Set the way-back machine to OpenSSH 1.2.1

To: debian-security@lists.debian.org
Subject: Set the way-back machine to OpenSSH 1.2.1
From: Brian Boonstra <boonstb@cmg.FCNBD.COM>
Date: Wed, 3 Jul 2002 12:13:02 -0500
Message-id: <[🔎] 200207031713.MAA00784@wo1203.cmg.FCNBD.COM>
In-reply-to: <E029A8E4-8806-11D6-BA36-00039355CFA6@suespammers.org>
References: <E029A8E4-8806-11D6-BA36-00039355CFA6@suespammers.org>

Let's say, hypothetically, that I happen to be responsible for a machine  
running OpenSSH 1.2.1.  I checked, and it's not vulnerable to the recent  
xmalloc() overflow seen on versions 3.x.

Are there any known *remote* root exploits on this version?  I realize lack  
of maintenance is a problem, but upgrading to 3.4 isn't really possible for  
several reasons.


		- Brian


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Set the way-back machine to OpenSSH 1.2.1
  - From: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>
- Re: ***DEB*: Set the way-back machine to OpenSSH 1.2.1
  - From: BYYIYKHLPSRU@spammotel.com

Prev by Date: Re: Good Day - spamassin
Next by Date: Re: Set the way-back machine to OpenSSH 1.2.1
Previous by thread: RE: NEWS RELEASE
Next by thread: Re: Set the way-back machine to OpenSSH 1.2.1
Index(es):
- Date
- Thread