VYPR
Unrated severityNVD Advisory· Published Sep 12, 2007· Updated Jun 16, 2026

CVE-2007-4752

CVE-2007-4752

Description

ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15
  • OpenBSD/OpenSSH13 versions
    cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*range: <=4.6
    • cpe:2.3:a:openbsd:openssh:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.0p1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.1p1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.2p1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.3p1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.3p2:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.4p1:*:*:*:*:*:*:*
    • cpe:2.3:a:openbsd:openssh:4.5:*:*:*:*:*:*:*
  • OpenSSH/OpenSSHllm-fuzzy
    Range: <4.7

Patches

Vulnerability mechanics

References

30

News mentions

0

No linked articles in our index yet.