• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

OpenSSH Trojan Horse Vulnerability

Solution:
The vendor has fixed versions of openssh for download as of 1300 UTC August 1, 2002. They are available from the normal distribution channels and have the following MD5 checksums:

MD5 (openssh-3.4p1.tar.gz) = 459c1d0262e939d6432f193c7a4ba8a8
MD5 (openssh-3.4p1.tar.gz.sig) = d5a956263287e7fd261528bb1962f24c
MD5 (openssh-3.4.tgz) = 39659226ff5b0d16d0290b21f67c46f2
MD5 (openssh-3.2.2p1.tar.gz) = 9d3e1e31e8d6cdbfa3036cb183aa4a01
MD5 (openssh-3.2.2p1.tar.gz.sig) = be4f9ed8da1735efd770dc8fa2bb808a

Conectiva Linux has reported that openssh-3.4p1 is distributed as a security update. The distributed copy is the original one and is not affected by this trojan.

MandrakeSoft has verified that the openssh-3.4p1 sources used to build it's latest updates (MDKSA-2002:040-1) are not susceptible to this trojan.

IBM has stated that OpenSSH does not ship with AIX but is available via the Linux Affinity Toolkit. The version of OpenSSH included on the Toolkit CD is not vulnerable to this issue.