Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Vengatesh_SR
Contributor

Vulerability#CVE-2007-4752

Hi Team,

We are getting the below vulnerability for the checkpoint.  

Name : OpenSSH X11 Cookie Local Authentication Bypass Vulnerability (openssh-x11-cookie-auth-bypass)
    
Description :

ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted.


OpenBSD OpenSSH < 4.7
Download and apply the upgrade from: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH
While you can always build OpenSSH from source, many platforms and distributions provide pre-built binary packages for OpenSSH.
These pre-built packages are usually customized and optimized for a particular distribution, therefore we recommend that you use the packages if they are available for your operating system.

-----------------------------------------------------------------

We have the take installed is take_286.

From the above description, I can find the CVE associated for the vulnerability is #CVE-2007-4752.

From the #sk65269, I can see the comments given is Not vulnerable. So it means checkpoint devices are not vulnerable for this vulnerbaility ??

Regards,

Vengatesh SR

8 Replies
Marco_Valenti
Advisor

Here you can find your reply , have fun

Status of OpenSSH CVEs 

0 Kudos
G_W_Albrecht
Legend Legend
Legend

sk65269 also gives a command to check the vulnerability of the installed openssh binary...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin

The SK is pretty clear--not vulnerable.

In general, this can be because:

  1. Our configuration does not include the relevant code needed to exploit the vulnerability
  2. We've patched the relevant defect
0 Kudos
Vengatesh_SR
Contributor

So it means our devices are not vulnerable right ?

0 Kudos
PhoneBoy
Admin
Admin

Correct, not vulnerable.

Gaurav_Pandya
Advisor

Great

tbindenagel
Participant

Do we have a way to prove that we're not vulnerable?   We are using a Rapid7 scanner, and it is seeing the vulnerability and we need to show evidence that the vulnerability does not exist rather than just an sk that says "not vulnerable".   

0 Kudos
Vengatesh_SR
Contributor

Wow Great!!! Thanks

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events