what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 5 of 5 RSS Feed

CVE-2008-1483

Status Candidate

Overview

OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.

Related Files

HP Security Bulletin 2008-00.72
Posted May 22, 2008
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running HP-UX Secure Shell. The vulnerability could be exploited locally to gain unauthorized access and create a Denial of Service (DoS).

tags | advisory, denial of service, shell
systems | hpux
advisories | CVE-2008-1483
SHA-256 | 2cd46811be74b61931443d90b14f854ab729ee479e5a774b1d8a65ea85ff55fb
FreeBSD-SA-08-05.openssh.txt
Posted Apr 17, 2008
Site security.freebsd.org

FreeBSD Security Advisory - OpenSSH has a X11-forwarding privilege escalation issue. When logging in via SSH with X11-forwarding enabled, sshd(8) fails to correctly handle the case where it fails to bind to an IPv4 port but successfully binds to an IPv6 port. In this case, applications which use X11 will connect to the IPv4 port, even though it had not been bound by sshd(8) and is therefore not being securely forwarded.

tags | advisory
systems | freebsd
advisories | CVE-2008-1483
SHA-256 | e9b01dda09d2fd2b373a83e4472cf74b709679aa9d7a842873ded6635ef406d9
Gentoo Linux Security Advisory 200804-3
Posted Apr 8, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200804-03 - Two flaws have been discovered in OpenSSH which could allow local attackers to escalate their privileges. Versions less than 4.7_p1-r6 are affected.

tags | advisory, local
systems | linux, gentoo
advisories | CVE-2008-1483, CVE-2008-1657
SHA-256 | 97c202923fdfaedaac16a4cee275be6a9cbeeaeed47e2d061d7ebc9e1021f944
Ubuntu Security Notice 597-1
Posted Apr 2, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 597-1 - Timo Juhani Lindfors discovered that the OpenSSH client, when port forwarding was requested, would listen on any available address family. A local attacker could exploit this flaw on systems with IPv6 enabled to hijack connections, including X11 forwards.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2008-1483
SHA-256 | a538419d13e0a2c12e6e316531afe52f9d30f7e21c02b96fe33093daae43e69b
Mandriva Linux Security Advisory 2008-078
Posted Mar 27, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - OpenSSH allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port.

tags | advisory, local
systems | linux, mandriva
advisories | CVE-2008-1483
SHA-256 | e6bfbd30b5cc8a208d9dcb010bda8933cea6b4886d881073ac1eca96eadaaf3b
Page 1 of 1
Back1Next

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    16 Files
  • 14
    Jun 14th
    14 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    16 Files
  • 18
    Jun 18th
    26 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close