1 |
This is for the "LSH isn't insecure anymore" crowd. |
2 |
|
3 |
|
4 |
-----Forwarded Message----- |
5 |
From: Haggis <haggis@×××××××××××××××××××.uk> |
6 |
To: bugtraq@×××××××××××××.com |
7 |
Subject: Remote root vuln in lsh 1.4.x |
8 |
Date: 19 Sep 2003 13:01:24 +0000 |
9 |
|
10 |
|
11 |
After reading about a theoretical remote hole in OpenSSH and many detractors |
12 |
smugly saying that they weren't vulnerable because they run LSH (a free |
13 |
alternative), I'd like to present a working remote root exploit against LSH |
14 |
version 1.4.x. |
15 |
|
16 |
Enjoy. |
17 |
-- |
18 |
Chris Gianelloni |
19 |
Developer, Gentoo Linux |
20 |
Games Team |
21 |
|
22 |
Is your power animal a pengiun? |