Mandriva Linux Security Advisory – A vulnerability in rxvt allowed it to open a terminal on :0 if the environment variable was not set, which could be used by a local user to hijack X11 connections. The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/71361/MDVSA-2008-221.txt
Source: https://packetstormsecurity.com/files/71361/Mandriva-Linux-Security-Advisory-2008-221.html