qkowlew | CVE-2018-10933 в libssh всех версий позже 0.6 (Reply)

You're viewing

qkowlew's journal
Create a Dreamwidth Account Learn More

Reload page in style: site light

https://www.libssh.org/security/advisories/CVE-2018-10933.txt

Вот блин, хохма. Если передать серверу пакет "Аутентификация успешна" вместо пакетика "Узер просит аутентификацию", то... Сервер соглашается и пускает.

Crossposts: https://qkowlew.livejournal.com/238625.html

From:

Anonymous This account has disabled anonymous posting.

OpenID (will be screened if not validated)

Dreamwidth account

If you don't have an account you can create one now.

Subject

Formatting type

Message

Loading anti-spam test...

If you are unable to use this captcha for any reason, please contact us by email at support@dreamwidth.org