Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-4752HistorySep 12, 2007 - 1:17 a.m.
CVE-2007-4752
2007-09-1201:17:00
Debian Security Bug Tracker
security-tracker.debian.org
22
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.0%
ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssh | < 1:4.7p1-1 | openssh_1:4.7p1-1_all.deb |
| Debian | 11 | all | openssh | < 1:4.7p1-1 | openssh_1:4.7p1-1_all.deb |
| Debian | 10 | all | openssh | < 1:4.7p1-1 | openssh_1:4.7p1-1_all.deb |
| Debian | 999 | all | openssh | < 1:4.7p1-1 | openssh_1:4.7p1-1_all.deb |
| Debian | 13 | all | openssh | < 1:4.7p1-1 | openssh_1:4.7p1-1_all.deb |
Related
f5
f5
SOL14161 - OpenSSH vulnerability CVE-2007-4752
2013-01-28 00:00:00
K14161 : OpenSSH vulnerability CVE-2007-4752
2013-09-11 00:00:00
openvas
openvas
Slackware Advisory SSA:2007-255-01 openssh
2012-09-11 00:00:00
SLES9: Security update for OpenSSH
2009-10-10 00:00:00
Mandriva Update for openssh MDKSA-2007:236 (openssh)
2009-04-09 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : openssh (MDKSA-2007:236)
2007-12-07 00:00:00
GLSA-200711-02 : OpenSSH: Security bypass
2007-11-02 00:00:00
gentoo
gentoo
OpenSSH: Security bypass
2007-11-01 00:00:00
securityvulns
securityvulns
OpenSSH privilege escalation
2007-09-19 00:00:00
FLEA-2007-0055-1 openssh openssh-client openssh-server gnome-ssh-askpass
2007-09-19 00:00:00
prion
prion
Code injection
2007-09-12 01:17:00
ubuntu
ubuntu
OpenSSH vulnerability
2008-01-09 00:00:00
cve
cve
CVE-2007-4752
2007-09-12 01:17:00
veracode
veracode
Privilege Escalation
2020-04-10 00:28:47
ubuntucve
ubuntucve
CVE-2007-4752
2007-09-12 00:00:00
slackware
slackware
[slackware-security] openssh
2007-09-12 21:56:33
oraclelinux
oraclelinux
openssh security update
2008-08-22 00:00:00
redhat
redhat
(RHSA-2008:0855) Critical: openssh security update
2008-08-22 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: openssh-4.3p2-25.fc6
2007-10-15 19:54:28
centos
centos
openssh security update
2008-08-22 20:45:22
debian
debian
[SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
2008-05-14 09:24:56
osv
osv
openssh openssh-blacklist - predictable randomness
2008-05-14 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.0%
Related for DEBIANCVE:CVE-2007-4752