this new SSH exploit is absolutely wild

321,603

12,722 0

Published 2024-07-03

OpenSSH has been rocked by a new RCE vulnerability. But, it may not be as scary as people are making it out to be. Find out why in this video.

blog.qualys.com/vulnerabilities-threat-research/20…

www.qualys.com/2024/07/01/cve-2024-6387/regresshio…

🏫 COURSES 🏫 Learn to code in C at lowlevel.academy/

🛒 GREAT BOOKS FOR THE LOWEST LEVEL🛒
Blue Fox: Arm Assembly Internals and Reverse Engineering: amzn.to/4394t87
Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation : amzn.to/3C1z4sk
Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software : amzn.to/3C1daFy
The Ghidra Book: The Definitive Guide: amzn.to/3WC2Vkg

🔥 SOCIALS 🔥
Come hang out at lowlevel.tv/

All Comments (21)

@LowLevelLearning 21 days ago

haha wouldn't it be cool if you learned C and assembly haha lowlevel.academy/
@enterusername7746 21 days ago

Temple OS is once again not affected? Coincidence?
@TheReferrer72 21 days ago

That's why we call it "OpenSSH".
@JoachimFosse 21 days ago

The creativity of threat hunters will NEVER cease to amaze me
@axelfoley133 21 days ago

LLL: "It's from 20 years ago, 2006." Me: "It's not THAT long -- Oh shit..."
@lborate3543 21 days ago

Can I just say this? Thank you Low Level Learning for dark mode. So many yt chanels flash bang me.
@Tock46 21 days ago

"Everyone can do it" - Yeah for now nobody was able to do it on a 64 bit system only on 32 bit systems lol.
@ToyKeeper 21 days ago

Bugs like this are part of why I use a pretty aggressive fail2ban. The attacker doesn't get 10,000 tries... instead they get 3 tries or sometimes even less. The bans eventually expire, but instead of hours to get in, it would take decades. Plenty of time to install a fixed version.
@IngwiePhoenix 21 days ago

This has all my windows people at work scream LINUX VIRUS and im so exhausted of telling them it would take literal hours and using fail2ban is a dead simple mitigation any public server should have anyway. Ugh... That said, this explanation was really good! Reminds me of the late Tetris level shenanigans where VBlank interrupts cause almost the same situation - albeit of a different nature.
@99temporal 21 days ago

I think at this point we can update the saying to "the three hardest problems in computer science are cache invalidation, naming things, asynchronous programs and 'Off By 1' errors"
@IrtyGo560 21 days ago

oh that is why an openssh update was avaliable.
@buhfur4694 14 days ago

Just wanna say I love your vids man , high prod quality and clear description of the issue.
@kwazar6725 21 days ago

I use sssh. Safer ssh
@Infinitiverse 21 days ago

Interesting video & well explained. I'll be coming back to this channel for more content like this, good stuff! 👍
@bigsluggy 21 days ago

What an excellent explanation, you are a great teacher. Subscribed!
@MatthewSherborne 21 days ago

This is a really high quality and useful video for me. It makes me look smart to my bosses. Thank you :)
@bigutubefan2738 14 days ago

Great stuff. Thanks ever so much LLL!
@glitchy_weasel 21 days ago

Great video and breakdown!
@test40323 21 days ago

very well explained. i love that the vulnerability is put under real word context and report is not just a scary click bait. if one has a cloud server e.g. amazon, they should limit their client IP address for that ssh port.
@mylairhasnoip 21 days ago

Your explaination for laypersons is very very good. I'm not a programmer or security expert by any means, but found it was easy to comprehend thanks to your summary