CVE-2007-4752
EPSS 2.3%openssh openssh-blacklist - predictable randomness
發布日:2007/9/12修改日:2026/4/28
也稱為:DEBIAN-CVE-2007-4752
描述
ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.
受影響套件(2)
- Debian/opensshfrom 0, < 1:4.7p1-1
- Debian/opensshfrom 0, < 1:4.3p2-9etch2