Home » Hacking News » CSSA-2002-SCO.10-OpenSSH channel code vulnerability

CSSA-2002-SCO.10-OpenSSH channel code vulnerability

by Nikola Strahija on March 13th, 2002 A bug exists in the channel code of OpenSSH versions 2.0 though 3.0.2. Existing users can use this bug to gain root privileges. The ability to exploit this vulnerability without an existing user account has not yet been proven, but it is considered possible. A malicious ssh server could also use this bug to exploit a connecting vulnerable client.

Vulnerable Supported Versions

Operating System Version Affected Files
------------------------------------------------------------------
OpenServer discovered and researched this
vulnerability.

From the forum

The forums are now OPEN AGAIN!

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Our online shop
Top sellers
New Items
Books
Software

Xatrix.org © Copyright 2001-2016, Xatrix Security . All Rights Reserved
We worried for decades about WMDs – Weapons of Mass Destruction. Now it is time to worry about a new kind of WMDs – Weapons of Mass Disruption - John Mariotti

Users login

JOIN XATRIX

CSSA-2002-SCO.10-OpenSSH channel code vulnerability

Related articles

Advisories

Vulnerabilities

From the forum

Newsletter signup

Free E-books

Contact