github - ghsa-mgwc-m57j-46w8

ghsa-mgwc-m57j-46w8

Vulnerability from github

Published

2022-05-14 03:00

Modified

2022-05-14 03:00

Severity

9.8 (Critical) - CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-1908"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-287"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-04-11T18:59:00Z",
    "severity": "CRITICAL"
  },
  "details": "The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.",
  "id": "GHSA-mgwc-m57j-46w8",
  "modified": "2022-05-14T03:00:08Z",
  "published": "2022-05-14T03:00:08Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1908"
    },
    {
      "type": "WEB",
      "url": "https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1298741"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/201612-18"
    },
    {
      "type": "WEB",
      "url": "http://openwall.com/lists/oss-security/2016/01/15/13"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-0465.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-0741.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openssh.com/txt/release-7.2"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/84427"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1034705"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

cve-2016-1908

Vulnerability from cvelistv5

Published

2017-04-11 00:00

Modified

2024-08-05 23:10

Severity

Summary

References

URL	Tags
http://www.openssh.com/txt/release-7.2
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
https://anongit.mindrot.org/openssh.git/commit/?id=ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
http://openwall.com/lists/oss-security/2016/01/15/13	mailing-list
http://www.securitytracker.com/id/1034705	vdb-entry
http://rhn.redhat.com/errata/RHSA-2016-0741.html	vendor-advisory
https://security.gentoo.org/glsa/201612-18	vendor-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1298741
https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html	mailing-list
http://www.securityfocus.com/bid/84427	vdb-entry
http://rhn.redhat.com/errata/RHSA-2016-0465.html	vendor-advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Impacted products

Vendor	Product
n/a	n/a

Show details on NVD website