HackerTrans
TopNewTrendsCommentsPastAskShowJobs

uraid

no profile record

Submissions

SSH protocol flaw – Terrapin Attack CVE-2023-48795: All you need to know

jfrog.com
3 points·by uraid·3 jaar geleden·0 comments

Attackers are starting to target .NET developers with malicious NuGet packages

jfrog.com
1 points·by uraid·3 jaar geleden·0 comments

Examining OpenSSH Sandboxing and Privilege Separation – Attack Surface Analysis

jfrog.com
3 points·by uraid·3 jaar geleden·0 comments

OpenSSH Pre-Auth Double Free – Writeup and Proof-of-Concept

jfrog.com
161 points·by uraid·3 jaar geleden·102 comments

comments

uraid
·3 jaar geleden·discuss
This is exploitable in the latest Archlinux 2023.02.01. Also, this doesn't require enabling old key exchange algorithms.