CVE - CVE-2008-1483

CVE-ID
CVE-2008-1483	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20080325 rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server URL:http://www.securityfocus.com/archive/1/archive/1/490054/100/0/threaded MLIST:[security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability URL:http://www.globus.org/mail_archive/security-announce/2008/04/msg00000.html CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=463011 CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0120 CONFIRM:https://issues.rpath.com/browse/RPL-2397 CONFIRM:http://sourceforge.net/project/shownotes.php?release_id=590180&group_id=69227 CONFIRM:http://aix.software.ibm.com/aix/efixes/security/ssh_advisory.asc CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-205.htm CONFIRM:http://support.attachmate.com/techdocs/2374.html APPLE:APPLE-SA-2008-09-15 URL:http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html CISCO:20130220 OpenSSH Forwarded X Connection Session Hijack Vulnerability URL:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2008-1483 DEBIAN:DSA-1576 URL:http://www.debian.org/security/2008/dsa-1576 FREEBSD:FreeBSD-SA-08:05 URL:http://security.FreeBSD.org/advisories/FreeBSD-SA-08:05.openssh.asc GENTOO:GLSA-200804-03 URL:http://www.gentoo.org/security/en/glsa/glsa-200804-03.xml HP:HPSBUX02337 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01462841 HP:SSRT080072 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01462841 MANDRIVA:MDVSA-2008:078 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:078 NETBSD:NetBSD-SA2008-005 URL:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-005.txt.asc SLACKWARE:SSA:2008-095-01 URL:http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.540188 SUNALERT:237444 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-237444-1 SUNALERT:1019235 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019235.1-1 SUSE:SUSE-SR:2008:009 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00007.html UBUNTU:USN-597-1 URL:http://www.ubuntulinux.org/support/documentation/usn/usn-597-1 CERT:TA08-260A URL:http://www.us-cert.gov/cas/techalerts/TA08-260A.html BID:28444 URL:http://www.securityfocus.com/bid/28444 OVAL:oval:org.mitre.oval:def:6085 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6085 SECUNIA:30347 URL:http://secunia.com/advisories/30347 VUPEN:ADV-2008-0994 URL:http://www.vupen.com/english/advisories/2008/0994/references VUPEN:ADV-2008-1124 URL:http://www.vupen.com/english/advisories/2008/1124/references VUPEN:ADV-2008-1123 URL:http://www.vupen.com/english/advisories/2008/1123/references VUPEN:ADV-2008-1526 URL:http://www.vupen.com/english/advisories/2008/1526/references VUPEN:ADV-2008-1624 URL:http://www.vupen.com/english/advisories/2008/1624/references VUPEN:ADV-2008-2584 URL:http://www.vupen.com/english/advisories/2008/2584 VUPEN:ADV-2008-2396 URL:http://www.vupen.com/english/advisories/2008/2396 VUPEN:ADV-2008-1448 URL:http://www.vupen.com/english/advisories/2008/1448/references SECTRACK:1019707 URL:http://www.securitytracker.com/id?1019707 SECUNIA:29522 URL:http://secunia.com/advisories/29522 SECUNIA:29537 URL:http://secunia.com/advisories/29537 SECUNIA:29554 URL:http://secunia.com/advisories/29554 SECUNIA:29626 URL:http://secunia.com/advisories/29626 SECUNIA:29676 URL:http://secunia.com/advisories/29676 SECUNIA:29683 URL:http://secunia.com/advisories/29683 SECUNIA:29686 URL:http://secunia.com/advisories/29686 SECUNIA:29735 URL:http://secunia.com/advisories/29735 SECUNIA:29721 URL:http://secunia.com/advisories/29721 SECUNIA:29939 URL:http://secunia.com/advisories/29939 SECUNIA:29873 URL:http://secunia.com/advisories/29873 SECUNIA:30249 URL:http://secunia.com/advisories/30249 SECUNIA:30361 URL:http://secunia.com/advisories/30361 SECUNIA:30230 URL:http://secunia.com/advisories/30230 SECUNIA:31531 URL:http://secunia.com/advisories/31531 SECUNIA:31882 URL:http://secunia.com/advisories/31882 SECUNIA:30086 URL:http://secunia.com/advisories/30086 VUPEN:ADV-2008-1630 URL:http://www.vupen.com/english/advisories/2008/1630/references XF:openssh-sshd-session-hijacking(41438) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/41438
Assigning CNA
N/A
Date Entry Created
20080324	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080324)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org