Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1483

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2008-1483
Last Modified 08 Aug 2014 04:41:54
Published 24 Mar 2008 07:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1483

Summary

OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.

Vulnerable Systems

Application

  • Openbsd Openssh 4.3p2

  • Openssh 4.3p2


References

CERT - TA08-260A

CONFIRM - https://issues.rpath.com/browse/RPL-2397

XF - openssh-sshd-session-hijacking(41438)

VUPEN - ADV-2008-2584

VUPEN - ADV-2008-2396

VUPEN - ADV-2008-1630

VUPEN - ADV-2008-1624

VUPEN - ADV-2008-1526

VUPEN - ADV-2008-1448

VUPEN - ADV-2008-1124

VUPEN - ADV-2008-1123

VUPEN - ADV-2008-0994

UBUNTU - USN-597-1

SLACKWARE - SSA:2008-095-01

SECTRACK - 1019707

BID - 28444

BUGTRAQ - 20080325 rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server

MANDRIVA - MDVSA-2008:078

MLIST - [security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability

GENTOO - GLSA-200804-03

DEBIAN - DSA-1576

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0120

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-205.htm

CONFIRM - http://support.attachmate.com/techdocs/2374.html

SUNALERT - 1019235

SUNALERT - 237444

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=590180&group_id=69227

FREEBSD - FreeBSD-SA-08:05

SECUNIA - 31882

SECUNIA - 31531

SECUNIA - 30361

SECUNIA - 30347

SECUNIA - 30249

SECUNIA - 30230

SECUNIA - 30086

SECUNIA - 29939

SECUNIA - 29873

SECUNIA - 29735

SECUNIA - 29721

SECUNIA - 29686

SECUNIA - 29683

SECUNIA - 29676

SECUNIA - 29626

SECUNIA - 29554

SECUNIA - 29537

SECUNIA - 29522

SUSE - SUSE-SR:2008:009

APPLE - APPLE-SA-2008-09-15

HP - SSRT080072

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=463011

CONFIRM - http://aix.software.ibm.com/aix/efixes/security/ssh_advisory.asc

NETBSD - NetBSD-SA2008-005

CISCO - 20130220 OpenSSH Forwarded X Connection Session Hijack Vulnerability

HP - HPSBUX02337

Related Patches

Apple 2008-09-15 Security Update 2008-006 (PPC)

Apple 2008-09-15 Security Update 2008-006 Server (PPC)

Apple 2008-09-15 Mac OS X 10.5.5 Update

Apple 2008-09-15 Mac OS X Server 10.5.5 Combo Update

Apple 2008-09-15 Mac OS X Server 10.5.5 Update

Apple 2008-09-15 Security Update 2008-006 (Intel)

Apple 2008-09-15 Mac OS X 10.5.5 Combo Update

Apple 2008-09-15 Security Update 2008-006 Server (Intel)

Novell SUSE 2008:5122 openssh security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 11:01:56