Monthly Archive: February 2003

AbsoluteTelnet SSH2 client does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials. Date published : 2003-02-01 http://www.securityfocus.com/bid/6725 http://marc.info/?l=bugtraq&m=104386492422014&w=2

Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client. Date published : 2003-02-01 http://www.mandriva.com/security/advisories?name=MDKSA-2003:021 http://www.redhat.com/support/errata/RHSA-2003-020.html