In a recent discussion about the Apache Chunk Handling vulnerability, which consisted of many debates and rants on how the reporting was done, ISS mentioned that they found another serious vulnerability in one other vendor's open source product. Theo de Raadt . . .
In a recent discussion about the Apache Chunk Handling vulnerability, which consisted of many debates and rants on how the reporting was done, ISS mentioned that they found another serious vulnerability in one other vendor's open source product. Theo de Raadt from OpenBSD and OpenSSH development team yesterday shed some light and announced that OpenSSH is vulnerable. This is his post to BugTraq mailing list:

There is an upcoming OpenSSH vulnerability that we're working on with ISS. Details will be published early next week. However, I can say that when OpenSSH's sshd(8) is running with priv seperation, the bug cannot be exploited.

The link for this article located at Net-Security.org is no longer available.