pi3 blog

bug bugs bughunt exploit exploiting research vulnerabilities

• Home
• About

“Spojrz na czlowieka... i zobacz czlowieka... Ja nie zawsze potrafie...”

~Adam 'pi3' Zabrocki

• Subscribe

  

• Categories

  • Bughunt (13)
  • Exploiting (14)
  • Ideas (13)
  • Meeting (5)
  • O wszystkim i o niczym (23)

• Recent Posts

  • Confidence 2013
  • Niebezpiecznik.pl hacked
  • Multiple SQL Injection vulnerabilities in Disk Pool Manager (DPM)
  • ERESI Reborns!
  • Disk failure

• Archives

  • May 2013
  • April 2013
  • March 2013
  • February 2013
  • October 2012
  • May 2012
  • April 2012
  • December 2011
  • September 2011
  • August 2011
  • July 2011
  • March 2011
  • November 2010
  • October 2010
  • July 2010
  • May 2010
  • March 2010
  • February 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009

• Friends

  • ajafo
  • Bothunters – Borys Łącki
  • buz
  • carstein
  • Dominik Szybowski
  • Gynvael Coldwind
  • Icewall
  • j00ru
  • Piotr Bania
  • rezos
  • solaris
  • thorkill

• Pages

  • About

Long time ago, far away after mountains and forests was living OpenSSH bug… This vulnerability existed in the authentication algorithm for GSSAPI module. Every piece of the code pinted to the pre-authentication bug…

Seriously, after a few time of research (un)fortunately this bug is directly after REAL authentication. So this is post-auth bug One call less and this will be funny pre-authentication bug… This is the reason why this bug is useless in fact and public now

Here is simple advisory

Comments