On Mon, 06 Jan 2003 at 06:44:17PM +0100, Domonkos Czinke wrote:
> ----- Original Message -----
> From: <mmhs@hushmail.com <mailto:mmhs@hushmail.com>>
> To: <bugtraq@securityfocus.com <mailto:bugtraq@securityfocus.com>>
> Sent: Sunday, January 05, 2003 4:37 AM
> Subject: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS
> > # gdb sshd 6552
This vulnerability seems to be useless if you have to be able to run gdb
locally AS ROOT (as demonstrated above)... If I have root access to a
machine....why am I trying to exploit a vulnerability?
....ponders....thinks...really hard...
Boy, I can't think of a good reason * :)
* Just because I can't think of a reason does not mean there isn't one.
Maybe a crazy person can tell me why...
Regards,
Phil
PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import
--
Excuse #93: Root name servers are out of sync
Attachment:
pgppmLPxnCRQw.pgp
Description: PGP signature