Lucene search
MitreCVE-2008-1692HistoryApr 07, 2008 - 6:44 p.m.
CVE-2008-1692
2008-04-0718:44:00
CWE-264
mitre
web.nvd.nist.gov
23
eterm
cve-2008-1692
terminal window
x11
hijack
security vulnerability
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.
Affected configurations
Node
etermetermMatch0.9.4
Related
cvelist
cvelist
CVE-2008-1692
2008-04-07 18:00:00
prion
prion
Design/Logic Flaw
2008-04-07 18:44:00
debiancve
debiancve
CVE-2008-1692
2008-04-07 18:44:00
ubuntucve
ubuntucve
CVE-2008-1692
2008-04-07 00:00:00
nvd
nvd
CVE-2008-1692
2008-04-07 18:44:00
openvas
openvas
securityvulns
securityvulns
[ GLSA 200805-03 ] Multiple X11 terminals: Local privilege escalation
2008-05-08 00:00:00
Multiple terminal clients X sessions hijack
2008-05-08 00:00:00
nessus
nessus
GLSA-200805-03 : Multiple X11 terminals: Local privilege escalation
2008-05-09 00:00:00
gentoo
gentoo
Multiple X11 terminals: Local privilege escalation
2008-05-07 00:00:00
seebug
seebug
rxvt终端X11显示任意代码执行漏洞
2008-08-11 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2008-1692