← back
CVE-2015-7244

CVE-2015-7244

EPSS 5.0%
The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote attackers to execute arbitrary commands or obtain sensitive information via X11 packets.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blog.mobatek.net/post/mobaxterm-new-release-8.3/http://www.kb.cert.org/vuls/id/316888http://www.securifera.com/advisories/cve-2015-7244