OpenSSH Client Unauthorized Remote Forwarding Network Vulnerability

Summary

You are running OpenSSH SSH client before 2.3.0. This version does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent.

Solution

Patch and New version are available from OpenSSH.

Severity

Classification

CVE CVE-2000-1169

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

yppasswdd overflow
Linksys multiple remote vulnerabilities
SSH1 SSH Daemon Logging Failure
HTTP 1.0 header overflow
HTTP negative Content-Length buffer overflow

Take action and discover your vulnerabilities