OpenSSH Challenge-Response Buffer Overflow Vulnerabilities

OpenSSH Challenge-Response Buffer Overflow Vulnerabilities

References:

Compromised OpenBSD 3.0 with SSH *GOBBLE* (Honeynet.ch)
OpenSSH authentication exploit (SKey-bsdauth) (CORE Security)
OpenSSH Security Advisory (adv.iss) (OpenSSH)
OpenSSH-2.9p2-12C4 May Allow root Exploit in Sun Cobalt RaQ 550 (Sun)
Re: Upcoming OpenSSH vulnerability (Markus Friedl )
RHSA-2002:127-25 (RedHat)
Security Updates (Apple)
Sun Alert ID: 45508 (Sun Microsystems)
Sun Alert ID: 45508 (Sun)
Sun Alert ID: 45508 (Sun)
Sun Alert ID: 45525 (Sun)
OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS (mmhs@hushmail.com)

Privacy Statement
Copyright 2010, SecurityFocus