LinuxSecurity.com: A vulnerability in Eterm allowed it to open a terminal on :0 if the environment variable was not set or the -display option was not specified, which could be used by a local user to hijack X11 connections (CVE-2008-1692). The updated packages have been patched to correct this issue.
More...