Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.15897
Category:General
Title:Open X Server
Summary:An improperly configured X server will accept connections from clients from; anywhere.
Description:Summary:
An improperly configured X server will accept connections from clients from
anywhere.

Vulnerability Impact:
This allows an attacker to make a client connect to the X server to
record the keystrokes of the user, which may contain sensitive information, such as account passwords.

Solution:
Use xhost, MIT cookies, and filter incoming TCP connections to this port.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-1999-0526
CERT/CC vulnerability note: VU#704969
http://www.kb.cert.org/vuls/id/704969
XForce ISS Database: xcheck-keystroke
CopyrightCopyright (C) 2004 Michel Arboi

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.