CVE-2007-4752: OpenSSH X11 Cookie Local Authentication Bypass

General support questions including new installations
Post Reply
soniya_ag
Posts: 4
Joined: 2016/08/02 12:33:38

CVE-2007-4752: OpenSSH X11 Cookie Local Authentication Bypass

Post by soniya_ag » 2016/09/06 10:22:18

Hi ,

I want to update openssh rpms on my system through yum.
However, it says no package marked for update.
To get rid of the vulnerability ( CVE ID : CVE-2007-4752 ) we need to go beyond version 4.7 ( hope i am right here ).
What can be done ?

Here are my system details :

cat /etc/redhat-release
CentOS release 5.10 (Final)

# rpm -qa| grep openssh
openssh-server-4.3p2-82.el5
openssh-4.3p2-82.el5
openssh-clients-4.3p2-82.el5

Thanks in advance,

Soniya Mittal
Last edited by soniya_ag on 2016/09/06 12:41:20, edited 1 time in total.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: CVE-2007-4752: OpenSSH X11 Cookie Local Authentication Bypass

Post by TrevorH » 2016/09/06 11:04:19

The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

soniya_ag
Posts: 4
Joined: 2016/08/02 12:33:38

Re: CVE-2007-4752: OpenSSH X11 Cookie Local Authentication Bypass

Post by soniya_ag » 2016/09/06 11:16:45

Have already installed the mention version :4.3p2-82.el5 , still see the vulnerability on my security scan machine.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: CVE-2007-4752: OpenSSH X11 Cookie Local Authentication Bypass

Post by TrevorH » 2016/09/06 11:48:43

Get a better security scanner?
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

Post Reply