Jump to content
metin2dev
Ekstasia2
Sign in to follow this  
Koray

bsd libssh vulnerability(CVE-2018-10933)

Recommended Posts

Hey guys, A few weeks ago a very dangerous vulnerability has been released. A vulnerability was found in libssh's serverside state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication with injects a "SSH2_MSG_USERAUTH_SUCCESS" packet during any authentication (pubkey, keyboard interactive, gss api) resulting in unauthorized access.

So you should update libssh or simple switch to openssh(which isn't affected by exploit)

Share this post


Link to post
Share on other sites
17 minutes ago, Koray said:

Hey guys, A few weeks ago a very dangerous vulnerability has been released. A vulnerability was found in libssh's serverside state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication with injects a "SSH2_MSG_USERAUTH_SUCCESS" packet during any authentication (pubkey, keyboard interactive, gss api) resulting in unauthorized access.

So you should update libssh or simple switch to openssh(which isn't affected by exploit)

I have already posted in the Shoutbox @ the release date from the exploit 

Share this post


Link to post
Share on other sites
4 minutes ago, Kori said:

I have already posted in the Shoutbox @ the release date from the exploit 

sorry I didn't notice.

Share this post


Link to post
Share on other sites

As far as i know, newer versions of freebsd 10.0, 11, 12 have OpenSSH built-in already patched.

 

Fortunately there were no breaches registered until this moment.

  • Thanks 1

Share this post


Link to post
Share on other sites
Acum 22 ore, Dr3Ame3r a spus:

As far as i know, newer versions of freebsd 10.0, 11, 12 have OpenSSH built-in already patched.

 

Fortunately there were no breaches registered until this moment.

That's true

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×