HackerTrans
TopNewTrendsCommentsPastAskShowJobs

uraid

no profile record

Submissions

SSH protocol flaw – Terrapin Attack CVE-2023-48795: All you need to know

jfrog.com
3 points·by uraid·3 tahun yang lalu·0 comments

Attackers are starting to target .NET developers with malicious NuGet packages

jfrog.com
1 points·by uraid·3 tahun yang lalu·0 comments

Examining OpenSSH Sandboxing and Privilege Separation – Attack Surface Analysis

jfrog.com
3 points·by uraid·3 tahun yang lalu·0 comments

OpenSSH Pre-Auth Double Free – Writeup and Proof-of-Concept

jfrog.com
161 points·by uraid·3 tahun yang lalu·102 comments

comments

uraid
·3 tahun yang lalu·discuss
This is exploitable in the latest Archlinux 2023.02.01. Also, this doesn't require enabling old key exchange algorithms.