CVE-2008-1483

描述

OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs.

受影響套件(1)

• Debian/opensshfrom 0, < 1:4.7p1-5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-1483