8 matches found
VulnCheck KEV: CVE-1999-0526
An X server's access control is disabled e.g. through an "xhost +" command and allows anyone to connect to the server...
SCO OpenServer 5.0.x StartX Weak XHost Permissions Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2731/info OpenServer is a Unix based operating system distributed by Santa Cruz Operations. A problem in access control of the X server could allow a local user to gain elevated privileges. When the X Window System is...
GNU Mailutils imap4d 0.6 - Remote Format String Exploit (exec-shield)
No description provided by source. / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...
Check if X11 tunnel in sshd_config is enabled, list 'xhost' rights
This plugin uses ssh to Check if X11 tunnel in sshdconfig is enabled, list SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Check if X11 tunnel in sshd_config is enabled, list 'xhost' rights
This plugin uses ssh to Check if X11 tunnel in sshdconfig is enabled, list 'xhost' rights. OpenVAS Vulnerability Test $Id: GSHBSSHxwindow.nasl 7061 2017-09-05 11:50:40Z teissa $ Check if X11 tunnel in sshdconfig is enabled, list 'xhost' rights Authors: Thomas Rotter Copyright: Copyright c 2010...
x11-access NSE Script
Checks if you're allowed to connect to the X server. If the X server is listening on TCP port 6000+n where n is the display number, it is possible to check if you're able to get connected to the remote display by sending a X11 initial connection request. In reply, the success byte 0x00 or 0x01 wi...
SCO OpenServer 5.0.x - StartX Weak XHost Permissions
source: https://www.securityfocus.com/bid/2731/info OpenServer is a Unix based operating system distributed by Santa Cruz Operations. A problem in access control of the X server could allow a local user to gain elevated privileges. When the X Window System is started via the xhost script,...
CVE-1999-0526
CVE-1999-0526 relates to an X server with access control disabled (e.g., via xhost +), allowing any host to connect to the X server. The vulnerability is documented with a high impact: confidentiality, integrity, and availability could be compromised through to keystroke exposure and session take...