vulnerability

OpenSSH Vulnerability: CVE-2016-1908

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Apr 11, 2017	Apr 19, 2017	Nov 27, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Apr 11, 2017

Added

Apr 19, 2017

Modified

Nov 27, 2024

Description

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

Solution

openbsd-openssh-upgrade-7_2

References

CVE-2016-1908
https://attackerkb.com/topics/CVE-2016-1908
DISA_SEVERITY-Category I
IAVM-2016-A-0225
URL-http://www.openssh.com/txt/release-7.2

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today