Vulnerable SSH versions

To: debian-security@lists.debian.org
Subject: Vulnerable SSH versions
From: Michal Kara <lemming@atrey.karlin.mff.cuni.cz>
Date: Mon, 12 Nov 2001 11:30:49 +0100
Message-id: <[🔎] 20011112113049.A17462@atrey.karlin.mff.cuni.cz>

  Hi there!

  During this weekend, there has been paper posted to bugtraq named "Analysis of
SSH crc32 compensation attack detector exploit". It talks about a recorded
successful exploit using overflow in CRC32 compensation attack detection code, a
hole, which was discovered in February this year.

  In the appendices, there is also program checking if you are vulnerable by
checking the version string SSH daemon produces on connect. The newest Dewbian
Potato version produces string "SSH-1.5-OpenSSH-1.2.3" which is listed as
vulnerable to this security hole. However, the Debian advisory released in
February says refers to version 1.2.3 as having this fixed...

  So how it is? Who is wrong?

							  Thanks,
								Michal

-- 
PING 111.111.111.111 (111.111.111.111): 56 data bytes
...
---- Waiting for outstanding packets ----
No outstanding packets received, just two ordinary.

Reply to:

Follow-Ups:
- Re: Vulnerable SSH versions
  - From: Ethan Benson <erbenson@alaska.net>
- Re: Vulnerable SSH versions
  - From: Jö Fahlke <jorrit@jorrit.de>
- Re: Vulnerable SSH versions
  - From: Ville Uski <frtvu@fy.chalmers.se>

Prev by Date: Re: your mail
Next by Date: Re: Vulnerable SSH versions
Previous by thread: Re: your mail
Next by thread: Re: Vulnerable SSH versions
Index(es):
- Date
- Thread