Oval Definition:oval:org.opensuse.security:def:20081142
Revision Date:2022-06-30Version:1
Title:CVE-2008-1142
Description:

rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenarios require that the victim enters a command on the wrong machine.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-1142
Mitre CVE-2008-1142
SUSE CVE-2008-1142
SUSE-SR:2008:017
SUSE-SR:2008:017
Platform(s):openSUSE 10.2
openSUSE 10.3
openSUSE 11.0
openSUSE 13.2
openSUSE Leap 15.0
openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • openSUSE 13.2 is installed
  • AND rxvt-unicode-9.20-2.1.4 is installed
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • rxvt-unicode-9.21-4.6 is installed
  • AND rxvt-unicode is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • rxvt-unicode-9.21-5.26 is installed
  • AND rxvt-unicode is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND rxvt-unicode-9.05-1.19 is installed
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • rxvt-unicode-9.21-8 is installed
  • AND rxvt-unicode is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • rxvt-unicode-9.22-lp150.2 is installed
  • AND rxvt-unicode is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND rxvt-unicode-9.22-1.1 is installed
    • BACK