[21827] in bugtraq
Re: URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.0.0
daemon@ATHENA.MIT.EDU (Seth Arnold)
Tue Jul 24 15:47:19 2001
Date: Tue, 24 Jul 2001 12:06:42 -0700
From: Seth Arnold <sarnold@wirex.com>
To: BUGTRAQ@securityfocus.com
Message-ID: <20010724120642.W15481@wirex.com>
Mail-Followup-To: BUGTRAQ@securityfocus.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <001101c113ac$1c4b8ae0$1200a8c0@com>; from madboo@gwu.edu on Mon, Jul 23, 2001 at 03:17:26PM -0400
On Mon, Jul 23, 2001 at 03:17:26PM -0400, Sports wrote:
> What about 2.9?
> >A quick glance at the source code suggests that SSH 2.3.0 and
> >2.4.0 have the same problem. Is this true?
You've fallen pray to the 'product problem'. 2.9 is OpenSSH. 2.3.0,
2.4.0, and 3.0 are ssh.com. This problem is in the ssh.com version, but
not in OpenSSH.
