PublicDate: 2008-04-07 18:44:00 UTC
Candidate: CVE-2008-1692
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1692
Description:
 Eterm 0.9.4 opens a terminal window on :0 if -display is not specified and
 the DISPLAY environment variable is not set, which might allow local users
 to hijack X11 connections.  NOTE: realistic attack scenarios require that
 the victim enters a command on the wrong machine.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/bugs/216604
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_eterm:
upstream_eterm: released (0.9.5)
dapper_eterm: ignored (reached end-of-life)
edgy_eterm: needed (reached end-of-life)
feisty_eterm: needed (reached end-of-life)
gutsy_eterm: needed (reached end-of-life)
hardy_eterm: ignored (reached end-of-life)
intrepid_eterm: not-affected (0.9.5-1ubuntu1)
jaunty_eterm: not-affected (0.9.5-2ubuntu1)
karmic_eterm: not-affected (0.9.5-2ubuntu1)
lucid_eterm: not-affected (0.9.5-2ubuntu1)
maverick_eterm: not-affected (0.9.5-2ubuntu1)
natty_eterm: not-affected (0.9.5-2ubuntu1)
oneiric_eterm: not-affected (0.9.5-2ubuntu1)
devel_eterm: not-affected (0.9.5-2ubuntu1)