Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote attackers to execute arbitrary commands or obtain sensitive information via X11 packets.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mobatek MobaXterm server 安全漏洞
Vulnerability Description
Mobatek MobaXterm是Mobatek公司开发的一套集成了增强型终端、X服务器和Unix命令集(GNU/Cygwin)的终端软件。 Mobatek MobaXterm 8.2及之前版本的服务器的默认配置中存在安全漏洞,该漏洞源于程序使用禁用的Access Control设置并且没有要求对X11连接执行身份验证。远程攻击者可通过发送X11数据包利用该漏洞执行任意命令,或获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A