Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Misc. >> Open X11 Server


Vulnerability Assessment Details

Open X11 Server

Vulnerability Assessment Summary
X11 determines if X11 is open

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote X11 server accepts connections from anywhere.

Description :

The remote X11 server accepts connection from anywhere. A possible hacker
may connect to it to eavesdrop on the keyboard and mouse events of
a user on the remote host. It is even possible for a possible hacker to
grab a screenshot of the remote host or to display arbitrary programs.

A possible hacker may exploit this flaw to obtain the username and password
of a user on the remote host.

Solution :

Restrict access to this port by using the 'xhost' command.
If the X11 client/server facility is not used, disable TCP entirely.

Network Security Threat Level:

Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

1983 ATARI 600 XL COMPUTER OWNERS MANUAL
$10.99
1983 ATARI 600 XL COMPUTER OWNERS MANUAL picturePS/2 mouse adapter for Atari ST *Free shipping priority mail*
$12.99
PS/2 mouse adapter for Atari ST *Free shipping priority mail* pictureAutoduel for the Atari BOX AND INSTRCUTIONS
$27.98
Autoduel for the Atari BOX AND INSTRCUTIONS pictureMaze of Death Atari 400 800 XL XE(not loading)
$15.0
Maze of Death Atari 400 800 XL XE(not loading) picture


Discussions

No Discussions have been posted on this vulnerability.