ID |
CVE-2000-1169
|
Summary |
OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 7.5 (as of 10-10-2017 - 01:29) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
redhat
via4
|
|
refmap
via4
|
bid | 1949 | bugtraq | - 20001115 Trustix Security Advisory - bind and openssh (and modutils)
- 20001123 OpenSSH Security Advisory (adv.fwd)
| conectiva | CLSA-2000:345 | debian | 20001118 openssh: possible remote exploit | mandrake | MDKSA-2000:068 | osvdb | | suse | SuSE-SA:2000:47 | xf | openssh-unauthorized-access(5517) |
|
Last major update |
10-10-2017 - 01:29 |
Published |
09-01-2001 - 05:00 |
Last modified |
10-10-2017 - 01:29 |