15 Sep
2015
15 Sep
'15
6:39 a.m.
On Fri, Sep 11, 2015 at 10:10:54AM +0300, Georgi Guninski wrote:
Has someone examined the leaked Hacking Team stuff for linux/bsd 0days?
https://wikileaks.org/hackingteam/emails/emailid/45441 Fwd: Assets Portfolio Update: 2014-10-06 Assets_Portfolio.pdf.zip From: Dustin D. Trammell <dtrammell@vulnbroker.com> In today's portfolio update we have the following: 14-006 is a new memory corruption vulnerability in Oracle Solaris SunSSHD yielding remote privileged command execution as the root user. The provided exploit is a modified OpenSSH client making exploitation of this vulnerability very convenient.