Back to search
CVE-2008-1483
Published: Mar 24, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-1123
vdb-entry
x_refsource_VUPEN
http://support.attachmate.com/techdocs/2374.html
x_refsource_CONFIRM
DSA-1576
vendor-advisory
x_refsource_DEBIAN
29554
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1526
vdb-entry
x_refsource_VUPEN
http://support.avaya.com/elmodocs2/security/ASA-2008-205.htm
x_refsource_CONFIRM
ADV-2008-1630
vdb-entry
x_refsource_VUPEN
[security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability
mailing-list
x_refsource_MLIST
29686
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2008-09-15
vendor-advisory
x_refsource_APPLE
31531
third-party-advisory
x_refsource_SECUNIA
SSA:2008-095-01
vendor-advisory
x_refsource_SLACKWARE
http://aix.software.ibm.com/aix/efixes/security/ssh_advisory.asc
x_refsource_CONFIRM
HPSBUX02337
vendor-advisory
x_refsource_HP
openssh-sshd-session-hijacking(41438)
vdb-entry
x_refsource_XF
USN-597-1
vendor-advisory
x_refsource_UBUNTU
1019235
vendor-advisory
x_refsource_SUNALERT
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=463011
x_refsource_CONFIRM
TA08-260A
third-party-advisory
x_refsource_CERT
https://issues.rpath.com/browse/RPL-2397
x_refsource_CONFIRM
ADV-2008-1624
vdb-entry
x_refsource_VUPEN
ADV-2008-2584
vdb-entry
x_refsource_VUPEN
30249
third-party-advisory
x_refsource_SECUNIA
20130220 OpenSSH Forwarded X Connection Session Hijack Vulnerability
vendor-advisory
x_refsource_CISCO
29735
third-party-advisory
x_refsource_SECUNIA
29683
third-party-advisory
x_refsource_SECUNIA
30361
third-party-advisory
x_refsource_SECUNIA
31882
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2008:009
vendor-advisory
x_refsource_SUSE
SSRT080072
vendor-advisory
x_refsource_HP
29721
third-party-advisory
x_refsource_SECUNIA
ADV-2008-2396
vdb-entry
x_refsource_VUPEN
29522
third-party-advisory
x_refsource_SECUNIA
30086
third-party-advisory
x_refsource_SECUNIA
29939
third-party-advisory
x_refsource_SECUNIA
30347
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:6085
vdb-entry
signature
x_refsource_OVAL
ADV-2008-0994
vdb-entry
x_refsource_VUPEN
1019707
vdb-entry
x_refsource_SECTRACK
237444
vendor-advisory
x_refsource_SUNALERT
MDVSA-2008:078
vendor-advisory
x_refsource_MANDRIVA
29676
third-party-advisory
x_refsource_SECUNIA
29873
third-party-advisory
x_refsource_SECUNIA
29537
third-party-advisory
x_refsource_SECUNIA
29626
third-party-advisory
x_refsource_SECUNIA
20080325 rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server
mailing-list
x_refsource_BUGTRAQ
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0120
x_refsource_CONFIRM
ADV-2008-1448
vdb-entry
x_refsource_VUPEN
30230
third-party-advisory
x_refsource_SECUNIA
28444
vdb-entry
x_refsource_BID
GLSA-200804-03
vendor-advisory
x_refsource_GENTOO
FreeBSD-SA-08:05
vendor-advisory
x_refsource_FREEBSD
ADV-2008-1124
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now