script for testing openssh denial of service via gss-api

pk_563 · 02-01-2012, 12:56 AM

Hi ,
I wanted a test case or a script to test the openssh denial of service vulnerability on a linux box ,which is caused due to insufficient sanitization of size parameter in the xmalloc wrapper for malloc used inside gss-api (gss-serv.c).
Here is the link for that vulnerability explanation in detail

http://www.smoothblog.co.uk/2011/08/...ustion-gssapi/

TB0ne · 02-01-2012, 09:45 AM

Quote:

Originally Posted by pk_563

Hi ,
I wanted a test case or a script to test the openssh denial of service vulnerability on a linux box ,which is caused due to insufficient sanitization of size parameter in the xmalloc wrapper for malloc used inside gss-api (gss-serv.c).
Here is the link for that vulnerability explanation in detail

http://www.smoothblog.co.uk/2011/08/...ustion-gssapi/

You triple-posted the same question...your other threads have been reported.

And what is your question?? Are you wanting someone here to write a script for you?? That won't happen, but we'll be very happy to help you with one that you've written. Post what you've got so far, and where you're stuck, and we'll be happy to assist.

unSpawn · 02-01-2012, 10:04 AM

Please post your thread once and in only one forum. Posting a single thread in the most relevant forum will make it easier for members to help you and will keep the discussion in one place. This thread should be closed because it is a duplicate of http://www.linuxquestions.org/questi...penssh-926868/.