ByteOS Network

Vulnerability Details :

CVE-2007-4752

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-12 Sep, 2007 | 01:00

Updated At-07 Aug, 2024 | 15:08

ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:12 Sep, 2007 | 01:00

Updated At:07 Aug, 2024 | 15:08

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.openssh.com/txt/release-4.7	x_refsource_CONFIRM
http://security.gentoo.org/glsa/glsa-200711-02.xml	vendor-advisory x_refsource_GENTOO
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10809	vdb-entry signature x_refsource_OVAL
http://www.debian.org/security/2008/dsa-1576	vendor-advisory x_refsource_DEBIAN
http://www.securityfocus.com/bid/25628	vdb-entry x_refsource_BID
http://www.securityfocus.com/archive/1/479760/100/0/threaded	mailing-list x_refsource_BUGTRAQ
http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm	x_refsource_CONFIRM
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html	vendor-advisory x_refsource_FEDORA
http://www.ubuntu.com/usn/usn-566-1	vendor-advisory x_refsource_UBUNTU
http://securityreason.com/securityalert/3126	third-party-advisory x_refsource_SREASON
http://www.vupen.com/english/advisories/2008/0924/references	vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/2821	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/30249	third-party-advisory x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2007/3156	vdb-entry x_refsource_VUPEN
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085	vendor-advisory x_refsource_HP
http://secunia.com/advisories/31575	third-party-advisory x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2008-0855.html	vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2007:236	vendor-advisory x_refsource_MANDRIVA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5599	vdb-entry signature x_refsource_OVAL
https://bugzilla.redhat.com/show_bug.cgi?id=280471	x_refsource_MISC
http://secunia.com/advisories/29420	third-party-advisory x_refsource_SECUNIA
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	vendor-advisory x_refsource_APPLE
http://www.securityfocus.com/archive/1/483748/100/200/threaded	mailing-list x_refsource_BUGTRAQ
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085	vendor-advisory x_refsource_HP
http://secunia.com/advisories/27399	third-party-advisory x_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/36637	vdb-entry x_refsource_XF
https://issues.rpath.com/browse/RPL-1706	x_refsource_CONFIRM
http://docs.info.apple.com/article.html?artnum=307562	x_refsource_CONFIRM
http://bugs.gentoo.org/show_bug.cgi?id=191321	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html	vendor-advisory x_refsource_SUSE
http://secunia.com/advisories/32241	third-party-advisory x_refsource_SECUNIA

Hyperlink: http://www.openssh.com/txt/release-4.7

Resource:

x_refsource_CONFIRM

Hyperlink: http://security.gentoo.org/glsa/glsa-200711-02.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10809

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.debian.org/security/2008/dsa-1576

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.securityfocus.com/bid/25628

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.securityfocus.com/archive/1/479760/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm

Resource:

x_refsource_CONFIRM

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.ubuntu.com/usn/usn-566-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://securityreason.com/securityalert/3126

Resource:

third-party-advisory

x_refsource_SREASON

Hyperlink: http://www.vupen.com/english/advisories/2008/0924/references

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://www.vupen.com/english/advisories/2008/2821

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/30249

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.vupen.com/english/advisories/2007/3156

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/31575

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0855.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:236

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5599

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=280471

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/29420

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

Hyperlink: http://www.securityfocus.com/archive/1/483748/100/200/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/27399

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/36637

Resource:

vdb-entry

x_refsource_XF

Hyperlink: https://issues.rpath.com/browse/RPL-1706

Resource:

x_refsource_CONFIRM

Hyperlink: http://docs.info.apple.com/article.html?artnum=307562

Resource:

x_refsource_CONFIRM

Hyperlink: http://bugs.gentoo.org/show_bug.cgi?id=191321

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://secunia.com/advisories/32241

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.openssh.com/txt/release-4.7	x_refsource_CONFIRM x_transferred
http://security.gentoo.org/glsa/glsa-200711-02.xml	vendor-advisory x_refsource_GENTOO x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10809	vdb-entry signature x_refsource_OVAL x_transferred
http://www.debian.org/security/2008/dsa-1576	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.securityfocus.com/bid/25628	vdb-entry x_refsource_BID x_transferred
http://www.securityfocus.com/archive/1/479760/100/0/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm	x_refsource_CONFIRM x_transferred
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.ubuntu.com/usn/usn-566-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://securityreason.com/securityalert/3126	third-party-advisory x_refsource_SREASON x_transferred
http://www.vupen.com/english/advisories/2008/0924/references	vdb-entry x_refsource_VUPEN x_transferred
http://www.vupen.com/english/advisories/2008/2821	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/30249	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.vupen.com/english/advisories/2007/3156	vdb-entry x_refsource_VUPEN x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/31575	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.redhat.com/support/errata/RHSA-2008-0855.html	vendor-advisory x_refsource_REDHAT x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2007:236	vendor-advisory x_refsource_MANDRIVA x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5599	vdb-entry signature x_refsource_OVAL x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=280471	x_refsource_MISC x_transferred
http://secunia.com/advisories/29420	third-party-advisory x_refsource_SECUNIA x_transferred
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	vendor-advisory x_refsource_APPLE x_transferred
http://www.securityfocus.com/archive/1/483748/100/200/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/27399	third-party-advisory x_refsource_SECUNIA x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/36637	vdb-entry x_refsource_XF x_transferred
https://issues.rpath.com/browse/RPL-1706	x_refsource_CONFIRM x_transferred
http://docs.info.apple.com/article.html?artnum=307562	x_refsource_CONFIRM x_transferred
http://bugs.gentoo.org/show_bug.cgi?id=191321	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html	vendor-advisory x_refsource_SUSE x_transferred
http://secunia.com/advisories/32241	third-party-advisory x_refsource_SECUNIA x_transferred

