RedHat 9's OpenSSH

RedHat 9 seems to come with OpenSSH 3.5p1. That version of OpenSSH has a known buffer overflow exploit.

However, I think that a RedHat system that has been patched for the buffer overflow exploit will still report that it is running OpenSSH 3.5p1.

So how can I tell whether my RedHat 9 with OpenSSH 3.5p1 is vulnerable to the buffer overflow exploit?

 

 

 

 

Top