CVE-2008-1483
EPSS 0.20%Published: 3/24/2008Modified: 4/28/2026
Description
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.
Affected packages (1)
- Debian/opensshfrom 0, < 1:4.7p1-5