Hyperlink: http://www.openssh.com/txt/release-4.7

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200711-02.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10809

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://www.debian.org/security/2008/dsa-1576

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://www.securityfocus.com/bid/25628

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/479760/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.ubuntu.com/usn/usn-566-1

Resource:

vendor-advisory

x_refsource_UBUNTU

x_transferred

Hyperlink: http://securityreason.com/securityalert/3126

Resource:

third-party-advisory

x_refsource_SREASON

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2008/0924/references

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2008/2821

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://secunia.com/advisories/30249

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2007/3156

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/31575

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0855.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:236

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5599

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=280471

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://secunia.com/advisories/29420

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Resource:

vendor-advisory

x_refsource_APPLE

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/483748/100/200/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/27399

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/36637

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: https://issues.rpath.com/browse/RPL-1706

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://docs.info.apple.com/article.html?artnum=307562

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://bugs.gentoo.org/show_bug.cgi?id=191321

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://secunia.com/advisories/32241

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:12 Sep, 2007 | 01:17

Updated At:15 Oct, 2018 | 21:37

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 7.5

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:P/I:P/A:P

CPE Matches

OpenBSD

>>openssh>>Versions up to 4.6(inclusive)

cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.0

cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.0p1

cpe:2.3:a:openbsd:openssh:4.0p1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.1

cpe:2.3:a:openbsd:openssh:4.1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.1p1

cpe:2.3:a:openbsd:openssh:4.1p1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.2

cpe:2.3:a:openbsd:openssh:4.2:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.2p1

cpe:2.3:a:openbsd:openssh:4.2p1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.3

cpe:2.3:a:openbsd:openssh:4.3:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.3p1

cpe:2.3:a:openbsd:openssh:4.3p1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.3p2

cpe:2.3:a:openbsd:openssh:4.3p2:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.4

cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.4p1

cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:*

OpenBSD

>>openssh>>4.5

cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-20	Primary	nvd@nist.gov

CWE ID: CWE-20

Type: Primary

Source: nvd@nist.gov

Vendor Statements

Organization : Red Hat

Last Modified : 2008-08-28T00:00:00

This issue did not affect the OpenSSH packages as distributed with Red Hat Enterprise Linux 2.1 or 3, as they do not support Trusted X11 forwarding. For Red Hat Enterprise Linux 4 and 5, this issue was addressed via: https://rhn.redhat.com/errata/RHSA-2008-0855.html

References

Hyperlink	Source	Resource
http://bugs.gentoo.org/show_bug.cgi?id=191321	cve@mitre.org	N/A
http://docs.info.apple.com/article.html?artnum=307562	cve@mitre.org	N/A
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01271085	cve@mitre.org	N/A
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	cve@mitre.org	N/A
http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html	cve@mitre.org	N/A
http://secunia.com/advisories/27399	cve@mitre.org	N/A
http://secunia.com/advisories/29420	cve@mitre.org	N/A
http://secunia.com/advisories/30249	cve@mitre.org	N/A
http://secunia.com/advisories/31575	cve@mitre.org	N/A
http://secunia.com/advisories/32241	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200711-02.xml	cve@mitre.org	N/A
http://securityreason.com/securityalert/3126	cve@mitre.org	N/A
http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm	cve@mitre.org	N/A
http://www.debian.org/security/2008/dsa-1576	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDKSA-2007:236	cve@mitre.org	N/A
http://www.openssh.com/txt/release-4.7	cve@mitre.org	N/A
http://www.redhat.com/support/errata/RHSA-2008-0855.html	cve@mitre.org	N/A
http://www.securityfocus.com/archive/1/479760/100/0/threaded	cve@mitre.org	N/A
http://www.securityfocus.com/archive/1/483748/100/200/threaded	cve@mitre.org	N/A
http://www.securityfocus.com/bid/25628	cve@mitre.org	N/A
http://www.ubuntu.com/usn/usn-566-1	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2007/3156	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/0924/references	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/2821	cve@mitre.org	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=280471	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/36637	cve@mitre.org	N/A
https://issues.rpath.com/browse/RPL-1706	cve@mitre.org	Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10809	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5599	cve@mitre.org	N/A
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html	cve@mitre.org	N/A