Openssh · Openssh · CVE-2008-3259
Name of the Vulnerable Software and Affected Versions:
OpenSSH versions prior to 5.1
Description:
The issue allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address when the X11UseLocalhost configuration setting is disabled. This has been demonstrated on the HP-UX platform.
Recommendations:
For versions prior to 5.1, consider enabling the X11UseLocalhost configuration setting to prevent local users from hijacking the X11 forwarding port.