Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Misc. >> Open X11 Server


Vulnerability Assessment Details

Open X11 Server

Vulnerability Assessment Summary
X11 determines if X11 is open

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote X11 server accepts connections from anywhere.

Description :

The remote X11 server accepts connection from anywhere. A possible hacker
may connect to it to eavesdrop on the keyboard and mouse events of
a user on the remote host. It is even possible for a possible hacker to
grab a screenshot of the remote host or to display arbitrary programs.

A possible hacker may exploit this flaw to obtain the username and password
of a user on the remote host.

Solution :

Restrict access to this port by using the 'xhost' command.
If the X11 client/server facility is not used, disable TCP entirely.

Network Security Threat Level:

Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

DELL 2110 10" LAPTOP WINDOWS 7 PRO 1GB RAM 160GB HD WEBCAM WIFI
$64.95
DELL 2110 108GB 2X 4GB PC Memory DDR3-1600M​Hz Desktop PC3-12800 240pin DIMM SDRAM For AMD
$36.46
8GB 2X 4GB PC Memory DDR3-1600M​Hz Desktop PC3-12800 240pin DIMM SDRAM For AMD pictureDell OEM Samsung 256MB RAM Memory - DDR PC2700 M368L3223FTN - CB3 Memory
$4.75
Dell OEM Samsung 256MB RAM Memory - DDR PC2700  M368L3223FTN - CB3 Memory pictureMemory - Nanya NT2GC64B8HC0NF-CG 2GB PC3 4x2GB 2Rx8 PC3-10600 Modules
$39.0
Memory - Nanya NT2GC64B8HC0NF-CG 2GB PC3 4x2GB 2Rx8 PC3-10600 Modules picture


Discussions

No Discussions have been posted on this vulnerability.