CVE-2008-1483

2008-03-24T23:44:00
ID CVE-2008-1483
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T20:35:00

Description

OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.