On Mon, 06 Jan 2003 at 06:44:17PM +0100, Domonkos Czinke wrote: > ----- Original Message ----- > From: <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> > To: <bugtraq@securityfocus.com <mailto:bugtraq@securityfocus.com>> > Sent: Sunday, January 05, 2003 4:37 AM > Subject: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS > > # gdb sshd 6552
This vulnerability seems to be useless if you have to be able to run gdb
locally AS ROOT (as demonstrated above)... If I have root access to a
machine....why am I trying to exploit a vulnerability?
....ponders....thinks...really hard...
Boy, I can't think of a good reason * :)
* Just because I can't think of a reason does not mean there isn't one.
Maybe a crazy person can tell me why...
Regards,
Phil
PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import
--
Excuse #93: Root name servers are out of sync
pgpQwm0JCEABc.pgp
Description: PGP signature
