Trivial Authentication Bypass In Libssh Leaves Servers Wide Open

On October 17, 2018 Slashdot posted news that an authentication bypass in Libssh leaves servers open for hacking. 'Ars Technica reported: "a four-year-old bug in the Secure Shell implementation known as libssh that makes it trivial for just about anyone to gain unfettered administrative control of a vulnerable server."'

It's not clear how many sites or devices may be vulnerable since neither the widely used OpenSSH nor Github's implementation of libssh was affected. For the full report: https://it.slashdot.org/story/18/10/17/2259232/trivial-authentication-bypass-in-libssh-leaves-servers-wide-open

Special Type: