From owner-freebsd-security  Fri Mar 29  6:40:27 2002
Delivered-To: freebsd-security@freebsd.org
Received: from web11603.mail.yahoo.com (web11603.mail.yahoo.com [216.136.172.55])
	by hub.freebsd.org (Postfix) with SMTP id AACC537B41E
	for <security@freebsd.org>; Fri, 29 Mar 2002 06:40:16 -0800 (PST)
Message-ID: <20020329144016.41468.qmail@web11603.mail.yahoo.com>
Received: from [24.189.82.162] by web11603.mail.yahoo.com via HTTP; Fri, 29 Mar 2002 06:40:16 PST
Date: Fri, 29 Mar 2002 06:40:16 -0800 (PST)
From: Holt Grendal <holtor@yahoo.com>
Subject: Fwd: OpenSSH channel_lookup() off by one exploit
To: security@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


Has this been fixed in freebsd?

Holt

--- Morgan <morgan@sexter.com> wrote:
> From: "Morgan" <morgan@sexter.com>
> To: <bugtraq@securityfocus.com>, <vuln-dev@securityfocus.com>
> Subject: OpenSSH channel_lookup() off by one exploit
> Date: Wed, 27 Mar 2002 22:23:51 -0500
> 
> OpenSSH 2.9* Proof of Concept exploit..
> 
> note to moderator: read LICENCE agreement.
> 
> 
> 

> ATTACHMENT part 2 application/x-compressed name=osshchan.tgz



__________________________________________________
Do You Yahoo!?
Yahoo! Greetings - send holiday greetings for Easter, Passover
http://greetings.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message