, social
Facebook Hack Victims Will Not Get ID Theft Protection
Posted Oct 15, 2018

tags | headline, hacker, privacy, data loss, identity theft, facebook
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close