CVE-2008-3259
OpenSSH < 5.1 - Local X11 Forwarding Port Hijack via SO_REUSEADDR
Title source: llmDescription
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
References (7)
Core 7
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2148
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/30339
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/43940
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31179
Various Sources x_refsource_confirm
http://openssh.com/security.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1020537
Various Sources x_refsource_confirm
http://www.openssh.com/txt/release-5.1
Scores
EPSS
0.0003
EPSS Percentile
7.6%
Details
CWE
CWE-200
Status
published
Products (50)
openbsd/openssh
1.2
openbsd/openssh
1.2.1
openbsd/openssh
1.2.2
openbsd/openssh
1.2.3
openbsd/openssh
1.2.27
openbsd/openssh
1.3
openbsd/openssh
1.5
openbsd/openssh
1.5.7
openbsd/openssh
1.5.8
openbsd/openssh
2.1
... and 40 more
Published
Jul 22, 2008
Tracked Since
Feb 18, 2026