Timo Juhani Lindfors

**Name of the Vulnerable Software and Affected Versions** OpenSSH versions prior to 4.7 p1-r6 OpenSSH version 4.3p2 **Description** The issue allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port. This can be demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emacs. Exploitation of the vulnerabilities may lead to disruption of confidentiality, integrity, and availability of protected information. **Recommendations** For OpenSSH versions prior to 4.7 p1-r6, update to version 4.7 p1-r6 or later to resolve the issue. For OpenSSH version 4.3p2, consider disabling the forwarding of X connections as a temporary workaround until a patch is available. Restrict access to the associated port to minimize the risk of exploitation.