Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-1483HistoryMar 24, 2008 - 11:44 p.m.
CVE-2008-1483
2008-03-2423:44:00
Debian Security Bug Tracker
security-tracker.debian.org
20
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
14.3%
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openssh | <Β 1:4.7p1-5 | openssh_1:4.7p1-5_all.deb |
| Debian | 11 | all | openssh | <Β 1:4.7p1-5 | openssh_1:4.7p1-5_all.deb |
| Debian | 10 | all | openssh | <Β 1:4.7p1-5 | openssh_1:4.7p1-5_all.deb |
| Debian | 999 | all | openssh | <Β 1:4.7p1-5 | openssh_1:4.7p1-5_all.deb |
| Debian | 13 | all | openssh | <Β 1:4.7p1-5 | openssh_1:4.7p1-5_all.deb |
Related
openvas
openvas
Mandriva Update for openssh MDVSA-2008:078 (openssh)
2009-04-09 00:00:00
HP-UX Update for HP-UX Secure Shell HPSBUX02337
2009-05-05 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-08:05.openssh.asc)
2008-09-04 00:00:00
nessus
nessus
openSUSE 10 Security Update : openssh (openssh-5148)
2008-04-11 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : openssh vulnerability (USN-597-1)
2008-04-04 00:00:00
prion
prion
Design/Logic Flaw
2008-03-24 23:44:00
f5
f5
K9107 : OpenSSH vulnerability CVE-2008-1483
2013-03-25 00:00:00
SOL9107 - OpenSSH vulnerability CVE-2008-1483
2008-09-01 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-08:05.openssh
2008-04-17 00:00:00
securityvulns
securityvulns
rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server
2008-03-25 00:00:00
OpenSSH privilege escalation
2008-03-25 00:00:00
slackware
slackware
[slackware-security] openssh
2008-04-04 20:06:28
seebug
seebug
OpenSSH XθΏζ₯δΌθ―ε«ζζΌζ΄
2008-04-18 00:00:00
ubuntucve
ubuntucve
CVE-2008-1483
2008-03-24 00:00:00
cve
cve
CVE-2008-1483
2008-03-24 23:44:00
ubuntu
ubuntu
OpenSSH vulnerability
2008-04-01 00:00:00
redhat
redhat
(RHSA-2005:527) openssh security update
2005-10-05 00:00:00
gentoo
gentoo
OpenSSH: Privilege escalation
2008-04-05 00:00:00
centos
centos
openssh security update
2005-10-05 16:16:35
debian
debian
[SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
2008-05-14 09:24:56
osv
osv
openssh openssh-blacklist - predictable randomness
2008-05-14 00:00:00
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
14.3%
Related for DEBIANCVE:CVE-2008-1483