Lucene search
HistoryJul 22, 2008 - 4:41 p.m.
CVE-2008-3259
openssh
x11
hijack
security
nvd
6.1 Medium
AI Score
Confidence
Low
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
References
Social References
More
Related
f5
f5
SOL14382 - OpenSSH vulnerability CVE-2008-3259
2013-05-02 00:00:00
K14382 : OpenSSH vulnerability CVE-2008-3259
2013-09-17 00:00:00
nessus
nessus
OpenSSH X11UseLocalhost X11 Forwarding Port Hijacking
2011-10-04 00:00:00
AIX OpenSSH Advisory: openssh_advisory.asc
2014-04-16 00:00:00
SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure
2011-08-29 00:00:00
openvas
openvas
debiancve
debiancve
CVE-2008-3259
2008-07-22 16:41:00
ubuntucve
ubuntucve
CVE-2008-3259
2008-07-22 00:00:00
prion
prion
Code injection
2008-07-22 16:41:00
6.1 Medium
AI Score
Confidence
Low
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
Related for CVE-2008-3259