Stephanie Thomas wrote: > > A potential remote root exploit has been discovered > in SSH Secure Shell 3.0.0, for Unix only, concerning > accounts with password fields consisting of two or > fewer characters. Unauthorized users could potentially > log in to these accounts using any password, including > an empty password. This affects SSH Secure Shell 3.0.0 > for Unix only. This is a problem with password Does anybody know if previous versions (2.4) are also affected?
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Jen B.
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Marcus Meissner
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Florian Weimer
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHE... Thomas Roessler
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE... Lucian Hudin
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE... Sports
- Re: URGENT SECURITY ADVISORY FOR SSH SE... Seth Arnold
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Marcin Zurakowski
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHE... Brian Carpio
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE... Stephanie Thomas
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Jaime BENJUMEA
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE SHE... Jonathan A. Zdziarski
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Roman Drahtmueller
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE SHE... Stephanie Thomas
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE... Emre Yildirim
- RE: URGENT SECURITY ADVISORY FOR SSH SE... Stephanie Thomas
- Re: URGENT SECURITY ADVISORY FOR SS... Eugene Medynskiy
- Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Antonomasia
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.... Vega, Cesar
- RE: URGENT SECURITY ADVISORY FOR SSH SECURE SHE... Stephanie Thomas