OpenSSH Multiple X11 Channel Forwarding Leaks

2005-09-01T11:27:59
ID OSVDB:19142
Type osvdb
Reporter OSVDB
Modified 2005-09-01T11:27:59

Description

Vulnerability Description

OpenSSH contains a flaw that may allow or enable some X11 forwarding functionality unintentionally. The issue can occur when multiple X11 forwarding requests are made on the same session, single_connection listeners or when an X11 listener is orphaned after a session goes away.

Solution Description

Upgrade to version 4.2p1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

OpenSSH contains a flaw that may allow or enable some X11 forwarding functionality unintentionally. The issue can occur when multiple X11 forwarding requests are made on the same session, single_connection listeners or when an X11 listener is orphaned after a session goes away.

References:

Vendor URL: http://openssh.com/ Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1014845 Secunia Advisory ID:16686 Secunia Advisory ID:19243 Secunia Advisory ID:18661 Secunia Advisory ID:18010 Related OSVDB ID: 19141 Mail List Post: http://archives.neohapsis.com/archives/apps/freshmeat/2005-09/0001.html CVE-2005-2797