6.9
CVE-2008-1692
- EPSS 0.31%
- Veröffentlicht 07.04.2008 18:44:00
- Zuletzt bearbeitet 16.06.2026 22:52:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.22 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.9 | 3.4 | 10 |
AV:L/AC:M/Au:N/C:C/I:C/A:C
|
http://security.gentoo.org/glsa/glsa-200805-03.xml
http://www.securityfocus.com/bid/28512
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=473127
http://secunia.com/advisories/29577
http://www.mandriva.com/security/advisories?name=MDVSA-2008:222