[Nottingham] ssh bug and exploit
Martin
nottingham at mailman.lug.org.uk
Tue Sep 16 23:23:00 2003
Martin Garton wrote:
> All,
>
> For those who havent hears yet, there appears to be a new remotely
> exploitable openssh bug in the wild.
>
> http://lists.netsys.com/pipermail/full-disclosure/2003-September/010116.html
BLAZINGLY FAST FIXES!
Just got this link off newsnet:
http://www.zip.com.au/~dtucker/openssh/openssh-3.7-relnotes.txt
Just as I get an email from Mandrake for my 9.1:
>>>>
________________________________________________________________________
Mandrake Linux Security Update Advisory
________________________________________________________________________
Package name: openssh
Advisory ID: MDKSA-2003:090
Date: September 16th, 2003
Affected versions: 8.2, 9.0, 9.1, Corporate Server 2.1,
Multi Network Firewall 8.2
________________________________________________________________________
Problem Description:
A buffer management error was discovered in all versions of openssh
prior to version 3.7. According to the OpenSSH team's advisory:
"It is uncertain whether this error is potentially exploitable,
however, we prefer to see bugs fixed proactively." There have also
been reports of an exploit in the wild.
MandrakeSoft encourages all users to upgrade to these patched openssh
packages immediately and to disable sshd until you are able to upgrade
if at all possible.
________________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0693
http://www.kb.cert.org/vuls/id/333628
http://www.openssh.com/txt/buffer.adv
________________________________________________________________________
Updated Packages:
[...]
>>>>
Wow! Very fast work indeed!!
Impressed,
Martin
--
----------------
Martin Lomas
martin@ml1.co.uk
----------------