Red Hat Bugzilla – Bug 58190
HIGH RISC VULNERABILITY OF SSH
Last modified: 2007-04-18 12:38:57 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)
Description of problem:
My system with Redhat 7.0 was compromised yesterday from an IP Address from
Israel, gaining root access to my system.
ssh version: openssh-server-2.1.1p4-1
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Get an exploit for this bug, and run it.
I don't found ANY reference to this BUG in the whole RedHat Web site.
It's very dangerous to run the ssh version that it's selled with RedHat 7.0 in
a system exposed to Internet.
Created attachment 42211 [details]
Logs of ssh exploit activity
openssh has been updated a couple of times since 7.0, make sure to keep your
system updated (e.g. with running up2date). The latest errata was