lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
From: jikos at jikos.cz (Jirka Kosina)
Subject: Automated SSH login attempts? Related Cross
 post from incidents.org

On Fri, 30 Jul 2004, Harris, Michael C. wrote:

> We got zapped by some hackers from, I think, Romania that have a priv
> escalation exploit for Linux 2.4.20
> http://sirzion.illusivecreations.com/loginxy

This exploit really shouldn't be dangerous for any admin updating at least 
once a year <g> - it is just a scriptkiddie exploit for old do_brk() 
bounds check vulnerability.

-- 
JiKos.


Powered by blists - more mailing lists