QwikSec

Security Database

CVE

CWE

Training

CVE-2016-1908

Published: Apr 11, 2017

Modified: May 29, 2026

PUBLISHED

Description

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.openssh.com/txt/release-7.2

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c

[oss-security] 20160115 Re: Qualys Security Advisory - Roaming through the OpenSSH client: CVE-2016-0777 and CVE-2016-0778

mailing-list

vdb-entry

vendor-advisory

vendor-advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1298741

[debian-lts-announce] 20180910 [SECURITY] [DLA 1500-1] openssh security update

mailing-list

vdb-entry

vendor-advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.