Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Misc. >> Open X11 Server

Vulnerability Assessment Details

Open X11 Server

Vulnerability Assessment Summary
X11 determines if X11 is open

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote X11 server accepts connections from anywhere.

Description :

The remote X11 server accepts connection from anywhere. A possible hacker
may connect to it to eavesdrop on the keyboard and mouse events of
a user on the remote host. It is even possible for a possible hacker to
grab a screenshot of the remote host or to display arbitrary programs.

A possible hacker may exploit this flaw to obtain the username and password
of a user on the remote host.

Solution :

Restrict access to this port by using the 'xhost' command.
If the X11 client/server facility is not used, disable TCP entirely.

Network Security Threat Level:

Medium / CVSS Base Score : 4

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors


No Discussions have been posted on this vulnerability.