- 552 名前:login:Penguin mailto:sage [2008/04/08(火) 00:33:49 ID:CTns9Lpd]
- CVE-2008-1483
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded
X connections by causing ssh to set DISPLAY to :10, even when another process is
listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4)
and sniffing a cookie sent by Emacs.
www.openssh.com/txt/release-5.0
