The default configuration of the server in MobaXterm prior to 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote malicious users to execute arbitrary commands or obtain sensitive information via X11 packets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mobatek mobaxterm |