ssh in OpenSSH prior to 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows malicious users to violate intended policy and gain privileges by causing an X client to be treated as trusted.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbsd openssh 4.3p2 |
||
openbsd openssh 4.3p1 |
||
openbsd openssh 4.0 |
||
openbsd openssh 4.3 |
||
openbsd openssh 4.2p1 |
||
openbsd openssh 4.4p1 |
||
openbsd openssh 4.4 |
||
openbsd openssh 4.1 |
||
openbsd openssh 4.0p1 |
||
openbsd openssh |
||
openbsd openssh 4.5 |
||
openbsd openssh 4.2 |
||
openbsd openssh 4.1p1 |