CVE-2008-3259
published 2008-07-22CVE-2008-3259: OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms…
PriorityP47low1.2CVSS 2.0
AVLACHAuNCPINAN
EPSS
0.33%
24.5th percentile
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
Affected
72 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openssh | — | — |
| openbsd | openssh | <= 5.0 | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
| openbsd | openssh | — | — |
CVSS provenance
nvdv2.01.2LOWAV:L/AC:H/Au:N/C:P/I:N/A:N
vendor_debian1.2LOW
vendor_redhat1.2LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
openssh: SO_REUSEADDR insecure for X11 forwarding sockets on some platforms
vendor_redhat·2008-05-16·CVSS 1.2
CVE-2008-3259 [LOW] openssh: SO_REUSEADDR insecure for X11 forwarding sockets on some platforms
openssh: SO_REUSEADDR insecure for X11 forwarding sockets on some platforms
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
Statement: Not vulnerable. This issue did not affect the versions of openssh as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.
Debian
CVE-2008-3259: openssh - OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost ...
vendor_debian·2008·CVSS 1.2
CVE-2008-3259 [LOW] CVE-2008-3259: openssh - OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost ...
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-33jf-4rqx-933q: OpenSSH before 5
ghsa_unreviewed·2022-05-01
CVE-2008-3259 [LOW] CWE-200 GHSA-33jf-4rqx-933q: OpenSSH before 5
OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
No detection rules found.
No public exploits indexed.
http://openssh.com/security.htmlhttp://secunia.com/advisories/31179http://www.openssh.com/txt/release-5.1http://www.securityfocus.com/bid/30339http://www.securitytracker.com/id?1020537http://www.vupen.com/english/advisories/2008/2148https://exchange.xforce.ibmcloud.com/vulnerabilities/43940http://openssh.com/security.htmlhttp://secunia.com/advisories/31179http://www.openssh.com/txt/release-5.1http://www.securityfocus.com/bid/30339http://www.securitytracker.com/id?1020537http://www.vupen.com/english/advisories/2008/2148https://exchange.xforce.ibmcloud.com/vulnerabilities/43940
2008-07-22
Published