CVE - CVE-2008-1483

CVE-ID
CVE-2008-1483	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2008-09-15 URL:http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html BID:28444 URL:http://www.securityfocus.com/bid/28444 BUGTRAQ:20080325 rPSA-2008-0120-1 gnome-ssh-askpass openssh openssh-client openssh-server URL:http://www.securityfocus.com/archive/1/490054/100/0/threaded CERT:TA08-260A URL:http://www.us-cert.gov/cas/techalerts/TA08-260A.html CISCO:20130220 OpenSSH Forwarded X Connection Session Hijack Vulnerability URL:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2008-1483 CONFIRM:http://aix.software.ibm.com/aix/efixes/security/ssh_advisory.asc CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=463011 CONFIRM:http://sourceforge.net/project/shownotes.php?release_id=590180&group_id=69227 CONFIRM:http://support.attachmate.com/techdocs/2374.html CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-205.htm CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0120 CONFIRM:https://issues.rpath.com/browse/RPL-2397 DEBIAN:DSA-1576 URL:http://www.debian.org/security/2008/dsa-1576 FREEBSD:FreeBSD-SA-08:05 URL:http://security.FreeBSD.org/advisories/FreeBSD-SA-08:05.openssh.asc GENTOO:GLSA-200804-03 URL:http://www.gentoo.org/security/en/glsa/glsa-200804-03.xml HP:HPSBUX02337 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01462841 HP:SSRT080072 URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01462841 MANDRIVA:MDVSA-2008:078 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:078~~ (Obsolete source) MLIST:[security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability URL:http://www.globus.org/mail_archive/security-announce/2008/04/msg00000.html NETBSD:NetBSD-SA2008-005 URL:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-005.txt.asc OVAL:oval:org.mitre.oval:def:6085 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6085 SECTRACK:1019707 URL:http://www.securitytracker.com/id?1019707 SECUNIA:29522 URL:http://secunia.com/advisories/29522 SECUNIA:29537 URL:http://secunia.com/advisories/29537 SECUNIA:29554 URL:http://secunia.com/advisories/29554 SECUNIA:29626 URL:http://secunia.com/advisories/29626 SECUNIA:29676 URL:http://secunia.com/advisories/29676 SECUNIA:29683 URL:http://secunia.com/advisories/29683 SECUNIA:29686 URL:http://secunia.com/advisories/29686 SECUNIA:29721 URL:http://secunia.com/advisories/29721 SECUNIA:29735 URL:http://secunia.com/advisories/29735 SECUNIA:29873 URL:http://secunia.com/advisories/29873 SECUNIA:29939 URL:http://secunia.com/advisories/29939 SECUNIA:30086 URL:http://secunia.com/advisories/30086 SECUNIA:30230 URL:http://secunia.com/advisories/30230 SECUNIA:30249 URL:http://secunia.com/advisories/30249 SECUNIA:30347 URL:http://secunia.com/advisories/30347 SECUNIA:30361 URL:http://secunia.com/advisories/30361 SECUNIA:31531 URL:http://secunia.com/advisories/31531 SECUNIA:31882 URL:http://secunia.com/advisories/31882 SLACKWARE:SSA:2008-095-01 URL:http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.540188 SUNALERT:1019235 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-77-1019235.1-1~~ (Obsolete source) SUNALERT:237444 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-237444-1~~ (Obsolete source) SUSE:SUSE-SR:2008:009 URL:http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00007.html UBUNTU:USN-597-1 URL:https://usn.ubuntu.com/597-1/ VUPEN:ADV-2008-0994 URL:~~http://www.vupen.com/english/advisories/2008/0994/references~~ (Obsolete source) VUPEN:ADV-2008-1123 URL:~~http://www.vupen.com/english/advisories/2008/1123/references~~ (Obsolete source) VUPEN:ADV-2008-1124 URL:~~http://www.vupen.com/english/advisories/2008/1124/references~~ (Obsolete source) VUPEN:ADV-2008-1448 URL:~~http://www.vupen.com/english/advisories/2008/1448/references~~ (Obsolete source) VUPEN:ADV-2008-1526 URL:~~http://www.vupen.com/english/advisories/2008/1526/references~~ (Obsolete source) VUPEN:ADV-2008-1624 URL:~~http://www.vupen.com/english/advisories/2008/1624/references~~ (Obsolete source) VUPEN:ADV-2008-1630 URL:~~http://www.vupen.com/english/advisories/2008/1630/references~~ (Obsolete source) VUPEN:ADV-2008-2396 URL:~~http://www.vupen.com/english/advisories/2008/2396~~ (Obsolete source) VUPEN:ADV-2008-2584 URL:~~http://www.vupen.com/english/advisories/2008/2584~~ (Obsolete source) XF:openssh-sshd-session-hijacking(41438) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/41438
Assigning CNA
MITRE Corporation
Date Record Created
20080324	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080324)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)